VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prepinanie na nechcene stranky

https://forum.viry.cz:443/viewtopic.php?t=150833

Stránka 2 z 3

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 10:57
od michal1097
prikladam fixlog

Fix result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by Michal (17-12-2016 10:48:28) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
StartRegedit:
[HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU]
"NoAutoUpdate"=dword:00000000
EndRegedit:
cmd: reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost"
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start hxxp://www.avg.com/ww.special-uninstall ... gBQAEEATgA"&"inst=NwA3AC0AMwA0AD (the data entry has 109 more characters).
Winlogon\Notify\xranhgo-x32: C:\Users\Michal\AppData\Local\xranhgo.dll [X]
File: C:\Users\Michal\AppData\Local\xranhgo.dll
C:\Users\Michal\AppData\Local\xranhgo.dll
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9108184 2016-11-07] (Piriform Ltd)
HKLM\...\Providers\jelxymt5: C:\Program Files (x86)\Adobe\\local64spl.dll [142848 2016-12-10] ()
File: C:\Program Files (x86)\Adobe\\local64spl.dll
C:\Program Files (x86)\Adobe\\local64spl.dll
ShellExecuteHooks: - {4A39289E-AB73-11E6-B57F-64006A5CFC23} - C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll [145920 2016-12-09] ()
File: C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll
C:\Users\Michal\AppData\Roaming\Graqsp
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction - Chrome <======= ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssiea.dll => No File
C:\Program Files (x86)\AVG

cmd: type "C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js"
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\crsahtbq.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF Keyword.URL: Mozilla\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (No Name) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\extensions\arthurj8283@gmail.com [not found]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml [2016-12-12]
cmd: type "C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js"
FF DefaultSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.3: Firefox\Firefox\Profiles\crsahtbq.default -> Bing
FF SelectedSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF Keyword.URL: Firefox\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (FF Adr) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2016-12-10] [not signed]
FF Extension: (xRocket Toolbar) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com [2016-12-12] [not signed]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml [2016-12-12]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\searchinme.xml [2016-12-10]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\zmlfca7u.xml [2016-12-09]

File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
R2 Convxxxx; C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe [403968 2016-12-07] () [File not signed]
File: C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe
C:\Users\Michal\AppData\Roaming\cfjcf
R2 FirefoxU; C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe [100352 2016-12-12] () [File not signed]
U0 aswVmm; no ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

Folder: C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae
Folder: C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919
2016-12-12 13:19 - 2016-12-12 13:19 - 01323520 _____ C:\Users\Michal\Downloads\RSITx64.exe
2016-12-12 13:19 - 2016-12-12 13:19 - 00000000 ____D C:\rsit
2016-12-12 12:37 - 2016-12-12 12:37 - 00000000 ____D C:\Program Files (x86)\amuleC1
2016-12-10 09:18 - 2016-12-17 08:22 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-12-10 09:18 - 2016-12-12 12:38 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2016-12-10 09:12 - 2016-12-10 09:12 - 00000000 ____D C:\Users\Michal\Documents\aMule Downloads
2016-12-10 09:01 - 2016-12-10 09:12 - 00000000 ____D C:\Users\Michal\AppData\Roaming\aMule
2016-12-10 09:01 - 2016-12-10 09:01 - 00000000 ____D C:\Users\Michal\AppData\Roaming\cfjcf
2016-12-10 08:56 - 2016-12-12 12:33 - 00000000 ____D C:\Program Files (x86)\ft1xx095
Folder: C:\ProgramData\Avira
2016-12-09 17:50 - 2016-12-09 17:50 - 00006050 _____ C:\Windows\System32\Tasks\Vuktionliqat Helper
2016-12-09 17:50 - 2016-12-09 17:50 - 00003530 _____ C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2
2016-12-09 17:49 - 2016-12-12 12:49 - 00000000 ____D C:\Program Files (x86)\Merpetionannage
2016-12-09 17:49 - 2016-12-09 17:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Smedom
2016-12-09 17:49 - 2016-12-09 17:49 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Graqsp
2016-11-19 15:20 - 2016-12-12 13:19 - 00000000 ____D C:\Program Files\trend micro
Folder: C:\f74ac6a2e4cd4e3b05d865d22c91ca77
Folder: C:\065499413fda718ad23a4eeb3e452f
Folder: C:\ProgramData\AVAST Software
2016-11-21 19:43 - 2016-12-09 17:51 - 00000000 ____D C:\ProgramData\Avg
2016-11-21 19:42 - 2016-11-21 20:13 - 00000000 ____D C:\Users\Michal\AppData\Local\AvgSetupLog
2016-11-21 19:42 - 2016-11-21 19:42 - 00000000 ____D C:\Users\Michal\AppData\Local\Avg
2016-12-09 17:51 - 2016-10-28 10:16 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-09 17:50 - 2016-10-07 14:25 - 00000000 ____D C:\Program Files (x86)\AVG

Task: {43A81866-A5C4-44F9-8EB6-F43090120092} - System32\Tasks\{9FEBF33B-2074-414C-8502-E337530B2EEE} => pcalua.exe -a "C:\Users\Michal\Desktop\Nový priečinok\Windows.Media.Player.12.v.2.CZ..exe" -d "C:\Users\Michal\Desktop\Nový priečinok"
Task: {898120DD-BF52-4B72-ACAB-45372AEE08B5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-10-28] (AVAST Software)
Task: {917AB143-3543-4ED5-86D1-DAE72919DC3A} - System32\Tasks\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => pcalua.exe -a C:\Users\Michal\Desktop\wsusoffline\client\cpp\vcredist2008_x64.exe -d C:\Users\Michal\Desktop\wsusoffline\client\cpp
Task: {D33665A0-6187-430A-A0AD-41B0FF27D0EB} - System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => Rundll32.exe "C:\Program Files (x86)\Common Files\elxymt.dll",e62dc6c6547f46bda862da2d05af6862 <==== ATTENTION
File: C:\Program Files (x86)\Merpetionannage\copay.exe
Folder: C:\Program Files (x86)\Merpetionannage
C:\Program Files (x86)\Merpetionannage

File: C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
File: C:\Program Files (x86)\SrpnFiles\downloader.exe
Folder: C:\Program Files (x86)\SrpnFiles
C:\Program Files (x86)\SrpnFiles
FirewallRules: [{F659C450-8F90-4046-A97E-1180E871D417}] => C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{0B8B91FE-FEBA-440A-A18C-3C6BE8C5DA64}] => C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{1222AFB4-9C0C-4EDA-8C20-13C097DD10F4}] => C:\Program Files (x86)\SrpnFiles\downloader.exe
FirewallRules: [{6779D280-A173-47C3-8F50-16A2B0B6246B}] => C:\Program Files (x86)\SrpnFiles\downloader.exe
File: C:\program files (x86)\brackets\node.exe
FirewallRules: [{D960489A-096B-4277-B260-B3A53D48840B}] => C:\Windows\system32\rundll32.exe
FirewallRules: [{D0EEFAF9-098E-47B6-9B63-7350707B6846}] => C:\Windows\system32\rundll32.exe
FirewallRules: [TCP Query User{8DD6A48A-6951-45BC-AEFC-F01B5F82D210}C:\windows\syswow64\rundll32.exe] => C:\windows\syswow64\rundll32.exe
FirewallRules: [UDP Query User{22D498AC-C9A7-4644-8629-2152CFF322E4}C:\windows\syswow64\rundll32.exe] => C:\windows\syswow64\rundll32.exe
FirewallRules: [{1B40F44E-E1D2-4215-92FA-39146AD5B265}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{63F33A42-180C-41E1-BCF6-57335200B66A}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{365856DD-96B8-4104-9F77-79233DA5E047}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{4881B295-8618-4ECF-A9F4-87F43A7AD39E}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5BD9BFF5-B75A-4C45-9DDC-58FF8D31CBB6}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{190C0C9C-33C1-4DCD-AF81-C64EC28370D9}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{76B13A3E-8F9B-4C28-91DB-0C9AA6127DB7}C:\program files (x86)\amulec1\amule.exe] => C:\program files (x86)\amulec1\amule.exe
FirewallRules: [UDP Query User{23CA4E45-1996-47BC-8004-407722F3B376}C:\program files (x86)\amulec1\amule.exe] => C:\program files (x86)\amulec1\amule.exe
FirewallRules: [{B8155EEF-AFCA-4B69-AC19-4053C03B567C}] => C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{6114AE8A-EA9C-4BBF-B064-BB4015DEE52A}] => C:\Program Files (x86)\Firefox\Firefox.exe
File: C:\Program Files (x86)\Firefox\Firefox.exe
File: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe

CMD: dir "C:\Windows\System32\Tasks"
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

====> Registry

========= reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost" =========


HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost
netsvcs REG_MULTI_SZ AeLookupSvc\0CertPropSvc\0SCPolicySvc\0lanmanserver\0gpsvc\0AudioSrv\0FastUserSwitchingCompatibility\0Ias\0Irmon\0Nla\0Ntmssvc\0NWCWorkstation\0Nwsapagent\0Rasauto\0Rasman\0Remoteaccess\0SENS\0Sharedaccess\0SRService\0Tapisrv\0Wmi\0WmdmPmSp\0TermService\0wuauserv\0BITS\0ShellHWDetection\0LogonHours\0PCAudit\0helpsvc\0uploadmgr\0iphlpsvc\0msiscsi\0schedule\0SessionEnv\0winmgmt\0AppMgmt
LocalService REG_MULTI_SZ RemoteRegistry\0WinHttpAutoProxySvc\0sppuinotify\0netprofm\0WebClient
LocalSystemNetworkRestricted REG_MULTI_SZ Netman\0AudioEndpointBuilder\0dot3svc\0wlansvc\0WPDBusEnum
LocalServiceNoNetwork REG_MULTI_SZ PLA
rpcss REG_MULTI_SZ RpcSs
LocalServiceNetworkRestricted REG_MULTI_SZ AudioSrv\0BthHFSrv\0LmHosts\0wscsvc\0WPCSvc
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV\0upnphost\0SCardSvr\0QWAVE\0wcncsvc
DcomLaunch REG_MULTI_SZ Power\0PlugPlay\0DcomLaunch
NetworkService REG_MULTI_SZ CryptSvc\0DHCP\0TermService\0DNSCache\0NapAgent\0nlasvc\0WinRM\0WECSVC\0Tapisrv
imgsvc REG_MULTI_SZ StiSvc
wcssvc REG_MULTI_SZ WcsPlugInService
Musadom REG_MULTI_SZ Musadom

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalService
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceAndNoImpersonation
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNoNetwork
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalSystemNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\netsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkService
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopHyperVAgent
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopPublishing
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\termsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\wcssvc

========= End of CMD: =========

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value removed successfully
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\xranhgo" => key removed successfully

========================= File: C:\Users\Michal\AppData\Local\xranhgo.dll ========================

"C:\Users\Michal\AppData\Local\xranhgo.dll" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Local\xranhgo.dll" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\EnableShellExecuteHooks => value removed successfully
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\jelxymt5" => key removed successfully
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order jelxymt5 could not remove.

========================= File: C:\Program Files (x86)\Adobe\\local64spl.dll ========================

File not signed
MD5: DB8C644FCF5BA2B948643FD02D13041B
Creation and modification date: 2016-12-10 09:50 - 2016-12-10 17:50
Size: 0142848
Attributes: ----H
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

C:\Program Files (x86)\Adobe\\local64spl.dll => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{4A39289E-AB73-11E6-B57F-64006A5CFC23} => value removed successfully
"HKCR\CLSID\{4A39289E-AB73-11E6-B57F-64006A5CFC23}" => key removed successfully

========================= File: C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll ========================

File not signed
MD5: 79DBA1067B2275915A82D1A164F0790E
Creation and modification date: 2016-12-09 17:49 - 2016-12-09 17:49
Size: 0145920
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

C:\Users\Michal\AppData\Roaming\Graqsp => moved successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}" => key removed successfully
"HKCR\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}" => key removed successfully
C:\Program Files (x86)\AVG => moved successfully

========= type "C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js" =========

# Mozilla User Preferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("browser.search.defaultenginename", "luck");
user_pref("browser.search.order.1", "luck");
user_pref("browser.search.searchengine.alias", "");
user_pref("browser.search.searchengine.name", "luck");
user_pref("browser.search.searchengine.ref", "");
user_pref("browser.search.searchengine.ts", "1481542656");
user_pref("browser.search.searchengine.type", "");
user_pref("browser.search.searchengine.uid", "st500lm000-1ej162_w370kzblxxxxw370kzbl");
user_pref("browser.search.selectedEngine", "luck");
user_pref("browser.search.useDBForOrder", true);
user_pref("browser.sessionstore.max_tabs_undo", 0);
user_pref("browser.sessionstore.max_windows_undo", 0);
user_pref("browser.sessionstore.resume_from_crash", false);
user_pref("browser.sessionstore.resume_session_once", false);

========= End of CMD: =========

Firefox DefaultSearchEngine removed successfully
Firefox SearchEngineOrder.1 removed successfully
Firefox SearchEngineOrder.3 removed successfully
Firefox SelectedSearchEngine removed successfully
Firefox "Keyword.URL" removed successfully
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\extensions\arthurj8283@gmail.com => path removed successfully
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml => moved successfully

========= type "C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js" =========

# Mozilla User Preferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("browser.search.defaultenginename", "luck");
user_pref("browser.search.order.1", "luck");
user_pref("browser.search.searchengine.alias", "");
user_pref("browser.search.searchengine.name", "luck");
user_pref("browser.search.searchengine.ref", "");
user_pref("browser.search.searchengine.ts", "1481542656");
user_pref("browser.search.searchengine.type", "");
user_pref("browser.search.searchengine.uid", "st500lm000-1ej162_w370kzblxxxxw370kzbl");
user_pref("browser.search.selectedEngine", "luck");
user_pref("browser.search.useDBForOrder", true);
user_pref("browser.sessionstore.max_tabs_undo", 0);
user_pref("browser.sessionstore.max_windows_undo", 0);
user_pref("browser.sessionstore.resume_from_crash", false);
user_pref("browser.sessionstore.resume_session_once", false);

========= End of CMD: =========

Firefox DefaultSearchEngine removed successfully
Firefox SearchEngineOrder.1 removed successfully
Firefox SearchEngineOrder.3 removed successfully
Firefox SelectedSearchEngine removed successfully
Firefox "Keyword.URL" removed successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi => moved successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com => moved successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com => path removed successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml => moved successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\searchinme.xml => moved successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\zmlfca7u.xml => moved successfully

========================= File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe ========================

File not signed
MD5: A917E4F753B90A5181ECBFA56D5C154A
Creation and modification date: 2013-01-24 23:12 - 2013-01-24 23:12
Size: 0227456
Attributes: ----A
Company Name: Qualcomm Atheros Commnucations
Internal Name: AdminService
Original Name: AdminService.exe
Product: Bluetooth Software
Description: AdminService Application
File Version: 8.0.0.220
Product Version: 8.0.0.220
Copyright: Copyright (c) 2001-2010 Qualcomm Atheros Communications, Inc. All rights reserved.

====== End of File: ======

Convxxxx => service removed successfully

========================= File: C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe ========================

File not signed
MD5: A1D70DA7E4A94E51DB76CF9D58D5B8B4
Creation and modification date: 2016-12-10 09:01 - 2016-12-07 11:54
Size: 0403968
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:

====== End of File: ======

C:\Users\Michal\AppData\Roaming\cfjcf => moved successfully
FirefoxU => service removed successfully
aswVmm => service removed successfully
catchme => service removed successfully

========================= Folder: C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae ========================


====== End of Folder: ======


========================= Folder: C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919 ========================


====== End of Folder: ======

C:\Users\Michal\Downloads\RSITx64.exe => moved successfully
C:\rsit => moved successfully
C:\Program Files (x86)\amuleC1 => moved successfully
C:\Users\Public\Documents\report.dat => moved successfully
C:\Users\Public\Documents\temp.dat => moved successfully
C:\Users\Michal\Documents\aMule Downloads => moved successfully
C:\Users\Michal\AppData\Roaming\aMule => moved successfully
"C:\Users\Michal\AppData\Roaming\cfjcf" => not found.
C:\Program Files (x86)\ft1xx095 => moved successfully

========================= Folder: C:\ProgramData\Avira ========================

2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\AntiVir Desktop
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\AntiVir Desktop\CONFIG
2016-12-09 17:51 - 2016-12-09 17:51 - 0000494 _____ () C:\ProgramData\Avira\AntiVir Desktop\CONFIG\AVWIN.INI
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\Antivirus
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\Antivirus\CONFIG
2016-12-09 17:51 - 2016-12-09 17:51 - 0000494 _____ () C:\ProgramData\Avira\Antivirus\CONFIG\AVWIN.INI

====== End of Folder: ======

C:\Windows\System32\Tasks\Vuktionliqat Helper => moved successfully
C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => moved successfully
C:\Program Files (x86)\Merpetionannage => moved successfully
C:\Users\Michal\AppData\Local\Smedom => moved successfully
"C:\Users\Michal\AppData\Roaming\Graqsp" => not found.
C:\Program Files\trend micro => moved successfully

========================= Folder: C:\f74ac6a2e4cd4e3b05d865d22c91ca77 ========================

2016-11-18 16:36 - 2016-02-13 18:16 - 22011749 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64.cab
2016-11-18 16:36 - 2016-02-13 18:17 - 0000498 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64.xml
2016-11-18 16:36 - 2016-02-13 18:17 - 0000395 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64-pkgProperties.txt
2016-11-18 16:36 - 2016-02-13 18:18 - 0198044 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\065499413fda718ad23a4eeb3e452f ========================

2016-11-18 15:24 - 2016-01-11 16:10 - 3177773 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64.cab
2016-11-18 15:24 - 2016-01-11 16:11 - 0000446 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64.xml
2016-11-18 15:24 - 2016-01-11 16:11 - 0000521 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64-pkgProperties.txt
2016-11-18 15:24 - 2016-01-11 16:19 - 0181156 _____ () C:\065499413fda718ad23a4eeb3e452f\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\ProgramData\AVAST Software ========================

2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\AVAST Software\Avast
2016-12-09 17:51 - 2016-12-09 17:51 - 0000312 _____ () C:\ProgramData\AVAST Software\Avast\exclusions.ini
2016-10-28 10:16 - 2016-10-28 10:16 - 0000000 ____D () C:\ProgramData\AVAST Software\Persistent Data
2016-10-28 10:16 - 2016-10-30 09:17 - 0000000 ____D () C:\ProgramData\AVAST Software\Persistent Data\Avast
2016-10-28 10:16 - 2016-10-28 10:20 - 0000000 ____D () C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs
2016-10-28 10:16 - 2016-10-29 08:44 - 0005921 _____ () C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\event_manager.log
2016-10-28 10:16 - 2016-10-28 10:20 - 0976174 ____C () C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\Setup.log
2016-10-28 10:20 - 2016-10-29 08:44 - 3020140 ____C () C:\ProgramData\AVAST Software\Persistent Data\Avast\Logs\Update.log

====== End of Folder: ======

C:\ProgramData\Avg => moved successfully
C:\Users\Michal\AppData\Local\AvgSetupLog => moved successfully
C:\Users\Michal\AppData\Local\Avg => moved successfully
C:\ProgramData\AVAST Software => moved successfully
"C:\Program Files (x86)\AVG" => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{43A81866-A5C4-44F9-8EB6-F43090120092}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43A81866-A5C4-44F9-8EB6-F43090120092}" => key removed successfully
C:\Windows\System32\Tasks\{9FEBF33B-2074-414C-8502-E337530B2EEE} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9FEBF33B-2074-414C-8502-E337530B2EEE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{898120DD-BF52-4B72-ACAB-45372AEE08B5}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{898120DD-BF52-4B72-ACAB-45372AEE08B5}" => key removed successfully
C:\Windows\System32\Tasks\AVAST Software\Avast settings backup => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{917AB143-3543-4ED5-86D1-DAE72919DC3A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{917AB143-3543-4ED5-86D1-DAE72919DC3A}" => key removed successfully
C:\Windows\System32\Tasks\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ED0C19EC-E733-47DA-A367-34EAE657BBBF}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D33665A0-6187-430A-A0AD-41B0FF27D0EB}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D33665A0-6187-430A-A0AD-41B0FF27D0EB}" => key removed successfully
C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\54f4f7b41a6f7a369d678a5e04483ba2" => key removed successfully

========================= File: C:\Program Files (x86)\Merpetionannage\copay.exe ========================

"C:\Program Files (x86)\Merpetionannage\copay.exe" => not found.
====== End of File: ======


========================= Folder: C:\Program Files (x86)\Merpetionannage ========================

not found.

====== End of Folder: ======

"C:\Program Files (x86)\Merpetionannage" => not found.

========================= File: C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe ========================

"C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe" => not found.
====== End of File: ======


========================= File: C:\Program Files (x86)\SrpnFiles\downloader.exe ========================

"C:\Program Files (x86)\SrpnFiles\downloader.exe" => not found.
====== End of File: ======


========================= Folder: C:\Program Files (x86)\SrpnFiles ========================

not found.

====== End of Folder: ======

"C:\Program Files (x86)\SrpnFiles" => not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F659C450-8F90-4046-A97E-1180E871D417} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B8B91FE-FEBA-440A-A18C-3C6BE8C5DA64} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1222AFB4-9C0C-4EDA-8C20-13C097DD10F4} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6779D280-A173-47C3-8F50-16A2B0B6246B} => value removed successfully

========================= File: C:\program files (x86)\brackets\node.exe ========================

"C:\program files (x86)\brackets\node.exe" => not found.
====== End of File: ======

HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D960489A-096B-4277-B260-B3A53D48840B} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0EEFAF9-098E-47B6-9B63-7350707B6846} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8DD6A48A-6951-45BC-AEFC-F01B5F82D210}C:\windows\syswow64\rundll32.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{22D498AC-C9A7-4644-8629-2152CFF322E4}C:\windows\syswow64\rundll32.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1B40F44E-E1D2-4215-92FA-39146AD5B265} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63F33A42-180C-41E1-BCF6-57335200B66A} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{365856DD-96B8-4104-9F77-79233DA5E047} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4881B295-8618-4ECF-A9F4-87F43A7AD39E} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5BD9BFF5-B75A-4C45-9DDC-58FF8D31CBB6} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{190C0C9C-33C1-4DCD-AF81-C64EC28370D9} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{76B13A3E-8F9B-4C28-91DB-0C9AA6127DB7}C:\program files (x86)\amulec1\amule.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{23CA4E45-1996-47BC-8004-407722F3B376}C:\program files (x86)\amulec1\amule.exe => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8155EEF-AFCA-4B69-AC19-4053C03B567C} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6114AE8A-EA9C-4BBF-B064-BB4015DEE52A} => value removed successfully

========================= File: C:\Program Files (x86)\Firefox\Firefox.exe ========================

File not signed
MD5: F0425A2AEA6AB764D3E7B6EC8E8D3A74
Creation and modification date: 2016-12-12 12:54 - 2016-12-12 03:46
Size: 0492544
Attributes: ----A
Company Name: Mozilla Corporation
Internal Name: Firefox
Original Name: Firefox.exe
Product: Firefox
Description: Firefox
File Version: 50.0
Product Version: 50.0
Copyright: Firefox and Mozilla Developers; available under the MPL 2 license.

====== End of File: ======


========================= File: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe ========================

File not signed
MD5: D1D91682A1F1AAB35B54DDC5273EE7DC
Creation and modification date: 2016-12-12 12:54 - 2016-12-12 07:31
Size: 0100352
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product: Firefox
Description: Firefox
File Version: 50.0.8.336
Product Version: 50.0.8.336
Copyright: Copyright (C) 2016 Firefox Authors

====== End of File: ======


========= dir "C:\Windows\System32\Tasks" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Windows\System32\Tasks

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
08. 11. 2016 12:31 4˙476 Adobe Acrobat Update Task
13. 12. 2016 12:46 3˙768 Adobe Flash Player Updater
17. 12. 2016 10:48 <DIR> AVAST Software
16. 11. 2016 17:12 2˙794 CCleanerSkipUAC
16. 12. 2016 22:10 3˙240 GoogleUpdateTaskMachineCore
16. 12. 2016 22:10 3˙368 GoogleUpdateTaskMachineUA
16. 10. 2016 09:43 3˙620 HPCustParticipation HP Deskjet 1510 series
18. 11. 2016 16:45 <DIR> Microsoft
08. 10. 2016 15:37 <DIR> OfficeSoftwareProtectionPlatform
22. 11. 2016 13:30 <DIR> WPD
6 File(s) 21˙266 bytes
6 Dir(s) 288˙364˙494˙848 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~1" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~1

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
16. 11. 2016 21:13 <DIR> Adobe
07. 10. 2016 14:13 <DIR> ATI
07. 10. 2016 14:14 <DIR> ATI Technologies
16. 11. 2016 17:12 <DIR> CCleaner
09. 10. 2016 09:43 <DIR> Cisco Packet Tracer 7.0
23. 11. 2016 17:43 <DIR> Common Files
07. 10. 2016 13:53 <DIR> CONEXANT
07. 10. 2016 14:04 <DIR> DIFX
19. 11. 2016 13:34 <DIR> DVD Maker
07. 10. 2016 13:41 <DIR> Elantech
16. 10. 2016 09:40 <DIR> HP
07. 10. 2016 13:39 <DIR> Intel
08. 10. 2016 10:33 <DIR> Intel Security
18. 11. 2016 19:27 <DIR> Internet Explorer
07. 10. 2016 14:04 <DIR> Lenovo
08. 10. 2016 15:31 <DIR> Microsoft Office
18. 11. 2016 08:50 <DIR> Microsoft Silverlight
14. 07. 2009 06:38 <DIR> MSBuild
17. 10. 2016 14:48 <DIR> Oracle
14. 07. 2009 06:38 <DIR> Reference Assemblies
18. 11. 2016 17:59 <DIR> Windows Defender
12. 04. 2011 14:29 <DIR> Windows Mail
20. 11. 2016 15:35 <DIR> Windows Media Player
14. 07. 2009 06:38 <DIR> Windows NT
12. 04. 2011 14:29 <DIR> Windows Photo Viewer
19. 11. 2016 13:34 <DIR> Windows Portable Devices
12. 04. 2011 14:29 <DIR> Windows Sidebar
19. 11. 2016 10:00 <DIR> WindowsPowerShell
08. 10. 2016 12:25 <DIR> WinRAR
0 File(s) 0 bytes
31 Dir(s) 288˙364˙494˙848 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~2" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~2

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
17. 12. 2016 10:48 <DIR> Adobe
09. 12. 2016 17:50 <DIR> AMD APP
09. 12. 2016 17:50 <DIR> AMD AVT
10. 12. 2016 13:16 <DIR> AnthemScore
09. 12. 2016 17:50 <DIR> ATI Technologies
09. 12. 2016 17:50 <DIR> Audacity
09. 12. 2016 17:50 <DIR> Bluetooth Suite
09. 12. 2016 17:50 <DIR> Brackets
09. 12. 2016 17:50 <DIR> Cisco
14. 12. 2016 20:28 <DIR> Common Files
09. 12. 2016 17:50 <DIR> DAEMON Tools Lite
14. 12. 2016 20:31 <DIR> Firefox
09. 12. 2016 17:50 <DIR> Google
09. 12. 2016 17:51 <DIR> Hewlett-Packard
09. 12. 2016 17:50 <DIR> HP
09. 12. 2016 17:50 <DIR> HP Photo Creations
09. 12. 2016 17:50 <DIR> Intel
09. 12. 2016 17:50 <DIR> Internet Explorer
09. 12. 2016 17:51 <DIR> JSignPdf
09. 12. 2016 17:50 <DIR> K-Lite Codec Pack
09. 12. 2016 17:50 <DIR> Lenovo
09. 12. 2016 17:50 <DIR> McAfee
09. 12. 2016 17:50 <DIR> Microsoft Analysis Services
09. 12. 2016 17:50 <DIR> Microsoft Office
09. 12. 2016 17:50 <DIR> Microsoft Silverlight
09. 12. 2016 17:50 <DIR> Microsoft SQL Server Compact Edition
09. 12. 2016 17:50 <DIR> Microsoft Sync Framework
09. 12. 2016 17:50 <DIR> Microsoft Synchronization Services
09. 12. 2016 17:50 <DIR> Microsoft Visual Studio 8
09. 12. 2016 17:50 <DIR> Microsoft.NET
10. 12. 2016 11:20 <DIR> Mozilla Firefox
11. 12. 2016 09:05 <DIR> Mozilla Maintenance Service
09. 12. 2016 17:50 <DIR> MSBuild
10. 12. 2016 13:16 <DIR> MuseScore 2
09. 12. 2016 17:50 <DIR> Neuratron
10. 12. 2016 09:41 <DIR> Neuratron AudioScore Ultimate Demo
09. 12. 2016 17:50 <DIR> Notepad++
09. 12. 2016 17:51 <DIR> Opera
09. 12. 2016 17:50 <DIR> Qualcomm Atheros
09. 12. 2016 17:50 <DIR> Realtek
09. 12. 2016 17:50 <DIR> Reference Assemblies
09. 12. 2016 17:50 <DIR> Renesas Electronics
09. 12. 2016 17:50 <DIR> RightMark
10. 12. 2016 11:39 <DIR> ScoreCloud Studio
09. 12. 2016 17:50 <DIR> Sibelius Software
09. 12. 2016 17:50 <DIR> Skype
09. 12. 2016 17:50 <DIR> The Witcher 3 Wild Hunt Blood and Wine
09. 12. 2016 17:50 <DIR> VideoLAN
09. 12. 2016 17:50 <DIR> Windows Defender
09. 12. 2016 17:50 <DIR> Windows Mail
09. 12. 2016 17:50 <DIR> Windows Media Player
09. 12. 2016 17:50 <DIR> Windows NT
09. 12. 2016 17:50 <DIR> Windows Photo Viewer
09. 12. 2016 17:50 <DIR> Windows Portable Devices
09. 12. 2016 17:50 <DIR> Windows Sidebar
09. 12. 2016 17:50 <DIR> WindowsPowerShell
0 File(s) 0 bytes
58 Dir(s) 288˙364˙490˙752 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~3" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~3

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
09. 12. 2016 15:31 <DIR> Acoustica
23. 11. 2016 18:41 <DIR> Adobe
07. 10. 2016 14:15 <DIR> AMD
16. 10. 2016 09:40 57 Ament.ini
18. 11. 2016 09:41 <DIR> Atheros
07. 10. 2016 14:27 <DIR> ATI
09. 12. 2016 17:51 <DIR> Avira
07. 10. 2016 13:50 <DIR> Conexant
07. 10. 2016 14:19 <DIR> DAEMON Tools Lite
07. 10. 2016 14:02 <DIR> Downloaded Installations
16. 10. 2016 09:42 <DIR> HP
16. 10. 2016 09:43 <DIR> HP Photo Creations
07. 10. 2016 13:48 <DIR> Intel
08. 10. 2016 10:44 <DIR> McAfee
22. 11. 2016 13:29 <DIR> MFAData
20. 11. 2016 16:47 <DIR> Microsoft Help
23. 11. 2016 17:43 <DIR> Package Cache
07. 10. 2016 13:36 <DIR> Qualcomm Atheros
07. 10. 2016 13:35 <DIR> Roaming
08. 12. 2016 08:42 <DIR> Skype
16. 10. 2016 09:43 <DIR> Visan
1 File(s) 57 bytes
22 Dir(s) 288˙364˙486˙656 bytes free

========= End of CMD: =========


========= dir "%localappdata%" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Users\Michal\AppData\Local

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
25. 11. 2016 10:35 <DIR> Adobe
10. 12. 2016 14:12 <DIR> AnthemScore
07. 10. 2016 17:23 <DIR> Apps
07. 10. 2016 14:27 <DIR> ATI
07. 10. 2016 14:10 <DIR> BMExplorer
07. 10. 2016 17:51 <DIR> CEF
14. 12. 2016 20:18 <DIR> CrashDumps
10. 12. 2016 13:01 <DIR> Deployment
23. 11. 2016 07:18 <DIR> Diagnostics
17. 11. 2016 09:48 <DIR> ElevatedDiagnostics
10. 12. 2016 09:21 <DIR> Firefox
10. 12. 2016 12:08 124˙608 GDIPFONTCACHEV1.DAT
04. 11. 2016 08:38 <DIR> Google
16. 10. 2016 09:43 <DIR> HP
08. 10. 2016 10:48 <DIR> Macromedia
21. 11. 2016 19:44 <DIR> MFAData
29. 11. 2016 13:15 <DIR> Microsoft
15. 11. 2016 17:55 <DIR> Microsoft Help
07. 10. 2016 17:22 <DIR> Mozilla
10. 12. 2016 13:16 <DIR> MuseScore
07. 10. 2016 14:17 <DIR> Programs
19. 11. 2016 09:36 7˙605 Resmon.ResmonCfg
17. 12. 2016 10:48 <DIR> Temp
25. 11. 2016 16:11 <DIR> Tempzxpsign0129c5ea464d1bd0
29. 11. 2016 12:41 <DIR> Tempzxpsign0869e5917f164ad8
07. 12. 2016 19:18 <DIR> Tempzxpsign08708443e994ca5f
02. 12. 2016 08:35 <DIR> Tempzxpsign089f88d9de54e320
01. 12. 2016 14:28 <DIR> Tempzxpsign093bb2eebf52505b
23. 11. 2016 18:12 <DIR> Tempzxpsign0b64d6facd5b380b
01. 12. 2016 14:47 <DIR> Tempzxpsign0c6c77f61ea482b9
25. 11. 2016 14:33 <DIR> Tempzxpsign0d50ec84559762e7
25. 11. 2016 10:49 <DIR> Tempzxpsign0e05eb4c4a3dcf5f
30. 11. 2016 18:23 <DIR> Tempzxpsign0e2689382ab7988b
01. 12. 2016 14:05 <DIR> Tempzxpsign0f35eaf1cde8fff5
25. 11. 2016 09:30 <DIR> Tempzxpsign1054cf807590fa05
25. 11. 2016 09:26 <DIR> Tempzxpsign16e3469ef7cbb3d5
25. 11. 2016 14:33 <DIR> Tempzxpsign1a19d272fff3af72
08. 12. 2016 14:26 <DIR> Tempzxpsign1a4957ae9e010c42
01. 12. 2016 14:33 <DIR> Tempzxpsign2030b3848e1630f2
25. 11. 2016 16:50 <DIR> Tempzxpsign22fbe70e649a2567
08. 12. 2016 09:09 <DIR> Tempzxpsign2368e15f51aa66f0
07. 12. 2016 19:18 <DIR> Tempzxpsign26187949b09a3374
24. 11. 2016 16:05 <DIR> Tempzxpsign29d1708b5d4b643f
30. 11. 2016 18:31 <DIR> Tempzxpsign2ae16539ec40858b
26. 11. 2016 17:11 <DIR> Tempzxpsign2c2cd75c0b565547
26. 11. 2016 17:14 <DIR> Tempzxpsign2e2e77420baffa19
26. 11. 2016 18:30 <DIR> Tempzxpsign315e73162b4dc7e7
25. 11. 2016 10:43 <DIR> Tempzxpsign327e396fd5df5acb
25. 11. 2016 16:12 <DIR> Tempzxpsign3322123ed736752e
08. 12. 2016 09:09 <DIR> Tempzxpsign3431ccb9f2be5af8
25. 11. 2016 09:30 <DIR> Tempzxpsign357a12175afd1c22
25. 11. 2016 16:17 <DIR> Tempzxpsign36c0d5a735365b31
25. 11. 2016 16:12 <DIR> Tempzxpsign36e3f51eedc3d245
25. 11. 2016 14:33 <DIR> Tempzxpsign37ee5b7be7723430
29. 11. 2016 15:42 <DIR> Tempzxpsign38237170c6290eb9
25. 11. 2016 16:11 <DIR> Tempzxpsign3c6005916f9dd753
23. 11. 2016 18:02 <DIR> Tempzxpsign3e3f66ca8c66aa74
01. 12. 2016 09:50 <DIR> Tempzxpsign3f0c97113d683f5b
07. 12. 2016 19:10 <DIR> Tempzxpsign4049943a7c9bee0e
25. 11. 2016 10:49 <DIR> Tempzxpsign447d2b9e4e81afab
26. 11. 2016 18:30 <DIR> Tempzxpsign44f91b5941852f0a
24. 11. 2016 16:04 <DIR> Tempzxpsign49eb3cd7f4b7f320
04. 12. 2016 15:26 <DIR> Tempzxpsign4a446d41aab2d9ce
02. 12. 2016 08:36 <DIR> Tempzxpsign4dfed01b68589eff
25. 11. 2016 09:29 <DIR> Tempzxpsign519b2990f93cb040
30. 11. 2016 18:23 <DIR> Tempzxpsign54ffb038181ccd4d
23. 11. 2016 18:07 <DIR> Tempzxpsign56c048b2693f68d5
25. 11. 2016 16:12 <DIR> Tempzxpsign5703aadb952e53fd
07. 12. 2016 18:38 <DIR> Tempzxpsign58387ca720608c0e
23. 11. 2016 18:01 <DIR> Tempzxpsign58da6dbb7fd1acb1
25. 11. 2016 16:50 <DIR> Tempzxpsign5c6ba150a70edfdd
08. 12. 2016 09:09 <DIR> Tempzxpsign5caf336a714ad62c
08. 12. 2016 14:39 <DIR> Tempzxpsign5f5d0463584beaab
08. 12. 2016 09:09 <DIR> Tempzxpsign5fa04cddc00c2968
25. 11. 2016 09:31 <DIR> Tempzxpsign6101293415ace175
08. 12. 2016 09:09 <DIR> Tempzxpsign617167e66810f387
10. 12. 2016 11:16 <DIR> Tempzxpsign6280dd11afb9dba7
08. 12. 2016 09:13 <DIR> Tempzxpsign63449d47d21786f7
03. 12. 2016 12:36 <DIR> Tempzxpsign637f95dfd3deab22
25. 11. 2016 09:31 <DIR> Tempzxpsign64291c0b5a0926b9
08. 12. 2016 09:09 <DIR> Tempzxpsign6630ea7a2aaaea6f
24. 11. 2016 15:40 <DIR> Tempzxpsign676e0b6a7a46bb3b
23. 11. 2016 18:07 <DIR> Tempzxpsign67ece1634f88fc75
25. 11. 2016 09:30 <DIR> Tempzxpsign684ff9c364f03851
25. 11. 2016 09:51 <DIR> Tempzxpsign6b9cc90398a0cb1e
07. 12. 2016 18:38 <DIR> Tempzxpsign6dcc49399f8c408e
25. 11. 2016 09:30 <DIR> Tempzxpsign6e0ff71341284eb7
07. 12. 2016 19:03 <DIR> Tempzxpsign6f2861bb349627f7
01. 12. 2016 09:12 <DIR> Tempzxpsign712e33010fec095c
01. 12. 2016 09:38 <DIR> Tempzxpsign726672b45aceab45
25. 11. 2016 09:29 <DIR> Tempzxpsign73b85cb532a49866
25. 11. 2016 14:49 <DIR> Tempzxpsign749b30851f685ccf
08. 12. 2016 09:09 <DIR> Tempzxpsign75c2f24933b279cf
29. 11. 2016 14:34 <DIR> Tempzxpsign760eae1ed084535c
04. 12. 2016 15:22 <DIR> Tempzxpsign76352d9288f330e9
25. 11. 2016 16:50 <DIR> Tempzxpsign76cb548188a4d357
25. 11. 2016 10:49 <DIR> Tempzxpsign77c9488ef26f1957
29. 11. 2016 14:17 <DIR> Tempzxpsign7ba0c41e17cff74f
25. 11. 2016 16:51 <DIR> Tempzxpsign7c50c242c36dec9a
01. 12. 2016 08:43 <DIR> Tempzxpsign7dd9662d1863cfba
25. 11. 2016 10:35 <DIR> Tempzxpsign7e69804d9b986f44
25. 11. 2016 08:17 <DIR> Tempzxpsign7f0a6b69175290fb
25. 11. 2016 14:29 <DIR> Tempzxpsign81fe6f6e41476c4f
25. 11. 2016 08:17 <DIR> Tempzxpsign8360ad92f119fba9
01. 12. 2016 14:33 <DIR> Tempzxpsign836b3f85dac8e120
01. 12. 2016 14:21 <DIR> Tempzxpsign83da037ce220920b
07. 12. 2016 19:31 <DIR> Tempzxpsign84b58b53f9301053
25. 11. 2016 14:28 <DIR> Tempzxpsign84f007c38e52055b
24. 11. 2016 15:40 <DIR> Tempzxpsign84fcebf5ab499b2f
25. 11. 2016 09:26 <DIR> Tempzxpsign8618836b38fb0f06
13. 12. 2016 13:09 <DIR> Tempzxpsign8924fc58313f079a
02. 12. 2016 08:36 <DIR> Tempzxpsign8a48116b133eec3d
13. 12. 2016 13:08 <DIR> Tempzxpsign8b1b574b55534ede
24. 11. 2016 15:54 <DIR> Tempzxpsign8c637eb919a2e78b
29. 11. 2016 14:18 <DIR> Tempzxpsign8d8256ce50bbc819
01. 12. 2016 08:43 <DIR> Tempzxpsign8f0f885cd9fcb2c8
01. 12. 2016 14:21 <DIR> Tempzxpsign8f2c1411af27bf28
24. 11. 2016 15:41 <DIR> Tempzxpsign8fad4dd83e783b7e
01. 12. 2016 09:50 <DIR> Tempzxpsign90b3543d86bb94b7
26. 11. 2016 17:12 <DIR> Tempzxpsign911d90bba4c005a5
25. 11. 2016 10:50 <DIR> Tempzxpsign915294f1d99e4f2e
25. 11. 2016 14:29 <DIR> Tempzxpsign92a69d7d9dd97171
23. 11. 2016 17:59 <DIR> Tempzxpsign9583690508cdc442
25. 11. 2016 09:31 <DIR> Tempzxpsign95a95dbbbee73014
01. 12. 2016 14:05 <DIR> Tempzxpsign981669be21ccd874
25. 11. 2016 16:51 <DIR> Tempzxpsign9aca18065b137984
25. 11. 2016 14:33 <DIR> Tempzxpsign9b36d278d0a4d778
24. 11. 2016 16:03 <DIR> Tempzxpsign9bd2492a5695ddd6
26. 11. 2016 17:11 <DIR> Tempzxpsign9c1abd5d31566242
25. 11. 2016 10:49 <DIR> Tempzxpsign9c6039ea2b84dba5
24. 11. 2016 16:05 <DIR> Tempzxpsign9dd3a42e09c39db5
23. 11. 2016 14:09 <DIR> Tempzxpsigna10c87b8ec352cb1
07. 12. 2016 18:41 <DIR> Tempzxpsigna4112098cba3b545
07. 12. 2016 19:19 <DIR> Tempzxpsigna64625fb825af44a
25. 11. 2016 14:28 <DIR> Tempzxpsigna66c9190cdaad7ed
24. 11. 2016 16:05 <DIR> Tempzxpsigna734fffac3057565
13. 12. 2016 13:09 <DIR> Tempzxpsignaa0a89b2b72d676c
25. 11. 2016 09:27 <DIR> Tempzxpsignac277e113a0ac49f
29. 11. 2016 15:58 <DIR> Tempzxpsignad766ffe9529aa1c
01. 12. 2016 14:46 <DIR> Tempzxpsignafa4cfdfa387e7f7
25. 11. 2016 09:30 <DIR> Tempzxpsignb0bad4c992317797
03. 12. 2016 12:36 <DIR> Tempzxpsignb9a0456209b0fb90
13. 12. 2016 13:08 <DIR> Tempzxpsignb9d28553828958ec
08. 12. 2016 14:26 <DIR> Tempzxpsignbbb6b284072599f2
04. 12. 2016 15:23 <DIR> Tempzxpsignbbb9965e4c421aac
08. 12. 2016 09:09 <DIR> Tempzxpsignbee8659ec374bfd9
25. 11. 2016 16:51 <DIR> Tempzxpsignbffc69d2e5d60b32
24. 11. 2016 15:56 <DIR> Tempzxpsignc0213cc5ef6d97b1
25. 11. 2016 10:52 <DIR> Tempzxpsignc172002c811ca5f4
25. 11. 2016 09:30 <DIR> Tempzxpsignc19a8417ded9332d
25. 11. 2016 14:29 <DIR> Tempzxpsignc1c3e7637aa83065
24. 11. 2016 15:56 <DIR> Tempzxpsignc1d0bd168acb068e
01. 12. 2016 14:05 <DIR> Tempzxpsignc416a405298374d2
04. 12. 2016 15:23 <DIR> Tempzxpsignc45ea8219c449654
24. 11. 2016 15:54 <DIR> Tempzxpsignc6439a6e31866387
24. 11. 2016 15:57 <DIR> Tempzxpsignc73dcb2132a228ae
29. 11. 2016 12:39 <DIR> Tempzxpsignc95b42e29036466e
07. 12. 2016 19:31 <DIR> Tempzxpsignc98638ed7eea07cb
01. 12. 2016 09:12 <DIR> Tempzxpsignc9a5cc778c404459
02. 12. 2016 08:35 <DIR> Tempzxpsignca2078198d882286
10. 12. 2016 11:16 <DIR> Tempzxpsignca5c412747d76b3f
01. 12. 2016 09:50 <DIR> Tempzxpsigncde8aac452b4324e
01. 12. 2016 08:43 <DIR> Tempzxpsignce36f1c8dc468bf1
07. 12. 2016 19:32 <DIR> Tempzxpsigncee4ec77b8cd039b
07. 12. 2016 19:03 <DIR> Tempzxpsigncf9de7cb9f6227d4
04. 12. 2016 15:27 <DIR> Tempzxpsignd1bf3c4c02a0b68b
24. 11. 2016 15:40 <DIR> Tempzxpsignd396a344c325b7df
24. 11. 2016 16:03 <DIR> Tempzxpsignd3e8951f534be6da
03. 12. 2016 12:36 <DIR> Tempzxpsignd5da385de6fd2890
29. 11. 2016 14:17 <DIR> Tempzxpsignd65fbc1f5a9677ef
07. 12. 2016 18:47 <DIR> Tempzxpsignd67b7683074df9c9
25. 11. 2016 08:18 <DIR> Tempzxpsignd694ce34272bd123
26. 11. 2016 18:37 <DIR> Tempzxpsignd7cb58767b595773
25. 11. 2016 10:50 <DIR> Tempzxpsigndbd601fe96fcde09
23. 11. 2016 14:05 <DIR> Tempzxpsigndbe751830fc4ef17
25. 11. 2016 14:29 <DIR> Tempzxpsigndcf4469ddea8caf5
02. 12. 2016 08:35 <DIR> Tempzxpsignde71e76c18358e83
08. 12. 2016 14:33 <DIR> Tempzxpsigne006d29ead18caf3
29. 11. 2016 12:39 <DIR> Tempzxpsigne0d742a69f007cec
08. 12. 2016 14:36 <DIR> Tempzxpsigne1ced321dfdfb9a4
23. 11. 2016 18:07 <DIR> Tempzxpsigne208c4645b61e0ca
23. 11. 2016 17:59 <DIR> Tempzxpsigne28d99f7ba0940de
25. 11. 2016 10:48 <DIR> Tempzxpsigne3bfa15279d8cc61
13. 12. 2016 13:09 <DIR> Tempzxpsigne52d9fbe0f737919
24. 11. 2016 15:54 <DIR> Tempzxpsigne7114b6c0570ce14
04. 12. 2016 15:22 <DIR> Tempzxpsigne825740709a62977
24. 11. 2016 16:05 <DIR> Tempzxpsignea5367d43c3157e8
25. 11. 2016 09:27 <DIR> Tempzxpsignea69996a3d358db7
26. 11. 2016 18:37 <DIR> Tempzxpsignea81d48a8b65529b
13. 12. 2016 13:09 <DIR> Tempzxpsigneb139762080477ae
29. 11. 2016 12:39 <DIR> Tempzxpsignebb2588b068b8ce7
02. 12. 2016 08:55 <DIR> Tempzxpsignedd1f5a77ec3e170
08. 12. 2016 14:26 <DIR> Tempzxpsignee60114fb4b1736e
04. 12. 2016 15:23 <DIR> Tempzxpsignee9598d774c5a0ab
25. 11. 2016 10:35 <DIR> Tempzxpsignef004a92cf6d8dd3
01. 12. 2016 14:33 <DIR> Tempzxpsignef86ed7a47234b5f
25. 11. 2016 10:50 <DIR> Tempzxpsignf17d395d597a11d7
08. 12. 2016 14:34 <DIR> Tempzxpsignf1f638c1177a31b0
23. 11. 2016 14:05 <DIR> Tempzxpsignf268b732b53d6e41
29. 11. 2016 15:59 <DIR> Tempzxpsignf2f5363d549be76a
01. 12. 2016 14:46 <DIR> Tempzxpsignf5b96ce0dbd76646
26. 11. 2016 18:37 <DIR> Tempzxpsignf638436609388d93
23. 11. 2016 17:59 <DIR> Tempzxpsignfb2bea506765f1fd
08. 12. 2016 14:33 <DIR> Tempzxpsignfc3eb4accfdb44f1
23. 11. 2016 14:05 <DIR> Tempzxpsignfdbca61b281d99b4
26. 11. 2016 18:37 <DIR> Tempzxpsignfdc10a1f9615cd11
10. 12. 2016 11:16 <DIR> Tempzxpsignff25e483c072c8cf
08. 10. 2016 10:44 <DIR> tkdata
10. 12. 2016 13:22 <DIR> VirtualStore
09. 10. 2016 09:44 17˙408 WebpageIcons.db
3 File(s) 149˙621 bytes
209 Dir(s) 288˙364˙474˙368 bytes free

========= End of CMD: =========


========= dir "%appdata%" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Users\Michal\AppData\Roaming

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
09. 12. 2016 15:31 <DIR> Acoustica
23. 11. 2016 18:41 <DIR> Adobe
07. 10. 2016 14:06 <DIR> Atheros
07. 10. 2016 14:27 <DIR> ATI
11. 12. 2016 13:06 <DIR> Audacity
30. 11. 2016 18:22 <DIR> Brackets
07. 10. 2016 14:19 <DIR> DAEMON Tools Lite
08. 10. 2016 10:51 <DIR> Easeware
10. 12. 2016 09:21 <DIR> Firefox
23. 10. 2016 10:10 <DIR> HpUpdate
07. 10. 2016 13:20 <DIR> Identities
07. 10. 2016 13:39 <DIR> InstallShield
07. 10. 2016 13:35 <DIR> Intel
07. 10. 2016 13:38 <DIR> Intel Corporation
07. 10. 2016 17:13 <DIR> Macromedia
16. 11. 2016 17:13 <DIR> Media Player Classic
07. 10. 2016 17:16 <DIR> Mozilla
10. 12. 2016 17:52 <DIR> MuseScore
09. 12. 2016 16:40 <DIR> Neuratron
01. 11. 2016 11:44 <DIR> Notepad++
09. 12. 2016 17:50 <DIR> Profiles
11. 10. 2016 21:35 607˙138 Scorch_Install.log
10. 12. 2016 14:55 <DIR> ScoreCloud
11. 10. 2016 21:36 <DIR> Sibelius Software
17. 12. 2016 10:23 <DIR> Skype
09. 12. 2016 15:32 <DIR> SynthMaker
10. 12. 2016 20:08 <DIR> uTorrent
09. 12. 2016 15:31 <DIR> vlc
08. 10. 2016 12:25 <DIR> WinRAR
1 File(s) 607˙138 bytes
30 Dir(s) 288˙364˙470˙272 bytes free

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35875942 B
Java, Flash, Steam htmlcache => 5451 B
Windows/system/drivers => 1006964 B
Edge => 0 B
Chrome => 1545542 B
Firefox => 391636641 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33186 B
systemprofile32 => 5405476 B
LocalService => 66228 B
NetworkService => 461788 B
Michal => 160251609 B
WOUTempAdmin => 25942 B

RecycleBin => 4019192 B
EmptyTemp: => 580.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:48:54 ====

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 11:12
od altrok
:arrow: Spustte jako spravce FRST a do sirokeho bileho okenka vlozte

musadom

kliknete na Search Registry. Sken potrva az nekolik minut.
Ve stejnem umisteni, jako mate FRST.exe/FRST64.exe, byl vytvoren soubor SearchReg.txt jehoz obsah vlozte do pristi odpovedi.

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 11:28
od michal1097
Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by Michal (17-12-2016 11:28:08)
Running from C:\Users\Michal\Desktop
Boot Mode: Normal

================== Search Registry: "musadom" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost]
"Musadom"="Musadom"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Musadom]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Musadom]
"ImagePath"="%SystemRoot%\system32\svchost.exe -k Musadom"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Musadom]
"DisplayName"="Musadom"

====== End of Search ======

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 11:31
od altrok
Jak se chova PC? Jeste nejsme zcela u konce, ale melo by se mu znacne ulehcit. Dejte nove logy FRST.txt a Addition.txt
Firefox funguje?

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 11:39
od michal1097
Mozila už šlape ako ma :)
prikladam log frst. na viac časti

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
Ran by Michal (administrator) on MICHAL-PC (17-12-2016 11:35:37)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Professional N Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\Firefox\Firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Mozilla Corporation) C:\Program Files (x86)\Firefox\Firefox.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876816 2013-03-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [899680 2013-02-04] (Conexant Systems, Inc.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184112 2012-09-17] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2016-10-07] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2016-10-07] (Lenovo(beijing) Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642816 2013-04-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{830EE113-6E8D-40FA-8F66-2B1E9AE588DC}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: crsahtbq.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\naweriweentcofise\Profiles\crsahtbq.default\Profiles\crsahtbq.default [not found]
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default [2016-12-17]
FF user.js: detected! => C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js [2016-12-14]
FF Extension: (Bing Search) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-10-07]
FF Extension: (Adblock Plus) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default [2016-12-17]
FF user.js: detected! => C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js [2016-12-12]
FF DefaultSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SelectedSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF Homepage: Firefox\Firefox\Profiles\crsahtbq.default -> hxxps://www.google.sk/
FF Extension: (SimilarWeb) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2016-12-17] [not signed]
FF Extension: (FF Adr) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2016-12-17] [not signed]
FF Extension: (Bing Search) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-10-07]
FF Extension: (English (US) Language Pack) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2016-12-12] [not signed]
FF Extension: (Adblock Plus) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-13] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-17] <==== ATTENTION
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-08]
CHR Extension: (Adblocker na Youtube™) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eojeoeddgeaeahpmfabdfpfialkoplcb [2016-12-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-08]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-24] (Qualcomm Atheros Commnucations) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-04-18] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-11-18] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-24] (Atheros) [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3388144 2013-04-18] (Intel® Corporation)
S2 Musadom; C:\Program Files (x86)\Merpetionannage\atqCch.dll [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [132920 2013-03-25] (Motorola Solutions, Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [128200 2013-04-03] (Qualcomm Atheros Co., Ltd.)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2016-10-07] () [File not signed]
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [121248 2016-09-12] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [195936 2016-09-12] (Oracle Corporation)
U3 afwz6yh5; C:\Windows\System32\Drivers\afwz6yh5.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-17 11:35 - 2016-12-17 11:35 - 00017995 _____ C:\Users\Michal\Desktop\FRST.txt
2016-12-17 11:34 - 2016-12-17 11:35 - 00030627 _____ C:\Users\Michal\Desktop\Addition.txt
2016-12-17 11:28 - 2016-12-17 11:28 - 00000624 _____ C:\Users\Michal\Desktop\SearchReg.txt
2016-12-17 10:51 - 2016-12-17 10:51 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-12-17 10:48 - 2016-12-17 10:48 - 00060041 _____ C:\Users\Michal\Desktop\Fixlog.txt
2016-12-16 17:17 - 2016-12-16 17:17 - 00026756 _____ C:\Users\Michal\Desktop\v_pondelok_doma_nebudem_husle.pdf
2016-12-16 12:55 - 2016-12-16 13:42 - 824817956 _____ C:\Users\Michal\Downloads\3-dny-na-zabití-2014_CZ-dab.avi
2016-12-16 10:25 - 2016-12-16 10:25 - 00882405 _____ C:\Users\Michal\Downloads\newsletter 02-07.pdf
2016-12-14 20:40 - 2016-12-14 20:40 - 00033326 _____ C:\ComboFix.txt
2016-12-14 20:22 - 2016-12-17 08:40 - 00000000 ____D C:\Windows\erdnt
2016-12-14 20:18 - 2016-12-14 20:19 - 00002772 _____ C:\Users\Michal\Desktop\Rkill.txt
2016-12-14 20:18 - 2016-12-14 20:18 - 00000000 ____D C:\Users\Michal\Desktop\rkill
2016-12-14 15:28 - 2016-12-14 15:38 - 00000000 ____D C:\Users\Michal\Desktop\ea zap
2016-12-14 15:18 - 2016-12-14 15:18 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\Michal\Desktop\rkill.exe
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignaa0a89b2b72d676c
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8924fc58313f079a
2016-12-13 13:08 - 2016-12-13 13:08 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb9d28553828958ec
2016-12-13 13:08 - 2016-12-13 13:08 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8b1b574b55534ede
2016-12-12 16:32 - 2016-12-17 11:35 - 00000000 ____D C:\FRST
2016-12-12 16:32 - 2016-12-12 16:32 - 02420224 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2016-12-12 13:47 - 2016-12-12 13:47 - 00189833 _____ C:\Users\Michal\Downloads\9.3.2.12 Configuring Extended ACLs Scenario 3.pka
2016-12-12 13:38 - 2016-12-12 13:44 - 00515337 _____ C:\Users\Michal\Downloads\9.3.2.10 Configuring Extended ACLs Scenario 1.pka
2016-12-12 13:05 - 2016-12-12 14:37 - 1329831828 _____ C:\Users\Michal\Downloads\Fantastická zvířata a kde je najít (kino) cz.dabing.avi
2016-12-12 12:59 - 2016-12-12 16:42 - 00000000 ____D C:\Users\Michal\Desktop\v
2016-12-12 12:54 - 2016-12-12 12:54 - 00001858 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-12-12 12:53 - 2016-12-14 20:31 - 00000000 ____D C:\Program Files (x86)\Firefox
2016-12-12 10:55 - 2016-12-12 16:33 - 00133173 _____ C:\Users\Michal\Desktop\router.pkt
2016-12-11 10:13 - 2016-12-11 16:22 - 00000000 _____ C:\Users\Michal\Downloads\9.2.1.10 Packet Tracer Configuring Standard ACLs.pka
2016-12-11 10:13 - 2016-12-11 10:13 - 00364660 _____ C:\Users\Michal\Downloads\9.2.1.10 Packet Tracer Configuring Standard ACLs.pka~
2016-12-10 20:10 - 2016-12-10 20:10 - 00000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2016-12-10 18:02 - 2016-12-10 18:06 - 00001373 _____ C:\Users\Michal\Desktop\iptv.cfg
2016-12-10 15:05 - 2016-12-13 15:36 - 00000000 ____D C:\Users\Michal\Desktop\audio
2016-12-10 14:27 - 2016-12-10 14:27 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\uTorrent
2016-12-10 13:17 - 2016-12-10 17:52 - 00000000 ____D C:\Users\Michal\AppData\Roaming\MuseScore
2016-12-10 13:16 - 2016-12-10 14:12 - 00000000 ____D C:\Users\Michal\AppData\Local\AnthemScore
2016-12-10 13:16 - 2016-12-10 13:16 - 00000000 ____D C:\Users\Michal\Documents\MuseScore2
2016-12-10 13:16 - 2016-12-10 13:16 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MuseScore 2
2016-12-10 13:16 - 2016-12-10 13:16 - 00000000 ____D C:\Users\Michal\AppData\Local\MuseScore
2016-12-10 13:15 - 2016-12-10 13:16 - 00000000 ____D C:\Program Files (x86)\MuseScore 2
2016-12-10 13:10 - 2016-12-10 13:10 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnthemScore
2016-12-10 13:06 - 2016-12-10 13:16 - 00000000 ____D C:\Program Files (x86)\AnthemScore
2016-12-10 11:50 - 2016-12-10 11:50 - 00000000 ____D C:\Users\Public\Documents\Notation_3
2016-12-10 11:46 - 2016-12-10 14:55 - 00000000 ____D C:\Users\Michal\AppData\Roaming\ScoreCloud
2016-12-10 11:39 - 2016-12-10 11:39 - 00001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScoreCloud Studio.lnk
2016-12-10 11:39 - 2016-12-10 11:39 - 00000000 ____D C:\Program Files (x86)\ScoreCloud Studio
2016-12-10 11:16 - 2016-12-10 11:16 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignff25e483c072c8cf
2016-12-10 11:16 - 2016-12-10 11:16 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignca5c412747d76b3f
2016-12-10 11:16 - 2016-12-10 11:16 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6280dd11afb9dba7
2016-12-10 09:41 - 2016-12-10 09:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neuratron
2016-12-10 09:40 - 2016-12-10 09:41 - 00000000 ____D C:\Program Files (x86)\Neuratron AudioScore Ultimate Demo
2016-12-10 09:21 - 2016-12-10 09:21 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Firefox
2016-12-10 09:21 - 2016-12-10 09:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Firefox
2016-12-10 09:19 - 2016-12-10 09:32 - 00000000 ____D C:\Windows\system32\log
2016-12-10 08:56 - 2016-12-17 10:51 - 00000008 __RSH C:\Users\Michal\ntuser.pol
2016-12-09 17:51 - 2016-12-09 17:51 - 00000000 ____D C:\ProgramData\Avira
2016-12-09 16:40 - 2016-12-09 16:40 - 00000000 ____D C:\Users\Michal\Documents\AudioScore Documents
2016-12-09 16:40 - 2016-12-09 16:40 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Neuratron
2016-12-09 16:39 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Neuratron
2016-12-09 16:00 - 2016-12-11 13:06 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Audacity
2016-12-09 16:00 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-12-09 16:00 - 2016-12-09 16:00 - 00001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-12-09 15:32 - 2016-12-09 15:32 - 00000000 ____D C:\Users\Michal\Documents\Mixcraft Projects
2016-12-09 15:32 - 2016-12-09 15:32 - 00000000 ____D C:\Users\Michal\AppData\Roaming\SynthMaker
2016-12-09 15:31 - 2016-12-09 15:31 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Acoustica
2016-12-09 15:31 - 2016-12-09 15:31 - 00000000 ____D C:\ProgramData\Acoustica
2016-12-09 15:28 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\RightMark
2016-12-08 14:39 - 2016-12-08 14:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5f5d0463584beaab
2016-12-08 14:36 - 2016-12-08 14:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne1ced321dfdfb9a4
2016-12-08 14:34 - 2016-12-08 14:34 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf1f638c1177a31b0
2016-12-08 14:33 - 2016-12-08 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfc3eb4accfdb44f1
2016-12-08 14:33 - 2016-12-08 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne006d29ead18caf3
2016-12-08 14:26 - 2016-12-08 14:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignee60114fb4b1736e
2016-12-08 14:26 - 2016-12-08 14:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbbb6b284072599f2
2016-12-08 14:26 - 2016-12-08 14:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1a4957ae9e010c42
2016-12-08 09:13 - 2016-12-08 09:13 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign63449d47d21786f7
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbee8659ec374bfd9
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign75c2f24933b279cf
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6630ea7a2aaaea6f
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign617167e66810f387
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5fa04cddc00c2968
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5caf336a714ad62c
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3431ccb9f2be5af8
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2368e15f51aa66f0
2016-12-07 19:32 - 2016-12-07 19:32 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncee4ec77b8cd039b
2016-12-07 19:31 - 2016-12-07 19:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc98638ed7eea07cb
2016-12-07 19:31 - 2016-12-07 19:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign84b58b53f9301053
2016-12-07 19:19 - 2016-12-07 19:19 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna64625fb825af44a
2016-12-07 19:18 - 2016-12-07 19:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign26187949b09a3374
2016-12-07 19:18 - 2016-12-07 19:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign08708443e994ca5f
2016-12-07 19:10 - 2016-12-07 19:10 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign4049943a7c9bee0e
2016-12-07 19:03 - 2016-12-07 19:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncf9de7cb9f6227d4
2016-12-07 19:03 - 2016-12-07 19:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6f2861bb349627f7
2016-12-07 18:47 - 2016-12-07 18:47 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd67b7683074df9c9
2016-12-07 18:41 - 2016-12-07 18:41 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna4112098cba3b545
2016-12-07 18:38 - 2016-12-07 18:38 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6dcc49399f8c408e
2016-12-07 18:38 - 2016-12-07 18:38 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign58387ca720608c0e
2016-12-05 21:37 - 2016-12-05 21:37 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-12-04 15:27 - 2016-12-04 15:27 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd1bf3c4c02a0b68b
2016-12-04 15:26 - 2016-12-04 15:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign4a446d41aab2d9ce
2016-12-04 15:23 - 2016-12-04 15:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignee9598d774c5a0ab
2016-12-04 15:23 - 2016-12-04 15:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc45ea8219c449654
2016-12-04 15:23 - 2016-12-04 15:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbbb9965e4c421aac
2016-12-04 15:22 - 2016-12-04 15:22 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne825740709a62977
2016-12-04 15:22 - 2016-12-04 15:22 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign76352d9288f330e9
2016-12-03 17:20 - 2016-12-03 17:20 - 03968464 _____ C:\Users\Michal\Desktop\adwcleaner_6.040.exe
2016-12-03 13:17 - 2016-12-03 13:17 - 02957094 _____ C:\Users\Michal\Desktop\semestralka tablet deskop.rar
2016-12-03 12:36 - 2016-12-03 12:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd5da385de6fd2890
2016-12-03 12:36 - 2016-12-03 12:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb9a0456209b0fb90
2016-12-03 12:36 - 2016-12-03 12:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign637f95dfd3deab22
2016-12-02 08:55 - 2016-12-02 08:55 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignedd1f5a77ec3e170
2016-12-02 08:36 - 2016-12-02 08:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8a48116b133eec3d
2016-12-02 08:36 - 2016-12-02 08:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign4dfed01b68589eff
2016-12-02 08:35 - 2016-12-02 08:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignde71e76c18358e83
2016-12-02 08:35 - 2016-12-02 08:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignca2078198d882286
2016-12-02 08:35 - 2016-12-02 08:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign089f88d9de54e320
2016-12-01 14:47 - 2016-12-01 14:47 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0c6c77f61ea482b9
2016-12-01 14:46 - 2016-12-01 14:46 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf5b96ce0dbd76646
2016-12-01 14:46 - 2016-12-01 14:46 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignafa4cfdfa387e7f7
2016-12-01 14:33 - 2016-12-01 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignef86ed7a47234b5f
2016-12-01 14:33 - 2016-12-01 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign836b3f85dac8e120
2016-12-01 14:33 - 2016-12-01 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2030b3848e1630f2
2016-12-01 14:28 - 2016-12-01 14:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign093bb2eebf52505b
2016-12-01 14:21 - 2016-12-01 14:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8f2c1411af27bf28
2016-12-01 14:21 - 2016-12-01 14:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign83da037ce220920b
2016-12-01 14:05 - 2016-12-01 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc416a405298374d2
2016-12-01 14:05 - 2016-12-01 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign981669be21ccd874
2016-12-01 14:05 - 2016-12-01 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0f35eaf1cde8fff5
2016-12-01 09:50 - 2016-12-01 09:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncde8aac452b4324e
2016-12-01 09:50 - 2016-12-01 09:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign90b3543d86bb94b7
2016-12-01 09:50 - 2016-12-01 09:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3f0c97113d683f5b
2016-12-01 09:45 - 2016-12-10 11:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-01 09:38 - 2016-12-01 09:38 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign726672b45aceab45
2016-12-01 09:12 - 2016-12-01 09:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc9a5cc778c404459
2016-12-01 09:12 - 2016-12-01 09:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign712e33010fec095c
2016-12-01 08:43 - 2016-12-01 08:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignce36f1c8dc468bf1
2016-12-01 08:43 - 2016-12-01 08:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8f0f885cd9fcb2c8
2016-12-01 08:43 - 2016-12-01 08:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7dd9662d1863cfba
2016-11-30 21:56 - 2016-11-30 21:56 - 02331607 ____R C:\Users\Michal\Desktop\vianocna.wma
2016-11-30 18:31 - 2016-11-30 18:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2ae16539ec40858b
2016-11-30 18:23 - 2016-11-30 18:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign54ffb038181ccd4d
2016-11-30 18:23 - 2016-11-30 18:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0e2689382ab7988b
2016-11-30 18:22 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-30 18:22 - 2016-11-30 18:22 - 00000776 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-29 15:59 - 2016-11-29 15:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf2f5363d549be76a
2016-11-29 15:58 - 2016-11-29 15:58 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignad766ffe9529aa1c
2016-11-29 15:42 - 2016-11-29 15:42 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign38237170c6290eb9
2016-11-29 14:34 - 2016-11-29 14:34 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign760eae1ed084535c
2016-11-29 14:18 - 2016-11-29 14:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8d8256ce50bbc819
2016-11-29 14:17 - 2016-11-29 14:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd65fbc1f5a9677ef
2016-11-29 14:17 - 2016-11-29 14:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7ba0c41e17cff74f
2016-11-29 12:41 - 2016-11-29 12:41 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0869e5917f164ad8
2016-11-29 12:39 - 2016-11-29 12:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignebb2588b068b8ce7
2016-11-29 12:39 - 2016-11-29 12:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne0d742a69f007cec
2016-11-29 12:39 - 2016-11-29 12:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc95b42e29036466e
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfdc10a1f9615cd11
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf638436609388d93
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignea81d48a8b65529b
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd7cb58767b595773
2016-11-26 18:30 - 2016-11-26 18:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign44f91b5941852f0a
2016-11-26 18:30 - 2016-11-26 18:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign315e73162b4dc7e7
2016-11-26 17:14 - 2016-11-26 17:14 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2e2e77420baffa19
2016-11-26 17:12 - 2016-11-26 17:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign911d90bba4c005a5
2016-11-26 17:11 - 2016-11-26 17:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9c1abd5d31566242
2016-11-26 17:11 - 2016-11-26 17:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2c2cd75c0b565547
2016-11-25 16:51 - 2016-11-25 16:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbffc69d2e5d60b32
2016-11-25 16:51 - 2016-11-25 16:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9aca18065b137984
2016-11-25 16:51 - 2016-11-25 16:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7c50c242c36dec9a
2016-11-25 16:50 - 2016-11-25 16:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign76cb548188a4d357
2016-11-25 16:50 - 2016-11-25 16:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5c6ba150a70edfdd
2016-11-25 16:50 - 2016-11-25 16:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign22fbe70e649a2567
2016-11-25 16:17 - 2016-11-25 16:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign36c0d5a735365b31
2016-11-25 16:12 - 2016-11-25 16:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5703aadb952e53fd
2016-11-25 16:12 - 2016-11-25 16:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign36e3f51eedc3d245
2016-11-25 16:12 - 2016-11-25 16:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3322123ed736752e
2016-11-25 16:11 - 2016-11-25 16:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3c6005916f9dd753
2016-11-25 16:11 - 2016-11-25 16:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0129c5ea464d1bd0
2016-11-25 14:49 - 2016-11-25 14:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign749b30851f685ccf
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9b36d278d0a4d778
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign37ee5b7be7723430
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1a19d272fff3af72
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0d50ec84559762e7
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndcf4469ddea8caf5
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc1c3e7637aa83065
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign92a69d7d9dd97171
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign81fe6f6e41476c4f
2016-11-25 14:28 - 2016-11-25 14:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna66c9190cdaad7ed
2016-11-25 14:28 - 2016-11-25 14:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign84f007c38e52055b
2016-11-25 11:20 - 2016-12-13 13:10 - 00000000 ____D C:\Users\Michal\Desktop\fotoshop
2016-11-25 10:52 - 2016-11-25 10:52 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc172002c811ca5f4
2016-11-25 10:50 - 2016-11-25 10:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf17d395d597a11d7
2016-11-25 10:50 - 2016-11-25 10:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndbd601fe96fcde09
2016-11-25 10:50 - 2016-11-25 10:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign915294f1d99e4f2e
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9c6039ea2b84dba5
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign77c9488ef26f1957
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign447d2b9e4e81afab
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0e05eb4c4a3dcf5f
2016-11-25 10:48 - 2016-11-25 10:48 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne3bfa15279d8cc61
2016-11-25 10:43 - 2016-11-25 10:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign327e396fd5df5acb
2016-11-25 10:35 - 2016-11-25 10:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignef004a92cf6d8dd3
2016-11-25 10:35 - 2016-11-25 10:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7e69804d9b986f44
2016-11-25 09:51 - 2016-11-25 09:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6b9cc90398a0cb1e
2016-11-25 09:31 - 2016-11-25 09:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign95a95dbbbee73014
2016-11-25 09:31 - 2016-11-25 09:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign64291c0b5a0926b9
2016-11-25 09:31 - 2016-11-25 09:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6101293415ace175
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc19a8417ded9332d
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb0bad4c992317797
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6e0ff71341284eb7
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign684ff9c364f03851
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign357a12175afd1c22
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1054cf807590fa05
2016-11-25 09:29 - 2016-11-25 09:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign73b85cb532a49866
2016-11-25 09:29 - 2016-11-25 09:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign519b2990f93cb040
2016-11-25 09:27 - 2016-11-25 09:27 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignea69996a3d358db7
2016-11-25 09:27 - 2016-11-25 09:27 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignac277e113a0ac49f
2016-11-25 09:26 - 2016-11-25 09:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8618836b38fb0f06
2016-11-25 09:26 - 2016-11-25 09:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign16e3469ef7cbb3d5
2016-11-25 08:18 - 2016-11-25 08:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd694ce34272bd123
2016-11-25 08:17 - 2016-11-25 08:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8360ad92f119fba9
2016-11-25 08:17 - 2016-11-25 08:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7f0a6b69175290fb
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignea5367d43c3157e8
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna734fffac3057565
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9dd3a42e09c39db5
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign29d1708b5d4b643f
2016-11-24 16:04 - 2016-11-24 16:04 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign49eb3cd7f4b7f320
2016-11-24 16:03 - 2016-11-24 16:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd3e8951f534be6da
2016-11-24 16:03 - 2016-11-24 16:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9bd2492a5695ddd6
2016-11-24 15:57 - 2016-11-24 15:57 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc73dcb2132a228ae
2016-11-24 15:56 - 2016-11-24 15:56 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc1d0bd168acb068e
2016-11-24 15:56 - 2016-11-24 15:56 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc0213cc5ef6d97b1
2016-11-24 15:54 - 2016-11-24 15:54 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne7114b6c0570ce14
2016-11-24 15:54 - 2016-11-24 15:54 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc6439a6e31866387
2016-11-24 15:54 - 2016-11-24 15:54 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8c637eb919a2e78b
2016-11-24 15:41 - 2016-11-24 15:41 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8fad4dd83e783b7e
2016-11-24 15:40 - 2016-11-24 15:40 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd396a344c325b7df
2016-11-24 15:40 - 2016-11-24 15:40 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign84fcebf5ab499b2f
2016-11-24 15:40 - 2016-11-24 15:40 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign676e0b6a7a46bb3b
2016-11-23 18:12 - 2016-11-23 18:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0b64d6facd5b380b
2016-11-23 18:07 - 2016-11-23 18:07 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne208c4645b61e0ca
2016-11-23 18:07 - 2016-11-23 18:07 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign67ece1634f88fc75
2016-11-23 18:07 - 2016-11-23 18:07 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign56c048b2693f68d5
2016-11-23 18:02 - 2016-11-23 18:02 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3e3f66ca8c66aa74
2016-11-23 18:01 - 2016-11-23 18:01 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign58da6dbb7fd1acb1
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfb2bea506765f1fd
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne28d99f7ba0940de
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9583690508cdc442
2016-11-23 17:48 - 2016-11-23 17:48 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk
2016-11-23 17:43 - 2016-11-23 17:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-11-23 14:09 - 2016-11-23 14:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna10c87b8ec352cb1
2016-11-23 14:05 - 2016-11-23 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfdbca61b281d99b4
2016-11-23 14:05 - 2016-11-23 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf268b732b53d6e41
2016-11-23 14:05 - 2016-11-23 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndbe751830fc4ef17
2016-11-22 15:15 - 2016-11-22 15:16 - 00135686 _____ C:\Users\Michal\Desktop\site.pkt
2016-11-21 19:44 - 2016-11-22 13:29 - 00000000 ____D C:\ProgramData\MFAData
2016-11-21 19:44 - 2016-11-21 19:44 - 00000000 ____D C:\Users\Michal\AppData\Local\MFAData
2016-11-21 11:59 - 2016-11-21 11:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-11-20 15:46 - 2016-12-17 11:33 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\Mozilla
2016-11-20 15:35 - 2016-11-20 15:35 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-11-20 15:35 - 2016-11-20 15:35 - 00000000 ____D C:\Windows\system32\appraiser
2016-11-20 15:04 - 2016-11-20 15:12 - 00000000 ____D C:\Windows\system32\MRT
2016-11-20 15:04 - 2016-11-20 15:04 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-20 14:47 - 2016-11-20 14:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-11-20 14:47 - 2016-11-20 14:47 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-11-20 14:32 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-11-20 14:32 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2016-11-20 14:32 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-11-20 14:32 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2016-11-20 14:32 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2016-11-20 14:32 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2016-11-20 14:32 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2016-11-20 14:32 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2016-11-20 14:21 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-11-20 14:21 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-11-20 14:21 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-11-20 14:21 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2016-11-20 14:13 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-11-20 14:13 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-11-20 14:10 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-11-20 14:10 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-11-20 14:10 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-11-20 14:10 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-11-20 14:10 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-11-20 14:09 - 2016-08-12 18:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-11-20 14:09 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-11-20 14:09 - 2016-06-14 18:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-11-20 14:08 - 2016-08-12 18:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-11-20 14:08 - 2016-08-12 18:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-11-20 14:08 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-11-20 14:08 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-11-20 14:08 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-11-20 14:08 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-11-20 14:08 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-11-20 14:08 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-11-20 14:08 - 2016-06-14 16:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-11-20 14:08 - 2016-06-14 16:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-11-20 14:08 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-11-20 14:08 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-11-20 12:24 - 2016-12-12 12:48 - 00000000 ____D C:\AdwCleaner
2016-11-19 14:19 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-11-19 14:18 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-11-19 14:11 - 2016-11-20 13:32 - 00000000 ____D C:\Users\Michal\Documents\The Witcher 3
2016-11-19 14:04 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-11-19 13:40 - 2016-11-22 13:30 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-11-19 13:39 - 2016-11-19 13:39 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-11-19 13:38 - 2016-11-19 13:39 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-19 13:38 - 2016-11-19 13:38 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-11-19 13:34 - 2016-12-10 13:57 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-11-19 13:34 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Program Files\DVD Maker
2016-11-19 13:29 - 2009-07-14 02:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wmdmlog.dll
2016-11-19 13:29 - 2009-07-14 02:39 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2016-11-19 13:29 - 2009-07-13 22:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.tlb
2016-11-19 13:29 - 2009-07-13 22:04 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amcompat.tlb
2016-11-19 13:29 - 2009-07-13 21:49 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.tlb
2016-11-19 13:29 - 2009-07-13 21:49 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\amcompat.tlb
2016-11-19 13:28 - 2010-11-20 14:27 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2016-11-19 13:28 - 2010-11-20 14:27 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2016-11-19 13:28 - 2010-11-20 14:27 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2016-11-19 13:28 - 2010-11-20 14:26 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2016-11-19 13:28 - 2010-11-20 14:26 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2016-11-19 13:28 - 2010-11-20 13:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2016-11-19 13:28 - 2010-11-20 13:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MediaMetadataHandler.dll
2016-11-19 13:28 - 2010-11-20 13:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iTVData.dll
2016-11-19 13:28 - 2010-11-20 13:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll
2016-11-19 13:28 - 2010-11-20 13:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe
2016-11-19 13:28 - 2009-07-14 02:41 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\wmidx.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\wmdmps.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mcsrchPH.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsPbdaCoInst.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\wmpcm.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\LAPRXY.DLL
2016-11-19 13:28 - 2009-07-14 02:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\sysprepMCE.dll
2016-11-19 13:28 - 2009-07-14 02:39 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2016-11-19 13:28 - 2009-07-14 02:39 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2016-11-19 13:28 - 2009-07-14 02:38 - 00182272 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codecp.acm
2016-11-19 13:28 - 2009-07-14 02:38 - 00081408 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codeca.acm
2016-11-19 13:28 - 2009-07-14 02:16 - 00170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WmpDui.dll
2016-11-19 13:28 - 2009-07-14 02:16 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceConnectApi.dll
2016-11-19 13:28 - 2009-07-14 02:16 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmps.dll
2016-11-19 13:28 - 2009-07-14 02:16 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmlog.dll
2016-11-19 13:28 - 2009-07-14 02:14 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unregmp2.exe
2016-11-19 13:28 - 2009-07-14 02:14 - 00220672 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codecp.acm
2016-11-19 13:28 - 2009-07-14 02:14 - 00064000 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codeca.acm
2016-11-19 13:28 - 2009-07-14 02:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShextAutoplay.exe
2016-11-19 13:27 - 2010-11-20 14:27 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00605696 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdwcn.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpsrcwp.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2016-11-19 13:27 - 2010-11-20 13:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll
2016-11-19 13:27 - 2010-11-20 13:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll
2016-11-19 13:27 - 2010-11-20 13:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2016-11-19 13:27 - 2010-11-20 13:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2016-11-19 13:27 - 2010-11-20 13:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2016-11-19 13:27 - 2009-07-14 02:41 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\wmvdspa.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWiaCompat.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\mfAACEnc.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\mfdvdec.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2016-11-19 13:27 - 2009-07-14 02:33 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\wmerror.dll
2016-11-19 13:27 - 2009-07-14 02:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\asferror.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL
2016-11-19 13:27 - 2009-07-14 02:16 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceWMDRM.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceTypes.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidx.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmvdspa.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceWiaCompat.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00110080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceClassExtension.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmcodecdspps.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpcm.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswmdm.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfdvdec.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfAACEnc.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LAPRXY.DLL
2016-11-19 13:27 - 2009-07-14 02:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmerror.dll
2016-11-19 13:27 - 2009-07-14 02:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asferror.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 01243136 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 00481280 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2016-11-19 13:26 - 2010-11-20 13:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2016-11-19 13:26 - 2010-11-20 13:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2016-11-19 13:26 - 2009-07-14 02:41 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\mswmdm.dll
2016-11-19 13:26 - 2009-07-14 02:41 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2016-11-19 13:26 - 2009-07-14 02:41 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\wmcodecdspps.dll
2016-11-19 13:26 - 2009-06-10 21:52 - 00316640 _____ C:\Windows\WMSysPr9.prx
2016-11-19 13:25 - 2010-11-20 14:27 - 03027968 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2016-11-19 13:25 - 2010-11-20 14:27 - 02072576 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2016-11-19 13:25 - 2010-11-20 13:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPEncEn.dll
2016-11-19 13:25 - 2010-11-20 13:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2016-11-19 13:08 - 2016-11-19 13:08 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2016-11-19 13:08 - 2016-11-19 13:08 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-11-19 13:08 - 2016-11-19 13:08 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-11-19 12:56 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2016-11-19 12:56 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-11-19 12:56 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-11-19 12:56 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2016-11-19 12:56 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2016-11-19 12:56 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2016-11-19 12:56 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2016-11-19 12:56 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2016-11-19 12:56 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-11-19 12:56 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-11-19 10:00 - 2016-11-19 10:00 - 00000000 ____D C:\Windows\SysWOW64\Configuration
2016-11-19 09:56 - 2016-02-13 11:42 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2016-11-19 09:56 - 2016-02-13 11:34 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2016-11-19 09:55 - 2016-02-13 11:47 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrsmgr.dll
2016-11-19 09:55 - 2016-02-13 11:46 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-11-19 09:55 - 2016-02-13 11:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-11-19 09:55 - 2016-02-13 11:45 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2016-11-19 09:55 - 2016-02-13 11:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2016-11-19 09:55 - 2016-02-13 11:44 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2016-11-19 09:55 - 2016-02-13 11:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-11-19 09:55 - 2016-02-13 11:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2016-11-19 09:55 - 2016-02-13 11:42 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2016-11-19 09:55 - 2016-02-13 11:42 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2016-11-19 09:55 - 2016-02-13 11:42 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-11-19 09:55 - 2016-02-13 11:41 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2016-11-19 09:55 - 2016-02-13 11:41 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2016-11-19 09:55 - 2016-02-13 11:40 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 11:40
od michal1097
čast 2

2016-11-19 09:55 - 2016-02-13 11:39 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2016-11-19 09:55 - 2016-02-13 11:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2016-11-19 09:55 - 2016-02-13 11:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2016-11-19 09:55 - 2016-02-13 11:38 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-11-19 09:55 - 2016-02-13 11:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2016-11-19 09:55 - 2016-02-13 11:37 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-11-19 09:55 - 2016-02-13 11:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-11-19 09:55 - 2016-02-13 11:35 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2016-11-19 09:55 - 2016-02-13 11:35 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-11-19 09:55 - 2016-02-13 11:35 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\DscTimer.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\DscCoreConfProv.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2016-11-19 09:55 - 2016-02-13 11:34 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\DscProxy.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2016-11-19 09:55 - 2016-02-13 11:31 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2016-11-19 09:55 - 2016-02-13 11:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2016-11-19 09:55 - 2016-02-13 11:31 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2016-11-19 09:55 - 2016-02-13 11:30 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2016-11-19 09:55 - 2016-02-13 11:25 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll
2016-11-19 09:55 - 2016-02-13 11:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2016-11-19 09:55 - 2016-02-13 09:25 - 00000199 _____ C:\Windows\SysWOW64\winrm.cmd
2016-11-19 09:55 - 2016-01-13 05:01 - 00000199 _____ C:\Windows\system32\winrm.cmd
2016-11-19 09:54 - 2016-02-13 11:46 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-11-19 09:54 - 2016-02-13 11:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-11-19 09:54 - 2016-02-13 11:43 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-11-19 09:54 - 2016-02-13 11:42 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimofcodec.dll
2016-11-19 09:54 - 2016-02-13 11:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mibincodec.dll
2016-11-19 09:54 - 2016-02-13 11:41 - 00388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn2.dll
2016-11-19 09:54 - 2016-02-13 11:41 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2016-11-19 09:54 - 2016-02-13 11:38 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmGCDeps.dll
2016-11-19 09:54 - 2016-02-13 11:36 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-11-19 09:54 - 2016-02-13 11:34 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-11-19 09:54 - 2016-02-13 11:34 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\mibincodec.dll
2016-11-19 09:54 - 2016-02-13 11:33 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn2.dll
2016-11-19 09:54 - 2016-02-13 11:33 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\mimofcodec.dll
2016-11-19 09:54 - 2016-02-13 11:32 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2016-11-19 09:54 - 2016-02-13 11:32 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2016-11-19 09:54 - 2016-02-13 11:31 - 02181120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-11-19 09:54 - 2016-02-13 11:31 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-11-19 09:54 - 2016-02-13 11:31 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2016-11-19 09:54 - 2016-02-13 11:30 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\WsmGCDeps.dll
2016-11-19 09:54 - 2016-02-13 11:29 - 00513024 _____ (Microsoft Corporation) C:\Windows\system32\mpunits.dll
2016-11-19 09:54 - 2016-02-13 11:24 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\mpeval.dll
2016-11-19 09:54 - 2016-02-13 11:22 - 02618880 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-11-19 09:54 - 2016-02-13 11:21 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-11-19 09:54 - 2016-02-13 11:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2016-11-19 09:36 - 2016-11-19 09:36 - 00007605 _____ C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2016-11-18 19:22 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2016-11-18 19:22 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2016-11-18 19:22 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 25763328 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 20304896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 02920448 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-11-18 19:19 - 2016-11-18 19:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-18 19:19 - 2016-11-18 19:19 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-18 19:19 - 2016-11-18 19:19 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-18 19:19 - 2016-11-18 19:19 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-18 19:19 - 2016-11-18 19:19 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-18 19:19 - 2016-11-18 19:19 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-18 19:19 - 2016-11-18 19:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-11-18 19:19 - 2016-11-18 19:19 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-18 19:18 - 2016-11-18 19:18 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-11-18 19:18 - 2016-11-18 19:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00419640 _____ C:\Windows\SysWOW64\locale.nls
2016-11-18 19:18 - 2016-11-18 19:18 - 00419640 _____ C:\Windows\system32\locale.nls
2016-11-18 19:18 - 2016-11-18 19:18 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-18 19:18 - 2016-11-18 19:18 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-18 19:18 - 2016-11-18 19:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-18 19:18 - 2016-11-18 19:18 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-18 19:18 - 2016-11-18 19:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-18 19:18 - 2016-11-18 19:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-18 19:17 - 2016-11-18 19:17 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-11-18 19:17 - 2016-11-18 19:17 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-18 19:17 - 2016-11-18 19:17 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-11-18 19:17 - 2016-11-18 19:17 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-18 19:17 - 2016-11-18 19:17 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-18 19:17 - 2016-11-18 19:17 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-18 19:17 - 2016-11-18 19:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-18 19:17 - 2016-11-18 19:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-18 19:16 - 2016-11-18 19:16 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-11-18 19:16 - 2016-11-18 19:16 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-11-18 19:16 - 2016-11-18 19:16 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-11-18 19:16 - 2016-11-18 19:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-18 19:12 - 2016-11-18 19:12 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-11-18 19:12 - 2016-11-18 19:12 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-11-18 19:12 - 2016-11-18 19:12 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-11-18 19:12 - 2016-11-18 19:12 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-11-18 19:12 - 2016-11-18 19:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-11-18 19:11 - 2016-11-18 19:11 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-11-18 19:11 - 2016-11-18 19:11 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-11-18 19:10 - 2016-11-18 19:10 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-11-18 19:10 - 2016-11-18 19:10 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-11-18 19:08 - 2016-11-18 19:08 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-11-18 19:08 - 2016-11-18 19:08 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-11-18 19:08 - 2016-11-18 19:08 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-11-18 19:08 - 2016-11-18 19:08 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-11-18 19:08 - 2016-11-18 19:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-11-18 19:06 - 2016-11-18 19:06 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-11-18 19:06 - 2016-11-18 19:06 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-11-18 19:05 - 2016-11-18 19:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-11-18 19:00 - 2016-11-18 19:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-11-18 19:00 - 2016-11-18 19:00 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-11-18 19:00 - 2016-11-18 19:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-11-18 19:00 - 2016-11-18 19:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-11-18 19:00 - 2016-11-18 19:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-11-18 18:59 - 2016-11-18 18:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-11-18 18:58 - 2016-11-18 18:58 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-11-18 18:58 - 2016-11-18 18:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-11-18 18:57 - 2016-11-18 18:57 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-11-18 18:56 - 2016-11-18 18:56 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-11-18 18:53 - 2016-11-18 18:53 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-18 18:53 - 2016-11-18 18:53 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-18 18:50 - 2016-11-18 18:50 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-11-18 18:49 - 2016-11-18 18:49 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-11-18 18:49 - 2016-11-18 18:49 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-11-18 18:46 - 2016-11-18 18:46 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-11-18 18:44 - 2016-11-18 18:44 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-11-18 18:42 - 2016-11-18 18:42 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-11-18 18:42 - 2016-11-18 18:42 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-11-18 18:42 - 2016-11-18 18:42 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-11-18 18:42 - 2016-11-18 18:42 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-11-18 18:42 - 2016-11-18 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-11-18 18:40 - 2016-11-18 18:40 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-11-18 18:38 - 2016-11-18 18:38 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-11-18 18:38 - 2016-11-18 18:38 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-11-18 18:37 - 2016-11-18 18:37 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-11-18 18:37 - 2016-11-18 18:37 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-11-18 18:37 - 2016-11-18 18:37 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-11-18 18:36 - 2016-11-18 18:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-11-18 18:36 - 2016-11-18 18:36 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-11-18 18:34 - 2016-11-18 18:34 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2016-11-18 18:34 - 2016-11-18 18:34 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2016-11-18 18:33 - 2016-11-18 18:33 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-11-18 18:32 - 2016-11-18 18:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-11-18 18:32 - 2016-11-18 18:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-11-18 18:30 - 2016-11-18 18:30 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2016-11-18 18:30 - 2016-11-18 18:30 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-11-18 18:29 - 2016-11-18 18:29 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-11-18 18:25 - 2016-11-18 18:25 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-11-18 18:24 - 2016-11-18 18:24 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2016-11-18 18:24 - 2016-11-18 18:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2016-11-18 18:24 - 2016-11-18 18:24 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2016-11-18 18:24 - 2016-11-18 18:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2016-11-18 18:23 - 2016-11-18 18:23 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-11-18 18:22 - 2016-11-18 18:22 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2016-11-18 18:22 - 2016-11-18 18:22 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2016-11-18 18:22 - 2016-11-18 18:22 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2016-11-18 18:20 - 2016-11-18 18:20 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2016-11-18 18:20 - 2016-11-18 18:20 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2016-11-18 18:20 - 2016-11-18 18:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2016-11-18 18:10 - 2014-03-06 13:15 - 01364376 _____ (Microsoft Corp.) C:\Windows\system32\api.dll
2016-11-18 17:57 - 2016-11-21 19:39 - 00000000 ____D C:\Windows\Minidump
2016-11-18 17:06 - 2016-11-18 17:06 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2016-11-18 17:06 - 2016-11-18 17:06 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2016-11-18 17:04 - 2016-11-18 17:04 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2016-11-18 17:03 - 2016-11-18 17:03 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-11-18 17:02 - 2016-11-18 17:02 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-11-18 17:01 - 2016-11-18 17:01 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-11-18 17:01 - 2016-11-18 17:01 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-11-18 17:01 - 2016-11-18 17:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-11-18 17:01 - 2016-11-18 17:01 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2016-11-18 17:00 - 2016-11-18 17:00 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2016-11-18 17:00 - 2016-11-18 17:00 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2016-11-18 17:00 - 2016-11-18 17:00 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-11-18 17:00 - 2016-11-18 17:00 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2016-11-18 17:00 - 2016-11-18 17:00 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2016-11-18 17:00 - 2016-11-18 17:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2016-11-18 17:00 - 2016-11-18 17:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2016-11-18 16:36 - 2016-11-18 16:36 - 00000000 ____D C:\f74ac6a2e4cd4e3b05d865d22c91ca77
2016-11-18 16:35 - 2016-12-14 20:23 - 00001912 _____ C:\Windows\epplauncher.mif

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 11:42
od michal1097
cast 3 + addition

2016-11-18 15:24 - 2016-11-18 15:24 - 00000000 ____D C:\065499413fda718ad23a4eeb3e452f
2016-11-18 15:16 - 2016-11-18 15:16 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Local\BMExplorer
2016-11-18 15:14 - 2016-11-18 15:16 - 00000000 ____D C:\Users\WOUTempAdmin\Documents\Bluetooth Folder
2016-11-18 15:14 - 2016-11-18 15:14 - 00122560 _____ C:\Users\WOUTempAdmin\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-18 15:14 - 2016-11-18 15:14 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Intel Corporation
2016-11-18 15:14 - 2016-11-18 15:14 - 00000000 _____ C:\Users\WOUTempAdmin\Desktop\Nový textový dokument.txt
2016-11-18 15:13 - 2016-12-09 17:51 - 00001042 _____ C:\Users\WOUTempAdmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-18 15:13 - 2016-11-18 15:14 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Adobe
2016-11-18 15:13 - 2016-11-18 15:13 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Atheros
2016-11-18 15:13 - 2016-11-18 15:13 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Local\Adobe
2016-11-18 15:12 - 2016-11-18 15:12 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Local\VirtualStore
2016-11-18 15:11 - 2016-11-21 19:52 - 00000000 ____D C:\Users\WOUTempAdmin
2016-11-18 15:11 - 2016-11-18 15:11 - 00000020 ___SH C:\Users\WOUTempAdmin\ntuser.ini
2016-11-18 15:11 - 2016-11-18 15:11 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Intel
2016-11-18 15:10 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-11-18 15:10 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-11-18 15:10 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-11-18 15:10 - 2016-03-23 23:40 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-11-18 15:07 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2016-11-18 15:07 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2016-11-18 15:07 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2016-11-18 15:06 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-11-18 15:06 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-11-18 15:06 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2016-11-18 15:06 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2016-11-18 15:06 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2016-11-18 15:06 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2016-11-18 15:06 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2016-11-18 15:06 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2016-11-18 15:06 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2016-11-18 15:06 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2016-11-18 15:06 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2016-11-18 15:06 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2016-11-18 15:06 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2016-11-18 15:06 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2016-11-18 15:06 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2016-11-18 15:05 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-11-18 15:05 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-11-18 15:05 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-11-18 15:05 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-11-18 15:05 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2016-11-18 14:57 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-11-18 14:57 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-11-18 14:57 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-11-18 14:57 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-11-18 14:57 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-11-18 14:57 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-11-18 14:57 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-11-18 14:57 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-11-18 14:57 - 2012-07-06 21:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-11-18 14:57 - 2011-04-28 04:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-11-18 14:57 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-11-18 14:57 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-11-18 14:57 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-11-18 14:57 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-11-18 14:57 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2016-11-18 14:56 - 2016-03-16 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-11-18 14:56 - 2016-03-16 19:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-11-18 14:56 - 2016-03-16 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-11-18 14:56 - 2016-02-02 19:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-11-18 14:56 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-11-18 14:56 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-11-18 14:56 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2016-11-18 14:56 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2016-11-18 14:55 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-11-18 14:55 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-11-18 14:55 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-11-18 14:55 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-11-18 14:55 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-11-18 14:55 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-11-18 14:54 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-11-18 14:54 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-11-18 14:54 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-11-18 14:54 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-11-18 14:53 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-11-18 14:53 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-11-18 14:52 - 2016-01-21 01:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-11-18 14:52 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-11-18 14:52 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-11-18 14:52 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2016-11-18 14:52 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-11-18 14:52 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-11-18 14:52 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-11-18 14:52 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-11-18 14:52 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-11-18 14:52 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-11-18 14:52 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-11-18 14:52 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2016-11-18 14:42 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-11-18 14:42 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-11-18 14:42 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-11-18 14:42 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2016-11-18 14:42 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-11-18 14:42 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-11-18 14:28 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2016-11-18 14:28 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2016-11-18 13:57 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2016-11-18 13:55 - 2016-02-05 19:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-11-18 13:55 - 2016-02-05 19:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-11-18 13:55 - 2016-02-05 18:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2016-11-18 13:55 - 2015-06-03 21:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-11-18 13:55 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-11-18 13:55 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2016-11-18 13:55 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-11-18 13:55 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2016-11-18 13:46 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-11-18 13:38 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2016-11-18 13:36 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2016-11-18 13:36 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-11-18 13:36 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-11-18 13:36 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2016-11-18 13:36 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-11-18 13:27 - 2016-07-07 16:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-11-18 13:27 - 2016-07-07 16:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-11-18 13:27 - 2016-07-07 16:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-11-18 13:27 - 2016-07-07 16:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-11-18 13:19 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-11-18 13:19 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-11-18 13:19 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-11-18 13:19 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-11-18 13:19 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2016-11-18 13:19 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-11-18 13:19 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2016-11-18 13:19 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-11-18 13:19 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-11-18 13:19 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2016-11-18 13:05 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-11-18 13:04 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-11-18 13:04 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-11-18 13:04 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-11-18 13:04 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2016-11-18 13:04 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-11-18 13:04 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-11-18 13:04 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2016-11-18 13:04 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2016-11-18 13:04 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2016-11-18 13:04 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2016-11-18 13:04 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2016-11-18 12:58 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2016-11-18 12:58 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2016-11-18 11:58 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2016-11-18 11:58 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2016-11-18 11:55 - 2016-03-09 20:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-11-18 11:55 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-11-18 11:54 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-11-18 11:53 - 2016-03-09 19:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-11-18 11:53 - 2016-03-09 19:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-11-18 11:53 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2016-11-18 11:53 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2016-11-18 11:16 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-11-18 11:16 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-11-18 11:16 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-11-18 11:16 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-11-18 11:16 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-11-18 11:16 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-11-18 11:16 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-11-18 11:16 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-11-18 11:02 - 2016-11-19 10:00 - 00000000 ____D C:\Windows\system32\dsc
2016-11-18 11:02 - 2016-11-19 10:00 - 00000000 ____D C:\Windows\system32\Configuration
2016-11-18 11:00 - 2013-09-16 08:34 - 00204105 _____ C:\Windows\SysWOW64\winrm.vbs
2016-11-18 11:00 - 2013-09-16 08:34 - 00204105 _____ C:\Windows\system32\winrm.vbs
2016-11-18 11:00 - 2013-09-16 08:34 - 00004675 _____ C:\Windows\SysWOW64\wsmanconfig_schema.xml
2016-11-18 11:00 - 2013-09-16 08:34 - 00004675 _____ C:\Windows\system32\wsmanconfig_schema.xml
2016-11-18 11:00 - 2013-09-16 08:33 - 00004148 _____ C:\Windows\system32\psmodulediscoveryprovider.mof
2016-11-18 10:53 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-11-18 10:53 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-11-18 10:53 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2016-11-18 10:36 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-18 10:36 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-18 10:36 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-18 10:36 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-11-18 10:36 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-18 10:36 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-18 10:36 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-18 10:36 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-18 10:36 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-18 10:36 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-18 10:36 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-11-18 10:36 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-18 10:36 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-18 10:36 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-18 10:36 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-18 10:36 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-18 10:36 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-11-18 10:36 - 2016-05-12 14:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-11-18 10:36 - 2016-05-12 14:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-11-18 10:36 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-11-18 10:36 - 2016-05-04 18:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-11-18 10:36 - 2016-05-04 18:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-11-18 10:36 - 2016-05-04 18:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-11-18 10:36 - 2016-05-04 16:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-11-18 10:36 - 2016-05-04 15:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-11-18 10:36 - 2016-03-23 23:43 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-11-18 10:36 - 2016-03-23 23:40 - 00634432 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-11-18 10:36 - 2016-03-23 23:40 - 00546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-11-18 09:40 - 2016-12-17 11:00 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-18 09:38 - 2016-11-18 09:38 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2016-11-18 09:38 - 2016-11-18 09:38 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2016-11-18 09:38 - 2016-11-18 09:38 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2016-11-18 09:38 - 2016-11-18 09:38 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2016-11-18 09:38 - 2016-11-18 09:38 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2016-11-18 08:52 - 2016-11-18 08:52 - 00000000 ____D C:\17c74836bad95cfece9144968be5051b
2016-11-18 08:51 - 2016-11-18 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-18 08:50 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-18 08:50 - 2016-11-18 08:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-11-17 15:24 - 2016-11-17 15:24 - 00000000 ____D C:\683abb9e7083b46b5b
2016-11-17 15:24 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-11-17 15:24 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-11-17 15:21 - 2016-11-17 15:21 - 00000000 ____D C:\Windows\system32\appmgmt
2016-11-17 15:18 - 2016-11-17 15:18 - 00000000 ____D C:\681f7de42afc78d472
2016-11-17 13:19 - 2016-11-17 13:19 - 00000000 ____D C:\e1e8a5097f3b1a87e6fd
2016-11-17 13:14 - 2016-12-09 17:51 - 00000000 ____D C:\7e6dde7e4fd166a14a59796db7931f
2016-11-17 10:06 - 2016-11-17 10:06 - 00000000 ____D C:\77b8b98f122ae09806bb9afc97ad843b
2016-11-17 09:53 - 2016-11-17 09:53 - 00000000 ____D C:\1f486f7e6b97a9968f113918dfdb0e49
2016-11-17 09:48 - 2016-11-17 09:48 - 00000000 ____D C:\Users\Michal\AppData\Local\ElevatedDiagnostics
2016-11-17 09:31 - 2016-11-17 09:31 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2016-11-17 09:31 - 2016-11-17 09:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2016-11-17 09:31 - 2016-11-17 09:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-11-17 09:31 - 2016-11-17 09:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-11-17 09:31 - 2016-11-17 09:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-11-17 09:29 - 2016-11-17 09:29 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2016-11-17 09:28 - 2016-11-17 09:28 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-11-17 09:26 - 2016-11-17 09:26 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-11-17 09:26 - 2016-11-17 09:26 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-11-17 08:54 - 2016-12-09 17:51 - 00000000 ____D C:\Program Files (x86)\Opera

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-17 11:29 - 2016-10-07 17:15 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Skype
2016-12-17 10:58 - 2009-07-14 05:50 - 00028336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-17 10:58 - 2009-07-14 05:50 - 00028336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-17 10:55 - 2009-07-14 06:12 - 00783606 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-17 10:55 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-17 10:51 - 2016-10-07 13:20 - 00000000 ____D C:\Users\Michal
2016-12-17 10:51 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-17 10:48 - 2016-10-28 10:20 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-12-17 10:48 - 2016-10-09 10:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-17 10:48 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-12-17 10:46 - 2016-10-07 17:20 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-17 08:42 - 2016-10-07 14:33 - 00000000 ____D C:\Users\Michal\Desktop\programi
2016-12-16 22:10 - 2016-10-07 17:23 - 00003368 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-16 22:10 - 2016-10-07 17:23 - 00003240 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-15 20:42 - 2016-10-07 17:26 - 00002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-14 20:34 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2016-12-14 20:32 - 2009-07-14 03:34 - 81788928 _____ C:\Windows\system32\config\SOFTWARE.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 16777216 _____ C:\Windows\system32\config\SYSTEM.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\DEFAULT.bak
2016-12-14 20:18 - 2016-10-07 14:21 - 00000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2016-12-14 15:40 - 2016-11-04 08:33 - 00000000 ____D C:\Users\Michal\Desktop\skola
2016-12-13 12:46 - 2016-10-07 17:20 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-13 12:46 - 2016-10-07 17:20 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-13 12:46 - 2016-10-07 17:20 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-13 12:46 - 2016-10-07 17:20 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-13 12:46 - 2016-10-07 17:20 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-12 13:56 - 2016-10-09 09:44 - 00000170 _____ C:\Users\Michal\.packettracer
2016-12-12 13:52 - 2016-10-09 09:44 - 00000000 ____D C:\Users\Michal\Cisco Packet Tracer 7.0
2016-12-12 12:54 - 2016-11-05 08:33 - 00001927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-12-11 09:06 - 2009-07-14 05:50 - 00440008 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-11 09:05 - 2016-11-05 08:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-10 20:08 - 2016-10-28 10:15 - 00000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent
2016-12-10 15:15 - 2016-10-23 09:34 - 00000000 ____D C:\Users\Michal\Desktop\Skola 3.r
2016-12-10 13:22 - 2016-10-07 13:20 - 00000000 ____D C:\Users\Michal\AppData\Local\VirtualStore
2016-12-10 13:01 - 2016-10-07 17:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Deployment
2016-12-10 12:08 - 2016-10-07 13:38 - 00124608 _____ C:\Users\Michal\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-10 09:32 - 2016-10-07 13:21 - 00000989 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-09 17:51 - 2016-11-13 13:45 - 00000000 ____D C:\Program Files (x86)\JSignPdf
2016-12-09 17:51 - 2016-10-26 16:32 - 00000000 ____D C:\c5e5e52f989d56c4412f5f13c52d
2016-12-09 17:51 - 2016-10-16 09:43 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-12-09 17:51 - 2016-10-12 14:57 - 00000000 ____D C:\59e34deafad03492abcf
2016-12-09 17:50 - 2016-11-01 11:44 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-12-09 17:50 - 2016-10-16 09:43 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2016-12-09 17:50 - 2016-10-16 09:41 - 00000000 ____D C:\Program Files (x86)\HP
2016-12-09 17:50 - 2016-10-11 21:34 - 00000000 ____D C:\Program Files (x86)\Sibelius Software
2016-12-09 17:50 - 2016-10-08 15:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2016-12-09 17:50 - 2016-10-08 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft Sync Framework
2016-12-09 17:50 - 2016-10-08 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-12-09 17:50 - 2016-10-08 15:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2016-12-09 17:50 - 2016-10-08 15:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-12-09 17:50 - 2016-10-08 15:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-09 17:50 - 2016-10-08 15:17 - 00000000 ____D C:\Program Files (x86)\The Witcher 3 Wild Hunt Blood and Wine
2016-12-09 17:50 - 2016-10-08 14:47 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-12-09 17:50 - 2016-10-08 10:41 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2016-12-09 17:50 - 2016-10-07 17:36 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-12-09 17:50 - 2016-10-07 17:23 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-09 17:50 - 2016-10-07 17:15 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-09 17:50 - 2016-10-07 14:20 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2016-12-09 17:50 - 2016-10-07 14:18 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-12-09 17:50 - 2016-10-07 14:15 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-12-09 17:50 - 2016-10-07 14:15 - 00000000 ____D C:\Program Files (x86)\AMD APP
2016-12-09 17:50 - 2016-10-07 14:13 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-12-09 17:50 - 2016-10-07 14:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-12-09 17:50 - 2016-10-07 13:57 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2016-12-09 17:50 - 2016-10-07 13:43 - 00000000 ____D C:\Program Files (x86)\Lenovo
2016-12-09 17:50 - 2016-10-07 13:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-09 17:50 - 2016-10-07 13:36 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2016-12-09 17:50 - 2016-10-07 13:35 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-09 17:50 - 2016-10-07 13:35 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-09 17:50 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-12-09 15:31 - 2016-10-23 08:25 - 00000000 ____D C:\Users\Michal\AppData\Roaming\vlc
2016-12-08 08:42 - 2016-10-07 17:15 - 00000000 ____D C:\ProgramData\Skype
2016-12-05 21:43 - 2016-10-09 10:28 - 00000000 ____D C:\Users\Michal\Desktop\bak praca
2016-12-03 16:42 - 2016-10-08 12:26 - 00000000 ____D C:\Users\Michal\Desktop\Hudba
2016-12-02 07:38 - 2009-07-14 06:08 - 00032500 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-30 18:35 - 2016-10-08 14:48 - 00000000 ____D C:\Users\Michal\Desktop\witcher
2016-11-30 18:22 - 2016-10-18 13:02 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Brackets
2016-11-25 10:35 - 2016-10-07 17:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Adobe
2016-11-23 18:41 - 2016-10-09 10:56 - 00000000 ____D C:\ProgramData\Adobe
2016-11-23 18:41 - 2016-10-07 17:13 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Adobe
2016-11-23 17:48 - 2016-11-16 21:19 - 00000000 ____D C:\Users\Michal\Documents\Adobe
2016-11-23 17:43 - 2016-10-07 13:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-23 07:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-21 20:17 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-21 19:39 - 2016-10-07 14:07 - 00000000 ____D C:\Windows\Panther
2016-11-21 19:32 - 2016-10-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Free 9.0
2016-11-21 17:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-21 08:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2016-11-20 16:34 - 2009-07-14 03:34 - 00000167 _____ C:\Windows\win.ini
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-11-18 19:25 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-18 19:00 - 2009-07-14 01:22 - 01393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-11-18 17:59 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-18 16:34 - 2016-10-07 13:38 - 00767916 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-11-18 16:16 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-11-18 09:41 - 2016-10-07 14:06 - 00000000 ____D C:\ProgramData\Atheros

==================== Files in the root of some directories =======

2016-10-11 21:34 - 2016-10-11 21:35 - 0607138 _____ () C:\Users\Michal\AppData\Roaming\Scorch_Install.log
2016-11-19 09:36 - 2016-11-19 09:36 - 0007605 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2016-10-09 09:44 - 2016-10-09 09:44 - 0017408 _____ () C:\Users\Michal\AppData\Local\WebpageIcons.db
2016-10-16 09:40 - 2016-10-16 09:40 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-10-07 13:54 - 2016-10-07 13:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-12-14 17:15

==================== End of FRST.txt ============================

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 15:10
od altrok
Mozilla se mi stale nelibi (vypada to, ze jsme jeji modifikace zcela neodstranili) - zazalohujte zalozky a hesla Mozilly napr. pomoci http://www.stahuj.centrum.cz/utility_a_ ... mozbackup/ , overte spravnost zalohy tim, ze se pokusite zalozky a hesla naimportovat zpet a nasledne Mozillu odinstanstalujte vcetne jejiho profilu. NEINSTALUJTE ji zatim zpet, ale dejte nove logy FRST.txt a Addition.txt (odstranime zbytky a az pote provedete cistou instalaci + import zalozek a hesel).

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 16:03
od michal1097
prikladam fix log..
Fix result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by Michal (17-12-2016 15:58:51) Run:2
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
StartRegedit:
[HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU]
"NoAutoUpdate"=dword:00000000
EndRegedit:
cmd: reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost"
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start hxxp://www.avg.com/ww.special-uninstall ... gBQAEEATgA"&"inst=NwA3AC0AMwA0AD (the data entry has 109 more characters).
Winlogon\Notify\xranhgo-x32: C:\Users\Michal\AppData\Local\xranhgo.dll [X]
File: C:\Users\Michal\AppData\Local\xranhgo.dll
C:\Users\Michal\AppData\Local\xranhgo.dll
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9108184 2016-11-07] (Piriform Ltd)
HKLM\...\Providers\jelxymt5: C:\Program Files (x86)\Adobe\\local64spl.dll [142848 2016-12-10] ()
File: C:\Program Files (x86)\Adobe\\local64spl.dll
C:\Program Files (x86)\Adobe\\local64spl.dll
ShellExecuteHooks: - {4A39289E-AB73-11E6-B57F-64006A5CFC23} - C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll [145920 2016-12-09] ()
File: C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll
C:\Users\Michal\AppData\Roaming\Graqsp
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction - Chrome <======= ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssiea.dll => No File
C:\Program Files (x86)\AVG

cmd: type "C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js"
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\crsahtbq.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF Keyword.URL: Mozilla\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (No Name) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\extensions\arthurj8283@gmail.com [not found]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml [2016-12-12]
cmd: type "C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js"
FF DefaultSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.3: Firefox\Firefox\Profiles\crsahtbq.default -> Bing
FF SelectedSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF Keyword.URL: Firefox\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (FF Adr) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2016-12-10] [not signed]
FF Extension: (xRocket Toolbar) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com [2016-12-12] [not signed]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml [2016-12-12]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\searchinme.xml [2016-12-10]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\zmlfca7u.xml [2016-12-09]

File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
R2 Convxxxx; C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe [403968 2016-12-07] () [File not signed]
File: C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe
C:\Users\Michal\AppData\Roaming\cfjcf
R2 FirefoxU; C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe [100352 2016-12-12] () [File not signed]
U0 aswVmm; no ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

Folder: C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae
Folder: C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919
2016-12-12 13:19 - 2016-12-12 13:19 - 01323520 _____ C:\Users\Michal\Downloads\RSITx64.exe
2016-12-12 13:19 - 2016-12-12 13:19 - 00000000 ____D C:\rsit
2016-12-12 12:37 - 2016-12-12 12:37 - 00000000 ____D C:\Program Files (x86)\amuleC1
2016-12-10 09:18 - 2016-12-17 08:22 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-12-10 09:18 - 2016-12-12 12:38 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2016-12-10 09:12 - 2016-12-10 09:12 - 00000000 ____D C:\Users\Michal\Documents\aMule Downloads
2016-12-10 09:01 - 2016-12-10 09:12 - 00000000 ____D C:\Users\Michal\AppData\Roaming\aMule
2016-12-10 09:01 - 2016-12-10 09:01 - 00000000 ____D C:\Users\Michal\AppData\Roaming\cfjcf
2016-12-10 08:56 - 2016-12-12 12:33 - 00000000 ____D C:\Program Files (x86)\ft1xx095
Folder: C:\ProgramData\Avira
2016-12-09 17:50 - 2016-12-09 17:50 - 00006050 _____ C:\Windows\System32\Tasks\Vuktionliqat Helper
2016-12-09 17:50 - 2016-12-09 17:50 - 00003530 _____ C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2
2016-12-09 17:49 - 2016-12-12 12:49 - 00000000 ____D C:\Program Files (x86)\Merpetionannage
2016-12-09 17:49 - 2016-12-09 17:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Smedom
2016-12-09 17:49 - 2016-12-09 17:49 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Graqsp
2016-11-19 15:20 - 2016-12-12 13:19 - 00000000 ____D C:\Program Files\trend micro
Folder: C:\f74ac6a2e4cd4e3b05d865d22c91ca77
Folder: C:\065499413fda718ad23a4eeb3e452f
Folder: C:\ProgramData\AVAST Software
2016-11-21 19:43 - 2016-12-09 17:51 - 00000000 ____D C:\ProgramData\Avg
2016-11-21 19:42 - 2016-11-21 20:13 - 00000000 ____D C:\Users\Michal\AppData\Local\AvgSetupLog
2016-11-21 19:42 - 2016-11-21 19:42 - 00000000 ____D C:\Users\Michal\AppData\Local\Avg
2016-12-09 17:51 - 2016-10-28 10:16 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-09 17:50 - 2016-10-07 14:25 - 00000000 ____D C:\Program Files (x86)\AVG

Task: {43A81866-A5C4-44F9-8EB6-F43090120092} - System32\Tasks\{9FEBF33B-2074-414C-8502-E337530B2EEE} => pcalua.exe -a "C:\Users\Michal\Desktop\Nový priečinok\Windows.Media.Player.12.v.2.CZ..exe" -d "C:\Users\Michal\Desktop\Nový priečinok"
Task: {898120DD-BF52-4B72-ACAB-45372AEE08B5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-10-28] (AVAST Software)
Task: {917AB143-3543-4ED5-86D1-DAE72919DC3A} - System32\Tasks\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => pcalua.exe -a C:\Users\Michal\Desktop\wsusoffline\client\cpp\vcredist2008_x64.exe -d C:\Users\Michal\Desktop\wsusoffline\client\cpp
Task: {D33665A0-6187-430A-A0AD-41B0FF27D0EB} - System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => Rundll32.exe "C:\Program Files (x86)\Common Files\elxymt.dll",e62dc6c6547f46bda862da2d05af6862 <==== ATTENTION
File: C:\Program Files (x86)\Merpetionannage\copay.exe
Folder: C:\Program Files (x86)\Merpetionannage
C:\Program Files (x86)\Merpetionannage

File: C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
File: C:\Program Files (x86)\SrpnFiles\downloader.exe
Folder: C:\Program Files (x86)\SrpnFiles
C:\Program Files (x86)\SrpnFiles
FirewallRules: [{F659C450-8F90-4046-A97E-1180E871D417}] => C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{0B8B91FE-FEBA-440A-A18C-3C6BE8C5DA64}] => C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{1222AFB4-9C0C-4EDA-8C20-13C097DD10F4}] => C:\Program Files (x86)\SrpnFiles\downloader.exe
FirewallRules: [{6779D280-A173-47C3-8F50-16A2B0B6246B}] => C:\Program Files (x86)\SrpnFiles\downloader.exe
File: C:\program files (x86)\brackets\node.exe
FirewallRules: [{D960489A-096B-4277-B260-B3A53D48840B}] => C:\Windows\system32\rundll32.exe
FirewallRules: [{D0EEFAF9-098E-47B6-9B63-7350707B6846}] => C:\Windows\system32\rundll32.exe
FirewallRules: [TCP Query User{8DD6A48A-6951-45BC-AEFC-F01B5F82D210}C:\windows\syswow64\rundll32.exe] => C:\windows\syswow64\rundll32.exe
FirewallRules: [UDP Query User{22D498AC-C9A7-4644-8629-2152CFF322E4}C:\windows\syswow64\rundll32.exe] => C:\windows\syswow64\rundll32.exe
FirewallRules: [{1B40F44E-E1D2-4215-92FA-39146AD5B265}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{63F33A42-180C-41E1-BCF6-57335200B66A}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{365856DD-96B8-4104-9F77-79233DA5E047}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{4881B295-8618-4ECF-A9F4-87F43A7AD39E}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5BD9BFF5-B75A-4C45-9DDC-58FF8D31CBB6}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{190C0C9C-33C1-4DCD-AF81-C64EC28370D9}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{76B13A3E-8F9B-4C28-91DB-0C9AA6127DB7}C:\program files (x86)\amulec1\amule.exe] => C:\program files (x86)\amulec1\amule.exe
FirewallRules: [UDP Query User{23CA4E45-1996-47BC-8004-407722F3B376}C:\program files (x86)\amulec1\amule.exe] => C:\program files (x86)\amulec1\amule.exe
FirewallRules: [{B8155EEF-AFCA-4B69-AC19-4053C03B567C}] => C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{6114AE8A-EA9C-4BBF-B064-BB4015DEE52A}] => C:\Program Files (x86)\Firefox\Firefox.exe
File: C:\Program Files (x86)\Firefox\Firefox.exe
File: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe

CMD: dir "C:\Windows\System32\Tasks"
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

====> Registry

========= reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost" =========


HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost
netsvcs REG_MULTI_SZ AeLookupSvc\0CertPropSvc\0SCPolicySvc\0lanmanserver\0gpsvc\0AudioSrv\0FastUserSwitchingCompatibility\0Ias\0Irmon\0Nla\0Ntmssvc\0NWCWorkstation\0Nwsapagent\0Rasauto\0Rasman\0Remoteaccess\0SENS\0Sharedaccess\0SRService\0Tapisrv\0Wmi\0WmdmPmSp\0TermService\0wuauserv\0BITS\0ShellHWDetection\0LogonHours\0PCAudit\0helpsvc\0uploadmgr\0iphlpsvc\0msiscsi\0schedule\0SessionEnv\0winmgmt\0AppMgmt
LocalService REG_MULTI_SZ RemoteRegistry\0WinHttpAutoProxySvc\0sppuinotify\0netprofm\0WebClient
LocalSystemNetworkRestricted REG_MULTI_SZ Netman\0AudioEndpointBuilder\0dot3svc\0wlansvc\0WPDBusEnum
LocalServiceNoNetwork REG_MULTI_SZ PLA
rpcss REG_MULTI_SZ RpcSs
LocalServiceNetworkRestricted REG_MULTI_SZ AudioSrv\0BthHFSrv\0LmHosts\0wscsvc\0WPCSvc
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV\0upnphost\0SCardSvr\0QWAVE\0wcncsvc
DcomLaunch REG_MULTI_SZ Power\0PlugPlay\0DcomLaunch
NetworkService REG_MULTI_SZ CryptSvc\0DHCP\0TermService\0DNSCache\0NapAgent\0nlasvc\0WinRM\0WECSVC\0Tapisrv
imgsvc REG_MULTI_SZ StiSvc
wcssvc REG_MULTI_SZ WcsPlugInService
Musadom REG_MULTI_SZ Musadom

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalService
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceAndNoImpersonation
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNoNetwork
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalSystemNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\netsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkService
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopHyperVAgent
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopPublishing
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\termsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\wcssvc

========= End of CMD: =========

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value not found.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\xranhgo => key not found.

========================= File: C:\Users\Michal\AppData\Local\xranhgo.dll ========================

"C:\Users\Michal\AppData\Local\xranhgo.dll" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Local\xranhgo.dll" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\EnableShellExecuteHooks => value not found.
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value not found.
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\jelxymt5 => key not found.
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order jelxymt5 => removed successfully

========================= File: C:\Program Files (x86)\Adobe\\local64spl.dll ========================

"C:\Program Files (x86)\Adobe\\local64spl.dll" => not found.
====== End of File: ======

"C:\Program Files (x86)\Adobe\\local64spl.dll" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{4A39289E-AB73-11E6-B57F-64006A5CFC23} => value not found.
HKCR\CLSID\{4A39289E-AB73-11E6-B57F-64006A5CFC23} => key not found.

========================= File: C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll ========================

"C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Roaming\Graqsp" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key not found.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"C:\Windows\system32\GroupPolicy\Machine" => not found.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} => key not found.
HKCR\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} => key not found.
"C:\Program Files (x86)\AVG" => not found.

========= type "C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js" =========

# Mozilla User Preferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("browser.search.defaultenginename", "luck");
user_pref("browser.search.order.1", "luck");
user_pref("browser.search.searchengine.alias", "");
user_pref("browser.search.searchengine.name", "luck");
user_pref("browser.search.searchengine.ref", "");
user_pref("browser.search.searchengine.ts", "1481542656");
user_pref("browser.search.searchengine.type", "");
user_pref("browser.search.searchengine.uid", "st500lm000-1ej162_w370kzblxxxxw370kzbl");
user_pref("browser.search.selectedEngine", "luck");
user_pref("browser.search.useDBForOrder", true);
user_pref("browser.sessionstore.max_tabs_undo", 0);
user_pref("browser.sessionstore.max_windows_undo", 0);
user_pref("browser.sessionstore.resume_from_crash", false);
user_pref("browser.sessionstore.resume_session_once", false);

========= End of CMD: =========

FF DefaultSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck => not found
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\crsahtbq.default -> luck => not found
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\crsahtbq.default -> Bing => not found
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck => not found
FF Keyword.URL: Mozilla\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q= => not found
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\extensions\arthurj8283@gmail.com => not found.
"C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml" => not found.

========= type "C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js" =========

# Mozilla User Preferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("browser.search.defaultenginename", "luck");
user_pref("browser.search.order.1", "luck");
user_pref("browser.search.searchengine.alias", "");
user_pref("browser.search.searchengine.name", "luck");
user_pref("browser.search.searchengine.ref", "");
user_pref("browser.search.searchengine.ts", "1481542656");
user_pref("browser.search.searchengine.type", "");
user_pref("browser.search.searchengine.uid", "st500lm000-1ej162_w370kzblxxxxw370kzbl");
user_pref("browser.search.selectedEngine", "luck");
user_pref("browser.search.useDBForOrder", true);
user_pref("browser.sessionstore.max_tabs_undo", 0);
user_pref("browser.sessionstore.max_windows_undo", 0);
user_pref("browser.sessionstore.resume_from_crash", false);
user_pref("browser.sessionstore.resume_session_once", false);

========= End of CMD: =========

Firefox DefaultSearchEngine removed successfully
Firefox SearchEngineOrder.1 removed successfully
FF SearchEngineOrder.3: Firefox\Firefox\Profiles\crsahtbq.default -> Bing => not found
Firefox SelectedSearchEngine removed successfully
FF Keyword.URL: Firefox\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q= => not found
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi => moved successfully
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com => not found.
"C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml" => not found.
"C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\searchinme.xml" => not found.
"C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\zmlfca7u.xml" => not found.

========================= File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe ========================

File not signed
MD5: A917E4F753B90A5181ECBFA56D5C154A
Creation and modification date: 2013-01-24 23:12 - 2013-01-24 23:12
Size: 0227456
Attributes: ----A
Company Name: Qualcomm Atheros Commnucations
Internal Name: AdminService
Original Name: AdminService.exe
Product: Bluetooth Software
Description: AdminService Application
File Version: 8.0.0.220
Product Version: 8.0.0.220
Copyright: Copyright (c) 2001-2010 Qualcomm Atheros Communications, Inc. All rights reserved.

====== End of File: ======

Convxxxx => service not found.

========================= File: C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe ========================

"C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Roaming\cfjcf" => not found.
FirefoxU => service not found.
aswVmm => service not found.
catchme => service not found.

========================= Folder: C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae ========================


====== End of Folder: ======


========================= Folder: C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919 ========================


====== End of Folder: ======

"C:\Users\Michal\Downloads\RSITx64.exe" => not found.
"C:\rsit" => not found.
"C:\Program Files (x86)\amuleC1" => not found.
"C:\Users\Public\Documents\report.dat" => not found.
"C:\Users\Public\Documents\temp.dat" => not found.
"C:\Users\Michal\Documents\aMule Downloads" => not found.
"C:\Users\Michal\AppData\Roaming\aMule" => not found.
"C:\Users\Michal\AppData\Roaming\cfjcf" => not found.
"C:\Program Files (x86)\ft1xx095" => not found.

========================= Folder: C:\ProgramData\Avira ========================

2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\AntiVir Desktop
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\AntiVir Desktop\CONFIG
2016-12-09 17:51 - 2016-12-09 17:51 - 0000494 _____ () C:\ProgramData\Avira\AntiVir Desktop\CONFIG\AVWIN.INI
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\Antivirus
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\Antivirus\CONFIG
2016-12-09 17:51 - 2016-12-09 17:51 - 0000494 _____ () C:\ProgramData\Avira\Antivirus\CONFIG\AVWIN.INI

====== End of Folder: ======

"C:\Windows\System32\Tasks\Vuktionliqat Helper" => not found.
"C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2" => not found.
"C:\Program Files (x86)\Merpetionannage" => not found.
"C:\Users\Michal\AppData\Local\Smedom" => not found.
"C:\Users\Michal\AppData\Roaming\Graqsp" => not found.
"C:\Program Files\trend micro" => not found.

========================= Folder: C:\f74ac6a2e4cd4e3b05d865d22c91ca77 ========================

2016-11-18 16:36 - 2016-02-13 18:16 - 22011749 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64.cab
2016-11-18 16:36 - 2016-02-13 18:17 - 0000498 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64.xml
2016-11-18 16:36 - 2016-02-13 18:17 - 0000395 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64-pkgProperties.txt
2016-11-18 16:36 - 2016-02-13 18:18 - 0198044 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\065499413fda718ad23a4eeb3e452f ========================

2016-11-18 15:24 - 2016-01-11 16:10 - 3177773 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64.cab
2016-11-18 15:24 - 2016-01-11 16:11 - 0000446 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64.xml
2016-11-18 15:24 - 2016-01-11 16:11 - 0000521 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64-pkgProperties.txt
2016-11-18 15:24 - 2016-01-11 16:19 - 0181156 _____ () C:\065499413fda718ad23a4eeb3e452f\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\ProgramData\AVAST Software ========================

not found.

====== End of Folder: ======

"C:\ProgramData\Avg" => not found.
"C:\Users\Michal\AppData\Local\AvgSetupLog" => not found.
"C:\Users\Michal\AppData\Local\Avg" => not found.
"C:\ProgramData\AVAST Software" => not found.
"C:\Program Files (x86)\AVG" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43A81866-A5C4-44F9-8EB6-F43090120092} => key not found.
C:\Windows\System32\Tasks\{9FEBF33B-2074-414C-8502-E337530B2EEE} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9FEBF33B-2074-414C-8502-E337530B2EEE} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{898120DD-BF52-4B72-ACAB-45372AEE08B5} => key not found.
C:\Windows\System32\Tasks\AVAST Software\Avast settings backup => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{917AB143-3543-4ED5-86D1-DAE72919DC3A} => key not found.
C:\Windows\System32\Tasks\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D33665A0-6187-430A-A0AD-41B0FF27D0EB} => key not found.
C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\54f4f7b41a6f7a369d678a5e04483ba2 => key not found.

========================= File: C:\Program Files (x86)\Merpetionannage\copay.exe ========================

"C:\Program Files (x86)\Merpetionannage\copay.exe" => not found.
====== End of File: ======


========================= Folder: C:\Program Files (x86)\Merpetionannage ========================

not found.

====== End of Folder: ======

"C:\Program Files (x86)\Merpetionannage" => not found.

========================= File: C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe ========================

"C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe" => not found.
====== End of File: ======


========================= File: C:\Program Files (x86)\SrpnFiles\downloader.exe ========================

"C:\Program Files (x86)\SrpnFiles\downloader.exe" => not found.
====== End of File: ======


========================= Folder: C:\Program Files (x86)\SrpnFiles ========================

not found.

====== End of Folder: ======

"C:\Program Files (x86)\SrpnFiles" => not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F659C450-8F90-4046-A97E-1180E871D417} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B8B91FE-FEBA-440A-A18C-3C6BE8C5DA64} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1222AFB4-9C0C-4EDA-8C20-13C097DD10F4} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6779D280-A173-47C3-8F50-16A2B0B6246B} => value not found.

========================= File: C:\program files (x86)\brackets\node.exe ========================

"C:\program files (x86)\brackets\node.exe" => not found.
====== End of File: ======

HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D960489A-096B-4277-B260-B3A53D48840B} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0EEFAF9-098E-47B6-9B63-7350707B6846} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8DD6A48A-6951-45BC-AEFC-F01B5F82D210}C:\windows\syswow64\rundll32.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{22D498AC-C9A7-4644-8629-2152CFF322E4}C:\windows\syswow64\rundll32.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1B40F44E-E1D2-4215-92FA-39146AD5B265} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63F33A42-180C-41E1-BCF6-57335200B66A} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{365856DD-96B8-4104-9F77-79233DA5E047} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4881B295-8618-4ECF-A9F4-87F43A7AD39E} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5BD9BFF5-B75A-4C45-9DDC-58FF8D31CBB6} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{190C0C9C-33C1-4DCD-AF81-C64EC28370D9} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{76B13A3E-8F9B-4C28-91DB-0C9AA6127DB7}C:\program files (x86)\amulec1\amule.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{23CA4E45-1996-47BC-8004-407722F3B376}C:\program files (x86)\amulec1\amule.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8155EEF-AFCA-4B69-AC19-4053C03B567C} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6114AE8A-EA9C-4BBF-B064-BB4015DEE52A} => value not found.

========================= File: C:\Program Files (x86)\Firefox\Firefox.exe ========================

File not signed
MD5: F0425A2AEA6AB764D3E7B6EC8E8D3A74
Creation and modification date: 2016-12-12 12:54 - 2016-12-12 03:46
Size: 0492544
Attributes: ----A
Company Name: Mozilla Corporation
Internal Name: Firefox
Original Name: Firefox.exe
Product: Firefox
Description: Firefox
File Version: 50.0
Product Version: 50.0
Copyright: Firefox and Mozilla Developers; available under the MPL 2 license.

====== End of File: ======


========================= File: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe ========================

File not signed
MD5: D1D91682A1F1AAB35B54DDC5273EE7DC
Creation and modification date: 2016-12-12 12:54 - 2016-12-12 07:31
Size: 0100352
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product: Firefox
Description: Firefox
File Version: 50.0.8.336
Product Version: 50.0.8.336
Copyright: Copyright (C) 2016 Firefox Authors

====== End of File: ======


========= dir "C:\Windows\System32\Tasks" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Windows\System32\Tasks

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
08. 11. 2016 12:31 4˙476 Adobe Acrobat Update Task
13. 12. 2016 12:46 3˙768 Adobe Flash Player Updater
17. 12. 2016 10:48 <DIR> AVAST Software
16. 11. 2016 17:12 2˙794 CCleanerSkipUAC
16. 12. 2016 22:10 3˙240 GoogleUpdateTaskMachineCore
16. 12. 2016 22:10 3˙368 GoogleUpdateTaskMachineUA
16. 10. 2016 09:43 3˙620 HPCustParticipation HP Deskjet 1510 series
18. 11. 2016 16:45 <DIR> Microsoft
08. 10. 2016 15:37 <DIR> OfficeSoftwareProtectionPlatform
22. 11. 2016 13:30 <DIR> WPD
6 File(s) 21˙266 bytes
6 Dir(s) 288˙533˙315˙584 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~1" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~1

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
16. 11. 2016 21:13 <DIR> Adobe
07. 10. 2016 14:13 <DIR> ATI
07. 10. 2016 14:14 <DIR> ATI Technologies
16. 11. 2016 17:12 <DIR> CCleaner
09. 10. 2016 09:43 <DIR> Cisco Packet Tracer 7.0
23. 11. 2016 17:43 <DIR> Common Files
07. 10. 2016 13:53 <DIR> CONEXANT
07. 10. 2016 14:04 <DIR> DIFX
19. 11. 2016 13:34 <DIR> DVD Maker
07. 10. 2016 13:41 <DIR> Elantech
16. 10. 2016 09:40 <DIR> HP
07. 10. 2016 13:39 <DIR> Intel
08. 10. 2016 10:33 <DIR> Intel Security
18. 11. 2016 19:27 <DIR> Internet Explorer
07. 10. 2016 14:04 <DIR> Lenovo
08. 10. 2016 15:31 <DIR> Microsoft Office
18. 11. 2016 08:50 <DIR> Microsoft Silverlight
14. 07. 2009 06:38 <DIR> MSBuild
17. 10. 2016 14:48 <DIR> Oracle
14. 07. 2009 06:38 <DIR> Reference Assemblies
18. 11. 2016 17:59 <DIR> Windows Defender
12. 04. 2011 14:29 <DIR> Windows Mail
20. 11. 2016 15:35 <DIR> Windows Media Player
14. 07. 2009 06:38 <DIR> Windows NT
12. 04. 2011 14:29 <DIR> Windows Photo Viewer
19. 11. 2016 13:34 <DIR> Windows Portable Devices
12. 04. 2011 14:29 <DIR> Windows Sidebar
19. 11. 2016 10:00 <DIR> WindowsPowerShell
08. 10. 2016 12:25 <DIR> WinRAR
0 File(s) 0 bytes
31 Dir(s) 288˙533˙315˙584 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~2" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~2

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
17. 12. 2016 10:48 <DIR> Adobe
09. 12. 2016 17:50 <DIR> AMD APP
09. 12. 2016 17:50 <DIR> AMD AVT
10. 12. 2016 13:16 <DIR> AnthemScore
09. 12. 2016 17:50 <DIR> ATI Technologies
09. 12. 2016 17:50 <DIR> Audacity
09. 12. 2016 17:50 <DIR> Bluetooth Suite
09. 12. 2016 17:50 <DIR> Brackets
09. 12. 2016 17:50 <DIR> Cisco
14. 12. 2016 20:28 <DIR> Common Files
09. 12. 2016 17:50 <DIR> DAEMON Tools Lite
14. 12. 2016 20:31 <DIR> Firefox
09. 12. 2016 17:50 <DIR> Google
09. 12. 2016 17:51 <DIR> Hewlett-Packard
09. 12. 2016 17:50 <DIR> HP
09. 12. 2016 17:50 <DIR> HP Photo Creations
09. 12. 2016 17:50 <DIR> Intel
09. 12. 2016 17:50 <DIR> Internet Explorer
09. 12. 2016 17:51 <DIR> JSignPdf
09. 12. 2016 17:50 <DIR> K-Lite Codec Pack
09. 12. 2016 17:50 <DIR> Lenovo
09. 12. 2016 17:50 <DIR> McAfee
09. 12. 2016 17:50 <DIR> Microsoft Analysis Services
09. 12. 2016 17:50 <DIR> Microsoft Office
09. 12. 2016 17:50 <DIR> Microsoft Silverlight
09. 12. 2016 17:50 <DIR> Microsoft SQL Server Compact Edition
09. 12. 2016 17:50 <DIR> Microsoft Sync Framework
09. 12. 2016 17:50 <DIR> Microsoft Synchronization Services
09. 12. 2016 17:50 <DIR> Microsoft Visual Studio 8
09. 12. 2016 17:50 <DIR> Microsoft.NET
10. 12. 2016 11:20 <DIR> Mozilla Firefox
11. 12. 2016 09:05 <DIR> Mozilla Maintenance Service
09. 12. 2016 17:50 <DIR> MSBuild
10. 12. 2016 13:16 <DIR> MuseScore 2
09. 12. 2016 17:50 <DIR> Neuratron
10. 12. 2016 09:41 <DIR> Neuratron AudioScore Ultimate Demo
09. 12. 2016 17:50 <DIR> Notepad++
09. 12. 2016 17:51 <DIR> Opera
09. 12. 2016 17:50 <DIR> Qualcomm Atheros
09. 12. 2016 17:50 <DIR> Realtek
09. 12. 2016 17:50 <DIR> Reference Assemblies
09. 12. 2016 17:50 <DIR> Renesas Electronics
09. 12. 2016 17:50 <DIR> RightMark
10. 12. 2016 11:39 <DIR> ScoreCloud Studio
09. 12. 2016 17:50 <DIR> Sibelius Software
09. 12. 2016 17:50 <DIR> Skype
09. 12. 2016 17:50 <DIR> The Witcher 3 Wild Hunt Blood and Wine
09. 12. 2016 17:50 <DIR> VideoLAN
09. 12. 2016 17:50 <DIR> Windows Defender
09. 12. 2016 17:50 <DIR> Windows Mail
09. 12. 2016 17:50 <DIR> Windows Media Player
09. 12. 2016 17:50 <DIR> Windows NT
09. 12. 2016 17:50 <DIR> Windows Photo Viewer
09. 12. 2016 17:50 <DIR> Windows Portable Devices
09. 12. 2016 17:50 <DIR> Windows Sidebar
09. 12. 2016 17:50 <DIR> WindowsPowerShell
0 File(s) 0 bytes
58 Dir(s) 288˙533˙315˙584 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~3" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~3

17. 12. 2016 10:51 <DIR> .
17. 12. 2016 10:51 <DIR> ..
09. 12. 2016 15:31 <DIR> Acoustica
23. 11. 2016 18:41 <DIR> Adobe
07. 10. 2016 14:15 <DIR> AMD
16. 10. 2016 09:40 57 Ament.ini
18. 11. 2016 09:41 <DIR> Atheros
07. 10. 2016 14:27 <DIR> ATI
09. 12. 2016 17:51 <DIR> Avira
07. 10. 2016 13:50 <DIR> Conexant
07. 10. 2016 14:19 <DIR> DAEMON Tools Lite
07. 10. 2016 14:02 <DIR> Downloaded Installations
16. 10. 2016 09:42 <DIR> HP
16. 10. 2016 09:43 <DIR> HP Photo Creations
07. 10. 2016 13:48 <DIR> Intel
08. 10. 2016 10:44 <DIR> McAfee
22. 11. 2016 13:29 <DIR> MFAData
20. 11. 2016 16:47 <DIR> Microsoft Help
23. 11. 2016 17:43 <DIR> Package Cache
07. 10. 2016 13:36 <DIR> Qualcomm Atheros
07. 10. 2016 13:35 <DIR> Roaming
08. 12. 2016 08:42 <DIR> Skype
16. 10. 2016 09:43 <DIR> Visan
1 File(s) 57 bytes
22 Dir(s) 288˙533˙311˙488 bytes free

========= End of CMD: =========


========= dir "%localappdata%" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Users\Michal\AppData\Local

17. 12. 2016 10:49 <DIR> .
17. 12. 2016 10:49 <DIR> ..
25. 11. 2016 10:35 <DIR> Adobe
10. 12. 2016 14:12 <DIR> AnthemScore
07. 10. 2016 17:23 <DIR> Apps
07. 10. 2016 14:27 <DIR> ATI
07. 10. 2016 14:10 <DIR> BMExplorer
07. 10. 2016 17:51 <DIR> CEF
14. 12. 2016 20:18 <DIR> CrashDumps
10. 12. 2016 13:01 <DIR> Deployment
23. 11. 2016 07:18 <DIR> Diagnostics
17. 11. 2016 09:48 <DIR> ElevatedDiagnostics
10. 12. 2016 09:21 <DIR> Firefox
10. 12. 2016 12:08 124˙608 GDIPFONTCACHEV1.DAT
04. 11. 2016 08:38 <DIR> Google
16. 10. 2016 09:43 <DIR> HP
08. 10. 2016 10:48 <DIR> Macromedia
21. 11. 2016 19:44 <DIR> MFAData
29. 11. 2016 13:15 <DIR> Microsoft
15. 11. 2016 17:55 <DIR> Microsoft Help
07. 10. 2016 17:22 <DIR> Mozilla
10. 12. 2016 13:16 <DIR> MuseScore
07. 10. 2016 14:17 <DIR> Programs
19. 11. 2016 09:36 7˙605 Resmon.ResmonCfg
17. 12. 2016 15:59 <DIR> Temp
25. 11. 2016 16:11 <DIR> Tempzxpsign0129c5ea464d1bd0
29. 11. 2016 12:41 <DIR> Tempzxpsign0869e5917f164ad8
07. 12. 2016 19:18 <DIR> Tempzxpsign08708443e994ca5f
02. 12. 2016 08:35 <DIR> Tempzxpsign089f88d9de54e320
01. 12. 2016 14:28 <DIR> Tempzxpsign093bb2eebf52505b
23. 11. 2016 18:12 <DIR> Tempzxpsign0b64d6facd5b380b
01. 12. 2016 14:47 <DIR> Tempzxpsign0c6c77f61ea482b9
25. 11. 2016 14:33 <DIR> Tempzxpsign0d50ec84559762e7
25. 11. 2016 10:49 <DIR> Tempzxpsign0e05eb4c4a3dcf5f
30. 11. 2016 18:23 <DIR> Tempzxpsign0e2689382ab7988b
01. 12. 2016 14:05 <DIR> Tempzxpsign0f35eaf1cde8fff5
25. 11. 2016 09:30 <DIR> Tempzxpsign1054cf807590fa05
25. 11. 2016 09:26 <DIR> Tempzxpsign16e3469ef7cbb3d5
25. 11. 2016 14:33 <DIR> Tempzxpsign1a19d272fff3af72
08. 12. 2016 14:26 <DIR> Tempzxpsign1a4957ae9e010c42
01. 12. 2016 14:33 <DIR> Tempzxpsign2030b3848e1630f2
25. 11. 2016 16:50 <DIR> Tempzxpsign22fbe70e649a2567
08. 12. 2016 09:09 <DIR> Tempzxpsign2368e15f51aa66f0
07. 12. 2016 19:18 <DIR> Tempzxpsign26187949b09a3374
24. 11. 2016 16:05 <DIR> Tempzxpsign29d1708b5d4b643f
30. 11. 2016 18:31 <DIR> Tempzxpsign2ae16539ec40858b
26. 11. 2016 17:11 <DIR> Tempzxpsign2c2cd75c0b565547
26. 11. 2016 17:14 <DIR> Tempzxpsign2e2e77420baffa19
26. 11. 2016 18:30 <DIR> Tempzxpsign315e73162b4dc7e7
25. 11. 2016 10:43 <DIR> Tempzxpsign327e396fd5df5acb
25. 11. 2016 16:12 <DIR> Tempzxpsign3322123ed736752e
08. 12. 2016 09:09 <DIR> Tempzxpsign3431ccb9f2be5af8
25. 11. 2016 09:30 <DIR> Tempzxpsign357a12175afd1c22
25. 11. 2016 16:17 <DIR> Tempzxpsign36c0d5a735365b31
25. 11. 2016 16:12 <DIR> Tempzxpsign36e3f51eedc3d245
25. 11. 2016 14:33 <DIR> Tempzxpsign37ee5b7be7723430
29. 11. 2016 15:42 <DIR> Tempzxpsign38237170c6290eb9
25. 11. 2016 16:11 <DIR> Tempzxpsign3c6005916f9dd753
23. 11. 2016 18:02 <DIR> Tempzxpsign3e3f66ca8c66aa74
01. 12. 2016 09:50 <DIR> Tempzxpsign3f0c97113d683f5b
07. 12. 2016 19:10 <DIR> Tempzxpsign4049943a7c9bee0e
25. 11. 2016 10:49 <DIR> Tempzxpsign447d2b9e4e81afab
26. 11. 2016 18:30 <DIR> Tempzxpsign44f91b5941852f0a
24. 11. 2016 16:04 <DIR> Tempzxpsign49eb3cd7f4b7f320
04. 12. 2016 15:26 <DIR> Tempzxpsign4a446d41aab2d9ce
02. 12. 2016 08:36 <DIR> Tempzxpsign4dfed01b68589eff
25. 11. 2016 09:29 <DIR> Tempzxpsign519b2990f93cb040
30. 11. 2016 18:23 <DIR> Tempzxpsign54ffb038181ccd4d
23. 11. 2016 18:07 <DIR> Tempzxpsign56c048b2693f68d5
25. 11. 2016 16:12 <DIR> Tempzxpsign5703aadb952e53fd
07. 12. 2016 18:38 <DIR> Tempzxpsign58387ca720608c0e
23. 11. 2016 18:01 <DIR> Tempzxpsign58da6dbb7fd1acb1
25. 11. 2016 16:50 <DIR> Tempzxpsign5c6ba150a70edfdd
08. 12. 2016 09:09 <DIR> Tempzxpsign5caf336a714ad62c
08. 12. 2016 14:39 <DIR> Tempzxpsign5f5d0463584beaab
08. 12. 2016 09:09 <DIR> Tempzxpsign5fa04cddc00c2968
25. 11. 2016 09:31 <DIR> Tempzxpsign6101293415ace175
08. 12. 2016 09:09 <DIR> Tempzxpsign617167e66810f387
10. 12. 2016 11:16 <DIR> Tempzxpsign6280dd11afb9dba7
08. 12. 2016 09:13 <DIR> Tempzxpsign63449d47d21786f7
03. 12. 2016 12:36 <DIR> Tempzxpsign637f95dfd3deab22
25. 11. 2016 09:31 <DIR> Tempzxpsign64291c0b5a0926b9
08. 12. 2016 09:09 <DIR> Tempzxpsign6630ea7a2aaaea6f
24. 11. 2016 15:40 <DIR> Tempzxpsign676e0b6a7a46bb3b
23. 11. 2016 18:07 <DIR> Tempzxpsign67ece1634f88fc75
25. 11. 2016 09:30 <DIR> Tempzxpsign684ff9c364f03851
25. 11. 2016 09:51 <DIR> Tempzxpsign6b9cc90398a0cb1e
07. 12. 2016 18:38 <DIR> Tempzxpsign6dcc49399f8c408e
25. 11. 2016 09:30 <DIR> Tempzxpsign6e0ff71341284eb7
07. 12. 2016 19:03 <DIR> Tempzxpsign6f2861bb349627f7
01. 12. 2016 09:12 <DIR> Tempzxpsign712e33010fec095c
01. 12. 2016 09:38 <DIR> Tempzxpsign726672b45aceab45
25. 11. 2016 09:29 <DIR> Tempzxpsign73b85cb532a49866
25. 11. 2016 14:49 <DIR> Tempzxpsign749b30851f685ccf
08. 12. 2016 09:09 <DIR> Tempzxpsign75c2f24933b279cf
29. 11. 2016 14:34 <DIR> Tempzxpsign760eae1ed084535c
04. 12. 2016 15:22 <DIR> Tempzxpsign76352d9288f330e9
25. 11. 2016 16:50 <DIR> Tempzxpsign76cb548188a4d357
25. 11. 2016 10:49 <DIR> Tempzxpsign77c9488ef26f1957
29. 11. 2016 14:17 <DIR> Tempzxpsign7ba0c41e17cff74f
25. 11. 2016 16:51 <DIR> Tempzxpsign7c50c242c36dec9a
01. 12. 2016 08:43 <DIR> Tempzxpsign7dd9662d1863cfba
25. 11. 2016 10:35 <DIR> Tempzxpsign7e69804d9b986f44
25. 11. 2016 08:17 <DIR> Tempzxpsign7f0a6b69175290fb
25. 11. 2016 14:29 <DIR> Tempzxpsign81fe6f6e41476c4f
25. 11. 2016 08:17 <DIR> Tempzxpsign8360ad92f119fba9
01. 12. 2016 14:33 <DIR> Tempzxpsign836b3f85dac8e120
01. 12. 2016 14:21 <DIR> Tempzxpsign83da037ce220920b
07. 12. 2016 19:31 <DIR> Tempzxpsign84b58b53f9301053
25. 11. 2016 14:28 <DIR> Tempzxpsign84f007c38e52055b
24. 11. 2016 15:40 <DIR> Tempzxpsign84fcebf5ab499b2f
25. 11. 2016 09:26 <DIR> Tempzxpsign8618836b38fb0f06
13. 12. 2016 13:09 <DIR> Tempzxpsign8924fc58313f079a
02. 12. 2016 08:36 <DIR> Tempzxpsign8a48116b133eec3d
13. 12. 2016 13:08 <DIR> Tempzxpsign8b1b574b55534ede
24. 11. 2016 15:54 <DIR> Tempzxpsign8c637eb919a2e78b
29. 11. 2016 14:18 <DIR> Tempzxpsign8d8256ce50bbc819
01. 12. 2016 08:43 <DIR> Tempzxpsign8f0f885cd9fcb2c8
01. 12. 2016 14:21 <DIR> Tempzxpsign8f2c1411af27bf28
24. 11. 2016 15:41 <DIR> Tempzxpsign8fad4dd83e783b7e
01. 12. 2016 09:50 <DIR> Tempzxpsign90b3543d86bb94b7
26. 11. 2016 17:12 <DIR> Tempzxpsign911d90bba4c005a5
25. 11. 2016 10:50 <DIR> Tempzxpsign915294f1d99e4f2e
25. 11. 2016 14:29 <DIR> Tempzxpsign92a69d7d9dd97171
23. 11. 2016 17:59 <DIR> Tempzxpsign9583690508cdc442
25. 11. 2016 09:31 <DIR> Tempzxpsign95a95dbbbee73014
01. 12. 2016 14:05 <DIR> Tempzxpsign981669be21ccd874
25. 11. 2016 16:51 <DIR> Tempzxpsign9aca18065b137984
25. 11. 2016 14:33 <DIR> Tempzxpsign9b36d278d0a4d778
24. 11. 2016 16:03 <DIR> Tempzxpsign9bd2492a5695ddd6
26. 11. 2016 17:11 <DIR> Tempzxpsign9c1abd5d31566242
25. 11. 2016 10:49 <DIR> Tempzxpsign9c6039ea2b84dba5
24. 11. 2016 16:05 <DIR> Tempzxpsign9dd3a42e09c39db5
23. 11. 2016 14:09 <DIR> Tempzxpsigna10c87b8ec352cb1
07. 12. 2016 18:41 <DIR> Tempzxpsigna4112098cba3b545
07. 12. 2016 19:19 <DIR> Tempzxpsigna64625fb825af44a
25. 11. 2016 14:28 <DIR> Tempzxpsigna66c9190cdaad7ed
24. 11. 2016 16:05 <DIR> Tempzxpsigna734fffac3057565
13. 12. 2016 13:09 <DIR> Tempzxpsignaa0a89b2b72d676c
25. 11. 2016 09:27 <DIR> Tempzxpsignac277e113a0ac49f
29. 11. 2016 15:58 <DIR> Tempzxpsignad766ffe9529aa1c
01. 12. 2016 14:46 <DIR> Tempzxpsignafa4cfdfa387e7f7
25. 11. 2016 09:30 <DIR> Tempzxpsignb0bad4c992317797
03. 12. 2016 12:36 <DIR> Tempzxpsignb9a0456209b0fb90
13. 12. 2016 13:08 <DIR> Tempzxpsignb9d28553828958ec
08. 12. 2016 14:26 <DIR> Tempzxpsignbbb6b284072599f2
04. 12. 2016 15:23 <DIR> Tempzxpsignbbb9965e4c421aac
08. 12. 2016 09:09 <DIR> Tempzxpsignbee8659ec374bfd9
25. 11. 2016 16:51 <DIR> Tempzxpsignbffc69d2e5d60b32
24. 11. 2016 15:56 <DIR> Tempzxpsignc0213cc5ef6d97b1
25. 11. 2016 10:52 <DIR> Tempzxpsignc172002c811ca5f4
25. 11. 2016 09:30 <DIR> Tempzxpsignc19a8417ded9332d
25. 11. 2016 14:29 <DIR> Tempzxpsignc1c3e7637aa83065
24. 11. 2016 15:56 <DIR> Tempzxpsignc1d0bd168acb068e
01. 12. 2016 14:05 <DIR> Tempzxpsignc416a405298374d2
04. 12. 2016 15:23 <DIR> Tempzxpsignc45ea8219c449654
24. 11. 2016 15:54 <DIR> Tempzxpsignc6439a6e31866387
24. 11. 2016 15:57 <DIR> Tempzxpsignc73dcb2132a228ae
29. 11. 2016 12:39 <DIR> Tempzxpsignc95b42e29036466e
07. 12. 2016 19:31 <DIR> Tempzxpsignc98638ed7eea07cb
01. 12. 2016 09:12 <DIR> Tempzxpsignc9a5cc778c404459
02. 12. 2016 08:35 <DIR> Tempzxpsignca2078198d882286
10. 12. 2016 11:16 <DIR> Tempzxpsignca5c412747d76b3f
01. 12. 2016 09:50 <DIR> Tempzxpsigncde8aac452b4324e
01. 12. 2016 08:43 <DIR> Tempzxpsignce36f1c8dc468bf1
07. 12. 2016 19:32 <DIR> Tempzxpsigncee4ec77b8cd039b
07. 12. 2016 19:03 <DIR> Tempzxpsigncf9de7cb9f6227d4
04. 12. 2016 15:27 <DIR> Tempzxpsignd1bf3c4c02a0b68b
24. 11. 2016 15:40 <DIR> Tempzxpsignd396a344c325b7df
24. 11. 2016 16:03 <DIR> Tempzxpsignd3e8951f534be6da
03. 12. 2016 12:36 <DIR> Tempzxpsignd5da385de6fd2890
29. 11. 2016 14:17 <DIR> Tempzxpsignd65fbc1f5a9677ef
07. 12. 2016 18:47 <DIR> Tempzxpsignd67b7683074df9c9
25. 11. 2016 08:18 <DIR> Tempzxpsignd694ce34272bd123
26. 11. 2016 18:37 <DIR> Tempzxpsignd7cb58767b595773
25. 11. 2016 10:50 <DIR> Tempzxpsigndbd601fe96fcde09
23. 11. 2016 14:05 <DIR> Tempzxpsigndbe751830fc4ef17
25. 11. 2016 14:29 <DIR> Tempzxpsigndcf4469ddea8caf5
02. 12. 2016 08:35 <DIR> Tempzxpsignde71e76c18358e83
08. 12. 2016 14:33 <DIR> Tempzxpsigne006d29ead18caf3
29. 11. 2016 12:39 <DIR> Tempzxpsigne0d742a69f007cec
08. 12. 2016 14:36 <DIR> Tempzxpsigne1ced321dfdfb9a4
23. 11. 2016 18:07 <DIR> Tempzxpsigne208c4645b61e0ca
23. 11. 2016 17:59 <DIR> Tempzxpsigne28d99f7ba0940de
25. 11. 2016 10:48 <DIR> Tempzxpsigne3bfa15279d8cc61
13. 12. 2016 13:09 <DIR> Tempzxpsigne52d9fbe0f737919
24. 11. 2016 15:54 <DIR> Tempzxpsigne7114b6c0570ce14
04. 12. 2016 15:22 <DIR> Tempzxpsigne825740709a62977
24. 11. 2016 16:05 <DIR> Tempzxpsignea5367d43c3157e8
25. 11. 2016 09:27 <DIR> Tempzxpsignea69996a3d358db7
26. 11. 2016 18:37 <DIR> Tempzxpsignea81d48a8b65529b
13. 12. 2016 13:09 <DIR> Tempzxpsigneb139762080477ae
29. 11. 2016 12:39 <DIR> Tempzxpsignebb2588b068b8ce7
02. 12. 2016 08:55 <DIR> Tempzxpsignedd1f5a77ec3e170
08. 12. 2016 14:26 <DIR> Tempzxpsignee60114fb4b1736e
04. 12. 2016 15:23 <DIR> Tempzxpsignee9598d774c5a0ab
25. 11. 2016 10:35 <DIR> Tempzxpsignef004a92cf6d8dd3
01. 12. 2016 14:33 <DIR> Tempzxpsignef86ed7a47234b5f
25. 11. 2016 10:50 <DIR> Tempzxpsignf17d395d597a11d7
08. 12. 2016 14:34 <DIR> Tempzxpsignf1f638c1177a31b0
23. 11. 2016 14:05 <DIR> Tempzxpsignf268b732b53d6e41
29. 11. 2016 15:59 <DIR> Tempzxpsignf2f5363d549be76a
01. 12. 2016 14:46 <DIR> Tempzxpsignf5b96ce0dbd76646
26. 11. 2016 18:37 <DIR> Tempzxpsignf638436609388d93
23. 11. 2016 17:59 <DIR> Tempzxpsignfb2bea506765f1fd
08. 12. 2016 14:33 <DIR> Tempzxpsignfc3eb4accfdb44f1
23. 11. 2016 14:05 <DIR> Tempzxpsignfdbca61b281d99b4
26. 11. 2016 18:37 <DIR> Tempzxpsignfdc10a1f9615cd11
10. 12. 2016 11:16 <DIR> Tempzxpsignff25e483c072c8cf
08. 10. 2016 10:44 <DIR> tkdata
10. 12. 2016 13:22 <DIR> VirtualStore
09. 10. 2016 09:44 17˙408 WebpageIcons.db
3 File(s) 149˙621 bytes
209 Dir(s) 288˙533˙299˙200 bytes free

========= End of CMD: =========


========= dir "%appdata%" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Users\Michal\AppData\Roaming

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
09. 12. 2016 15:31 <DIR> Acoustica
23. 11. 2016 18:41 <DIR> Adobe
07. 10. 2016 14:06 <DIR> Atheros
07. 10. 2016 14:27 <DIR> ATI
11. 12. 2016 13:06 <DIR> Audacity
30. 11. 2016 18:22 <DIR> Brackets
07. 10. 2016 14:19 <DIR> DAEMON Tools Lite
08. 10. 2016 10:51 <DIR> Easeware
10. 12. 2016 09:21 <DIR> Firefox
23. 10. 2016 10:10 <DIR> HpUpdate
07. 10. 2016 13:20 <DIR> Identities
07. 10. 2016 13:39 <DIR> InstallShield
07. 10. 2016 13:35 <DIR> Intel
07. 10. 2016 13:38 <DIR> Intel Corporation
07. 10. 2016 17:13 <DIR> Macromedia
16. 11. 2016 17:13 <DIR> Media Player Classic
07. 10. 2016 17:16 <DIR> Mozilla
10. 12. 2016 17:52 <DIR> MuseScore
09. 12. 2016 16:40 <DIR> Neuratron
01. 11. 2016 11:44 <DIR> Notepad++
09. 12. 2016 17:50 <DIR> Profiles
11. 10. 2016 21:35 607˙138 Scorch_Install.log
10. 12. 2016 14:55 <DIR> ScoreCloud
11. 10. 2016 21:36 <DIR> Sibelius Software
17. 12. 2016 15:55 <DIR> Skype
09. 12. 2016 15:32 <DIR> SynthMaker
10. 12. 2016 20:08 <DIR> uTorrent
09. 12. 2016 15:31 <DIR> vlc
08. 10. 2016 12:25 <DIR> WinRAR
1 File(s) 607˙138 bytes
30 Dir(s) 288˙533˙295˙104 bytes free

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14838522 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 17877 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Michal => 14747339 B
WOUTempAdmin => 0 B

RecycleBin => 263973 B
EmptyTemp: => 28.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:59:24 ====

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 16:18
od michal1097
mozilu som od instaloval no stale my ostala v počitači a dala sa pouzivat tak som vymazal cely jej subor a urobil FRST log
rozdeleny do časti..

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
Ran by Michal (administrator) on MICHAL-PC (17-12-2016 16:14:43)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Professional N Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\Firefox\Firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286192 2013-01-31] (Intel Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2876816 2013-03-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [899680 2013-02-04] (Conexant Systems, Inc.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [184112 2012-09-17] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2016-10-07] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2016-10-07] (Lenovo(beijing) Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642816 2013-04-25] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-12] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27230168 2016-11-15] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-06-10] ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{830EE113-6E8D-40FA-8F66-2B1E9AE588DC}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: crsahtbq.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\naweriweentcofise\Profiles\crsahtbq.default\Profiles\crsahtbq.default [not found]
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default [2016-12-17]
FF user.js: detected! => C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js [2016-12-14]
FF Extension: (Bing Search) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-10-07]
FF Extension: (Adblock Plus) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default [2016-12-17]
FF user.js: detected! => C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js [2016-12-12]
FF DefaultSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SelectedSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF Homepage: Firefox\Firefox\Profiles\crsahtbq.default -> hxxps://www.google.sk/
FF Extension: (SimilarWeb) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2016-12-17] [not signed]
FF Extension: (Bing Search) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-10-07]
FF Extension: (English (US) Language Pack) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2016-12-12] [not signed]
FF Extension: (Adblock Plus) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-13] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-12] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @Sibelius.com/Scorch Plugin,version=6.2.0.88 -> C:\Program Files (x86)\Sibelius Software\Scorch\npsibelius.dll [2013-03-11] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-12] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPSibelius.dll [2013-03-11] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\PDFNetC.dll [2010-03-31] (PDFTron Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchAxPlugin.dll [2010-04-08] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ScorchPDFWrapper.dll [2010-04-08] ()

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2016-12-17] <==== ATTENTION
CHR Extension: (Dokumenty Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2016-10-08]
CHR Extension: (Adblocker na Youtube™) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eojeoeddgeaeahpmfabdfpfialkoplcb [2016-12-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-08]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-24] (Qualcomm Atheros Commnucations) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-08-21] (Intel Corporation)
S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [163328 2016-12-12] (Mozilla Foundation) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-04-18] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-11-18] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-01-24] (Atheros) [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3388144 2013-04-18] (Intel® Corporation)
S2 Musadom; C:\Program Files (x86)\Merpetionannage\atqCch.dll [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [132920 2013-03-25] (Motorola Solutions, Inc.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [128200 2013-04-03] (Qualcomm Atheros Co., Ltd.)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2016-10-07] () [File not signed]
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [121248 2016-09-12] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [195936 2016-09-12] (Oracle Corporation)
U3 agr0muug; C:\Windows\System32\Drivers\agr0muug.sys [0 ] (Microsoft Corporation) <==== ATTENTION (zero byte File/Folder)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-17 16:12 - 2016-12-17 16:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-17 16:10 - 2016-12-17 16:09 - 00000943 _____ C:\Users\Michal\Documents\indexfile.txt
2016-12-17 16:09 - 2016-12-17 16:09 - 23446111 _____ C:\Users\Michal\Documents\Firefox 50.0.2 (x86 sk) - 2016-12-17.pcv
2016-12-17 16:08 - 2016-12-17 16:08 - 01035926 _____ C:\Users\Michal\Downloads\MozBackup-1.5.1-EN.exe
2016-12-17 16:08 - 2016-12-17 16:08 - 00001031 _____ C:\Users\Public\Desktop\MozBackup.lnk
2016-12-17 16:08 - 2016-12-17 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2016-12-17 16:08 - 2016-12-17 16:08 - 00000000 ____D C:\Program Files (x86)\MozBackup
2016-12-17 15:58 - 2016-12-17 15:59 - 00057335 _____ C:\Users\Michal\Desktop\Fixlog.txt
2016-12-17 11:41 - 2016-12-17 11:41 - 00009007 _____ C:\Users\Michal\Desktop\Addition_17-12-2016 11.36.15.rar
2016-12-17 11:35 - 2016-12-17 16:14 - 00017784 _____ C:\Users\Michal\Desktop\FRST.txt
2016-12-17 11:34 - 2016-12-17 11:36 - 00030628 _____ C:\Users\Michal\Desktop\Addition.txt
2016-12-17 11:28 - 2016-12-17 11:28 - 00000624 _____ C:\Users\Michal\Desktop\SearchReg.txt
2016-12-17 10:51 - 2016-12-17 10:51 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-12-16 17:17 - 2016-12-16 17:17 - 00026756 _____ C:\Users\Michal\Desktop\v_pondelok_doma_nebudem_husle.pdf
2016-12-16 12:55 - 2016-12-16 13:42 - 824817956 _____ C:\Users\Michal\Downloads\3-dny-na-zabití-2014_CZ-dab.avi
2016-12-16 10:25 - 2016-12-16 10:25 - 00882405 _____ C:\Users\Michal\Downloads\newsletter 02-07.pdf
2016-12-14 20:40 - 2016-12-14 20:40 - 00033326 _____ C:\ComboFix.txt
2016-12-14 20:22 - 2016-12-17 08:40 - 00000000 ____D C:\Windows\erdnt
2016-12-14 20:18 - 2016-12-14 20:19 - 00002772 _____ C:\Users\Michal\Desktop\Rkill.txt
2016-12-14 20:18 - 2016-12-14 20:18 - 00000000 ____D C:\Users\Michal\Desktop\rkill
2016-12-14 15:28 - 2016-12-14 15:38 - 00000000 ____D C:\Users\Michal\Desktop\ea zap
2016-12-14 15:18 - 2016-12-14 15:18 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\Michal\Desktop\rkill.exe
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignaa0a89b2b72d676c
2016-12-13 13:09 - 2016-12-13 13:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8924fc58313f079a
2016-12-13 13:08 - 2016-12-13 13:08 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb9d28553828958ec
2016-12-13 13:08 - 2016-12-13 13:08 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8b1b574b55534ede
2016-12-12 16:32 - 2016-12-17 16:14 - 00000000 ____D C:\FRST
2016-12-12 16:32 - 2016-12-12 16:32 - 02420224 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2016-12-12 13:47 - 2016-12-12 13:47 - 00189833 _____ C:\Users\Michal\Downloads\9.3.2.12 Configuring Extended ACLs Scenario 3.pka
2016-12-12 13:38 - 2016-12-12 13:44 - 00515337 _____ C:\Users\Michal\Downloads\9.3.2.10 Configuring Extended ACLs Scenario 1.pka
2016-12-12 13:05 - 2016-12-12 14:37 - 1329831828 _____ C:\Users\Michal\Downloads\Fantastická zvířata a kde je najít (kino) cz.dabing.avi
2016-12-12 12:59 - 2016-12-12 16:42 - 00000000 ____D C:\Users\Michal\Desktop\v
2016-12-12 10:55 - 2016-12-12 16:33 - 00133173 _____ C:\Users\Michal\Desktop\router.pkt
2016-12-11 10:13 - 2016-12-11 16:22 - 00000000 _____ C:\Users\Michal\Downloads\9.2.1.10 Packet Tracer Configuring Standard ACLs.pka
2016-12-11 10:13 - 2016-12-11 10:13 - 00364660 _____ C:\Users\Michal\Downloads\9.2.1.10 Packet Tracer Configuring Standard ACLs.pka~
2016-12-10 20:10 - 2016-12-10 20:10 - 00000000 ____D C:\Windows\system32\%LOCALAPPDATA%
2016-12-10 18:02 - 2016-12-10 18:06 - 00001373 _____ C:\Users\Michal\Desktop\iptv.cfg
2016-12-10 15:05 - 2016-12-13 15:36 - 00000000 ____D C:\Users\Michal\Desktop\audio
2016-12-10 14:27 - 2016-12-10 14:27 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\uTorrent
2016-12-10 13:17 - 2016-12-10 17:52 - 00000000 ____D C:\Users\Michal\AppData\Roaming\MuseScore
2016-12-10 13:16 - 2016-12-10 14:12 - 00000000 ____D C:\Users\Michal\AppData\Local\AnthemScore
2016-12-10 13:16 - 2016-12-10 13:16 - 00000000 ____D C:\Users\Michal\Documents\MuseScore2
2016-12-10 13:16 - 2016-12-10 13:16 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MuseScore 2
2016-12-10 13:16 - 2016-12-10 13:16 - 00000000 ____D C:\Users\Michal\AppData\Local\MuseScore
2016-12-10 13:15 - 2016-12-10 13:16 - 00000000 ____D C:\Program Files (x86)\MuseScore 2
2016-12-10 13:10 - 2016-12-10 13:10 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnthemScore
2016-12-10 13:06 - 2016-12-10 13:16 - 00000000 ____D C:\Program Files (x86)\AnthemScore
2016-12-10 11:50 - 2016-12-10 11:50 - 00000000 ____D C:\Users\Public\Documents\Notation_3
2016-12-10 11:46 - 2016-12-10 14:55 - 00000000 ____D C:\Users\Michal\AppData\Roaming\ScoreCloud
2016-12-10 11:39 - 2016-12-10 11:39 - 00001096 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScoreCloud Studio.lnk
2016-12-10 11:39 - 2016-12-10 11:39 - 00000000 ____D C:\Program Files (x86)\ScoreCloud Studio
2016-12-10 11:16 - 2016-12-10 11:16 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignff25e483c072c8cf
2016-12-10 11:16 - 2016-12-10 11:16 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignca5c412747d76b3f
2016-12-10 11:16 - 2016-12-10 11:16 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6280dd11afb9dba7
2016-12-10 09:41 - 2016-12-10 09:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neuratron
2016-12-10 09:40 - 2016-12-10 09:41 - 00000000 ____D C:\Program Files (x86)\Neuratron AudioScore Ultimate Demo
2016-12-10 09:21 - 2016-12-10 09:21 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Firefox
2016-12-10 09:21 - 2016-12-10 09:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Firefox
2016-12-10 09:19 - 2016-12-10 09:32 - 00000000 ____D C:\Windows\system32\log
2016-12-10 08:56 - 2016-12-17 10:51 - 00000008 __RSH C:\Users\Michal\ntuser.pol
2016-12-09 17:51 - 2016-12-09 17:51 - 00000000 ____D C:\ProgramData\Avira
2016-12-09 16:40 - 2016-12-09 16:40 - 00000000 ____D C:\Users\Michal\Documents\AudioScore Documents
2016-12-09 16:40 - 2016-12-09 16:40 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Neuratron
2016-12-09 16:39 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Neuratron
2016-12-09 16:00 - 2016-12-11 13:06 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Audacity
2016-12-09 16:00 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Audacity
2016-12-09 16:00 - 2016-12-09 16:00 - 00001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-12-09 15:32 - 2016-12-09 15:32 - 00000000 ____D C:\Users\Michal\Documents\Mixcraft Projects
2016-12-09 15:32 - 2016-12-09 15:32 - 00000000 ____D C:\Users\Michal\AppData\Roaming\SynthMaker
2016-12-09 15:31 - 2016-12-09 15:31 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Acoustica
2016-12-09 15:31 - 2016-12-09 15:31 - 00000000 ____D C:\ProgramData\Acoustica
2016-12-09 15:28 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\RightMark
2016-12-08 14:39 - 2016-12-08 14:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5f5d0463584beaab
2016-12-08 14:36 - 2016-12-08 14:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne1ced321dfdfb9a4
2016-12-08 14:34 - 2016-12-08 14:34 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf1f638c1177a31b0
2016-12-08 14:33 - 2016-12-08 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfc3eb4accfdb44f1
2016-12-08 14:33 - 2016-12-08 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne006d29ead18caf3
2016-12-08 14:26 - 2016-12-08 14:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignee60114fb4b1736e
2016-12-08 14:26 - 2016-12-08 14:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbbb6b284072599f2
2016-12-08 14:26 - 2016-12-08 14:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1a4957ae9e010c42
2016-12-08 09:13 - 2016-12-08 09:13 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign63449d47d21786f7
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbee8659ec374bfd9
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign75c2f24933b279cf
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6630ea7a2aaaea6f
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign617167e66810f387
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5fa04cddc00c2968
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5caf336a714ad62c
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3431ccb9f2be5af8
2016-12-08 09:09 - 2016-12-08 09:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2368e15f51aa66f0
2016-12-07 19:32 - 2016-12-07 19:32 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncee4ec77b8cd039b
2016-12-07 19:31 - 2016-12-07 19:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc98638ed7eea07cb
2016-12-07 19:31 - 2016-12-07 19:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign84b58b53f9301053
2016-12-07 19:19 - 2016-12-07 19:19 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna64625fb825af44a
2016-12-07 19:18 - 2016-12-07 19:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign26187949b09a3374
2016-12-07 19:18 - 2016-12-07 19:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign08708443e994ca5f
2016-12-07 19:10 - 2016-12-07 19:10 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign4049943a7c9bee0e
2016-12-07 19:03 - 2016-12-07 19:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncf9de7cb9f6227d4
2016-12-07 19:03 - 2016-12-07 19:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6f2861bb349627f7
2016-12-07 18:47 - 2016-12-07 18:47 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd67b7683074df9c9
2016-12-07 18:41 - 2016-12-07 18:41 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna4112098cba3b545
2016-12-07 18:38 - 2016-12-07 18:38 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6dcc49399f8c408e
2016-12-07 18:38 - 2016-12-07 18:38 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign58387ca720608c0e
2016-12-05 21:37 - 2016-12-05 21:37 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2016-12-04 15:27 - 2016-12-04 15:27 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd1bf3c4c02a0b68b
2016-12-04 15:26 - 2016-12-04 15:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign4a446d41aab2d9ce
2016-12-04 15:23 - 2016-12-04 15:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignee9598d774c5a0ab
2016-12-04 15:23 - 2016-12-04 15:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc45ea8219c449654
2016-12-04 15:23 - 2016-12-04 15:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbbb9965e4c421aac
2016-12-04 15:22 - 2016-12-04 15:22 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne825740709a62977
2016-12-04 15:22 - 2016-12-04 15:22 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign76352d9288f330e9
2016-12-03 17:20 - 2016-12-03 17:20 - 03968464 _____ C:\Users\Michal\Desktop\adwcleaner_6.040.exe
2016-12-03 13:17 - 2016-12-03 13:17 - 02957094 _____ C:\Users\Michal\Desktop\semestralka tablet deskop.rar
2016-12-03 12:36 - 2016-12-03 12:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd5da385de6fd2890
2016-12-03 12:36 - 2016-12-03 12:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb9a0456209b0fb90
2016-12-03 12:36 - 2016-12-03 12:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign637f95dfd3deab22
2016-12-02 08:55 - 2016-12-02 08:55 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignedd1f5a77ec3e170
2016-12-02 08:36 - 2016-12-02 08:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8a48116b133eec3d
2016-12-02 08:36 - 2016-12-02 08:36 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign4dfed01b68589eff
2016-12-02 08:35 - 2016-12-02 08:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignde71e76c18358e83
2016-12-02 08:35 - 2016-12-02 08:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignca2078198d882286
2016-12-02 08:35 - 2016-12-02 08:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign089f88d9de54e320
2016-12-01 14:47 - 2016-12-01 14:47 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0c6c77f61ea482b9
2016-12-01 14:46 - 2016-12-01 14:46 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf5b96ce0dbd76646
2016-12-01 14:46 - 2016-12-01 14:46 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignafa4cfdfa387e7f7
2016-12-01 14:33 - 2016-12-01 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignef86ed7a47234b5f
2016-12-01 14:33 - 2016-12-01 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign836b3f85dac8e120
2016-12-01 14:33 - 2016-12-01 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2030b3848e1630f2
2016-12-01 14:28 - 2016-12-01 14:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign093bb2eebf52505b
2016-12-01 14:21 - 2016-12-01 14:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8f2c1411af27bf28
2016-12-01 14:21 - 2016-12-01 14:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign83da037ce220920b
2016-12-01 14:05 - 2016-12-01 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc416a405298374d2
2016-12-01 14:05 - 2016-12-01 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign981669be21ccd874
2016-12-01 14:05 - 2016-12-01 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0f35eaf1cde8fff5
2016-12-01 09:50 - 2016-12-01 09:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigncde8aac452b4324e
2016-12-01 09:50 - 2016-12-01 09:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign90b3543d86bb94b7
2016-12-01 09:50 - 2016-12-01 09:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3f0c97113d683f5b
2016-12-01 09:45 - 2016-12-17 16:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-01 09:38 - 2016-12-01 09:38 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign726672b45aceab45
2016-12-01 09:12 - 2016-12-01 09:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc9a5cc778c404459
2016-12-01 09:12 - 2016-12-01 09:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign712e33010fec095c
2016-12-01 08:43 - 2016-12-01 08:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignce36f1c8dc468bf1
2016-12-01 08:43 - 2016-12-01 08:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8f0f885cd9fcb2c8
2016-12-01 08:43 - 2016-12-01 08:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7dd9662d1863cfba
2016-11-30 21:56 - 2016-11-30 21:56 - 02331607 ____R C:\Users\Michal\Desktop\vianocna.wma
2016-11-30 18:31 - 2016-11-30 18:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2ae16539ec40858b
2016-11-30 18:23 - 2016-11-30 18:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign54ffb038181ccd4d
2016-11-30 18:23 - 2016-11-30 18:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0e2689382ab7988b
2016-11-30 18:22 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Brackets
2016-11-30 18:22 - 2016-11-30 18:22 - 00000776 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brackets.lnk
2016-11-29 15:59 - 2016-11-29 15:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf2f5363d549be76a
2016-11-29 15:58 - 2016-11-29 15:58 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignad766ffe9529aa1c
2016-11-29 15:42 - 2016-11-29 15:42 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign38237170c6290eb9
2016-11-29 14:34 - 2016-11-29 14:34 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign760eae1ed084535c
2016-11-29 14:18 - 2016-11-29 14:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8d8256ce50bbc819
2016-11-29 14:17 - 2016-11-29 14:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd65fbc1f5a9677ef
2016-11-29 14:17 - 2016-11-29 14:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7ba0c41e17cff74f
2016-11-29 12:41 - 2016-11-29 12:41 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0869e5917f164ad8
2016-11-29 12:39 - 2016-11-29 12:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignebb2588b068b8ce7
2016-11-29 12:39 - 2016-11-29 12:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne0d742a69f007cec
2016-11-29 12:39 - 2016-11-29 12:39 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc95b42e29036466e
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfdc10a1f9615cd11
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf638436609388d93
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignea81d48a8b65529b
2016-11-26 18:37 - 2016-11-26 18:37 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd7cb58767b595773
2016-11-26 18:30 - 2016-11-26 18:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign44f91b5941852f0a
2016-11-26 18:30 - 2016-11-26 18:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign315e73162b4dc7e7
2016-11-26 17:14 - 2016-11-26 17:14 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2e2e77420baffa19
2016-11-26 17:12 - 2016-11-26 17:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign911d90bba4c005a5
2016-11-26 17:11 - 2016-11-26 17:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9c1abd5d31566242
2016-11-26 17:11 - 2016-11-26 17:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign2c2cd75c0b565547
2016-11-25 16:51 - 2016-11-25 16:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignbffc69d2e5d60b32
2016-11-25 16:51 - 2016-11-25 16:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9aca18065b137984
2016-11-25 16:51 - 2016-11-25 16:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7c50c242c36dec9a
2016-11-25 16:50 - 2016-11-25 16:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign76cb548188a4d357
2016-11-25 16:50 - 2016-11-25 16:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5c6ba150a70edfdd
2016-11-25 16:50 - 2016-11-25 16:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign22fbe70e649a2567
2016-11-25 16:17 - 2016-11-25 16:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign36c0d5a735365b31
2016-11-25 16:12 - 2016-11-25 16:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign5703aadb952e53fd
2016-11-25 16:12 - 2016-11-25 16:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign36e3f51eedc3d245
2016-11-25 16:12 - 2016-11-25 16:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3322123ed736752e
2016-11-25 16:11 - 2016-11-25 16:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3c6005916f9dd753
2016-11-25 16:11 - 2016-11-25 16:11 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0129c5ea464d1bd0
2016-11-25 14:49 - 2016-11-25 14:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign749b30851f685ccf
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9b36d278d0a4d778
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign37ee5b7be7723430
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1a19d272fff3af72
2016-11-25 14:33 - 2016-11-25 14:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0d50ec84559762e7
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndcf4469ddea8caf5
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc1c3e7637aa83065
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign92a69d7d9dd97171
2016-11-25 14:29 - 2016-11-25 14:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign81fe6f6e41476c4f
2016-11-25 14:28 - 2016-11-25 14:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna66c9190cdaad7ed
2016-11-25 14:28 - 2016-11-25 14:28 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign84f007c38e52055b
2016-11-25 11:20 - 2016-12-13 13:10 - 00000000 ____D C:\Users\Michal\Desktop\fotoshop
2016-11-25 10:52 - 2016-11-25 10:52 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc172002c811ca5f4
2016-11-25 10:50 - 2016-11-25 10:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf17d395d597a11d7
2016-11-25 10:50 - 2016-11-25 10:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndbd601fe96fcde09
2016-11-25 10:50 - 2016-11-25 10:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign915294f1d99e4f2e
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9c6039ea2b84dba5
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign77c9488ef26f1957
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign447d2b9e4e81afab
2016-11-25 10:49 - 2016-11-25 10:49 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0e05eb4c4a3dcf5f
2016-11-25 10:48 - 2016-11-25 10:48 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne3bfa15279d8cc61
2016-11-25 10:43 - 2016-11-25 10:43 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign327e396fd5df5acb
2016-11-25 10:35 - 2016-11-25 10:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignef004a92cf6d8dd3
2016-11-25 10:35 - 2016-11-25 10:35 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7e69804d9b986f44
2016-11-25 09:51 - 2016-11-25 09:51 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6b9cc90398a0cb1e
2016-11-25 09:31 - 2016-11-25 09:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign95a95dbbbee73014
2016-11-25 09:31 - 2016-11-25 09:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign64291c0b5a0926b9
2016-11-25 09:31 - 2016-11-25 09:31 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6101293415ace175
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc19a8417ded9332d
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignb0bad4c992317797
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign6e0ff71341284eb7
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign684ff9c364f03851
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign357a12175afd1c22
2016-11-25 09:30 - 2016-11-25 09:30 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign1054cf807590fa05
2016-11-25 09:29 - 2016-11-25 09:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign73b85cb532a49866
2016-11-25 09:29 - 2016-11-25 09:29 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign519b2990f93cb040
2016-11-25 09:27 - 2016-11-25 09:27 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignea69996a3d358db7
2016-11-25 09:27 - 2016-11-25 09:27 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignac277e113a0ac49f
2016-11-25 09:26 - 2016-11-25 09:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8618836b38fb0f06
2016-11-25 09:26 - 2016-11-25 09:26 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign16e3469ef7cbb3d5
2016-11-25 08:18 - 2016-11-25 08:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd694ce34272bd123
2016-11-25 08:17 - 2016-11-25 08:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8360ad92f119fba9
2016-11-25 08:17 - 2016-11-25 08:17 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign7f0a6b69175290fb
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignea5367d43c3157e8
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna734fffac3057565
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9dd3a42e09c39db5
2016-11-24 16:05 - 2016-11-24 16:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign29d1708b5d4b643f
2016-11-24 16:04 - 2016-11-24 16:04 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign49eb3cd7f4b7f320
2016-11-24 16:03 - 2016-11-24 16:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd3e8951f534be6da
2016-11-24 16:03 - 2016-11-24 16:03 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9bd2492a5695ddd6
2016-11-24 15:57 - 2016-11-24 15:57 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc73dcb2132a228ae
2016-11-24 15:56 - 2016-11-24 15:56 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc1d0bd168acb068e
2016-11-24 15:56 - 2016-11-24 15:56 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc0213cc5ef6d97b1
2016-11-24 15:54 - 2016-11-24 15:54 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne7114b6c0570ce14
2016-11-24 15:54 - 2016-11-24 15:54 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignc6439a6e31866387
2016-11-24 15:54 - 2016-11-24 15:54 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8c637eb919a2e78b
2016-11-24 15:41 - 2016-11-24 15:41 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign8fad4dd83e783b7e
2016-11-24 15:40 - 2016-11-24 15:40 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignd396a344c325b7df
2016-11-24 15:40 - 2016-11-24 15:40 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign84fcebf5ab499b2f
2016-11-24 15:40 - 2016-11-24 15:40 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign676e0b6a7a46bb3b
2016-11-23 18:12 - 2016-11-23 18:12 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign0b64d6facd5b380b
2016-11-23 18:07 - 2016-11-23 18:07 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne208c4645b61e0ca
2016-11-23 18:07 - 2016-11-23 18:07 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign67ece1634f88fc75
2016-11-23 18:07 - 2016-11-23 18:07 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign56c048b2693f68d5
2016-11-23 18:02 - 2016-11-23 18:02 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign3e3f66ca8c66aa74
2016-11-23 18:01 - 2016-11-23 18:01 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign58da6dbb7fd1acb1
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfb2bea506765f1fd
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigne28d99f7ba0940de
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsign9583690508cdc442
2016-11-23 17:48 - 2016-11-23 17:48 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk
2016-11-23 17:43 - 2016-11-23 17:48 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-11-23 14:09 - 2016-11-23 14:09 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigna10c87b8ec352cb1
2016-11-23 14:05 - 2016-11-23 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfdbca61b281d99b4
2016-11-23 14:05 - 2016-11-23 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignf268b732b53d6e41
2016-11-23 14:05 - 2016-11-23 14:05 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsigndbe751830fc4ef17
2016-11-22 15:15 - 2016-11-22 15:16 - 00135686 _____ C:\Users\Michal\Desktop\site.pkt
2016-11-21 19:44 - 2016-11-22 13:29 - 00000000 ____D C:\ProgramData\MFAData
2016-11-21 19:44 - 2016-11-21 19:44 - 00000000 ____D C:\Users\Michal\AppData\Local\MFAData
2016-11-21 11:59 - 2016-11-21 11:59 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-11-20 15:46 - 2016-12-17 16:11 - 00000000 ____D C:\Users\Michal\AppData\LocalLow\Mozilla
2016-11-20 15:35 - 2016-11-20 15:35 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-11-20 15:35 - 2016-11-20 15:35 - 00000000 ____D C:\Windows\system32\appraiser
2016-11-20 15:04 - 2016-11-20 15:12 - 00000000 ____D C:\Windows\system32\MRT
2016-11-20 15:04 - 2016-11-20 15:04 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-20 14:47 - 2016-11-20 14:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-11-20 14:47 - 2016-11-20 14:47 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-11-20 14:32 - 2012-07-26 04:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2016-11-20 14:32 - 2012-07-26 04:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2016-11-20 14:32 - 2012-07-26 04:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-11-20 14:32 - 2012-07-26 04:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2016-11-20 14:32 - 2012-07-26 04:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2016-11-20 14:32 - 2012-07-26 03:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2016-11-20 14:32 - 2012-07-26 03:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2016-11-20 14:32 - 2012-06-02 15:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2016-11-20 14:21 - 2015-06-02 01:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-11-20 14:21 - 2015-06-02 00:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2016-11-20 14:21 - 2015-01-29 04:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-11-20 14:21 - 2015-01-29 04:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-11-20 14:21 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2016-11-20 14:21 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2016-11-20 14:13 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-11-20 14:13 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-11-20 14:10 - 2015-12-08 22:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-11-20 14:10 - 2015-12-08 22:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-11-20 14:10 - 2015-12-08 22:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-11-20 14:10 - 2015-12-08 22:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-11-20 14:10 - 2015-12-08 20:07 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-11-20 14:10 - 2015-12-08 20:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-11-20 14:10 - 2015-12-08 20:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-11-20 14:10 - 2015-12-08 20:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-11-20 14:09 - 2016-08-12 18:02 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-11-20 14:09 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-11-20 14:09 - 2016-06-14 18:16 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-11-20 14:08 - 2016-08-12 18:02 - 12574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-11-20 14:08 - 2016-08-12 18:02 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-11-20 14:08 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-11-20 14:08 - 2016-08-12 18:02 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-11-20 14:08 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-11-20 14:08 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-11-20 14:08 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-11-20 14:08 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-11-20 14:08 - 2016-06-14 18:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-11-20 14:08 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-11-20 14:08 - 2016-06-14 16:15 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-11-20 14:08 - 2016-06-14 16:15 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-11-20 14:08 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-11-20 14:08 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-11-20 12:24 - 2016-12-12 12:48 - 00000000 ____D C:\AdwCleaner
2016-11-19 14:19 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-11-19 14:18 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-11-19 14:11 - 2016-11-20 13:32 - 00000000 ____D C:\Users\Michal\Documents\The Witcher 3
2016-11-19 14:04 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-11-19 13:40 - 2016-11-22 13:30 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-11-19 13:39 - 2016-11-19 13:39 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-11-19 13:38 - 2016-11-19 13:39 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-11-19 13:38 - 2016-11-19 13:38 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-11-19 13:34 - 2016-12-10 13:57 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-11-19 13:34 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-11-19 13:34 - 2016-11-19 13:34 - 00000000 ____D C:\Program Files\DVD Maker
2016-11-19 13:29 - 2009-07-14 02:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wmdmlog.dll
2016-11-19 13:29 - 2009-07-14 02:39 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2016-11-19 13:29 - 2009-07-13 22:04 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.tlb
2016-11-19 13:29 - 2009-07-13 22:04 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amcompat.tlb
2016-11-19 13:29 - 2009-07-13 21:49 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.tlb
2016-11-19 13:29 - 2009-07-13 21:49 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\amcompat.tlb
2016-11-19 13:28 - 2010-11-20 14:27 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2016-11-19 13:28 - 2010-11-20 14:27 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2016-11-19 13:28 - 2010-11-20 14:27 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2016-11-19 13:28 - 2010-11-20 14:26 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2016-11-19 13:28 - 2010-11-20 14:26 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll
2016-11-19 13:28 - 2010-11-20 13:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll
2016-11-19 13:28 - 2010-11-20 13:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MediaMetadataHandler.dll
2016-11-19 13:28 - 2010-11-20 13:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iTVData.dll
2016-11-19 13:28 - 2010-11-20 13:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll
2016-11-19 13:28 - 2010-11-20 13:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe
2016-11-19 13:28 - 2009-07-14 02:41 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\wmidx.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\wmdmps.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\mcsrchPH.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsPbdaCoInst.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\wmpcm.dll
2016-11-19 13:28 - 2009-07-14 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\LAPRXY.DLL
2016-11-19 13:28 - 2009-07-14 02:41 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\sysprepMCE.dll
2016-11-19 13:28 - 2009-07-14 02:39 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2016-11-19 13:28 - 2009-07-14 02:39 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2016-11-19 13:28 - 2009-07-14 02:38 - 00182272 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codecp.acm
2016-11-19 13:28 - 2009-07-14 02:38 - 00081408 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codeca.acm
2016-11-19 13:28 - 2009-07-14 02:16 - 00170496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WmpDui.dll
2016-11-19 13:28 - 2009-07-14 02:16 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceConnectApi.dll
2016-11-19 13:28 - 2009-07-14 02:16 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmps.dll
2016-11-19 13:28 - 2009-07-14 02:16 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdmlog.dll
2016-11-19 13:28 - 2009-07-14 02:14 - 00278528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unregmp2.exe
2016-11-19 13:28 - 2009-07-14 02:14 - 00220672 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codecp.acm
2016-11-19 13:28 - 2009-07-14 02:14 - 00064000 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\l3codeca.acm
2016-11-19 13:28 - 2009-07-14 02:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShextAutoplay.exe
2016-11-19 13:27 - 2010-11-20 14:27 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00605696 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2016-11-19 13:27 - 2010-11-20 14:27 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2016-11-19 13:27 - 2010-11-20 14:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdwcn.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpsrcwp.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll
2016-11-19 13:27 - 2010-11-20 13:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2016-11-19 13:27 - 2010-11-20 13:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll
2016-11-19 13:27 - 2010-11-20 13:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll
2016-11-19 13:27 - 2010-11-20 13:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2016-11-19 13:27 - 2010-11-20 13:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2016-11-19 13:27 - 2010-11-20 13:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtp.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2016-11-19 13:27 - 2009-07-14 02:41 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\wmvdspa.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWiaCompat.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\mfAACEnc.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\mfdvdec.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\mfmjpegdec.dll
2016-11-19 13:27 - 2009-07-14 02:41 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\WpdMtpUS.dll
2016-11-19 13:27 - 2009-07-14 02:33 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\wmerror.dll
2016-11-19 13:27 - 2009-07-14 02:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\asferror.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL
2016-11-19 13:27 - 2009-07-14 02:16 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceWMDRM.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceTypes.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidx.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmvdspa.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceWiaCompat.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00110080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceClassExtension.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmcodecdspps.dll
2016-11-19 13:27 - 2009-07-14 02:16 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpcm.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00296960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswmdm.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfdvdec.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfAACEnc.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmjpegdec.dll
2016-11-19 13:27 - 2009-07-14 02:15 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LAPRXY.DLL
2016-11-19 13:27 - 2009-07-14 02:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmerror.dll
2016-11-19 13:27 - 2009-07-14 02:03 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asferror.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 01243136 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 00481280 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2016-11-19 13:26 - 2010-11-20 14:27 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2016-11-19 13:26 - 2010-11-20 13:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2016-11-19 13:26 - 2010-11-20 13:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll
2016-11-19 13:26 - 2009-07-14 02:41 - 00397312 _____ (Microsoft Corporation) C:\Windows\system32\mswmdm.dll
2016-11-19 13:26 - 2009-07-14 02:41 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2016-11-19 13:26 - 2009-07-14 02:41 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\wmcodecdspps.dll
2016-11-19 13:26 - 2009-06-10 21:52 - 00316640 _____ C:\Windows\WMSysPr9.prx
2016-11-19 13:25 - 2010-11-20 14:27 - 03027968 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2016-11-19 13:25 - 2010-11-20 14:27 - 02072576 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2016-11-19 13:25 - 2010-11-20 13:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPEncEn.dll
2016-11-19 13:25 - 2010-11-20 13:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2016-11-19 13:08 - 2016-11-19 13:08 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2016-11-19 13:08 - 2016-11-19 13:08 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2016-11-19 13:08 - 2016-11-19 13:08 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-11-19 13:08 - 2016-11-19 13:08 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2016-11-19 12:56 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2016-11-19 12:56 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-11-19 12:56 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-11-19 12:56 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2016-11-19 12:56 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2016-11-19 12:56 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2016-11-19 12:56 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2016-11-19 12:56 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2016-11-19 12:56 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-11-19 12:56 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2016-11-19 10:00 - 2016-11-19 10:00 - 00000000 ____D C:\Windows\SysWOW64\Configuration
2016-11-19 09:56 - 2016-02-13 11:42 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pwrshplugin.dll
2016-11-19 09:56 - 2016-02-13 11:34 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2016-11-19 09:55 - 2016-02-13 11:47 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrsmgr.dll
2016-11-19 09:55 - 2016-02-13 11:46 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrssrv.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrscmd.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecapi.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncobjapi.dll
2016-11-19 09:55 - 2016-02-13 11:45 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-11-19 09:55 - 2016-02-13 11:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-11-19 09:55 - 2016-02-13 11:45 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrshost.exe
2016-11-19 09:55 - 2016-02-13 11:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2016-11-19 09:55 - 2016-02-13 11:44 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll
2016-11-19 09:55 - 2016-02-13 11:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmRes.dll
2016-11-19 09:55 - 2016-02-13 11:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winrs.exe
2016-11-19 09:55 - 2016-02-13 11:42 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll
2016-11-19 09:55 - 2016-02-13 11:42 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PSModuleDiscoveryProvider.dll
2016-11-19 09:55 - 2016-02-13 11:42 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-11-19 09:55 - 2016-02-13 11:41 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll
2016-11-19 09:55 - 2016-02-13 11:41 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtfwd.dll
2016-11-19 09:55 - 2016-02-13 11:40 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Register-CimProvider.exe
2016-11-19 09:55 - 2016-02-13 11:39 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wecutil.exe
2016-11-19 09:55 - 2016-02-13 11:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prvdmofcomp.dll
2016-11-19 09:55 - 2016-02-13 11:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2016-11-19 09:55 - 2016-02-13 11:38 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\ncobjapi.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-11-19 09:55 - 2016-02-13 11:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2016-11-19 09:55 - 2016-02-13 11:37 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2016-11-19 09:55 - 2016-02-13 11:37 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-11-19 09:55 - 2016-02-13 11:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-11-19 09:55 - 2016-02-13 11:35 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll
2016-11-19 09:55 - 2016-02-13 11:35 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-11-19 09:55 - 2016-02-13 11:35 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\DscTimer.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\DscCoreConfProv.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\PSModuleDiscoveryProvider.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2016-11-19 09:55 - 2016-02-13 11:34 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-11-19 09:55 - 2016-02-13 11:34 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\DscProxy.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00256512 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2016-11-19 09:55 - 2016-02-13 11:33 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2016-11-19 09:55 - 2016-02-13 11:31 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2016-11-19 09:55 - 2016-02-13 11:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\prvdmofcomp.dll
2016-11-19 09:55 - 2016-02-13 11:31 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Register-CimProvider.exe
2016-11-19 09:55 - 2016-02-13 11:30 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mi.dll
2016-11-19 09:55 - 2016-02-13 11:25 - 00200192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll
2016-11-19 09:55 - 2016-02-13 11:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\mi.dll
2016-11-19 09:55 - 2016-02-13 09:25 - 00000199 _____ C:\Windows\SysWOW64\winrm.cmd
2016-11-19 09:55 - 2016-01-13 05:01 - 00000199 _____ C:\Windows\system32\winrm.cmd
2016-11-19 09:54 - 2016-02-13 11:46 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-11-19 09:54 - 2016-02-13 11:45 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-11-19 09:54 - 2016-02-13 11:43 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-11-19 09:54 - 2016-02-13 11:42 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimofcodec.dll
2016-11-19 09:54 - 2016-02-13 11:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mibincodec.dll
2016-11-19 09:54 - 2016-02-13 11:41 - 00388608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn2.dll
2016-11-19 09:54 - 2016-02-13 11:41 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll
2016-11-19 09:54 - 2016-02-13 11:38 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmGCDeps.dll
2016-11-19 09:54 - 2016-02-13 11:36 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-11-19 09:54 - 2016-02-13 11:34 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-11-19 09:54 - 2016-02-13 11:34 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\mibincodec.dll
2016-11-19 09:54 - 2016-02-13 11:33 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn2.dll
2016-11-19 09:54 - 2016-02-13 11:33 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\mimofcodec.dll
2016-11-19 09:54 - 2016-02-13 11:32 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2016-11-19 09:54 - 2016-02-13 11:32 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll
2016-11-19 09:54 - 2016-02-13 11:31 - 02181120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-11-19 09:54 - 2016-02-13 11:31 - 00238592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-11-19 09:54 - 2016-02-13 11:31 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmidcom.dll
2016-11-19 09:54 - 2016-02-13 11:30 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\WsmGCDeps.dll
2016-11-19 09:54 - 2016-02-13 11:29 - 00513024 _____ (Microsoft Corporation) C:\Windows\system32\mpunits.dll
2016-11-19 09:54 - 2016-02-13 11:24 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\mpeval.dll
2016-11-19 09:54 - 2016-02-13 11:22 - 02618880 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-11-19 09:54 - 2016-02-13 11:21 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-11-19 09:54 - 2016-02-13 11:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wmidcom.dll
2016-11-19 09:36 - 2016-11-19 09:36 - 00007605 _____ C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2016-11-18 19:22 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2016-11-18 19:22 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2016-11-18 19:22 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 25763328 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 20304896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 02920448 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-11-18 19:19 - 2016-11-18 19:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-18 19:19 - 2016-11-18 19:19 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-18 19:19 - 2016-11-18 19:19 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-18 19:19 - 2016-11-18 19:19 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01483264 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01176064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-18 19:19 - 2016-11-18 19:19 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-18 19:19 - 2016-11-18 19:19 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-18 19:19 - 2016-11-18 19:19 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 16:19
od michal1097
pokračovanie..
2016-11-18 19:19 - 2016-11-18 19:19 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-18 19:19 - 2016-11-18 19:19 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-18 19:19 - 2016-11-18 19:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-11-18 19:19 - 2016-11-18 19:19 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-18 19:18 - 2016-11-18 19:18 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-11-18 19:18 - 2016-11-18 19:18 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00419640 _____ C:\Windows\SysWOW64\locale.nls
2016-11-18 19:18 - 2016-11-18 19:18 - 00419640 _____ C:\Windows\system32\locale.nls
2016-11-18 19:18 - 2016-11-18 19:18 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-18 19:18 - 2016-11-18 19:18 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-18 19:18 - 2016-11-18 19:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-18 19:18 - 2016-11-18 19:18 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-18 19:18 - 2016-11-18 19:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-18 19:18 - 2016-11-18 19:18 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-11-18 19:18 - 2016-11-18 19:18 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-18 19:18 - 2016-11-18 19:18 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-18 19:17 - 2016-11-18 19:17 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-11-18 19:17 - 2016-11-18 19:17 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-18 19:17 - 2016-11-18 19:17 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-11-18 19:17 - 2016-11-18 19:17 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-18 19:17 - 2016-11-18 19:17 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-18 19:17 - 2016-11-18 19:17 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-18 19:17 - 2016-11-18 19:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsmsext.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-18 19:17 - 2016-11-18 19:17 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-18 19:17 - 2016-11-18 19:17 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-18 19:17 - 2016-11-18 19:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-18 19:16 - 2016-11-18 19:16 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-11-18 19:16 - 2016-11-18 19:16 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-11-18 19:16 - 2016-11-18 19:16 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-11-18 19:16 - 2016-11-18 19:16 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-18 19:16 - 2016-11-18 19:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-18 19:12 - 2016-11-18 19:12 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-11-18 19:12 - 2016-11-18 19:12 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-11-18 19:12 - 2016-11-18 19:12 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-11-18 19:12 - 2016-11-18 19:12 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-11-18 19:12 - 2016-11-18 19:12 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-11-18 19:11 - 2016-11-18 19:11 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00351744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-11-18 19:11 - 2016-11-18 19:11 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-11-18 19:11 - 2016-11-18 19:11 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-11-18 19:11 - 2016-11-18 19:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00794624 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-11-18 19:10 - 2016-11-18 19:10 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipsec.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-11-18 19:10 - 2016-11-18 19:10 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-11-18 19:10 - 2016-11-18 19:10 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-11-18 19:08 - 2016-11-18 19:08 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-11-18 19:08 - 2016-11-18 19:08 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-11-18 19:08 - 2016-11-18 19:08 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-11-18 19:08 - 2016-11-18 19:08 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-11-18 19:08 - 2016-11-18 19:08 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-11-18 19:07 - 2016-11-18 19:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-11-18 19:06 - 2016-11-18 19:06 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-11-18 19:06 - 2016-11-18 19:06 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 01885696 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 01240576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-11-18 19:05 - 2016-11-18 19:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2016-11-18 19:05 - 2016-11-18 19:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-11-18 19:03 - 2016-11-18 19:03 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-11-18 19:00 - 2016-11-18 19:00 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-11-18 19:00 - 2016-11-18 19:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-11-18 19:00 - 2016-11-18 19:00 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-11-18 19:00 - 2016-11-18 19:00 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-11-18 19:00 - 2016-11-18 19:00 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-11-18 19:00 - 2016-11-18 19:00 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-11-18 19:00 - 2016-11-18 19:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-11-18 18:59 - 2016-11-18 18:59 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-11-18 18:59 - 2016-11-18 18:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-11-18 18:58 - 2016-11-18 18:58 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-11-18 18:58 - 2016-11-18 18:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-11-18 18:58 - 2016-11-18 18:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-11-18 18:57 - 2016-11-18 18:57 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-11-18 18:57 - 2016-11-18 18:57 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-11-18 18:56 - 2016-11-18 18:56 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-11-18 18:53 - 2016-11-18 18:53 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-11-18 18:53 - 2016-11-18 18:53 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-11-18 18:50 - 2016-11-18 18:50 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-11-18 18:49 - 2016-11-18 18:49 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-11-18 18:49 - 2016-11-18 18:49 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2016-11-18 18:46 - 2016-11-18 18:46 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-11-18 18:44 - 2016-11-18 18:44 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-11-18 18:42 - 2016-11-18 18:42 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-11-18 18:42 - 2016-11-18 18:42 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2016-11-18 18:42 - 2016-11-18 18:42 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-11-18 18:42 - 2016-11-18 18:42 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-11-18 18:42 - 2016-11-18 18:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2016-11-18 18:40 - 2016-11-18 18:40 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-11-18 18:38 - 2016-11-18 18:38 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-11-18 18:38 - 2016-11-18 18:38 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2016-11-18 18:37 - 2016-11-18 18:37 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-11-18 18:37 - 2016-11-18 18:37 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2016-11-18 18:37 - 2016-11-18 18:37 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2016-11-18 18:36 - 2016-11-18 18:36 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-11-18 18:36 - 2016-11-18 18:36 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2016-11-18 18:35 - 2016-11-18 18:35 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2016-11-18 18:34 - 2016-11-18 18:34 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2016-11-18 18:34 - 2016-11-18 18:34 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2016-11-18 18:33 - 2016-11-18 18:33 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2016-11-18 18:32 - 2016-11-18 18:32 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2016-11-18 18:32 - 2016-11-18 18:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-11-18 18:30 - 2016-11-18 18:30 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2016-11-18 18:30 - 2016-11-18 18:30 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2016-11-18 18:30 - 2016-11-18 18:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2016-11-18 18:29 - 2016-11-18 18:29 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2016-11-18 18:29 - 2016-11-18 18:29 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2016-11-18 18:26 - 2016-11-18 18:26 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2016-11-18 18:25 - 2016-11-18 18:25 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2016-11-18 18:25 - 2016-11-18 18:25 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-11-18 18:24 - 2016-11-18 18:24 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2016-11-18 18:24 - 2016-11-18 18:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2016-11-18 18:24 - 2016-11-18 18:24 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2016-11-18 18:24 - 2016-11-18 18:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2016-11-18 18:23 - 2016-11-18 18:23 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2016-11-18 18:23 - 2016-11-18 18:23 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-11-18 18:22 - 2016-11-18 18:22 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2016-11-18 18:22 - 2016-11-18 18:22 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2016-11-18 18:22 - 2016-11-18 18:22 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2016-11-18 18:22 - 2016-11-18 18:22 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2016-11-18 18:20 - 2016-11-18 18:20 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2016-11-18 18:20 - 2016-11-18 18:20 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2016-11-18 18:20 - 2016-11-18 18:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2016-11-18 18:20 - 2016-11-18 18:20 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2016-11-18 18:10 - 2014-03-06 13:15 - 01364376 _____ (Microsoft Corp.) C:\Windows\system32\api.dll
2016-11-18 17:57 - 2016-11-21 19:39 - 00000000 ____D C:\Windows\Minidump
2016-11-18 17:06 - 2016-11-18 17:06 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2016-11-18 17:06 - 2016-11-18 17:06 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2016-11-18 17:04 - 2016-11-18 17:04 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2016-11-18 17:04 - 2016-11-18 17:04 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2016-11-18 17:03 - 2016-11-18 17:03 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2016-11-18 17:02 - 2016-11-18 17:02 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-11-18 17:02 - 2016-11-18 17:02 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2016-11-18 17:02 - 2016-11-18 17:02 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-11-18 17:01 - 2016-11-18 17:01 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-11-18 17:01 - 2016-11-18 17:01 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-11-18 17:01 - 2016-11-18 17:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-11-18 17:01 - 2016-11-18 17:01 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2016-11-18 17:01 - 2016-11-18 17:01 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2016-11-18 17:01 - 2016-11-18 17:01 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2016-11-18 17:00 - 2016-11-18 17:00 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2016-11-18 17:00 - 2016-11-18 17:00 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2016-11-18 17:00 - 2016-11-18 17:00 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-11-18 17:00 - 2016-11-18 17:00 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2016-11-18 17:00 - 2016-11-18 17:00 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2016-11-18 17:00 - 2016-11-18 17:00 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2016-11-18 17:00 - 2016-11-18 17:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2016-11-18 16:36 - 2016-11-18 16:36 - 00000000 ____D C:\f74ac6a2e4cd4e3b05d865d22c91ca77
2016-11-18 16:35 - 2016-12-14 20:23 - 00001912 _____ C:\Windows\epplauncher.mif
2016-11-18 15:24 - 2016-11-18 15:24 - 00000000 ____D C:\065499413fda718ad23a4eeb3e452f
2016-11-18 15:16 - 2016-11-18 15:16 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Local\BMExplorer
2016-11-18 15:14 - 2016-11-18 15:16 - 00000000 ____D C:\Users\WOUTempAdmin\Documents\Bluetooth Folder
2016-11-18 15:14 - 2016-11-18 15:14 - 00122560 _____ C:\Users\WOUTempAdmin\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-18 15:14 - 2016-11-18 15:14 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Intel Corporation
2016-11-18 15:14 - 2016-11-18 15:14 - 00000000 _____ C:\Users\WOUTempAdmin\Desktop\Nový textový dokument.txt
2016-11-18 15:13 - 2016-12-09 17:51 - 00001042 _____ C:\Users\WOUTempAdmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-11-18 15:13 - 2016-11-18 15:14 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Adobe
2016-11-18 15:13 - 2016-11-18 15:13 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Atheros
2016-11-18 15:13 - 2016-11-18 15:13 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Local\Adobe
2016-11-18 15:12 - 2016-11-18 15:12 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Local\VirtualStore
2016-11-18 15:11 - 2016-11-21 19:52 - 00000000 ____D C:\Users\WOUTempAdmin
2016-11-18 15:11 - 2016-11-18 15:11 - 00000020 ___SH C:\Users\WOUTempAdmin\ntuser.ini
2016-11-18 15:11 - 2016-11-18 15:11 - 00000000 ____D C:\Users\WOUTempAdmin\AppData\Roaming\Intel
2016-11-18 15:10 - 2016-09-12 22:17 - 00077032 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-11-18 15:10 - 2016-09-12 22:08 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 01629184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00586752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-11-18 15:10 - 2016-09-09 16:54 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-11-18 15:10 - 2016-08-16 21:40 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-11-18 15:10 - 2016-08-16 21:40 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-11-18 15:10 - 2016-03-23 23:40 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-11-18 15:07 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2016-11-18 15:07 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2016-11-18 15:07 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2016-11-18 15:06 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-11-18 15:06 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-11-18 15:06 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2016-11-18 15:06 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2016-11-18 15:06 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2016-11-18 15:06 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2016-11-18 15:06 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2016-11-18 15:06 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2016-11-18 15:06 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2016-11-18 15:06 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2016-11-18 15:06 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2016-11-18 15:06 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2016-11-18 15:06 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2016-11-18 15:06 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2016-11-18 15:06 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2016-11-18 15:05 - 2012-12-07 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2016-11-18 15:05 - 2012-12-07 14:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-11-18 15:05 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2016-11-18 15:05 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2016-11-18 15:05 - 2012-12-07 12:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2016-11-18 15:05 - 2012-12-07 12:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2016-11-18 15:05 - 2012-12-07 12:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2016-11-18 15:05 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2016-11-18 14:57 - 2016-08-29 16:31 - 14183424 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-11-18 14:57 - 2016-08-29 16:31 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-11-18 14:57 - 2016-08-29 16:31 - 01867776 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-11-18 14:57 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-11-18 14:57 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-11-18 14:57 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-11-18 14:57 - 2016-08-29 16:04 - 03229696 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-11-18 14:57 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-11-18 14:57 - 2012-07-06 21:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-11-18 14:57 - 2011-04-28 04:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-11-18 14:57 - 2011-03-11 07:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-11-18 14:57 - 2011-03-11 07:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-11-18 14:57 - 2011-03-11 07:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-11-18 14:57 - 2011-03-11 07:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-11-18 14:57 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2016-11-18 14:57 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2016-11-18 14:56 - 2016-03-16 19:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-11-18 14:56 - 2016-03-16 19:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-11-18 14:56 - 2016-03-16 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-11-18 14:56 - 2016-02-02 19:57 - 00511488 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-11-18 14:56 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2016-11-18 14:56 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2016-11-18 14:56 - 2011-06-16 06:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2016-11-18 14:56 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2016-11-18 14:55 - 2014-01-28 03:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-11-18 14:55 - 2013-03-19 06:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-11-18 14:55 - 2012-10-09 19:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-11-18 14:55 - 2012-10-09 19:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2016-11-18 14:55 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2016-11-18 14:55 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2016-11-18 14:54 - 2015-05-25 19:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-11-18 14:54 - 2015-05-25 19:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-11-18 14:54 - 2015-05-25 19:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-11-18 14:54 - 2015-05-25 19:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2016-11-18 14:54 - 2015-05-25 19:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2016-11-18 14:54 - 2015-05-25 19:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2016-11-18 14:53 - 2012-01-04 11:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-11-18 14:53 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2016-11-18 14:52 - 2016-01-21 01:51 - 00073664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys

Re: prepinanie na nechcene stranky

Napsal: 17 pro 2016 16:21
od michal1097
posledna čast +addition
2016-11-18 14:52 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-11-18 14:52 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-11-18 14:52 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-11-18 14:52 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2016-11-18 14:52 - 2011-05-04 06:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2016-11-18 14:52 - 2011-05-04 06:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2016-11-18 14:52 - 2011-05-04 06:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-11-18 14:52 - 2011-05-04 06:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-11-18 14:52 - 2011-05-04 06:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2016-11-18 14:52 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2016-11-18 14:52 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2016-11-18 14:52 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2016-11-18 14:52 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2016-11-18 14:52 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2016-11-18 14:42 - 2015-07-09 18:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-11-18 14:42 - 2015-07-09 18:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-11-18 14:42 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-11-18 14:42 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2016-11-18 14:42 - 2014-01-29 03:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-11-18 14:42 - 2014-01-29 03:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2016-11-18 14:28 - 2011-12-30 07:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2016-11-18 14:28 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2016-11-18 13:57 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2016-11-18 13:55 - 2016-02-05 19:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-11-18 13:55 - 2016-02-05 19:54 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-11-18 13:55 - 2016-02-05 18:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbs.dll
2016-11-18 13:55 - 2015-06-03 21:21 - 00451080 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-11-18 13:55 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2016-11-18 13:55 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2016-11-18 13:55 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2016-11-18 13:55 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2016-11-18 13:46 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-11-18 13:38 - 2012-07-04 21:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2016-11-18 13:36 - 2012-10-03 18:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2016-11-18 13:36 - 2012-10-03 18:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2016-11-18 13:36 - 2012-10-03 18:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-11-18 13:36 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2016-11-18 13:36 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2016-11-18 13:27 - 2016-07-07 16:36 - 01896168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-11-18 13:27 - 2016-07-07 16:36 - 00377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-11-18 13:27 - 2016-07-07 16:36 - 00287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-11-18 13:27 - 2016-07-07 16:08 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2016-11-18 13:19 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-11-18 13:19 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-11-18 13:19 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-11-18 13:19 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-11-18 13:19 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2016-11-18 13:19 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2016-11-18 13:19 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2016-11-18 13:19 - 2015-07-23 01:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-11-18 13:19 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2016-11-18 13:19 - 2012-08-21 22:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2016-11-18 13:05 - 2015-04-11 04:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-11-18 13:04 - 2015-08-27 19:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-11-18 13:04 - 2015-08-27 19:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-11-18 13:04 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-11-18 13:04 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2016-11-18 13:04 - 2014-02-04 03:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-11-18 13:04 - 2014-02-04 03:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-11-18 13:04 - 2014-02-04 03:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2016-11-18 13:04 - 2014-02-04 03:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2016-11-18 13:04 - 2014-02-04 03:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2016-11-18 13:04 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2016-11-18 13:04 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2016-11-18 12:58 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2016-11-18 12:58 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2016-11-18 11:58 - 2013-05-10 06:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2016-11-18 11:58 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2016-11-18 11:55 - 2016-03-09 20:00 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-11-18 11:55 - 2016-03-09 19:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-11-18 11:54 - 2013-01-24 07:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-11-18 11:53 - 2016-03-09 19:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-11-18 11:53 - 2016-03-09 19:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-11-18 11:53 - 2011-02-18 11:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2016-11-18 11:53 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2016-11-18 11:16 - 2014-06-30 23:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2016-11-18 11:16 - 2014-06-30 23:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2016-11-18 11:16 - 2014-06-06 07:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-11-18 11:16 - 2014-06-06 07:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-11-18 11:16 - 2014-03-09 22:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2016-11-18 11:16 - 2014-03-09 22:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2016-11-18 11:16 - 2014-03-09 22:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2016-11-18 11:16 - 2014-03-09 22:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2016-11-18 11:02 - 2016-11-19 10:00 - 00000000 ____D C:\Windows\system32\dsc
2016-11-18 11:02 - 2016-11-19 10:00 - 00000000 ____D C:\Windows\system32\Configuration
2016-11-18 11:00 - 2013-09-16 08:34 - 00204105 _____ C:\Windows\SysWOW64\winrm.vbs
2016-11-18 11:00 - 2013-09-16 08:34 - 00204105 _____ C:\Windows\system32\winrm.vbs
2016-11-18 11:00 - 2013-09-16 08:34 - 00004675 _____ C:\Windows\SysWOW64\wsmanconfig_schema.xml
2016-11-18 11:00 - 2013-09-16 08:34 - 00004675 _____ C:\Windows\system32\wsmanconfig_schema.xml
2016-11-18 11:00 - 2013-09-16 08:33 - 00004148 _____ C:\Windows\system32\psmodulediscoveryprovider.mof
2016-11-18 10:53 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-11-18 10:53 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-11-18 10:53 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2016-11-18 10:36 - 2016-05-13 23:09 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-11-18 10:36 - 2016-05-13 23:09 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-11-18 10:36 - 2016-05-13 23:09 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-11-18 10:36 - 2016-05-13 23:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-11-18 10:36 - 2016-05-13 22:55 - 02607104 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-11-18 10:36 - 2016-05-13 22:53 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-11-18 10:36 - 2016-05-13 22:53 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-11-18 10:36 - 2016-05-13 22:52 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-11-18 10:36 - 2016-05-13 22:52 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-11-18 10:36 - 2016-05-13 22:52 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-11-18 10:36 - 2016-05-13 22:52 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-11-18 10:36 - 2016-05-13 22:50 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-11-18 10:36 - 2016-05-13 22:38 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-11-18 10:36 - 2016-05-13 22:38 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-11-18 10:36 - 2016-05-13 22:38 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-11-18 10:36 - 2016-05-13 22:38 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-11-18 10:36 - 2016-05-12 16:18 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-11-18 10:36 - 2016-05-12 14:05 - 00459640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-11-18 10:36 - 2016-05-12 14:05 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-11-18 10:36 - 2016-05-12 14:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-11-18 10:36 - 2016-05-04 18:21 - 00114408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-11-18 10:36 - 2016-05-04 18:17 - 03244032 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2016-11-18 10:36 - 2016-05-04 18:17 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-11-18 10:36 - 2016-05-04 18:16 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-11-18 10:36 - 2016-05-04 16:04 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-11-18 10:36 - 2016-05-04 15:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-11-18 10:36 - 2016-03-23 23:43 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-11-18 10:36 - 2016-03-23 23:40 - 00634432 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-11-18 10:36 - 2016-03-23 23:40 - 00546656 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-11-18 09:40 - 2016-12-17 16:06 - 00000000 ____D C:\Users\Public\Documents\AdobeGC
2016-11-18 09:38 - 2016-11-18 09:38 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2016-11-18 09:38 - 2016-11-18 09:38 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2016-11-18 09:38 - 2016-11-18 09:38 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2016-11-18 09:38 - 2016-11-18 09:38 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2016-11-18 09:38 - 2016-11-18 09:38 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2016-11-18 08:52 - 2016-11-18 08:52 - 00000000 ____D C:\17c74836bad95cfece9144968be5051b
2016-11-18 08:51 - 2016-11-18 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-11-18 08:50 - 2016-12-09 17:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-11-18 08:50 - 2016-11-18 08:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-11-17 15:24 - 2016-11-17 15:24 - 00000000 ____D C:\683abb9e7083b46b5b
2016-11-17 15:24 - 2016-07-22 15:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-11-17 15:24 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-11-17 15:21 - 2016-11-17 15:21 - 00000000 ____D C:\Windows\system32\appmgmt
2016-11-17 15:18 - 2016-11-17 15:18 - 00000000 ____D C:\681f7de42afc78d472
2016-11-17 13:19 - 2016-11-17 13:19 - 00000000 ____D C:\e1e8a5097f3b1a87e6fd
2016-11-17 13:14 - 2016-12-09 17:51 - 00000000 ____D C:\7e6dde7e4fd166a14a59796db7931f
2016-11-17 10:06 - 2016-11-17 10:06 - 00000000 ____D C:\77b8b98f122ae09806bb9afc97ad843b
2016-11-17 09:53 - 2016-11-17 09:53 - 00000000 ____D C:\1f486f7e6b97a9968f113918dfdb0e49
2016-11-17 09:48 - 2016-11-17 09:48 - 00000000 ____D C:\Users\Michal\AppData\Local\ElevatedDiagnostics
2016-11-17 09:31 - 2016-11-17 09:31 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2016-11-17 09:31 - 2016-11-17 09:31 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2016-11-17 09:31 - 2016-11-17 09:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2016-11-17 09:31 - 2016-11-17 09:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2016-11-17 09:31 - 2016-11-17 09:31 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2016-11-17 09:31 - 2016-11-17 09:31 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2016-11-17 09:31 - 2016-11-17 09:31 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2016-11-17 09:29 - 2016-11-17 09:29 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2016-11-17 09:28 - 2016-11-17 09:28 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2016-11-17 09:28 - 2016-11-17 09:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-11-17 09:27 - 2016-11-17 09:27 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2016-11-17 09:26 - 2016-11-17 09:26 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-11-17 09:26 - 2016-11-17 09:26 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-11-17 08:54 - 2016-12-09 17:51 - 00000000 ____D C:\Program Files (x86)\Opera

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-12-17 16:14 - 2016-10-07 14:33 - 00000000 ____D C:\Users\Michal\Desktop\programi
2016-12-17 16:09 - 2009-07-14 05:50 - 00028336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-17 16:09 - 2009-07-14 05:50 - 00028336 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-17 16:05 - 2009-07-14 06:12 - 00783606 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-17 16:05 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-12-17 16:02 - 2016-10-07 17:15 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Skype
2016-12-17 16:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-17 13:46 - 2016-10-07 17:20 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-17 10:51 - 2016-10-07 13:20 - 00000000 ____D C:\Users\Michal
2016-12-17 10:48 - 2016-10-28 10:20 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-12-17 10:48 - 2016-10-09 10:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-12-17 10:48 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-12-16 22:10 - 2016-10-07 17:23 - 00003368 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-16 22:10 - 2016-10-07 17:23 - 00003240 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-15 20:42 - 2016-10-07 17:26 - 00002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-14 20:34 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2016-12-14 20:32 - 2009-07-14 03:34 - 81788928 _____ C:\Windows\system32\config\SOFTWARE.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 16777216 _____ C:\Windows\system32\config\SYSTEM.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2016-12-14 20:32 - 2009-07-14 03:34 - 00262144 _____ C:\Windows\system32\config\DEFAULT.bak
2016-12-14 20:18 - 2016-10-07 14:21 - 00000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2016-12-14 15:40 - 2016-11-04 08:33 - 00000000 ____D C:\Users\Michal\Desktop\skola
2016-12-13 12:46 - 2016-10-07 17:20 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-13 12:46 - 2016-10-07 17:20 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-13 12:46 - 2016-10-07 17:20 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-12-13 12:46 - 2016-10-07 17:20 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-12-13 12:46 - 2016-10-07 17:20 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-12 13:56 - 2016-10-09 09:44 - 00000170 _____ C:\Users\Michal\.packettracer
2016-12-12 13:52 - 2016-10-09 09:44 - 00000000 ____D C:\Users\Michal\Cisco Packet Tracer 7.0
2016-12-11 09:06 - 2009-07-14 05:50 - 00440008 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-10 20:08 - 2016-10-28 10:15 - 00000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent
2016-12-10 15:15 - 2016-10-23 09:34 - 00000000 ____D C:\Users\Michal\Desktop\Skola 3.r
2016-12-10 13:22 - 2016-10-07 13:20 - 00000000 ____D C:\Users\Michal\AppData\Local\VirtualStore
2016-12-10 13:01 - 2016-10-07 17:23 - 00000000 ____D C:\Users\Michal\AppData\Local\Deployment
2016-12-10 12:08 - 2016-10-07 13:38 - 00124608 _____ C:\Users\Michal\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-10 09:32 - 2016-10-07 13:21 - 00000989 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-12-09 17:51 - 2016-11-13 13:45 - 00000000 ____D C:\Program Files (x86)\JSignPdf
2016-12-09 17:51 - 2016-10-26 16:32 - 00000000 ____D C:\c5e5e52f989d56c4412f5f13c52d
2016-12-09 17:51 - 2016-10-16 09:43 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-12-09 17:51 - 2016-10-12 14:57 - 00000000 ____D C:\59e34deafad03492abcf
2016-12-09 17:50 - 2016-11-01 11:44 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-12-09 17:50 - 2016-10-16 09:43 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2016-12-09 17:50 - 2016-10-16 09:41 - 00000000 ____D C:\Program Files (x86)\HP
2016-12-09 17:50 - 2016-10-11 21:34 - 00000000 ____D C:\Program Files (x86)\Sibelius Software
2016-12-09 17:50 - 2016-10-08 15:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services
2016-12-09 17:50 - 2016-10-08 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft Sync Framework
2016-12-09 17:50 - 2016-10-08 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-12-09 17:50 - 2016-10-08 15:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2016-12-09 17:50 - 2016-10-08 15:29 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2016-12-09 17:50 - 2016-10-08 15:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-12-09 17:50 - 2016-10-08 15:17 - 00000000 ____D C:\Program Files (x86)\The Witcher 3 Wild Hunt Blood and Wine
2016-12-09 17:50 - 2016-10-08 14:47 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-12-09 17:50 - 2016-10-08 10:41 - 00000000 ____D C:\Program Files (x86)\Renesas Electronics
2016-12-09 17:50 - 2016-10-07 17:36 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-12-09 17:50 - 2016-10-07 17:23 - 00000000 ____D C:\Program Files (x86)\Google
2016-12-09 17:50 - 2016-10-07 17:15 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-12-09 17:50 - 2016-10-07 14:20 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2016-12-09 17:50 - 2016-10-07 14:18 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-12-09 17:50 - 2016-10-07 14:15 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2016-12-09 17:50 - 2016-10-07 14:15 - 00000000 ____D C:\Program Files (x86)\AMD APP
2016-12-09 17:50 - 2016-10-07 14:13 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-12-09 17:50 - 2016-10-07 14:01 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-12-09 17:50 - 2016-10-07 13:57 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2016-12-09 17:50 - 2016-10-07 13:43 - 00000000 ____D C:\Program Files (x86)\Lenovo
2016-12-09 17:50 - 2016-10-07 13:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-12-09 17:50 - 2016-10-07 13:36 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2016-12-09 17:50 - 2016-10-07 13:35 - 00000000 ____D C:\Program Files (x86)\Intel
2016-12-09 17:50 - 2016-10-07 13:35 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-12-09 17:50 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-12-09 17:50 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-12-09 15:31 - 2016-10-23 08:25 - 00000000 ____D C:\Users\Michal\AppData\Roaming\vlc
2016-12-08 08:42 - 2016-10-07 17:15 - 00000000 ____D C:\ProgramData\Skype
2016-12-05 21:43 - 2016-10-09 10:28 - 00000000 ____D C:\Users\Michal\Desktop\bak praca
2016-12-03 16:42 - 2016-10-08 12:26 - 00000000 ____D C:\Users\Michal\Desktop\Hudba
2016-12-02 07:38 - 2009-07-14 06:08 - 00032500 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-30 18:35 - 2016-10-08 14:48 - 00000000 ____D C:\Users\Michal\Desktop\witcher
2016-11-30 18:22 - 2016-10-18 13:02 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Brackets
2016-11-25 10:35 - 2016-10-07 17:18 - 00000000 ____D C:\Users\Michal\AppData\Local\Adobe
2016-11-23 18:41 - 2016-10-09 10:56 - 00000000 ____D C:\ProgramData\Adobe
2016-11-23 18:41 - 2016-10-07 17:13 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Adobe
2016-11-23 17:48 - 2016-11-16 21:19 - 00000000 ____D C:\Users\Michal\Documents\Adobe
2016-11-23 17:43 - 2016-10-07 13:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-23 07:18 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2016-11-21 20:17 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-11-21 19:39 - 2016-10-07 14:07 - 00000000 ____D C:\Windows\Panther
2016-11-21 19:32 - 2016-10-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Free 9.0
2016-11-21 17:47 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-21 08:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2016-11-20 16:34 - 2009-07-14 03:34 - 00000167 _____ C:\Windows\win.ini
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Dism
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-11-20 15:35 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-11-18 19:25 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2016-11-18 19:00 - 2009-07-14 01:22 - 01393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-11-18 17:59 - 2009-07-14 06:38 - 00000000 ____D C:\Program Files\Windows Defender
2016-11-18 16:34 - 2016-10-07 13:38 - 00767916 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-11-18 16:16 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-11-18 09:41 - 2016-10-07 14:06 - 00000000 ____D C:\ProgramData\Atheros

==================== Files in the root of some directories =======

2016-10-11 21:34 - 2016-10-11 21:35 - 0607138 _____ () C:\Users\Michal\AppData\Roaming\Scorch_Install.log
2016-11-19 09:36 - 2016-11-19 09:36 - 0007605 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2016-10-09 09:44 - 2016-10-09 09:44 - 0017408 _____ () C:\Users\Michal\AppData\Local\WebpageIcons.db
2016-10-16 09:40 - 2016-10-16 09:40 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-10-07 13:54 - 2016-10-07 13:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-12-14 17:15

Re: prepinanie na nechcene stranky

Napsal: 18 pro 2016 11:38
od altrok
  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CreateRestorePoint:
CloseProcesses:
cmd: reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost"
Folder: C:\FRST\Quarantine\C\Program Files (x86)\Merpetionannage
File: C:\FRST\Quarantine\C\Program Files (x86)\Merpetionannage\copay.exe.xBAD
File: C:\FRST\Quarantine\C\Program Files (x86)\Merpetionannage\atqCch.dll.xBAD

SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
C:\Users\Michal\AppData\Roaming\Mozilla
C:\Users\Michal\AppData\Roaming\Firefox
S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [163328 2016-12-12] (Mozilla Foundation) [File not signed]
S2 Musadom; C:\Program Files (x86)\Merpetionannage\atqCch.dll [X]
2016-12-17 16:12 - 2016-12-17 16:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
cmd: rmdir "C:\Users\Michal\AppData\Local\Tempz*"
2016-11-23 17:59 - 2016-11-23 17:59 - 00000000 ____D C:\Users\Michal\AppData\Local\Tempzxpsignfb2bea506765f1fd
2016-12-10 09:21 - 2016-12-10 09:21 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Firefox
2016-12-10 09:21 - 2016-12-10 09:21 - 00000000 ____D C:\Users\Michal\AppData\Local\Firefox
2016-12-09 17:51 - 2016-12-09 17:51 - 00000000 ____D C:\ProgramData\Avira
2016-12-01 09:45 - 2016-12-17 16:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
C:\Program Files (x86)\Firefox
C:\Users\Michal\AppData\Local\Firefox
C:\Users\Michal\AppData\Local\Mozilla
C:\Users\Michal\AppData\Roaming\Mozilla
Task: {FDD8F8D2-15E6-4E76-BFA9-418E3020D2C7} - \Vuktionliqat Helper -> No File <==== ATTENTION
Hosts:
EmptyTemp:
End

Re: prepinanie na nechcene stranky

Napsal: 18 pro 2016 14:40
od michal1097
Fix result of Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Ran by Michal (18-12-2016 12:24:26) Run:3
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
StartRegedit:
[HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU]
"NoAutoUpdate"=dword:00000000
EndRegedit:
cmd: reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost"
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\RunOnce: [AvgUninstallURL] => cmd.exe /c start hxxp://www.avg.com/ww.special-uninstall ... gBQAEEATgA"&"inst=NwA3AC0AMwA0AD (the data entry has 109 more characters).
Winlogon\Notify\xranhgo-x32: C:\Users\Michal\AppData\Local\xranhgo.dll [X]
File: C:\Users\Michal\AppData\Local\xranhgo.dll
C:\Users\Michal\AppData\Local\xranhgo.dll
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9108184 2016-11-07] (Piriform Ltd)
HKLM\...\Providers\jelxymt5: C:\Program Files (x86)\Adobe\\local64spl.dll [142848 2016-12-10] ()
File: C:\Program Files (x86)\Adobe\\local64spl.dll
C:\Program Files (x86)\Adobe\\local64spl.dll
ShellExecuteHooks: - {4A39289E-AB73-11E6-B57F-64006A5CFC23} - C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll [145920 2016-12-09] ()
File: C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll
C:\Users\Michal\AppData\Roaming\Graqsp
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Restriction - Chrome <======= ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG9\avgssiea.dll => No File
C:\Program Files (x86)\AVG

cmd: type "C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js"
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\crsahtbq.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck
FF Keyword.URL: Mozilla\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (No Name) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\extensions\arthurj8283@gmail.com [not found]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml [2016-12-12]
cmd: type "C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js"
FF DefaultSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.1: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF SearchEngineOrder.3: Firefox\Firefox\Profiles\crsahtbq.default -> Bing
FF SelectedSearchEngine: Firefox\Firefox\Profiles\crsahtbq.default -> luck
FF Keyword.URL: Firefox\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (FF Adr) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2016-12-10] [not signed]
FF Extension: (xRocket Toolbar) - C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com [2016-12-12] [not signed]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml [2016-12-12]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\searchinme.xml [2016-12-10]
FF SearchPlugin: C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\zmlfca7u.xml [2016-12-09]

File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
R2 Convxxxx; C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe [403968 2016-12-07] () [File not signed]
File: C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe
C:\Users\Michal\AppData\Roaming\cfjcf
R2 FirefoxU; C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe [100352 2016-12-12] () [File not signed]
U0 aswVmm; no ImagePath
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

Folder: C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae
Folder: C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919
2016-12-12 13:19 - 2016-12-12 13:19 - 01323520 _____ C:\Users\Michal\Downloads\RSITx64.exe
2016-12-12 13:19 - 2016-12-12 13:19 - 00000000 ____D C:\rsit
2016-12-12 12:37 - 2016-12-12 12:37 - 00000000 ____D C:\Program Files (x86)\amuleC1
2016-12-10 09:18 - 2016-12-17 08:22 - 00000000 _____ C:\Users\Public\Documents\report.dat
2016-12-10 09:18 - 2016-12-12 12:38 - 00000000 _____ C:\Users\Public\Documents\temp.dat
2016-12-10 09:12 - 2016-12-10 09:12 - 00000000 ____D C:\Users\Michal\Documents\aMule Downloads
2016-12-10 09:01 - 2016-12-10 09:12 - 00000000 ____D C:\Users\Michal\AppData\Roaming\aMule
2016-12-10 09:01 - 2016-12-10 09:01 - 00000000 ____D C:\Users\Michal\AppData\Roaming\cfjcf
2016-12-10 08:56 - 2016-12-12 12:33 - 00000000 ____D C:\Program Files (x86)\ft1xx095
Folder: C:\ProgramData\Avira
2016-12-09 17:50 - 2016-12-09 17:50 - 00006050 _____ C:\Windows\System32\Tasks\Vuktionliqat Helper
2016-12-09 17:50 - 2016-12-09 17:50 - 00003530 _____ C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2
2016-12-09 17:49 - 2016-12-12 12:49 - 00000000 ____D C:\Program Files (x86)\Merpetionannage
2016-12-09 17:49 - 2016-12-09 17:50 - 00000000 ____D C:\Users\Michal\AppData\Local\Smedom
2016-12-09 17:49 - 2016-12-09 17:49 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Graqsp
2016-11-19 15:20 - 2016-12-12 13:19 - 00000000 ____D C:\Program Files\trend micro
Folder: C:\f74ac6a2e4cd4e3b05d865d22c91ca77
Folder: C:\065499413fda718ad23a4eeb3e452f
Folder: C:\ProgramData\AVAST Software
2016-11-21 19:43 - 2016-12-09 17:51 - 00000000 ____D C:\ProgramData\Avg
2016-11-21 19:42 - 2016-11-21 20:13 - 00000000 ____D C:\Users\Michal\AppData\Local\AvgSetupLog
2016-11-21 19:42 - 2016-11-21 19:42 - 00000000 ____D C:\Users\Michal\AppData\Local\Avg
2016-12-09 17:51 - 2016-10-28 10:16 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-09 17:50 - 2016-10-07 14:25 - 00000000 ____D C:\Program Files (x86)\AVG

Task: {43A81866-A5C4-44F9-8EB6-F43090120092} - System32\Tasks\{9FEBF33B-2074-414C-8502-E337530B2EEE} => pcalua.exe -a "C:\Users\Michal\Desktop\Nový priečinok\Windows.Media.Player.12.v.2.CZ..exe" -d "C:\Users\Michal\Desktop\Nový priečinok"
Task: {898120DD-BF52-4B72-ACAB-45372AEE08B5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-10-28] (AVAST Software)
Task: {917AB143-3543-4ED5-86D1-DAE72919DC3A} - System32\Tasks\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => pcalua.exe -a C:\Users\Michal\Desktop\wsusoffline\client\cpp\vcredist2008_x64.exe -d C:\Users\Michal\Desktop\wsusoffline\client\cpp
Task: {D33665A0-6187-430A-A0AD-41B0FF27D0EB} - System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => Rundll32.exe "C:\Program Files (x86)\Common Files\elxymt.dll",e62dc6c6547f46bda862da2d05af6862 <==== ATTENTION
File: C:\Program Files (x86)\Merpetionannage\copay.exe
Folder: C:\Program Files (x86)\Merpetionannage
C:\Program Files (x86)\Merpetionannage

File: C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
File: C:\Program Files (x86)\SrpnFiles\downloader.exe
Folder: C:\Program Files (x86)\SrpnFiles
C:\Program Files (x86)\SrpnFiles
FirewallRules: [{F659C450-8F90-4046-A97E-1180E871D417}] => C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{0B8B91FE-FEBA-440A-A18C-3C6BE8C5DA64}] => C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe
FirewallRules: [{1222AFB4-9C0C-4EDA-8C20-13C097DD10F4}] => C:\Program Files (x86)\SrpnFiles\downloader.exe
FirewallRules: [{6779D280-A173-47C3-8F50-16A2B0B6246B}] => C:\Program Files (x86)\SrpnFiles\downloader.exe
File: C:\program files (x86)\brackets\node.exe
FirewallRules: [{D960489A-096B-4277-B260-B3A53D48840B}] => C:\Windows\system32\rundll32.exe
FirewallRules: [{D0EEFAF9-098E-47B6-9B63-7350707B6846}] => C:\Windows\system32\rundll32.exe
FirewallRules: [TCP Query User{8DD6A48A-6951-45BC-AEFC-F01B5F82D210}C:\windows\syswow64\rundll32.exe] => C:\windows\syswow64\rundll32.exe
FirewallRules: [UDP Query User{22D498AC-C9A7-4644-8629-2152CFF322E4}C:\windows\syswow64\rundll32.exe] => C:\windows\syswow64\rundll32.exe
FirewallRules: [{1B40F44E-E1D2-4215-92FA-39146AD5B265}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{63F33A42-180C-41E1-BCF6-57335200B66A}] => C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{365856DD-96B8-4104-9F77-79233DA5E047}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{4881B295-8618-4ECF-A9F4-87F43A7AD39E}] => C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{5BD9BFF5-B75A-4C45-9DDC-58FF8D31CBB6}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{190C0C9C-33C1-4DCD-AF81-C64EC28370D9}] => C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [TCP Query User{76B13A3E-8F9B-4C28-91DB-0C9AA6127DB7}C:\program files (x86)\amulec1\amule.exe] => C:\program files (x86)\amulec1\amule.exe
FirewallRules: [UDP Query User{23CA4E45-1996-47BC-8004-407722F3B376}C:\program files (x86)\amulec1\amule.exe] => C:\program files (x86)\amulec1\amule.exe
FirewallRules: [{B8155EEF-AFCA-4B69-AC19-4053C03B567C}] => C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{6114AE8A-EA9C-4BBF-B064-BB4015DEE52A}] => C:\Program Files (x86)\Firefox\Firefox.exe
File: C:\Program Files (x86)\Firefox\Firefox.exe
File: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe

CMD: dir "C:\Windows\System32\Tasks"
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.

====> Registry

========= reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost" =========


HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost
netsvcs REG_MULTI_SZ AeLookupSvc\0CertPropSvc\0SCPolicySvc\0lanmanserver\0gpsvc\0AudioSrv\0FastUserSwitchingCompatibility\0Ias\0Irmon\0Nla\0Ntmssvc\0NWCWorkstation\0Nwsapagent\0Rasauto\0Rasman\0Remoteaccess\0SENS\0Sharedaccess\0SRService\0Tapisrv\0Wmi\0WmdmPmSp\0TermService\0wuauserv\0BITS\0ShellHWDetection\0LogonHours\0PCAudit\0helpsvc\0uploadmgr\0iphlpsvc\0msiscsi\0schedule\0SessionEnv\0winmgmt\0AppMgmt
LocalService REG_MULTI_SZ RemoteRegistry\0WinHttpAutoProxySvc\0sppuinotify\0netprofm\0WebClient
LocalSystemNetworkRestricted REG_MULTI_SZ Netman\0AudioEndpointBuilder\0dot3svc\0wlansvc\0WPDBusEnum
LocalServiceNoNetwork REG_MULTI_SZ PLA
rpcss REG_MULTI_SZ RpcSs
LocalServiceNetworkRestricted REG_MULTI_SZ AudioSrv\0BthHFSrv\0LmHosts\0wscsvc\0WPCSvc
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV\0upnphost\0SCardSvr\0QWAVE\0wcncsvc
DcomLaunch REG_MULTI_SZ Power\0PlugPlay\0DcomLaunch
NetworkService REG_MULTI_SZ CryptSvc\0DHCP\0TermService\0DNSCache\0NapAgent\0nlasvc\0WinRM\0WECSVC\0Tapisrv
imgsvc REG_MULTI_SZ StiSvc
wcssvc REG_MULTI_SZ WcsPlugInService
Musadom REG_MULTI_SZ Musadom

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalService
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceAndNoImpersonation
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalServiceNoNetwork
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\LocalSystemNetworkRestricted
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\netsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkService
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopHyperVAgent
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\NetworkServiceRemoteDesktopPublishing
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\termsvcs
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost\wcssvc

========= End of CMD: =========

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\AvgUninstallURL => value not found.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\xranhgo => key not found.

========================= File: C:\Users\Michal\AppData\Local\xranhgo.dll ========================

"C:\Users\Michal\AppData\Local\xranhgo.dll" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Local\xranhgo.dll" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\EnableShellExecuteHooks => value not found.
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value not found.
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\jelxymt5 => key not found.
HKLM\SYSTEM\CurrentControlSet\Control\Print\Providers\\order jelxymt5 => not found.

========================= File: C:\Program Files (x86)\Adobe\\local64spl.dll ========================

"C:\Program Files (x86)\Adobe\\local64spl.dll" => not found.
====== End of File: ======

"C:\Program Files (x86)\Adobe\\local64spl.dll" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{4A39289E-AB73-11E6-B57F-64006A5CFC23} => value not found.
HKCR\CLSID\{4A39289E-AB73-11E6-B57F-64006A5CFC23} => key not found.

========================= File: C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll ========================

"C:\Users\Michal\AppData\Roaming\Graqsp\Kerich.dll" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Roaming\Graqsp" => not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key not found.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"C:\Windows\system32\GroupPolicy\Machine" => not found.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\SOFTWARE\Policies\Microsoft\Internet Explorer => key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-1152366391-2464299941-3798222694-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} => key not found.
HKCR\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} => key not found.
"C:\Program Files (x86)\AVG" => not found.

========= type "C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\user.js" =========

# Mozilla User Preferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("browser.search.defaultenginename", "luck");
user_pref("browser.search.order.1", "luck");
user_pref("browser.search.searchengine.alias", "");
user_pref("browser.search.searchengine.name", "luck");
user_pref("browser.search.searchengine.ref", "");
user_pref("browser.search.searchengine.ts", "1481542656");
user_pref("browser.search.searchengine.type", "");
user_pref("browser.search.searchengine.uid", "st500lm000-1ej162_w370kzblxxxxw370kzbl");
user_pref("browser.search.selectedEngine", "luck");
user_pref("browser.search.useDBForOrder", true);
user_pref("browser.sessionstore.max_tabs_undo", 0);
user_pref("browser.sessionstore.max_windows_undo", 0);
user_pref("browser.sessionstore.resume_from_crash", false);
user_pref("browser.sessionstore.resume_session_once", false);

========= End of CMD: =========

FF DefaultSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck => not found
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\crsahtbq.default -> luck => not found
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\crsahtbq.default -> Bing => not found
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\crsahtbq.default -> luck => not found
FF Keyword.URL: Mozilla\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q= => not found
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\extensions\arthurj8283@gmail.com => not found.
"C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml" => not found.

========= type "C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\user.js" =========

# Mozilla User Preferences
/* Do not edit this file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("browser.search.defaultenginename", "luck");
user_pref("browser.search.order.1", "luck");
user_pref("browser.search.searchengine.alias", "");
user_pref("browser.search.searchengine.name", "luck");
user_pref("browser.search.searchengine.ref", "");
user_pref("browser.search.searchengine.ts", "1481542656");
user_pref("browser.search.searchengine.type", "");
user_pref("browser.search.searchengine.uid", "st500lm000-1ej162_w370kzblxxxxw370kzbl");
user_pref("browser.search.selectedEngine", "luck");
user_pref("browser.search.useDBForOrder", true);
user_pref("browser.sessionstore.max_tabs_undo", 0);
user_pref("browser.sessionstore.max_windows_undo", 0);
user_pref("browser.sessionstore.resume_from_crash", false);
user_pref("browser.sessionstore.resume_session_once", false);

========= End of CMD: =========

Firefox DefaultSearchEngine removed successfully
Firefox SearchEngineOrder.1 removed successfully
FF SearchEngineOrder.3: Firefox\Firefox\Profiles\crsahtbq.default -> Bing => not found
Firefox SelectedSearchEngine removed successfully
FF Keyword.URL: Firefox\Firefox\Profiles\crsahtbq.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q= => not found
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi => not found.
C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\Extensions\arthurj8283@gmail.com => not found.
"C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\luck.xml" => not found.
"C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\searchinme.xml" => not found.
"C:\Users\Michal\AppData\Roaming\Firefox\Firefox\Profiles\crsahtbq.default\searchplugins\zmlfca7u.xml" => not found.

========================= File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe ========================

File not signed
MD5: A917E4F753B90A5181ECBFA56D5C154A
Creation and modification date: 2013-01-24 23:12 - 2013-01-24 23:12
Size: 0227456
Attributes: ----A
Company Name: Qualcomm Atheros Commnucations
Internal Name: AdminService
Original Name: AdminService.exe
Product: Bluetooth Software
Description: AdminService Application
File Version: 8.0.0.220
Product Version: 8.0.0.220
Copyright: Copyright (c) 2001-2010 Qualcomm Atheros Communications, Inc. All rights reserved.

====== End of File: ======

Convxxxx => service not found.

========================= File: C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe ========================

"C:\Users\Michal\AppData\Roaming\cfjcf\UvConverter.exe" => not found.
====== End of File: ======

"C:\Users\Michal\AppData\Roaming\cfjcf" => not found.
FirefoxU => service not found.
aswVmm => service not found.
catchme => service not found.

========================= Folder: C:\Users\Michal\AppData\Local\Tempzxpsigneb139762080477ae ========================


====== End of Folder: ======


========================= Folder: C:\Users\Michal\AppData\Local\Tempzxpsigne52d9fbe0f737919 ========================


====== End of Folder: ======

"C:\Users\Michal\Downloads\RSITx64.exe" => not found.
"C:\rsit" => not found.
"C:\Program Files (x86)\amuleC1" => not found.
"C:\Users\Public\Documents\report.dat" => not found.
"C:\Users\Public\Documents\temp.dat" => not found.
"C:\Users\Michal\Documents\aMule Downloads" => not found.
"C:\Users\Michal\AppData\Roaming\aMule" => not found.
"C:\Users\Michal\AppData\Roaming\cfjcf" => not found.
"C:\Program Files (x86)\ft1xx095" => not found.

========================= Folder: C:\ProgramData\Avira ========================

2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\AntiVir Desktop
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\AntiVir Desktop\CONFIG
2016-12-09 17:51 - 2016-12-09 17:51 - 0000494 _____ () C:\ProgramData\Avira\AntiVir Desktop\CONFIG\AVWIN.INI
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\Antivirus
2016-12-09 17:51 - 2016-12-09 17:51 - 0000000 ____D () C:\ProgramData\Avira\Antivirus\CONFIG
2016-12-09 17:51 - 2016-12-09 17:51 - 0000494 _____ () C:\ProgramData\Avira\Antivirus\CONFIG\AVWIN.INI

====== End of Folder: ======

"C:\Windows\System32\Tasks\Vuktionliqat Helper" => not found.
"C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2" => not found.
"C:\Program Files (x86)\Merpetionannage" => not found.
"C:\Users\Michal\AppData\Local\Smedom" => not found.
"C:\Users\Michal\AppData\Roaming\Graqsp" => not found.
"C:\Program Files\trend micro" => not found.

========================= Folder: C:\f74ac6a2e4cd4e3b05d865d22c91ca77 ========================

2016-11-18 16:36 - 2016-02-13 18:16 - 22011749 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64.cab
2016-11-18 16:36 - 2016-02-13 18:17 - 0000498 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64.xml
2016-11-18 16:36 - 2016-02-13 18:17 - 0000395 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\Windows6.1-KB3134760-x64-pkgProperties.txt
2016-11-18 16:36 - 2016-02-13 18:18 - 0198044 _____ () C:\f74ac6a2e4cd4e3b05d865d22c91ca77\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\065499413fda718ad23a4eeb3e452f ========================

2016-11-18 15:24 - 2016-01-11 16:10 - 3177773 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64.cab
2016-11-18 15:24 - 2016-01-11 16:11 - 0000446 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64.xml
2016-11-18 15:24 - 2016-01-11 16:11 - 0000521 _____ () C:\065499413fda718ad23a4eeb3e452f\Windows6.1-KB3135445-x64-pkgProperties.txt
2016-11-18 15:24 - 2016-01-11 16:19 - 0181156 _____ () C:\065499413fda718ad23a4eeb3e452f\WSUSSCAN.cab

====== End of Folder: ======


========================= Folder: C:\ProgramData\AVAST Software ========================

not found.

====== End of Folder: ======

"C:\ProgramData\Avg" => not found.
"C:\Users\Michal\AppData\Local\AvgSetupLog" => not found.
"C:\Users\Michal\AppData\Local\Avg" => not found.
"C:\ProgramData\AVAST Software" => not found.
"C:\Program Files (x86)\AVG" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{43A81866-A5C4-44F9-8EB6-F43090120092} => key not found.
C:\Windows\System32\Tasks\{9FEBF33B-2074-414C-8502-E337530B2EEE} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9FEBF33B-2074-414C-8502-E337530B2EEE} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{898120DD-BF52-4B72-ACAB-45372AEE08B5} => key not found.
C:\Windows\System32\Tasks\AVAST Software\Avast settings backup => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{917AB143-3543-4ED5-86D1-DAE72919DC3A} => key not found.
C:\Windows\System32\Tasks\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{ED0C19EC-E733-47DA-A367-34EAE657BBBF} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D33665A0-6187-430A-A0AD-41B0FF27D0EB} => key not found.
C:\Windows\System32\Tasks\54f4f7b41a6f7a369d678a5e04483ba2 => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\54f4f7b41a6f7a369d678a5e04483ba2 => key not found.

========================= File: C:\Program Files (x86)\Merpetionannage\copay.exe ========================

"C:\Program Files (x86)\Merpetionannage\copay.exe" => not found.
====== End of File: ======


========================= Folder: C:\Program Files (x86)\Merpetionannage ========================

not found.

====== End of Folder: ======

"C:\Program Files (x86)\Merpetionannage" => not found.

========================= File: C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe ========================

"C:\Program Files (x86)\SrpnFiles\SrpnFiles.exe" => not found.
====== End of File: ======


========================= File: C:\Program Files (x86)\SrpnFiles\downloader.exe ========================

"C:\Program Files (x86)\SrpnFiles\downloader.exe" => not found.
====== End of File: ======


========================= Folder: C:\Program Files (x86)\SrpnFiles ========================

not found.

====== End of Folder: ======

"C:\Program Files (x86)\SrpnFiles" => not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F659C450-8F90-4046-A97E-1180E871D417} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B8B91FE-FEBA-440A-A18C-3C6BE8C5DA64} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1222AFB4-9C0C-4EDA-8C20-13C097DD10F4} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6779D280-A173-47C3-8F50-16A2B0B6246B} => value not found.

========================= File: C:\program files (x86)\brackets\node.exe ========================

"C:\program files (x86)\brackets\node.exe" => not found.
====== End of File: ======

HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D960489A-096B-4277-B260-B3A53D48840B} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D0EEFAF9-098E-47B6-9B63-7350707B6846} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8DD6A48A-6951-45BC-AEFC-F01B5F82D210}C:\windows\syswow64\rundll32.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{22D498AC-C9A7-4644-8629-2152CFF322E4}C:\windows\syswow64\rundll32.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1B40F44E-E1D2-4215-92FA-39146AD5B265} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63F33A42-180C-41E1-BCF6-57335200B66A} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{365856DD-96B8-4104-9F77-79233DA5E047} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4881B295-8618-4ECF-A9F4-87F43A7AD39E} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5BD9BFF5-B75A-4C45-9DDC-58FF8D31CBB6} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{190C0C9C-33C1-4DCD-AF81-C64EC28370D9} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{76B13A3E-8F9B-4C28-91DB-0C9AA6127DB7}C:\program files (x86)\amulec1\amule.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{23CA4E45-1996-47BC-8004-407722F3B376}C:\program files (x86)\amulec1\amule.exe => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8155EEF-AFCA-4B69-AC19-4053C03B567C} => value not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6114AE8A-EA9C-4BBF-B064-BB4015DEE52A} => value not found.

========================= File: C:\Program Files (x86)\Firefox\Firefox.exe ========================

"C:\Program Files (x86)\Firefox\Firefox.exe" => not found.
====== End of File: ======


========================= File: C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe ========================

"C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe" => not found.
====== End of File: ======


========= dir "C:\Windows\System32\Tasks" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Windows\System32\Tasks

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
08. 11. 2016 12:31 4˙476 Adobe Acrobat Update Task
13. 12. 2016 12:46 3˙768 Adobe Flash Player Updater
17. 12. 2016 10:48 <DIR> AVAST Software
16. 11. 2016 17:12 2˙794 CCleanerSkipUAC
16. 12. 2016 22:10 3˙240 GoogleUpdateTaskMachineCore
16. 12. 2016 22:10 3˙368 GoogleUpdateTaskMachineUA
16. 10. 2016 09:43 3˙620 HPCustParticipation HP Deskjet 1510 series
18. 11. 2016 16:45 <DIR> Microsoft
08. 10. 2016 15:37 <DIR> OfficeSoftwareProtectionPlatform
22. 11. 2016 13:30 <DIR> WPD
6 File(s) 21˙266 bytes
6 Dir(s) 287˙875˙833˙856 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~1" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~1

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
16. 11. 2016 21:13 <DIR> Adobe
07. 10. 2016 14:13 <DIR> ATI
07. 10. 2016 14:14 <DIR> ATI Technologies
16. 11. 2016 17:12 <DIR> CCleaner
09. 10. 2016 09:43 <DIR> Cisco Packet Tracer 7.0
23. 11. 2016 17:43 <DIR> Common Files
07. 10. 2016 13:53 <DIR> CONEXANT
07. 10. 2016 14:04 <DIR> DIFX
19. 11. 2016 13:34 <DIR> DVD Maker
07. 10. 2016 13:41 <DIR> Elantech
16. 10. 2016 09:40 <DIR> HP
07. 10. 2016 13:39 <DIR> Intel
08. 10. 2016 10:33 <DIR> Intel Security
18. 11. 2016 19:27 <DIR> Internet Explorer
07. 10. 2016 14:04 <DIR> Lenovo
08. 10. 2016 15:31 <DIR> Microsoft Office
18. 11. 2016 08:50 <DIR> Microsoft Silverlight
14. 07. 2009 06:38 <DIR> MSBuild
17. 10. 2016 14:48 <DIR> Oracle
14. 07. 2009 06:38 <DIR> Reference Assemblies
18. 11. 2016 17:59 <DIR> Windows Defender
12. 04. 2011 14:29 <DIR> Windows Mail
20. 11. 2016 15:35 <DIR> Windows Media Player
14. 07. 2009 06:38 <DIR> Windows NT
12. 04. 2011 14:29 <DIR> Windows Photo Viewer
19. 11. 2016 13:34 <DIR> Windows Portable Devices
12. 04. 2011 14:29 <DIR> Windows Sidebar
19. 11. 2016 10:00 <DIR> WindowsPowerShell
08. 10. 2016 12:25 <DIR> WinRAR
0 File(s) 0 bytes
31 Dir(s) 287˙875˙829˙760 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~2" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~2

17. 12. 2016 16:12 <DIR> .
17. 12. 2016 16:12 <DIR> ..
17. 12. 2016 10:48 <DIR> Adobe
09. 12. 2016 17:50 <DIR> AMD APP
09. 12. 2016 17:50 <DIR> AMD AVT
10. 12. 2016 13:16 <DIR> AnthemScore
09. 12. 2016 17:50 <DIR> ATI Technologies
09. 12. 2016 17:50 <DIR> Audacity
09. 12. 2016 17:50 <DIR> Bluetooth Suite
09. 12. 2016 17:50 <DIR> Brackets
09. 12. 2016 17:50 <DIR> Cisco
14. 12. 2016 20:28 <DIR> Common Files
09. 12. 2016 17:50 <DIR> DAEMON Tools Lite
09. 12. 2016 17:50 <DIR> Google
09. 12. 2016 17:51 <DIR> Hewlett-Packard
09. 12. 2016 17:50 <DIR> HP
09. 12. 2016 17:50 <DIR> HP Photo Creations
09. 12. 2016 17:50 <DIR> Intel
09. 12. 2016 17:50 <DIR> Internet Explorer
09. 12. 2016 17:51 <DIR> JSignPdf
09. 12. 2016 17:50 <DIR> K-Lite Codec Pack
09. 12. 2016 17:50 <DIR> Lenovo
09. 12. 2016 17:50 <DIR> McAfee
09. 12. 2016 17:50 <DIR> Microsoft Analysis Services
09. 12. 2016 17:50 <DIR> Microsoft Office
09. 12. 2016 17:50 <DIR> Microsoft Silverlight
09. 12. 2016 17:50 <DIR> Microsoft SQL Server Compact Edition
09. 12. 2016 17:50 <DIR> Microsoft Sync Framework
09. 12. 2016 17:50 <DIR> Microsoft Synchronization Services
09. 12. 2016 17:50 <DIR> Microsoft Visual Studio 8
09. 12. 2016 17:50 <DIR> Microsoft.NET
17. 12. 2016 16:08 <DIR> MozBackup
17. 12. 2016 16:10 <DIR> Mozilla Firefox
18. 12. 2016 09:10 <DIR> Mozilla Maintenance Service
09. 12. 2016 17:50 <DIR> MSBuild
10. 12. 2016 13:16 <DIR> MuseScore 2
09. 12. 2016 17:50 <DIR> Neuratron
10. 12. 2016 09:41 <DIR> Neuratron AudioScore Ultimate Demo
09. 12. 2016 17:50 <DIR> Notepad++
09. 12. 2016 17:51 <DIR> Opera
09. 12. 2016 17:50 <DIR> Qualcomm Atheros
09. 12. 2016 17:50 <DIR> Realtek
09. 12. 2016 17:50 <DIR> Reference Assemblies
09. 12. 2016 17:50 <DIR> Renesas Electronics
09. 12. 2016 17:50 <DIR> RightMark
10. 12. 2016 11:39 <DIR> ScoreCloud Studio
09. 12. 2016 17:50 <DIR> Sibelius Software
09. 12. 2016 17:50 <DIR> Skype
09. 12. 2016 17:50 <DIR> The Witcher 3 Wild Hunt Blood and Wine
09. 12. 2016 17:50 <DIR> VideoLAN
09. 12. 2016 17:50 <DIR> Windows Defender
09. 12. 2016 17:50 <DIR> Windows Mail
09. 12. 2016 17:50 <DIR> Windows Media Player
09. 12. 2016 17:50 <DIR> Windows NT
09. 12. 2016 17:50 <DIR> Windows Photo Viewer
09. 12. 2016 17:50 <DIR> Windows Portable Devices
09. 12. 2016 17:50 <DIR> Windows Sidebar
09. 12. 2016 17:50 <DIR> WindowsPowerShell
0 File(s) 0 bytes
58 Dir(s) 287˙875˙829˙760 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~3" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\PROGRA~3

17. 12. 2016 10:51 <DIR> .
17. 12. 2016 10:51 <DIR> ..
09. 12. 2016 15:31 <DIR> Acoustica
23. 11. 2016 18:41 <DIR> Adobe
07. 10. 2016 14:15 <DIR> AMD
16. 10. 2016 09:40 57 Ament.ini
18. 11. 2016 09:41 <DIR> Atheros
07. 10. 2016 14:27 <DIR> ATI
09. 12. 2016 17:51 <DIR> Avira
07. 10. 2016 13:50 <DIR> Conexant
07. 10. 2016 14:19 <DIR> DAEMON Tools Lite
07. 10. 2016 14:02 <DIR> Downloaded Installations
16. 10. 2016 09:42 <DIR> HP
16. 10. 2016 09:43 <DIR> HP Photo Creations
07. 10. 2016 13:48 <DIR> Intel
08. 10. 2016 10:44 <DIR> McAfee
22. 11. 2016 13:29 <DIR> MFAData
20. 11. 2016 16:47 <DIR> Microsoft Help
23. 11. 2016 17:43 <DIR> Package Cache
07. 10. 2016 13:36 <DIR> Qualcomm Atheros
07. 10. 2016 13:35 <DIR> Roaming
08. 12. 2016 08:42 <DIR> Skype
16. 10. 2016 09:43 <DIR> Visan
1 File(s) 57 bytes
22 Dir(s) 287˙875˙825˙664 bytes free

========= End of CMD: =========


========= dir "%localappdata%" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Users\Michal\AppData\Local

18. 12. 2016 09:12 <DIR> .
18. 12. 2016 09:12 <DIR> ..
25. 11. 2016 10:35 <DIR> Adobe
10. 12. 2016 14:12 <DIR> AnthemScore
07. 10. 2016 17:23 <DIR> Apps
07. 10. 2016 14:27 <DIR> ATI
07. 10. 2016 14:10 <DIR> BMExplorer
07. 10. 2016 17:51 <DIR> CEF
14. 12. 2016 20:18 <DIR> CrashDumps
10. 12. 2016 13:01 <DIR> Deployment
23. 11. 2016 07:18 <DIR> Diagnostics
18. 12. 2016 10:31 <DIR> ElevatedDiagnostics
10. 12. 2016 09:21 <DIR> Firefox
10. 12. 2016 12:08 124˙608 GDIPFONTCACHEV1.DAT
04. 11. 2016 08:38 <DIR> Google
16. 10. 2016 09:43 <DIR> HP
08. 10. 2016 10:48 <DIR> Macromedia
21. 11. 2016 19:44 <DIR> MFAData
29. 11. 2016 13:15 <DIR> Microsoft
15. 11. 2016 17:55 <DIR> Microsoft Help
07. 10. 2016 17:22 <DIR> Mozilla
10. 12. 2016 13:16 <DIR> MuseScore
07. 10. 2016 14:17 <DIR> Programs
19. 11. 2016 09:36 7˙605 Resmon.ResmonCfg
18. 12. 2016 12:24 <DIR> Temp
25. 11. 2016 16:11 <DIR> Tempzxpsign0129c5ea464d1bd0
29. 11. 2016 12:41 <DIR> Tempzxpsign0869e5917f164ad8
07. 12. 2016 19:18 <DIR> Tempzxpsign08708443e994ca5f
02. 12. 2016 08:35 <DIR> Tempzxpsign089f88d9de54e320
01. 12. 2016 14:28 <DIR> Tempzxpsign093bb2eebf52505b
23. 11. 2016 18:12 <DIR> Tempzxpsign0b64d6facd5b380b
01. 12. 2016 14:47 <DIR> Tempzxpsign0c6c77f61ea482b9
25. 11. 2016 14:33 <DIR> Tempzxpsign0d50ec84559762e7
25. 11. 2016 10:49 <DIR> Tempzxpsign0e05eb4c4a3dcf5f
30. 11. 2016 18:23 <DIR> Tempzxpsign0e2689382ab7988b
01. 12. 2016 14:05 <DIR> Tempzxpsign0f35eaf1cde8fff5
25. 11. 2016 09:30 <DIR> Tempzxpsign1054cf807590fa05
25. 11. 2016 09:26 <DIR> Tempzxpsign16e3469ef7cbb3d5
25. 11. 2016 14:33 <DIR> Tempzxpsign1a19d272fff3af72
08. 12. 2016 14:26 <DIR> Tempzxpsign1a4957ae9e010c42
01. 12. 2016 14:33 <DIR> Tempzxpsign2030b3848e1630f2
25. 11. 2016 16:50 <DIR> Tempzxpsign22fbe70e649a2567
08. 12. 2016 09:09 <DIR> Tempzxpsign2368e15f51aa66f0
07. 12. 2016 19:18 <DIR> Tempzxpsign26187949b09a3374
24. 11. 2016 16:05 <DIR> Tempzxpsign29d1708b5d4b643f
30. 11. 2016 18:31 <DIR> Tempzxpsign2ae16539ec40858b
26. 11. 2016 17:11 <DIR> Tempzxpsign2c2cd75c0b565547
26. 11. 2016 17:14 <DIR> Tempzxpsign2e2e77420baffa19
26. 11. 2016 18:30 <DIR> Tempzxpsign315e73162b4dc7e7
25. 11. 2016 10:43 <DIR> Tempzxpsign327e396fd5df5acb
25. 11. 2016 16:12 <DIR> Tempzxpsign3322123ed736752e
08. 12. 2016 09:09 <DIR> Tempzxpsign3431ccb9f2be5af8
25. 11. 2016 09:30 <DIR> Tempzxpsign357a12175afd1c22
25. 11. 2016 16:17 <DIR> Tempzxpsign36c0d5a735365b31
25. 11. 2016 16:12 <DIR> Tempzxpsign36e3f51eedc3d245
25. 11. 2016 14:33 <DIR> Tempzxpsign37ee5b7be7723430
29. 11. 2016 15:42 <DIR> Tempzxpsign38237170c6290eb9
25. 11. 2016 16:11 <DIR> Tempzxpsign3c6005916f9dd753
23. 11. 2016 18:02 <DIR> Tempzxpsign3e3f66ca8c66aa74
01. 12. 2016 09:50 <DIR> Tempzxpsign3f0c97113d683f5b
07. 12. 2016 19:10 <DIR> Tempzxpsign4049943a7c9bee0e
25. 11. 2016 10:49 <DIR> Tempzxpsign447d2b9e4e81afab
26. 11. 2016 18:30 <DIR> Tempzxpsign44f91b5941852f0a
24. 11. 2016 16:04 <DIR> Tempzxpsign49eb3cd7f4b7f320
04. 12. 2016 15:26 <DIR> Tempzxpsign4a446d41aab2d9ce
02. 12. 2016 08:36 <DIR> Tempzxpsign4dfed01b68589eff
25. 11. 2016 09:29 <DIR> Tempzxpsign519b2990f93cb040
30. 11. 2016 18:23 <DIR> Tempzxpsign54ffb038181ccd4d
23. 11. 2016 18:07 <DIR> Tempzxpsign56c048b2693f68d5
25. 11. 2016 16:12 <DIR> Tempzxpsign5703aadb952e53fd
07. 12. 2016 18:38 <DIR> Tempzxpsign58387ca720608c0e
23. 11. 2016 18:01 <DIR> Tempzxpsign58da6dbb7fd1acb1
25. 11. 2016 16:50 <DIR> Tempzxpsign5c6ba150a70edfdd
08. 12. 2016 09:09 <DIR> Tempzxpsign5caf336a714ad62c
08. 12. 2016 14:39 <DIR> Tempzxpsign5f5d0463584beaab
08. 12. 2016 09:09 <DIR> Tempzxpsign5fa04cddc00c2968
25. 11. 2016 09:31 <DIR> Tempzxpsign6101293415ace175
08. 12. 2016 09:09 <DIR> Tempzxpsign617167e66810f387
10. 12. 2016 11:16 <DIR> Tempzxpsign6280dd11afb9dba7
08. 12. 2016 09:13 <DIR> Tempzxpsign63449d47d21786f7
03. 12. 2016 12:36 <DIR> Tempzxpsign637f95dfd3deab22
25. 11. 2016 09:31 <DIR> Tempzxpsign64291c0b5a0926b9
08. 12. 2016 09:09 <DIR> Tempzxpsign6630ea7a2aaaea6f
24. 11. 2016 15:40 <DIR> Tempzxpsign676e0b6a7a46bb3b
23. 11. 2016 18:07 <DIR> Tempzxpsign67ece1634f88fc75
25. 11. 2016 09:30 <DIR> Tempzxpsign684ff9c364f03851
25. 11. 2016 09:51 <DIR> Tempzxpsign6b9cc90398a0cb1e
07. 12. 2016 18:38 <DIR> Tempzxpsign6dcc49399f8c408e
25. 11. 2016 09:30 <DIR> Tempzxpsign6e0ff71341284eb7
07. 12. 2016 19:03 <DIR> Tempzxpsign6f2861bb349627f7
01. 12. 2016 09:12 <DIR> Tempzxpsign712e33010fec095c
01. 12. 2016 09:38 <DIR> Tempzxpsign726672b45aceab45
25. 11. 2016 09:29 <DIR> Tempzxpsign73b85cb532a49866
25. 11. 2016 14:49 <DIR> Tempzxpsign749b30851f685ccf
08. 12. 2016 09:09 <DIR> Tempzxpsign75c2f24933b279cf
29. 11. 2016 14:34 <DIR> Tempzxpsign760eae1ed084535c
04. 12. 2016 15:22 <DIR> Tempzxpsign76352d9288f330e9
25. 11. 2016 16:50 <DIR> Tempzxpsign76cb548188a4d357
25. 11. 2016 10:49 <DIR> Tempzxpsign77c9488ef26f1957
29. 11. 2016 14:17 <DIR> Tempzxpsign7ba0c41e17cff74f
25. 11. 2016 16:51 <DIR> Tempzxpsign7c50c242c36dec9a
01. 12. 2016 08:43 <DIR> Tempzxpsign7dd9662d1863cfba
25. 11. 2016 10:35 <DIR> Tempzxpsign7e69804d9b986f44
25. 11. 2016 08:17 <DIR> Tempzxpsign7f0a6b69175290fb
25. 11. 2016 14:29 <DIR> Tempzxpsign81fe6f6e41476c4f
25. 11. 2016 08:17 <DIR> Tempzxpsign8360ad92f119fba9
01. 12. 2016 14:33 <DIR> Tempzxpsign836b3f85dac8e120
01. 12. 2016 14:21 <DIR> Tempzxpsign83da037ce220920b
07. 12. 2016 19:31 <DIR> Tempzxpsign84b58b53f9301053
25. 11. 2016 14:28 <DIR> Tempzxpsign84f007c38e52055b
24. 11. 2016 15:40 <DIR> Tempzxpsign84fcebf5ab499b2f
25. 11. 2016 09:26 <DIR> Tempzxpsign8618836b38fb0f06
13. 12. 2016 13:09 <DIR> Tempzxpsign8924fc58313f079a
02. 12. 2016 08:36 <DIR> Tempzxpsign8a48116b133eec3d
13. 12. 2016 13:08 <DIR> Tempzxpsign8b1b574b55534ede
24. 11. 2016 15:54 <DIR> Tempzxpsign8c637eb919a2e78b
29. 11. 2016 14:18 <DIR> Tempzxpsign8d8256ce50bbc819
01. 12. 2016 08:43 <DIR> Tempzxpsign8f0f885cd9fcb2c8
01. 12. 2016 14:21 <DIR> Tempzxpsign8f2c1411af27bf28
24. 11. 2016 15:41 <DIR> Tempzxpsign8fad4dd83e783b7e
01. 12. 2016 09:50 <DIR> Tempzxpsign90b3543d86bb94b7
26. 11. 2016 17:12 <DIR> Tempzxpsign911d90bba4c005a5
25. 11. 2016 10:50 <DIR> Tempzxpsign915294f1d99e4f2e
25. 11. 2016 14:29 <DIR> Tempzxpsign92a69d7d9dd97171
23. 11. 2016 17:59 <DIR> Tempzxpsign9583690508cdc442
25. 11. 2016 09:31 <DIR> Tempzxpsign95a95dbbbee73014
01. 12. 2016 14:05 <DIR> Tempzxpsign981669be21ccd874
25. 11. 2016 16:51 <DIR> Tempzxpsign9aca18065b137984
25. 11. 2016 14:33 <DIR> Tempzxpsign9b36d278d0a4d778
24. 11. 2016 16:03 <DIR> Tempzxpsign9bd2492a5695ddd6
26. 11. 2016 17:11 <DIR> Tempzxpsign9c1abd5d31566242
25. 11. 2016 10:49 <DIR> Tempzxpsign9c6039ea2b84dba5
24. 11. 2016 16:05 <DIR> Tempzxpsign9dd3a42e09c39db5
23. 11. 2016 14:09 <DIR> Tempzxpsigna10c87b8ec352cb1
07. 12. 2016 18:41 <DIR> Tempzxpsigna4112098cba3b545
07. 12. 2016 19:19 <DIR> Tempzxpsigna64625fb825af44a
25. 11. 2016 14:28 <DIR> Tempzxpsigna66c9190cdaad7ed
24. 11. 2016 16:05 <DIR> Tempzxpsigna734fffac3057565
13. 12. 2016 13:09 <DIR> Tempzxpsignaa0a89b2b72d676c
25. 11. 2016 09:27 <DIR> Tempzxpsignac277e113a0ac49f
29. 11. 2016 15:58 <DIR> Tempzxpsignad766ffe9529aa1c
01. 12. 2016 14:46 <DIR> Tempzxpsignafa4cfdfa387e7f7
25. 11. 2016 09:30 <DIR> Tempzxpsignb0bad4c992317797
03. 12. 2016 12:36 <DIR> Tempzxpsignb9a0456209b0fb90
13. 12. 2016 13:08 <DIR> Tempzxpsignb9d28553828958ec
08. 12. 2016 14:26 <DIR> Tempzxpsignbbb6b284072599f2
04. 12. 2016 15:23 <DIR> Tempzxpsignbbb9965e4c421aac
08. 12. 2016 09:09 <DIR> Tempzxpsignbee8659ec374bfd9
25. 11. 2016 16:51 <DIR> Tempzxpsignbffc69d2e5d60b32
24. 11. 2016 15:56 <DIR> Tempzxpsignc0213cc5ef6d97b1
25. 11. 2016 10:52 <DIR> Tempzxpsignc172002c811ca5f4
25. 11. 2016 09:30 <DIR> Tempzxpsignc19a8417ded9332d
25. 11. 2016 14:29 <DIR> Tempzxpsignc1c3e7637aa83065
24. 11. 2016 15:56 <DIR> Tempzxpsignc1d0bd168acb068e
01. 12. 2016 14:05 <DIR> Tempzxpsignc416a405298374d2
04. 12. 2016 15:23 <DIR> Tempzxpsignc45ea8219c449654
24. 11. 2016 15:54 <DIR> Tempzxpsignc6439a6e31866387
24. 11. 2016 15:57 <DIR> Tempzxpsignc73dcb2132a228ae
29. 11. 2016 12:39 <DIR> Tempzxpsignc95b42e29036466e
07. 12. 2016 19:31 <DIR> Tempzxpsignc98638ed7eea07cb
01. 12. 2016 09:12 <DIR> Tempzxpsignc9a5cc778c404459
02. 12. 2016 08:35 <DIR> Tempzxpsignca2078198d882286
10. 12. 2016 11:16 <DIR> Tempzxpsignca5c412747d76b3f
01. 12. 2016 09:50 <DIR> Tempzxpsigncde8aac452b4324e
01. 12. 2016 08:43 <DIR> Tempzxpsignce36f1c8dc468bf1
07. 12. 2016 19:32 <DIR> Tempzxpsigncee4ec77b8cd039b
07. 12. 2016 19:03 <DIR> Tempzxpsigncf9de7cb9f6227d4
04. 12. 2016 15:27 <DIR> Tempzxpsignd1bf3c4c02a0b68b
24. 11. 2016 15:40 <DIR> Tempzxpsignd396a344c325b7df
24. 11. 2016 16:03 <DIR> Tempzxpsignd3e8951f534be6da
03. 12. 2016 12:36 <DIR> Tempzxpsignd5da385de6fd2890
29. 11. 2016 14:17 <DIR> Tempzxpsignd65fbc1f5a9677ef
07. 12. 2016 18:47 <DIR> Tempzxpsignd67b7683074df9c9
25. 11. 2016 08:18 <DIR> Tempzxpsignd694ce34272bd123
26. 11. 2016 18:37 <DIR> Tempzxpsignd7cb58767b595773
25. 11. 2016 10:50 <DIR> Tempzxpsigndbd601fe96fcde09
23. 11. 2016 14:05 <DIR> Tempzxpsigndbe751830fc4ef17
25. 11. 2016 14:29 <DIR> Tempzxpsigndcf4469ddea8caf5
02. 12. 2016 08:35 <DIR> Tempzxpsignde71e76c18358e83
08. 12. 2016 14:33 <DIR> Tempzxpsigne006d29ead18caf3
29. 11. 2016 12:39 <DIR> Tempzxpsigne0d742a69f007cec
08. 12. 2016 14:36 <DIR> Tempzxpsigne1ced321dfdfb9a4
23. 11. 2016 18:07 <DIR> Tempzxpsigne208c4645b61e0ca
23. 11. 2016 17:59 <DIR> Tempzxpsigne28d99f7ba0940de
25. 11. 2016 10:48 <DIR> Tempzxpsigne3bfa15279d8cc61
13. 12. 2016 13:09 <DIR> Tempzxpsigne52d9fbe0f737919
24. 11. 2016 15:54 <DIR> Tempzxpsigne7114b6c0570ce14
04. 12. 2016 15:22 <DIR> Tempzxpsigne825740709a62977
24. 11. 2016 16:05 <DIR> Tempzxpsignea5367d43c3157e8
25. 11. 2016 09:27 <DIR> Tempzxpsignea69996a3d358db7
26. 11. 2016 18:37 <DIR> Tempzxpsignea81d48a8b65529b
13. 12. 2016 13:09 <DIR> Tempzxpsigneb139762080477ae
29. 11. 2016 12:39 <DIR> Tempzxpsignebb2588b068b8ce7
02. 12. 2016 08:55 <DIR> Tempzxpsignedd1f5a77ec3e170
08. 12. 2016 14:26 <DIR> Tempzxpsignee60114fb4b1736e
04. 12. 2016 15:23 <DIR> Tempzxpsignee9598d774c5a0ab
25. 11. 2016 10:35 <DIR> Tempzxpsignef004a92cf6d8dd3
01. 12. 2016 14:33 <DIR> Tempzxpsignef86ed7a47234b5f
25. 11. 2016 10:50 <DIR> Tempzxpsignf17d395d597a11d7
08. 12. 2016 14:34 <DIR> Tempzxpsignf1f638c1177a31b0
23. 11. 2016 14:05 <DIR> Tempzxpsignf268b732b53d6e41
29. 11. 2016 15:59 <DIR> Tempzxpsignf2f5363d549be76a
01. 12. 2016 14:46 <DIR> Tempzxpsignf5b96ce0dbd76646
26. 11. 2016 18:37 <DIR> Tempzxpsignf638436609388d93
23. 11. 2016 17:59 <DIR> Tempzxpsignfb2bea506765f1fd
08. 12. 2016 14:33 <DIR> Tempzxpsignfc3eb4accfdb44f1
23. 11. 2016 14:05 <DIR> Tempzxpsignfdbca61b281d99b4
26. 11. 2016 18:37 <DIR> Tempzxpsignfdc10a1f9615cd11
10. 12. 2016 11:16 <DIR> Tempzxpsignff25e483c072c8cf
08. 10. 2016 10:44 <DIR> tkdata
10. 12. 2016 13:22 <DIR> VirtualStore
09. 10. 2016 09:44 17˙408 WebpageIcons.db
3 File(s) 149˙621 bytes
209 Dir(s) 287˙875˙813˙376 bytes free

========= End of CMD: =========


========= dir "%appdata%" =========

Volume in drive C has no label.
Volume Serial Number is 0815-D1D2

Directory of C:\Users\Michal\AppData\Roaming

17. 12. 2016 10:48 <DIR> .
17. 12. 2016 10:48 <DIR> ..
09. 12. 2016 15:31 <DIR> Acoustica
23. 11. 2016 18:41 <DIR> Adobe
07. 10. 2016 14:06 <DIR> Atheros
07. 10. 2016 14:27 <DIR> ATI
11. 12. 2016 13:06 <DIR> Audacity
30. 11. 2016 18:22 <DIR> Brackets
07. 10. 2016 14:19 <DIR> DAEMON Tools Lite
08. 10. 2016 10:51 <DIR> Easeware
10. 12. 2016 09:21 <DIR> Firefox
23. 10. 2016 10:10 <DIR> HpUpdate
07. 10. 2016 13:20 <DIR> Identities
07. 10. 2016 13:39 <DIR> InstallShield
07. 10. 2016 13:35 <DIR> Intel
07. 10. 2016 13:38 <DIR> Intel Corporation
07. 10. 2016 17:13 <DIR> Macromedia
16. 11. 2016 17:13 <DIR> Media Player Classic
07. 10. 2016 17:16 <DIR> Mozilla
10. 12. 2016 17:52 <DIR> MuseScore
09. 12. 2016 16:40 <DIR> Neuratron
01. 11. 2016 11:44 <DIR> Notepad++
09. 12. 2016 17:50 <DIR> Profiles
11. 10. 2016 21:35 607˙138 Scorch_Install.log
10. 12. 2016 14:55 <DIR> ScoreCloud
11. 10. 2016 21:36 <DIR> Sibelius Software
18. 12. 2016 12:11 <DIR> Skype
09. 12. 2016 15:32 <DIR> SynthMaker
10. 12. 2016 20:08 <DIR> uTorrent
09. 12. 2016 15:31 <DIR> vlc
08. 10. 2016 12:25 <DIR> WinRAR
1 File(s) 607˙138 bytes
30 Dir(s) 287˙875˙809˙280 bytes free

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13845140 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 23980 B
Edge => 0 B
Chrome => 487765 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Michal => 16094686 B
WOUTempAdmin => 0 B

RecycleBin => 67430 B
EmptyTemp: => 37.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:24:47 ====

Re: prepinanie na nechcene stranky

Napsal: 18 pro 2016 20:10
od altrok
Provadite stale ten samy spatny fix - jeho obsah vzdy menim pro aktualni stav PC. Vratte se znovu k memu poslednimu prispevku a fixlist ulozte s timto obsahem http://forum.viry.cz/viewtopic.php?p=1468869#p1468869
Všechny časy jsou v UTC+01:00
Stránka 2 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz