Zavirované PC - kliknul jsem, kam jsem neměl :-(
Napsal: 20 srp 2016 16:01
Prosím o pomoc s odvirováním PC, MS Defender si s tím neví rady.
Díky moc, Indy
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2016
Ran by Cukva (administrator) on CUKVA-PC (20-08-2016 16:40:30)
Running from C:\Users\Cukva\Desktop
Loaded Profiles: Cukva (Available Profiles: Cukva)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\ProgramData\Logic Handler\set.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(TODO: <Company name>) C:\Program Files (x86)\SoSoEasy\SoSoEasySvc.exe
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\hnsl415.tmp
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\jnsxEE4A.tmp
() C:\Program Files (x86)\UCBrowser\Application\UCService.exe
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\knsxD531.tmpfs
() C:\Program Files (x86)\WebShield\WebShield.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
() C:\Users\Cukva\AppData\Roaming\UPUpdata\service72564.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(YO2OzA) C:\Program Files (x86)\mpck\otutnetwork.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
() C:\Program Files (x86)\UCBrowser\Application\5.6.14087.902\UCAgent.exe
(深圳市伟创科技软件有限公司) C:\Users\Cukva\AppData\Local\Temp\Uninstall.tmp
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
() C:\Users\Cukva\AppData\Roaming\RandomDelJiheReg.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(eee) C:\Users\Cukva\AppData\Roaming\THREADAPP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
() C:\Users\Cukva\AppData\Roaming\adb.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\knsxD531.tmpfs
(63Y9RPyp6) C:\Program Files (x86)\DPower\wemoservice.exe
() C:\Program Files\BWWAA54BBM\BWWAA54BB.exe
() C:\Windows\Temp\9CB6.tmp
() C:\Program Files (x86)\DPower\ICWDN28BH5.exe
() C:\Windows\Temp\9CB8.tmp
() C:\Users\Cukva\AppData\Local\00000000-1471710981-0000-0000-001FD0231AAD\qnskC472.tmp
(forum.viry.cz) C:\Users\Cukva\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2016-07-17] (NVIDIA Corporation)
HKLM\...\Run: [WINCOM0EJ] => C:\Program Files (x86)\mpck\wincom_0EJ.exe [4270080 2016-08-19] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23892200 2016-08-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-07-20] (LogMeIn Inc.)
HKLM-x32\...\Run: [apphide] => C:\Program Files (x86)\sbqh\uc.exe [233520 2016-08-12] ( )
HKLM-x32\...\Run: [EYAN] => C:\Users\Cukva\AppData\Roaming\THREADAPP.exe [9216000 2016-07-05] (eee)
HKLM-x32\...\Run: [DiskPower] => C:\Program Files (x86)\DPower\DiskPower.exe [210432 2016-07-21] ()
HKLM\...\RunOnce: [OTUTPRODUCT_1SJPM] => C:\Program Files (x86)\mpck\otutnetwork.exe [698368 2016-08-19] (YO2OzA)
HKLM\...\RunOnce: [OMEWPRODUCT_PKKNC] => C:\Program Files (x86)\DPower\wemoservice.exe [274944 2016-08-20] (63Y9RPyp6)
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.)
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [QGuan10in1] => C:\Users\Cukva\AppData\Roaming\UPUpdata\service72564.exe [1831424 2016-08-19] ()
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [msiql] => C:\Users\Cukva\AppData\Roaming\UPUpdata\msiql.exe [1886720 2016-08-19] ()
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [svchost0] => "C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe"\UUC0789.exe
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [apphide] => C:\Program Files (x86)\sbqh\uc.exe [233520 2016-08-12] ( )
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [IDB3LQ2YB5] => C:\Program Files\BWWAA54BBM\BWWAA54BB.exe [369664 2016-08-20] ()
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [PNEGD584UO] => C:\Program Files (x86)\DPower\ICWDN28BH5.exe [369664 2016-08-20] ()
AppInit_DLLs: C:\ProgramData\Quoteex\Stock-Lex.dll => C:\ProgramData\Quoteex\Stock-Lex.dll [358912 2016-08-19] ()
AppInit_DLLs-x32: C:\ProgramData\Quoteex\Vivasolit.dll => C:\ProgramData\Quoteex\Vivasolit.dll [248320 2016-08-19] ()
ShellExecuteHooks: - {6710C780-E20E-4C49-A87D-321850ED3D7C} - C:\Users\Cukva\AppData\Local\Microsoft\Windows\INetCookies\burasp.dll [376320 2016-08-19] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [JzShlobj] -> {7B286609-DA97-47E1-AC6B-33B8B4732C95} => C:\Program Files\ZipTool\JZipExt.dll [2015-11-30] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => C:\Program Files\żěŃą\X64\KZipShell.dll [2016-08-19] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{0807a7cd-dff3-4755-8369-bbe6962f2db6}: [NameServer] 188.120.239.115,8.8.8.8
Tcpip\..\Interfaces\{3fc3e0d2-be95-4ccb-b1dd-dbe227468596}: [NameServer] 188.120.239.115,8.8.8.8
Tcpip\..\Interfaces\{3fc3e0d2-be95-4ccb-b1dd-dbe227468596}: [DhcpNameServer] 10.1.1.100 80.92.240.10
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-183318848-1229375432-8495929-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
HKU\S-1-5-21-183318848-1229375432-8495929-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
HKU\S-1-5-21-183318848-1229375432-8495929-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-183318848-1229375432-8495929-1001 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
Chrome:
=======
CHR HomePage: clacachthergidrigi -> hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzb738UllSvKNOFs9_iud95AuhB_MVZuqU2WIoUz6pghV0oc3jS-l3PdX8a26xm2p-VLkhpoTW-l8pJM47zdvF6YzoEQ,,
CHR StartupUrls: clacachthergidrigi -> "search.mpc.am"
CHR DefaultSearchURL: clacachthergidrigi -> hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzY3K2-YPKgebDQXDulr7fd4UwqVtXUH6uwx5MTKZiM8W3Ma3UPVnwKNXTWvyi6EkCiG-hwwfZD5CLK0odZy_BL6shSA,,&q={searchTerms}
CHR DefaultSearchKeyword: clacachthergidrigi -> feed.sonic-search.com
CHR DefaultSuggestURL: clacachthergidrigi -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
CHR Profile: C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-30]
CHR Extension: (Google Docs) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-30]
CHR Extension: (Google Drive) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-30]
CHR Extension: (YouTube) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-30]
CHR Extension: (Google Sheets) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-30]
CHR Extension: (Google Docs Offline) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-30]
CHR Extension: (Gmail) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-30]
CHR Extension: (Chrome Media Router) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 backlh; C:\ProgramData\Logic Handler\set.exe [2089472 2016-05-15] () [File not signed]
S2 Coerwcultcntand.exe; C:\Program Files (x86)\Crecult\Coerwcultcntand.exe [415320 2016-08-19] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-18] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-18] (Dropbox, Inc.)
R2 dowidoly; C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\jnsxEE4A.tmp [244224 2016-08-19] () [File not signed]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2554376 2016-07-20] (LogMeIn Inc.)
R2 KuaizipUpdateChecker; C:\Program Files\żěŃą\X86\kuaizipUpdateChecker.dll [219072 2016-08-19] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-07-20] (LogMeIn, Inc.)
R2 MPCProtectService; C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe [350688 2016-08-19] (DotC United Inc)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-07-30] ()
R2 rijufoze; C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\hnsl415.tmp [138240 2016-08-19] () [File not signed]
R2 SoEasySvc; C:\Program Files (x86)\SoSoEasy\SoSoEasySvc.exe [177304 2016-08-19] (TODO: <Company name>)
R2 UCBrowserSvc; C:\Program Files (x86)\UCBrowser\Application\UCService.exe [899984 2016-08-02] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-18] (Microsoft Corporation)
R2 ykbfBMhQ; C:\Program Files (x86)\WebShield\WebShield.exe [360448 2016-08-12] () [File not signed]
R2 zigipyro; C:\Users\Cukva\AppData\Local\00000000-1471710981-0000-0000-001FD0231AAD\qnskC472.tmp [158720 2015-12-26] () [File not signed]
R2 ziphost; c:\program files\ziptool\ziphost.dll [114080 2015-11-30] () <==== ATTENTION
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
R2 xomiboxozbt; C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\knsxD531.tmpfs [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-07-06] (LogMeIn Inc.)
R2 KuaiZipDrive; C:\WINDOWS\system32\drivers\KuaiZipDrive.sys [92872 2016-08-19] (WinMount International Inc)
R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [60136 2016-08-19] (DotC United Inc)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [81792 2016-08-02] (Huorong Borui (Beijing) Technology Co., Ltd.) <==== ATTENTION
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R1 ZipProtect; c:\program files\ziptool\ZipProtect64.sys [886512 2015-12-14] ()
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 16:40 - 2016-08-20 16:41 - 00021256 _____ C:\Users\Cukva\Desktop\FRST.txt
2016-08-20 16:39 - 2016-08-20 16:40 - 00000000 ____D C:\FRST
2016-08-20 16:38 - 2016-08-20 16:39 - 00112640 _____ (forum.viry.cz) C:\Users\Cukva\Desktop\FRSTLauncher.exe
2016-08-20 16:36 - 2016-08-20 16:36 - 02396160 _____ (Farbar) C:\Users\Cukva\Desktop\FRST64.exe
2016-08-20 16:36 - 2016-08-20 16:36 - 00000000 ____D C:\Users\Cukva\AppData\Local\00000000-1471710981-0000-0000-001FD0231AAD
2016-08-20 16:36 - 2016-08-20 16:36 - 00000000 ____D C:\Program Files\BWWAA54BBM
2016-08-20 16:36 - 2016-08-20 16:36 - 00000000 ____D C:\Program Files (x86)\DPower
2016-08-20 16:21 - 2016-08-20 16:21 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\tmp
2016-08-20 16:07 - 2016-08-20 16:07 - 00001798 _____ C:\Users\Public\Desktop\MPC Cleaner.lnk
2016-08-20 16:07 - 2016-08-20 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
2016-08-20 13:03 - 2016-08-20 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-20 13:02 - 2016-08-20 13:02 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-08-20 13:02 - 2016-08-20 13:02 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-08-20 09:01 - 2016-08-20 09:01 - 00000000 ____D C:\ProgramData\Microleaves
2016-08-19 22:39 - 2016-08-20 15:26 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4E95F4E6-AF0C-4360-8102-7037A22C2EC9}
2016-08-19 22:38 - 2016-08-19 22:38 - 00003264 _____ C:\WINDOWS\System32\Tasks\{8F083867-5942-48F5-AB03-2958835248A6}
2016-08-19 22:34 - 2016-08-20 16:31 - 07616340 _____ C:\Users\Cukva\AppData\Roaming\setup.apk
2016-08-19 22:34 - 2016-08-20 16:31 - 00732869 _____ C:\Users\Cukva\AppData\Roaming\xdo.zip
2016-08-19 22:33 - 2016-07-05 07:58 - 09216000 _____ (eee) C:\Users\Cukva\AppData\Roaming\THREADAPP.exe
2016-08-19 22:32 - 2016-08-20 16:16 - 00000000 ____D C:\Program Files (x86)\GreatMaker
2016-08-19 22:32 - 2016-08-20 16:12 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Kuaizip
2016-08-19 22:32 - 2016-08-19 22:32 - 00092872 _____ (WinMount International Inc) C:\WINDOWS\system32\Drivers\KuaiZipDrive.sys
2016-08-19 22:32 - 2016-08-19 22:32 - 00003530 _____ C:\WINDOWS\System32\Tasks\KuaiZip_Update
2016-08-19 22:32 - 2016-08-19 22:32 - 00000882 _____ C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\żěŃą.lnk
2016-08-19 22:32 - 2016-08-19 22:32 - 00000858 _____ C:\Users\Cukva\Desktop\żěŃą.lnk
2016-08-19 22:32 - 2016-08-19 22:32 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Softlink
2016-08-19 22:32 - 2016-08-19 22:32 - 00000000 ____D C:\Program Files\żěŃą
2016-08-19 22:32 - 2016-07-01 11:19 - 08284704 _____ (深圳市伟创科技软件有限公司) C:\Users\Cukva\AppData\Roaming\MaoHaWiFiSetup_262.exe
2016-08-19 22:31 - 2016-08-19 22:31 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\MCorp
2016-08-19 22:29 - 2016-08-19 22:29 - 00000000 ____D C:\Users\Cukva\AppData\Local\tuto_monetize_120160812
2016-08-19 22:29 - 2016-08-19 22:29 - 00000000 ____D C:\Program Files (x86)\mpck
2016-08-19 22:23 - 2016-08-20 16:06 - 00000474 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
2016-08-19 22:23 - 2016-08-19 22:23 - 00003492 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\Users\Cukva\AppData\Local\UCBrowser
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compress
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\Program Files\ZipTool
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-08-19 22:23 - 2016-08-02 08:24 - 00081792 _____ (Huorong Borui (Beijing) Technology Co., Ltd.) C:\WINDOWS\system32\Drivers\ucguard.sys
2016-08-19 22:23 - 2016-08-01 06:51 - 01616896 _____ C:\Users\Cukva\AppData\Roaming\kpzip.exe
2016-08-19 22:23 - 2016-02-18 10:10 - 05267952 _____ () C:\Users\Cukva\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-08-19 22:22 - 2016-08-19 22:23 - 00000000 ____D C:\Program Files (x86)\SoSoEasy
2016-08-19 22:22 - 2016-08-19 22:22 - 00009060 _____ C:\WINDOWS\System32\Tasks\Coerwcult Center
2016-08-19 22:22 - 2016-08-19 22:22 - 00001162 _____ C:\Users\Cukva\Desktop\AutoTime.lnk
2016-08-19 22:22 - 2016-08-19 22:22 - 00000000 ___HD C:\Program Files (x86)\39dAD3F
2016-08-19 22:22 - 2016-08-19 22:22 - 00000000 ____D C:\ProgramData\AVAST Software
2016-08-19 22:22 - 2016-08-18 07:27 - 00345088 _____ C:\Users\Cukva\AppData\Roaming\RandomDelJiheReg.exe
2016-08-19 22:22 - 2016-08-08 03:54 - 01611776 _____ C:\Users\Cukva\AppData\Roaming\ucdlr.exe
2016-08-19 22:21 - 2016-08-19 22:32 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\UPUpdata
2016-08-19 22:21 - 2016-08-19 22:25 - 00000000 ____D C:\Program Files (x86)\Crecult
2016-08-19 22:21 - 2016-08-19 22:22 - 00000000 ____D C:\Users\Cukva\AppData\Local\tumilyfutakcurerk
2016-08-19 22:21 - 2016-08-19 22:21 - 00003128 _____ C:\WINDOWS\System32\Tasks\tasklist
2016-08-19 22:21 - 2016-08-19 22:21 - 00000000 ____D C:\Users\Cukva\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk
2016-08-19 22:19 - 2016-08-20 16:07 - 00000000 ____D C:\Users\Cukva\AppData\Local\app
2016-08-19 22:18 - 2016-08-19 22:26 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2016-08-19 22:18 - 2016-08-19 22:22 - 00060136 _____ (DotC United Inc) C:\WINDOWS\system32\Drivers\MPCKpt.sys
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\Users\Cukva\AppData\Local\Bluestacks
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\Program Files (x86)\WebShield
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD
2016-08-19 22:18 - 2016-08-19 22:17 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-08-19 22:17 - 2016-08-19 22:22 - 00000000 ____D C:\Program Files (x86)\sbqh
2016-08-19 22:16 - 2016-08-19 22:19 - 00000000 ____D C:\Program Files (x86)\ContentPush
2016-08-19 22:16 - 2016-08-19 22:16 - 00000000 ____D C:\Program Files (x86)\WeatherChickn
2016-08-19 22:14 - 2016-08-20 16:10 - 00000000 ____D C:\ProgramData\Quoteex
2016-08-19 22:14 - 2016-08-19 22:14 - 07118336 _____ C:\Users\Cukva\AppData\Roaming\agent.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 02279413 _____ C:\Users\Cukva\AppData\Roaming\Intom.bin
2016-08-19 22:14 - 2016-08-19 22:14 - 01900430 _____ C:\Users\Cukva\AppData\Roaming\MoveSanin.tst
2016-08-19 22:14 - 2016-08-19 22:14 - 00126464 _____ C:\Users\Cukva\AppData\Roaming\noah.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 00070704 _____ C:\Users\Cukva\AppData\Roaming\Config.xml
2016-08-19 22:14 - 2016-08-19 22:14 - 00018432 _____ C:\Users\Cukva\AppData\Roaming\Main.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 00002397 _____ C:\WINDOWS\SysWOW64\findit.xml
2016-08-19 22:14 - 2016-08-19 22:14 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Mozilla
2016-08-19 22:14 - 2016-08-19 22:14 - 00000000 ____D C:\ProgramData\Quoteexs
2016-08-19 22:14 - 2016-08-19 22:14 - 00000000 ____D C:\ProgramData\Logic Handler
2016-08-19 22:13 - 2016-08-20 13:16 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-08-19 22:13 - 2016-08-19 22:14 - 00005568 _____ C:\Users\Cukva\AppData\Roaming\md.xml
2016-08-19 22:13 - 2016-08-19 22:13 - 00848437 _____ C:\Users\Cukva\AppData\Roaming\Beta-Top.bin
2016-08-19 22:13 - 2016-08-19 22:13 - 00126464 _____ C:\Users\Cukva\AppData\Roaming\lobby.dat
2016-08-19 22:13 - 2016-08-19 22:13 - 00072707 _____ C:\Users\Cukva\AppData\Roaming\QvoStrong.tst
2016-08-19 22:13 - 2016-08-19 22:13 - 00054272 _____ C:\Users\Cukva\AppData\Roaming\ApplicationHosting.dat
2016-08-19 22:13 - 2016-08-19 22:11 - 00695296 _____ C:\Users\Cukva\AppData\Roaming\QvoStrong.exe
2016-08-19 22:13 - 2016-08-19 22:11 - 00695296 _____ C:\Users\Cukva\AppData\Roaming\MoveSanin.exe
2016-08-19 22:12 - 2016-08-19 22:13 - 00018384 _____ C:\Users\Cukva\AppData\Roaming\InstallationConfiguration.xml
2016-08-19 22:12 - 2016-08-19 22:12 - 00138240 _____ C:\Users\Cukva\AppData\Roaming\Installer.dat
2016-08-19 22:12 - 2016-08-19 22:12 - 00003784 _____ C:\WINDOWS\System32\Tasks\Online Application Updater
2016-08-19 22:12 - 2016-08-19 22:12 - 00003704 _____ C:\WINDOWS\System32\Tasks\Online Application
2016-08-19 22:12 - 2016-08-19 22:12 - 00000000 ____D C:\Program Files (x86)\Microleaves
2016-08-19 22:10 - 2016-08-19 22:10 - 01052672 _____ C:\Users\Cukva\Downloads\Hatred-Game-Full-Version.img
2016-08-19 21:16 - 2016-08-19 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-08-18 21:17 - 2016-08-18 21:17 - 00001491 _____ C:\Users\Public\Desktop\WarThunder.lnk
2016-08-18 21:17 - 2016-08-18 21:17 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2016-08-18 21:17 - 2016-08-18 21:17 - 00000000 ____D C:\ProgramData\Gaijin
2016-08-18 21:16 - 2016-08-19 09:29 - 00000000 ____D C:\WarThunder
2016-08-18 21:16 - 2016-08-18 21:16 - 05607776 _____ (Gaijin Entertainment ) C:\Users\Cukva\Downloads\wt_launcher_1.0.1.674.exe
2016-08-18 19:15 - 2016-08-18 19:24 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Daybreak Game Company
2016-08-18 19:15 - 2016-08-18 19:15 - 00000000 ____D C:\Users\Cukva\AppData\Local\SCE
2016-08-18 19:15 - 2016-08-18 19:15 - 00000000 ____D C:\Users\Cukva\AppData\Local\Daybreak Game Company
2016-08-18 19:09 - 2016-08-18 19:09 - 00000000 ____D C:\Users\Cukva\AppData\Local\openvr
2016-08-18 19:06 - 2016-08-18 19:06 - 00003328 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-08-14 09:17 - 2016-08-19 20:57 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Heroes and Generals
2016-08-14 09:04 - 2016-08-14 09:04 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\HeroesAndGeneralsDesktop
2016-08-13 21:31 - 2016-08-13 21:31 - 00159238 _____ C:\Users\Cukva\Downloads\__32-msvcp120.dll12.0.21005.1.zip
2016-08-13 21:29 - 2016-08-13 21:29 - 00520193 _____ C:\Users\Cukva\Downloads\__32-msvcr120.dll12.0.21005.1.zip
2016-08-09 21:07 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-09 21:07 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-09 21:07 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-09 21:07 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-09 21:07 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-09 21:07 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-09 21:07 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-09 21:07 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-09 21:07 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-09 21:07 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-09 21:07 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-09 21:07 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-09 21:07 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-09 21:07 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-09 21:07 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-09 21:07 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-09 21:07 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-09 21:07 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-09 21:07 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-09 21:07 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-09 21:07 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-09 21:07 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-09 21:07 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-09 21:07 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-09 21:07 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-09 21:07 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-09 21:07 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-09 21:07 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-09 21:07 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-09 21:07 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-09 21:07 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-09 21:07 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-09 21:07 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-09 21:07 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-09 21:07 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-09 21:07 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-09 21:07 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-09 21:07 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-09 21:07 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-09 21:07 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-09 21:07 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-09 21:07 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-09 21:07 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-09 21:07 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-09 21:07 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-09 21:07 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-09 21:07 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-09 21:07 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-09 21:07 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-09 21:07 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-09 21:07 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-09 21:07 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-09 21:07 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-09 21:07 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-09 21:07 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-09 21:07 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-09 21:07 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-09 21:07 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-09 21:07 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-09 21:07 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-09 21:07 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-09 21:07 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-09 21:07 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-09 21:07 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-09 21:07 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-09 21:07 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-09 21:07 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-09 21:07 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-09 21:07 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-09 21:07 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-09 21:07 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-09 21:07 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-09 21:07 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-09 21:07 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-09 21:07 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-09 21:07 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 21:07 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 21:07 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 21:07 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-09 21:07 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-09 21:07 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-09 21:07 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-09 21:07 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-09 21:07 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-09 21:07 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-09 21:07 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-09 21:07 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-09 21:07 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-09 21:07 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-09 21:07 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-09 21:07 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-09 21:07 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-09 21:07 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-09 21:07 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 21:07 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-09 21:07 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-09 21:07 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-09 21:07 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-09 21:07 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-09 21:07 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-09 21:06 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-09 21:06 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-09 21:06 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-09 21:06 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-09 21:06 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-09 21:06 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-09 21:06 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-09 21:06 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-09 21:06 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-09 21:06 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-09 21:06 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-09 21:06 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-09 21:06 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-09 21:06 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-09 21:06 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-09 21:06 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-09 21:06 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-09 21:06 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-09 21:06 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-09 21:06 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-09 21:06 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-09 21:06 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-09 21:06 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-09 21:06 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-09 21:06 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-07 22:38 - 2016-08-07 22:38 - 00002664 _____ C:\Users\Cukva\Desktop\Dishonored v1.0~Update 2 (Include DLC) Plus 20 Trainer.exe – zástupce.lnk
2016-08-07 22:38 - 2016-08-07 22:38 - 00002355 _____ C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dishonored v1.0~Update 2 (Include DLC) Plus 20 Trainer.lnk
2016-08-07 18:59 - 2016-08-07 18:59 - 00000000 ____D C:\Users\Cukva\AppData\Local\Skyrim
2016-08-07 11:08 - 2016-08-07 11:08 - 00000000 ____D C:\Users\Cukva\Downloads\Dishonored.v1.0-Update.2.(Include.DLC).Plus.20.Trainer-FLiNG
2016-08-07 11:08 - 2016-08-07 11:08 - 00000000 ____D C:\Users\Cukva\Documents\FLiNGTrainer
2016-08-07 11:03 - 2016-08-07 11:03 - 00617551 _____ C:\Users\Cukva\Downloads\Dishonored.v1.0-Update.2.(Include.DLC).Plus.20.Trainer-FLiNG.zip
2016-08-07 09:59 - 2016-08-11 22:13 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-08-07 09:59 - 2016-08-11 22:13 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-08-07 09:59 - 2016-08-07 09:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-08-07 09:59 - 2016-08-07 09:59 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-08-06 21:06 - 2016-08-06 21:06 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Unknown Worlds
2016-08-06 20:41 - 2016-08-20 16:07 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Skype
2016-08-06 20:41 - 2016-08-06 20:41 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ____D C:\Users\Cukva\Tracing
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ____D C:\ProgramData\Skype
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-06 20:40 - 2016-08-06 20:40 - 01463424 _____ (Skype Technologies S.A.) C:\Users\Cukva\Downloads\SkypeSetup.exe
2016-07-31 21:38 - 2016-07-31 21:38 - 00000000 ____D C:\Users\Cukva\AppData\Local\Activision
2016-07-31 19:33 - 2016-07-31 19:33 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\NVIDIA
2016-07-31 13:49 - 2016-07-31 13:49 - 00001156 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
2016-07-31 13:49 - 2016-07-31 13:49 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2016-07-31 13:49 - 2016-07-31 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2016-07-31 13:48 - 2016-07-31 13:49 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\LastPass
2016-07-31 13:48 - 2016-07-31 13:49 - 00000000 ____D C:\Program Files (x86)\LastPass
2016-07-31 13:46 - 2016-08-20 16:07 - 00000000 ____D C:\Users\Cukva\AppData\Local\LogMeIn Hamachi
2016-07-31 13:46 - 2016-07-31 13:46 - 00000000 ____D C:\Users\Cukva\AppData\Local\lptmp
2016-07-31 13:46 - 2016-07-31 13:46 - 00000000 ____D C:\Users\Cukva\AppData\Local\LogMeIn
2016-07-31 13:46 - 2016-07-31 13:46 - 00000000 ____D C:\ProgramData\LogMeIn
2016-07-31 13:45 - 2016-08-07 09:59 - 00000995 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2016-07-31 13:45 - 2016-07-31 13:46 - 21857816 _____ (LastPass) C:\WINDOWS\SysWOW64\lastpass_1337.exe
2016-07-31 13:45 - 2016-07-31 13:45 - 00702464 _____ C:\WINDOWS\SysWOW64\lastpass_downloader.exe
2016-07-31 13:10 - 2016-07-31 13:10 - 00000000 ____D C:\Users\Cukva\Documents\Assassin's Creed IV Black Flag
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files\MSBuild
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-07-30 19:36 - 2016-07-31 10:06 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2016-07-30 19:35 - 2016-07-31 10:06 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-07-30 19:35 - 2016-07-30 19:36 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-07-30 19:35 - 2016-07-30 19:35 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-07-30 19:35 - 2016-07-30 19:35 - 00000000 ____D C:\Users\Cukva\AppData\Local\PunkBuster
2016-07-30 19:34 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-07-30 19:34 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-07-30 19:34 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-07-30 19:34 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-07-30 19:34 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-07-30 19:34 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-30 18:51 - 2016-07-30 18:52 - 00000000 ____D C:\Users\Cukva\Downloads\IZArc2Go
2016-07-30 18:51 - 2009-11-23 10:27 - 02826752 _____ () C:\Users\Cukva\Desktop\IZArc2Go.exe
2016-07-30 16:40 - 2016-07-30 16:40 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Smartly Dressed Games
2016-07-30 16:37 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-07-30 16:37 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-07-30 16:37 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-07-30 16:37 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-07-30 16:37 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-07-30 16:37 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-07-30 16:37 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-07-30 16:37 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-07-30 16:37 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-07-30 16:37 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-07-30 16:37 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-07-30 16:37 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-07-30 16:37 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-07-30 16:37 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-07-30 16:37 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-07-30 16:37 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-07-30 16:37 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-07-30 16:37 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-07-30 16:37 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-07-30 16:37 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-07-30 16:37 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-07-30 16:37 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-07-30 16:37 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-07-30 16:37 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-07-30 16:37 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-07-30 16:37 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-07-30 16:37 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-07-30 16:37 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-07-30 16:37 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-07-30 16:37 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-07-30 16:37 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-07-30 16:37 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-07-30 16:37 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-07-30 16:37 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-07-30 16:37 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-07-30 16:37 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-07-30 16:37 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-07-30 16:37 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-07-30 16:37 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-07-30 16:37 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-07-30 16:37 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-07-30 16:37 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-07-30 16:37 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-07-30 16:37 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-07-30 16:37 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-07-30 16:37 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-07-30 16:37 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-07-30 16:37 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-07-30 16:37 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-07-30 16:37 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-07-30 16:37 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-07-30 16:37 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-07-30 16:37 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-07-30 16:37 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-07-30 16:37 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-07-30 16:37 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-07-30 16:37 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-07-30 16:37 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-07-30 16:37 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-07-30 16:37 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-07-30 16:37 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-07-30 16:37 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-07-30 16:37 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-07-30 16:37 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-07-30 16:37 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-07-30 16:37 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-07-30 16:37 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-07-30 16:37 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-07-30 16:37 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-07-30 16:37 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-07-30 16:37 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-07-30 16:37 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-07-30 16:37 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-07-30 16:37 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-07-30 15:57 - 2016-08-18 22:40 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-30 15:17 - 2016-08-20 16:37 - 00002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-30 15:17 - 2016-08-20 16:37 - 00002462 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-30 15:16 - 2016-07-30 23:53 - 00000000 ____D C:\Users\Cukva\AppData\Local\Google
2016-07-30 15:16 - 2016-07-30 15:17 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-30 15:16 - 2016-07-30 15:16 - 00987728 _____ (Google Inc.) C:\Users\Cukva\Downloads\ChromeSetup.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 16:12 - 2016-07-17 22:22 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-20 16:12 - 2016-04-27 08:11 - 00750030 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-20 16:12 - 2016-04-27 08:11 - 00150654 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-20 16:12 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-20 16:08 - 2016-07-18 20:52 - 00000000 ___RD C:\Dropbox
2016-08-20 16:07 - 2016-07-18 20:25 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-20 16:06 - 2016-07-18 20:49 - 00000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-08-20 16:05 - 2016-07-18 04:07 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-20 16:05 - 2016-04-27 08:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-20 16:04 - 2016-07-18 04:10 - 00000000 ____D C:\Users\Cukva
2016-08-20 16:04 - 2015-10-30 08:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-08-20 15:54 - 2016-07-18 20:49 - 00000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-08-19 21:16 - 2016-07-18 20:49 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-08-19 19:47 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-18 21:16 - 2016-07-19 10:56 - 00000000 ____D C:\Users\Cukva\Documents\My Games
2016-08-18 19:14 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-18 19:06 - 2016-07-17 22:23 - 00002383 _____ C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-18 19:06 - 2016-07-17 22:23 - 00000000 ___RD C:\Users\Cukva\OneDrive
2016-08-13 21:32 - 2015-06-07 19:20 - 00455328 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120.dll
2016-08-13 21:30 - 2015-06-07 19:20 - 00970912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120.dll
2016-08-13 13:31 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-12 21:55 - 2016-04-27 09:00 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-11 22:11 - 2016-04-27 08:34 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-11 22:11 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-11 22:11 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 18:55 - 2016-07-17 23:01 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 18:55 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-10 18:55 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 18:51 - 2016-07-17 23:00 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-30 19:37 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-07-30 19:37 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-07-27 21:25 - 2016-07-17 23:06 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-04-26 14:24 - 2016-04-26 14:24 - 0000009 ____N () C:\Users\Cukva\AppData\Roaming\a.bat
2010-08-28 22:43 - 2010-08-28 22:43 - 0577335 ____N () C:\Users\Cukva\AppData\Roaming\adb.exe
2010-08-28 22:43 - 2010-08-28 22:43 - 0096256 ____N (Google, inc) C:\Users\Cukva\AppData\Roaming\AdbWinApi.dll
2010-08-28 22:43 - 2010-08-28 22:43 - 0060928 ____N (Google, inc) C:\Users\Cukva\AppData\Roaming\AdbWinUsbApi.dll
2016-08-19 22:14 - 2016-08-19 22:14 - 7118336 _____ () C:\Users\Cukva\AppData\Roaming\agent.dat
2016-08-19 22:13 - 2016-08-19 22:13 - 0054272 _____ () C:\Users\Cukva\AppData\Roaming\ApplicationHosting.dat
2016-08-19 22:13 - 2016-08-19 22:13 - 0848437 _____ () C:\Users\Cukva\AppData\Roaming\Beta-Top.bin
2016-08-19 22:14 - 2016-08-19 22:14 - 0070704 _____ () C:\Users\Cukva\AppData\Roaming\Config.xml
2016-06-28 03:12 - 2016-06-28 03:12 - 0314434 ____N () C:\Users\Cukva\AppData\Roaming\EYapp.apk
2010-08-28 22:43 - 2010-08-28 22:43 - 0356009 ____N () C:\Users\Cukva\AppData\Roaming\fastboot.exe
2016-08-19 22:12 - 2016-08-19 22:13 - 0018384 _____ () C:\Users\Cukva\AppData\Roaming\InstallationConfiguration.xml
2016-08-19 22:12 - 2016-08-19 22:12 - 0138240 _____ () C:\Users\Cukva\AppData\Roaming\Installer.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 2279413 _____ () C:\Users\Cukva\AppData\Roaming\Intom.bin
2016-08-19 22:23 - 2016-08-01 06:51 - 1616896 _____ () C:\Users\Cukva\AppData\Roaming\kpzip.exe
2016-08-19 22:13 - 2016-08-19 22:13 - 0126464 _____ () C:\Users\Cukva\AppData\Roaming\lobby.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 0018432 _____ () C:\Users\Cukva\AppData\Roaming\Main.dat
2016-08-19 22:32 - 2016-07-01 11:19 - 8284704 _____ (深圳市伟创科技软件有限公司) C:\Users\Cukva\AppData\Roaming\MaoHaWiFiSetup_262.exe
2016-08-19 22:13 - 2016-08-19 22:14 - 0005568 _____ () C:\Users\Cukva\AppData\Roaming\md.xml
2016-08-19 22:13 - 2016-08-19 22:11 - 0695296 _____ () C:\Users\Cukva\AppData\Roaming\MoveSanin.exe
2016-08-19 22:14 - 2016-08-19 22:14 - 1900430 _____ () C:\Users\Cukva\AppData\Roaming\MoveSanin.tst
2016-08-19 22:14 - 2016-08-19 22:14 - 0126464 _____ () C:\Users\Cukva\AppData\Roaming\noah.dat
2016-08-19 22:13 - 2016-08-19 22:11 - 0695296 _____ () C:\Users\Cukva\AppData\Roaming\QvoStrong.exe
2016-08-19 22:13 - 2016-08-19 22:13 - 0072707 _____ () C:\Users\Cukva\AppData\Roaming\QvoStrong.tst
2016-08-19 22:22 - 2016-08-18 07:27 - 0345088 _____ () C:\Users\Cukva\AppData\Roaming\RandomDelJiheReg.exe
2016-08-19 22:34 - 2016-08-20 16:31 - 7616340 _____ () C:\Users\Cukva\AppData\Roaming\setup.apk
2016-08-19 22:33 - 2016-07-05 07:58 - 9216000 _____ (eee) C:\Users\Cukva\AppData\Roaming\THREADAPP.exe
2016-08-19 22:22 - 2016-08-08 03:54 - 1611776 _____ () C:\Users\Cukva\AppData\Roaming\ucdlr.exe
2016-08-19 22:14 - 2016-08-19 22:14 - 0032038 _____ () C:\Users\Cukva\AppData\Roaming\uninstall_temp.ico
2016-08-19 22:34 - 2016-08-20 16:31 - 0732869 _____ () C:\Users\Cukva\AppData\Roaming\xdo.zip
2016-08-19 22:23 - 2016-02-18 10:10 - 5267952 _____ () C:\Users\Cukva\AppData\Roaming\ziptool_wc-9015_setup.exe
Some files in TEMP:
====================
C:\Users\Cukva\AppData\Local\Temp\69A.tmp.exe
C:\Users\Cukva\AppData\Local\Temp\ABD0.tmp.exe
C:\Users\Cukva\AppData\Local\Temp\Browser_V5.6.14087.902_f_4674_(Build1608021049).exe
C:\Users\Cukva\AppData\Local\Temp\DriverInstall.exe
C:\Users\Cukva\AppData\Local\Temp\DriverInstall_X64.exe
C:\Users\Cukva\AppData\Local\Temp\DriverTool.dll
C:\Users\Cukva\AppData\Local\Temp\E485.tmp.exe
C:\Users\Cukva\AppData\Local\Temp\maohasubstat.dll
C:\Users\Cukva\AppData\Local\Temp\MPCSetup_4.3.exe
C:\Users\Cukva\AppData\Local\Temp\setup.exe
C:\Users\Cukva\AppData\Local\Temp\softconfig.dll
C:\Users\Cukva\AppData\Local\Temp\uninstall.dll
C:\Users\Cukva\AppData\Local\Temp\Y0A4AVNNMM.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Cukva\Desktop" je 5 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================
Díky moc, Indy
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2016
Ran by Cukva (administrator) on CUKVA-PC (20-08-2016 16:40:30)
Running from C:\Users\Cukva\Desktop
Loaded Profiles: Cukva (Available Profiles: Cukva)
Platform: Windows 10 Pro Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\ProgramData\Logic Handler\set.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(TODO: <Company name>) C:\Program Files (x86)\SoSoEasy\SoSoEasySvc.exe
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\hnsl415.tmp
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\jnsxEE4A.tmp
() C:\Program Files (x86)\UCBrowser\Application\UCService.exe
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\knsxD531.tmpfs
() C:\Program Files (x86)\WebShield\WebShield.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCTray.exe
() C:\Users\Cukva\AppData\Roaming\UPUpdata\service72564.exe
(DotC United Inc) C:\Program Files (x86)\MPC Cleaner\MPCTray64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
() C:\Program Files (x86)\ContentPush\app\bin\nw.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(YO2OzA) C:\Program Files (x86)\mpck\otutnetwork.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
() C:\Program Files (x86)\UCBrowser\Application\5.6.14087.902\UCAgent.exe
(深圳市伟创科技软件有限公司) C:\Users\Cukva\AppData\Local\Temp\Uninstall.tmp
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
() C:\Users\Cukva\AppData\Roaming\RandomDelJiheReg.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(eee) C:\Users\Cukva\AppData\Roaming\THREADAPP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
() C:\Users\Cukva\AppData\Roaming\adb.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
() C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\knsxD531.tmpfs
(63Y9RPyp6) C:\Program Files (x86)\DPower\wemoservice.exe
() C:\Program Files\BWWAA54BBM\BWWAA54BB.exe
() C:\Windows\Temp\9CB6.tmp
() C:\Program Files (x86)\DPower\ICWDN28BH5.exe
() C:\Windows\Temp\9CB8.tmp
() C:\Users\Cukva\AppData\Local\00000000-1471710981-0000-0000-001FD0231AAD\qnskC472.tmp
(forum.viry.cz) C:\Users\Cukva\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2016-07-17] (NVIDIA Corporation)
HKLM\...\Run: [WINCOM0EJ] => C:\Program Files (x86)\mpck\wincom_0EJ.exe [4270080 2016-08-19] ()
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23892200 2016-08-16] (Dropbox, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-07-20] (LogMeIn Inc.)
HKLM-x32\...\Run: [apphide] => C:\Program Files (x86)\sbqh\uc.exe [233520 2016-08-12] ( )
HKLM-x32\...\Run: [EYAN] => C:\Users\Cukva\AppData\Roaming\THREADAPP.exe [9216000 2016-07-05] (eee)
HKLM-x32\...\Run: [DiskPower] => C:\Program Files (x86)\DPower\DiskPower.exe [210432 2016-07-21] ()
HKLM\...\RunOnce: [OTUTPRODUCT_1SJPM] => C:\Program Files (x86)\mpck\otutnetwork.exe [698368 2016-08-19] (YO2OzA)
HKLM\...\RunOnce: [OMEWPRODUCT_PKKNC] => C:\Program Files (x86)\DPower\wemoservice.exe [274944 2016-08-20] (63Y9RPyp6)
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29494400 2016-07-13] (Skype Technologies S.A.)
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [QGuan10in1] => C:\Users\Cukva\AppData\Roaming\UPUpdata\service72564.exe [1831424 2016-08-19] ()
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [msiql] => C:\Users\Cukva\AppData\Roaming\UPUpdata\msiql.exe [1886720 2016-08-19] ()
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [svchost0] => "C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe"\UUC0789.exe
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [apphide] => C:\Program Files (x86)\sbqh\uc.exe [233520 2016-08-12] ( )
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [IDB3LQ2YB5] => C:\Program Files\BWWAA54BBM\BWWAA54BB.exe [369664 2016-08-20] ()
HKU\S-1-5-21-183318848-1229375432-8495929-1001\...\Run: [PNEGD584UO] => C:\Program Files (x86)\DPower\ICWDN28BH5.exe [369664 2016-08-20] ()
AppInit_DLLs: C:\ProgramData\Quoteex\Stock-Lex.dll => C:\ProgramData\Quoteex\Stock-Lex.dll [358912 2016-08-19] ()
AppInit_DLLs-x32: C:\ProgramData\Quoteex\Vivasolit.dll => C:\ProgramData\Quoteex\Vivasolit.dll [248320 2016-08-19] ()
ShellExecuteHooks: - {6710C780-E20E-4C49-A87D-321850ED3D7C} - C:\Users\Cukva\AppData\Local\Microsoft\Windows\INetCookies\burasp.dll [376320 2016-08-19] ()
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [JzShlobj] -> {7B286609-DA97-47E1-AC6B-33B8B4732C95} => C:\Program Files\ZipTool\JZipExt.dll [2015-11-30] ()
ShellIconOverlayIdentifiers: [KzShlobj] -> {AAA0C5B8-933F-4200-93AD-B143D7FFF9F2} => C:\Program Files\żěŃą\X64\KZipShell.dll [2016-08-19] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.40.dll [2016-08-16] (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{0807a7cd-dff3-4755-8369-bbe6962f2db6}: [NameServer] 188.120.239.115,8.8.8.8
Tcpip\..\Interfaces\{3fc3e0d2-be95-4ccb-b1dd-dbe227468596}: [NameServer] 188.120.239.115,8.8.8.8
Tcpip\..\Interfaces\{3fc3e0d2-be95-4ccb-b1dd-dbe227468596}: [DhcpNameServer] 10.1.1.100 80.92.240.10
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-183318848-1229375432-8495929-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
HKU\S-1-5-21-183318848-1229375432-8495929-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
HKU\S-1-5-21-183318848-1229375432-8495929-1001\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM-x32 -> ielnksrch URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-183318848-1229375432-8495929-1001 -> {ielnksrch} URL = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzdELUf69xIiYVbPGsV9wjZMIR-HtsCXU9hWUFs7WonGfFBVdyvGvN7pEvnI8JgJSJej6HZQYGr7JJloRN6kxEJ57xgA,,&q={searchTerms}
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-11-05] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-11-05] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-30] (Google Inc.)
Chrome:
=======
CHR HomePage: clacachthergidrigi -> hxxp://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzb738UllSvKNOFs9_iud95AuhB_MVZuqU2WIoUz6pghV0oc3jS-l3PdX8a26xm2p-VLkhpoTW-l8pJM47zdvF6YzoEQ,,
CHR StartupUrls: clacachthergidrigi -> "search.mpc.am"
CHR DefaultSearchURL: clacachthergidrigi -> hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoHoTG1nEZQLY5Ws3XDF2iR3A46oiKXYVG9EEFCftsC7ynTW0gB4WVLG0B8cXOhl7xiATLSNSxdAA8kkzY3K2-YPKgebDQXDulr7fd4UwqVtXUH6uwx5MTKZiM8W3Ma3UPVnwKNXTWvyi6EkCiG-hwwfZD5CLK0odZy_BL6shSA,,&q={searchTerms}
CHR DefaultSearchKeyword: clacachthergidrigi -> feed.sonic-search.com
CHR DefaultSuggestURL: clacachthergidrigi -> hxxps://search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
CHR Profile: C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-30]
CHR Extension: (Google Docs) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-30]
CHR Extension: (Google Drive) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-30]
CHR Extension: (YouTube) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-30]
CHR Extension: (Google Sheets) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-30]
CHR Extension: (Google Docs Offline) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-30]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-30]
CHR Extension: (Gmail) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-30]
CHR Extension: (Chrome Media Router) - C:\Users\Cukva\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-19]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 backlh; C:\ProgramData\Logic Handler\set.exe [2089472 2016-05-15] () [File not signed]
S2 Coerwcultcntand.exe; C:\Program Files (x86)\Crecult\Coerwcultcntand.exe [415320 2016-08-19] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-18] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-07-18] (Dropbox, Inc.)
R2 dowidoly; C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\jnsxEE4A.tmp [244224 2016-08-19] () [File not signed]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2554376 2016-07-20] (LogMeIn Inc.)
R2 KuaizipUpdateChecker; C:\Program Files\żěŃą\X86\kuaizipUpdateChecker.dll [219072 2016-08-19] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-07-20] (LogMeIn, Inc.)
R2 MPCProtectService; C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe [350688 2016-08-19] (DotC United Inc)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2016-07-30] ()
R2 rijufoze; C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\hnsl415.tmp [138240 2016-08-19] () [File not signed]
R2 SoEasySvc; C:\Program Files (x86)\SoSoEasy\SoSoEasySvc.exe [177304 2016-08-19] (TODO: <Company name>)
R2 UCBrowserSvc; C:\Program Files (x86)\UCBrowser\Application\UCService.exe [899984 2016-08-02] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-18] (Microsoft Corporation)
R2 ykbfBMhQ; C:\Program Files (x86)\WebShield\WebShield.exe [360448 2016-08-12] () [File not signed]
R2 zigipyro; C:\Users\Cukva\AppData\Local\00000000-1471710981-0000-0000-001FD0231AAD\qnskC472.tmp [158720 2015-12-26] () [File not signed]
R2 ziphost; c:\program files\ziptool\ziphost.dll [114080 2015-11-30] () <==== ATTENTION
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
R2 xomiboxozbt; C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD\knsxD531.tmpfs [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-07-06] (LogMeIn Inc.)
R2 KuaiZipDrive; C:\WINDOWS\system32\drivers\KuaiZipDrive.sys [92872 2016-08-19] (WinMount International Inc)
R1 MPCKpt; C:\Windows\System32\DRIVERS\MPCKpt.sys [60136 2016-08-19] (DotC United Inc)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [81792 2016-08-02] (Huorong Borui (Beijing) Technology Co., Ltd.) <==== ATTENTION
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R1 ZipProtect; c:\program files\ziptool\ZipProtect64.sys [886512 2015-12-14] ()
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 16:40 - 2016-08-20 16:41 - 00021256 _____ C:\Users\Cukva\Desktop\FRST.txt
2016-08-20 16:39 - 2016-08-20 16:40 - 00000000 ____D C:\FRST
2016-08-20 16:38 - 2016-08-20 16:39 - 00112640 _____ (forum.viry.cz) C:\Users\Cukva\Desktop\FRSTLauncher.exe
2016-08-20 16:36 - 2016-08-20 16:36 - 02396160 _____ (Farbar) C:\Users\Cukva\Desktop\FRST64.exe
2016-08-20 16:36 - 2016-08-20 16:36 - 00000000 ____D C:\Users\Cukva\AppData\Local\00000000-1471710981-0000-0000-001FD0231AAD
2016-08-20 16:36 - 2016-08-20 16:36 - 00000000 ____D C:\Program Files\BWWAA54BBM
2016-08-20 16:36 - 2016-08-20 16:36 - 00000000 ____D C:\Program Files (x86)\DPower
2016-08-20 16:21 - 2016-08-20 16:21 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\tmp
2016-08-20 16:07 - 2016-08-20 16:07 - 00001798 _____ C:\Users\Public\Desktop\MPC Cleaner.lnk
2016-08-20 16:07 - 2016-08-20 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC
2016-08-20 13:03 - 2016-08-20 13:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-20 13:02 - 2016-08-20 13:02 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-08-20 13:02 - 2016-08-20 13:02 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-08-20 09:01 - 2016-08-20 09:01 - 00000000 ____D C:\ProgramData\Microleaves
2016-08-19 22:39 - 2016-08-20 15:26 - 00004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4E95F4E6-AF0C-4360-8102-7037A22C2EC9}
2016-08-19 22:38 - 2016-08-19 22:38 - 00003264 _____ C:\WINDOWS\System32\Tasks\{8F083867-5942-48F5-AB03-2958835248A6}
2016-08-19 22:34 - 2016-08-20 16:31 - 07616340 _____ C:\Users\Cukva\AppData\Roaming\setup.apk
2016-08-19 22:34 - 2016-08-20 16:31 - 00732869 _____ C:\Users\Cukva\AppData\Roaming\xdo.zip
2016-08-19 22:33 - 2016-07-05 07:58 - 09216000 _____ (eee) C:\Users\Cukva\AppData\Roaming\THREADAPP.exe
2016-08-19 22:32 - 2016-08-20 16:16 - 00000000 ____D C:\Program Files (x86)\GreatMaker
2016-08-19 22:32 - 2016-08-20 16:12 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Kuaizip
2016-08-19 22:32 - 2016-08-19 22:32 - 00092872 _____ (WinMount International Inc) C:\WINDOWS\system32\Drivers\KuaiZipDrive.sys
2016-08-19 22:32 - 2016-08-19 22:32 - 00003530 _____ C:\WINDOWS\System32\Tasks\KuaiZip_Update
2016-08-19 22:32 - 2016-08-19 22:32 - 00000882 _____ C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\żěŃą.lnk
2016-08-19 22:32 - 2016-08-19 22:32 - 00000858 _____ C:\Users\Cukva\Desktop\żěŃą.lnk
2016-08-19 22:32 - 2016-08-19 22:32 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Softlink
2016-08-19 22:32 - 2016-08-19 22:32 - 00000000 ____D C:\Program Files\żěŃą
2016-08-19 22:32 - 2016-07-01 11:19 - 08284704 _____ (深圳市伟创科技软件有限公司) C:\Users\Cukva\AppData\Roaming\MaoHaWiFiSetup_262.exe
2016-08-19 22:31 - 2016-08-19 22:31 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\MCorp
2016-08-19 22:29 - 2016-08-19 22:29 - 00000000 ____D C:\Users\Cukva\AppData\Local\tuto_monetize_120160812
2016-08-19 22:29 - 2016-08-19 22:29 - 00000000 ____D C:\Program Files (x86)\mpck
2016-08-19 22:23 - 2016-08-20 16:06 - 00000474 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
2016-08-19 22:23 - 2016-08-19 22:23 - 00003492 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\Users\Cukva\AppData\Local\UCBrowser
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Compress
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\Program Files\ZipTool
2016-08-19 22:23 - 2016-08-19 22:23 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2016-08-19 22:23 - 2016-08-02 08:24 - 00081792 _____ (Huorong Borui (Beijing) Technology Co., Ltd.) C:\WINDOWS\system32\Drivers\ucguard.sys
2016-08-19 22:23 - 2016-08-01 06:51 - 01616896 _____ C:\Users\Cukva\AppData\Roaming\kpzip.exe
2016-08-19 22:23 - 2016-02-18 10:10 - 05267952 _____ () C:\Users\Cukva\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-08-19 22:22 - 2016-08-19 22:23 - 00000000 ____D C:\Program Files (x86)\SoSoEasy
2016-08-19 22:22 - 2016-08-19 22:22 - 00009060 _____ C:\WINDOWS\System32\Tasks\Coerwcult Center
2016-08-19 22:22 - 2016-08-19 22:22 - 00001162 _____ C:\Users\Cukva\Desktop\AutoTime.lnk
2016-08-19 22:22 - 2016-08-19 22:22 - 00000000 ___HD C:\Program Files (x86)\39dAD3F
2016-08-19 22:22 - 2016-08-19 22:22 - 00000000 ____D C:\ProgramData\AVAST Software
2016-08-19 22:22 - 2016-08-18 07:27 - 00345088 _____ C:\Users\Cukva\AppData\Roaming\RandomDelJiheReg.exe
2016-08-19 22:22 - 2016-08-08 03:54 - 01611776 _____ C:\Users\Cukva\AppData\Roaming\ucdlr.exe
2016-08-19 22:21 - 2016-08-19 22:32 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\UPUpdata
2016-08-19 22:21 - 2016-08-19 22:25 - 00000000 ____D C:\Program Files (x86)\Crecult
2016-08-19 22:21 - 2016-08-19 22:22 - 00000000 ____D C:\Users\Cukva\AppData\Local\tumilyfutakcurerk
2016-08-19 22:21 - 2016-08-19 22:21 - 00003128 _____ C:\WINDOWS\System32\Tasks\tasklist
2016-08-19 22:21 - 2016-08-19 22:21 - 00000000 ____D C:\Users\Cukva\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk
2016-08-19 22:19 - 2016-08-20 16:07 - 00000000 ____D C:\Users\Cukva\AppData\Local\app
2016-08-19 22:18 - 2016-08-19 22:26 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2016-08-19 22:18 - 2016-08-19 22:22 - 00060136 _____ (DotC United Inc) C:\WINDOWS\system32\Drivers\MPCKpt.sys
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\Users\Cukva\AppData\Local\Bluestacks
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\Program Files (x86)\WebShield
2016-08-19 22:18 - 2016-08-19 22:18 - 00000000 ____D C:\Program Files (x86)\00000000-1471637898-0000-0000-001FD0231AAD
2016-08-19 22:18 - 2016-08-19 22:17 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-08-19 22:17 - 2016-08-19 22:22 - 00000000 ____D C:\Program Files (x86)\sbqh
2016-08-19 22:16 - 2016-08-19 22:19 - 00000000 ____D C:\Program Files (x86)\ContentPush
2016-08-19 22:16 - 2016-08-19 22:16 - 00000000 ____D C:\Program Files (x86)\WeatherChickn
2016-08-19 22:14 - 2016-08-20 16:10 - 00000000 ____D C:\ProgramData\Quoteex
2016-08-19 22:14 - 2016-08-19 22:14 - 07118336 _____ C:\Users\Cukva\AppData\Roaming\agent.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 02279413 _____ C:\Users\Cukva\AppData\Roaming\Intom.bin
2016-08-19 22:14 - 2016-08-19 22:14 - 01900430 _____ C:\Users\Cukva\AppData\Roaming\MoveSanin.tst
2016-08-19 22:14 - 2016-08-19 22:14 - 00126464 _____ C:\Users\Cukva\AppData\Roaming\noah.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 00070704 _____ C:\Users\Cukva\AppData\Roaming\Config.xml
2016-08-19 22:14 - 2016-08-19 22:14 - 00018432 _____ C:\Users\Cukva\AppData\Roaming\Main.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 00002397 _____ C:\WINDOWS\SysWOW64\findit.xml
2016-08-19 22:14 - 2016-08-19 22:14 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Mozilla
2016-08-19 22:14 - 2016-08-19 22:14 - 00000000 ____D C:\ProgramData\Quoteexs
2016-08-19 22:14 - 2016-08-19 22:14 - 00000000 ____D C:\ProgramData\Logic Handler
2016-08-19 22:13 - 2016-08-20 13:16 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-08-19 22:13 - 2016-08-19 22:14 - 00005568 _____ C:\Users\Cukva\AppData\Roaming\md.xml
2016-08-19 22:13 - 2016-08-19 22:13 - 00848437 _____ C:\Users\Cukva\AppData\Roaming\Beta-Top.bin
2016-08-19 22:13 - 2016-08-19 22:13 - 00126464 _____ C:\Users\Cukva\AppData\Roaming\lobby.dat
2016-08-19 22:13 - 2016-08-19 22:13 - 00072707 _____ C:\Users\Cukva\AppData\Roaming\QvoStrong.tst
2016-08-19 22:13 - 2016-08-19 22:13 - 00054272 _____ C:\Users\Cukva\AppData\Roaming\ApplicationHosting.dat
2016-08-19 22:13 - 2016-08-19 22:11 - 00695296 _____ C:\Users\Cukva\AppData\Roaming\QvoStrong.exe
2016-08-19 22:13 - 2016-08-19 22:11 - 00695296 _____ C:\Users\Cukva\AppData\Roaming\MoveSanin.exe
2016-08-19 22:12 - 2016-08-19 22:13 - 00018384 _____ C:\Users\Cukva\AppData\Roaming\InstallationConfiguration.xml
2016-08-19 22:12 - 2016-08-19 22:12 - 00138240 _____ C:\Users\Cukva\AppData\Roaming\Installer.dat
2016-08-19 22:12 - 2016-08-19 22:12 - 00003784 _____ C:\WINDOWS\System32\Tasks\Online Application Updater
2016-08-19 22:12 - 2016-08-19 22:12 - 00003704 _____ C:\WINDOWS\System32\Tasks\Online Application
2016-08-19 22:12 - 2016-08-19 22:12 - 00000000 ____D C:\Program Files (x86)\Microleaves
2016-08-19 22:10 - 2016-08-19 22:10 - 01052672 _____ C:\Users\Cukva\Downloads\Hatred-Game-Full-Version.img
2016-08-19 21:16 - 2016-08-19 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-08-18 21:17 - 2016-08-18 21:17 - 00001491 _____ C:\Users\Public\Desktop\WarThunder.lnk
2016-08-18 21:17 - 2016-08-18 21:17 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2016-08-18 21:17 - 2016-08-18 21:17 - 00000000 ____D C:\ProgramData\Gaijin
2016-08-18 21:16 - 2016-08-19 09:29 - 00000000 ____D C:\WarThunder
2016-08-18 21:16 - 2016-08-18 21:16 - 05607776 _____ (Gaijin Entertainment ) C:\Users\Cukva\Downloads\wt_launcher_1.0.1.674.exe
2016-08-18 19:15 - 2016-08-18 19:24 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Daybreak Game Company
2016-08-18 19:15 - 2016-08-18 19:15 - 00000000 ____D C:\Users\Cukva\AppData\Local\SCE
2016-08-18 19:15 - 2016-08-18 19:15 - 00000000 ____D C:\Users\Cukva\AppData\Local\Daybreak Game Company
2016-08-18 19:09 - 2016-08-18 19:09 - 00000000 ____D C:\Users\Cukva\AppData\Local\openvr
2016-08-18 19:06 - 2016-08-18 19:06 - 00003328 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-08-14 09:17 - 2016-08-19 20:57 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Heroes and Generals
2016-08-14 09:04 - 2016-08-14 09:04 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\HeroesAndGeneralsDesktop
2016-08-13 21:31 - 2016-08-13 21:31 - 00159238 _____ C:\Users\Cukva\Downloads\__32-msvcp120.dll12.0.21005.1.zip
2016-08-13 21:29 - 2016-08-13 21:29 - 00520193 _____ C:\Users\Cukva\Downloads\__32-msvcr120.dll12.0.21005.1.zip
2016-08-09 21:07 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-09 21:07 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-09 21:07 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-09 21:07 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-09 21:07 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-09 21:07 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-09 21:07 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-09 21:07 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-09 21:07 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-09 21:07 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-09 21:07 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-09 21:07 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-09 21:07 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-09 21:07 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-09 21:07 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-09 21:07 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-09 21:07 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-09 21:07 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-09 21:07 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-09 21:07 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-09 21:07 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-09 21:07 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-09 21:07 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-09 21:07 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-09 21:07 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-09 21:07 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-09 21:07 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-09 21:07 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-09 21:07 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-09 21:07 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-09 21:07 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-09 21:07 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-09 21:07 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-09 21:07 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-09 21:07 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-09 21:07 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-09 21:07 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-09 21:07 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-09 21:07 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-09 21:07 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-09 21:07 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-09 21:07 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-09 21:07 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-09 21:07 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-09 21:07 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-09 21:07 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-09 21:07 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-09 21:07 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-09 21:07 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-09 21:07 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-09 21:07 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-09 21:07 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-09 21:07 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-09 21:07 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-09 21:07 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-09 21:07 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-09 21:07 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-09 21:07 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-09 21:07 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-09 21:07 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-09 21:07 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-09 21:07 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-09 21:07 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-09 21:07 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-09 21:07 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-09 21:07 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-09 21:07 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-09 21:07 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-09 21:07 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-09 21:07 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-09 21:07 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-09 21:07 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-09 21:07 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-09 21:07 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-09 21:07 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-09 21:07 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-09 21:07 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-09 21:07 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-09 21:07 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-09 21:07 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-09 21:07 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-09 21:07 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-09 21:07 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-09 21:07 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-09 21:07 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-09 21:07 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-09 21:07 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-09 21:07 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-09 21:07 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-09 21:07 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-09 21:07 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-09 21:07 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-09 21:07 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-09 21:07 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-09 21:07 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-09 21:07 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-09 21:07 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-09 21:07 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-09 21:07 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-09 21:07 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-09 21:07 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-09 21:06 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-09 21:06 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-09 21:06 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-09 21:06 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-09 21:06 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-09 21:06 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-09 21:06 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-09 21:06 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-09 21:06 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-09 21:06 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-09 21:06 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-09 21:06 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-09 21:06 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-09 21:06 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-09 21:06 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-09 21:06 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-09 21:06 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-09 21:06 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-09 21:06 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-09 21:06 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-09 21:06 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-09 21:06 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-09 21:06 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-09 21:06 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-09 21:06 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-07 22:38 - 2016-08-07 22:38 - 00002664 _____ C:\Users\Cukva\Desktop\Dishonored v1.0~Update 2 (Include DLC) Plus 20 Trainer.exe – zástupce.lnk
2016-08-07 22:38 - 2016-08-07 22:38 - 00002355 _____ C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dishonored v1.0~Update 2 (Include DLC) Plus 20 Trainer.lnk
2016-08-07 18:59 - 2016-08-07 18:59 - 00000000 ____D C:\Users\Cukva\AppData\Local\Skyrim
2016-08-07 11:08 - 2016-08-07 11:08 - 00000000 ____D C:\Users\Cukva\Downloads\Dishonored.v1.0-Update.2.(Include.DLC).Plus.20.Trainer-FLiNG
2016-08-07 11:08 - 2016-08-07 11:08 - 00000000 ____D C:\Users\Cukva\Documents\FLiNGTrainer
2016-08-07 11:03 - 2016-08-07 11:03 - 00617551 _____ C:\Users\Cukva\Downloads\Dishonored.v1.0-Update.2.(Include.DLC).Plus.20.Trainer-FLiNG.zip
2016-08-07 09:59 - 2016-08-11 22:13 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-08-07 09:59 - 2016-08-11 22:13 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-08-07 09:59 - 2016-08-07 09:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-08-07 09:59 - 2016-08-07 09:59 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-08-06 21:06 - 2016-08-06 21:06 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Unknown Worlds
2016-08-06 20:41 - 2016-08-20 16:07 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Skype
2016-08-06 20:41 - 2016-08-06 20:41 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ____D C:\Users\Cukva\Tracing
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ____D C:\ProgramData\Skype
2016-08-06 20:41 - 2016-08-06 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-06 20:40 - 2016-08-06 20:40 - 01463424 _____ (Skype Technologies S.A.) C:\Users\Cukva\Downloads\SkypeSetup.exe
2016-07-31 21:38 - 2016-07-31 21:38 - 00000000 ____D C:\Users\Cukva\AppData\Local\Activision
2016-07-31 19:33 - 2016-07-31 19:33 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\NVIDIA
2016-07-31 13:49 - 2016-07-31 13:49 - 00001156 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk
2016-07-31 13:49 - 2016-07-31 13:49 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2016-07-31 13:49 - 2016-07-31 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass
2016-07-31 13:48 - 2016-07-31 13:49 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\LastPass
2016-07-31 13:48 - 2016-07-31 13:49 - 00000000 ____D C:\Program Files (x86)\LastPass
2016-07-31 13:46 - 2016-08-20 16:07 - 00000000 ____D C:\Users\Cukva\AppData\Local\LogMeIn Hamachi
2016-07-31 13:46 - 2016-07-31 13:46 - 00000000 ____D C:\Users\Cukva\AppData\Local\lptmp
2016-07-31 13:46 - 2016-07-31 13:46 - 00000000 ____D C:\Users\Cukva\AppData\Local\LogMeIn
2016-07-31 13:46 - 2016-07-31 13:46 - 00000000 ____D C:\ProgramData\LogMeIn
2016-07-31 13:45 - 2016-08-07 09:59 - 00000995 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2016-07-31 13:45 - 2016-07-31 13:46 - 21857816 _____ (LastPass) C:\WINDOWS\SysWOW64\lastpass_1337.exe
2016-07-31 13:45 - 2016-07-31 13:45 - 00702464 _____ C:\WINDOWS\SysWOW64\lastpass_downloader.exe
2016-07-31 13:10 - 2016-07-31 13:10 - 00000000 ____D C:\Users\Cukva\Documents\Assassin's Creed IV Black Flag
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files\MSBuild
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-07-30 19:37 - 2016-07-30 19:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-07-30 19:36 - 2016-07-31 10:06 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2016-07-30 19:35 - 2016-07-31 10:06 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-07-30 19:35 - 2016-07-30 19:36 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2016-07-30 19:35 - 2016-07-30 19:35 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-07-30 19:35 - 2016-07-30 19:35 - 00000000 ____D C:\Users\Cukva\AppData\Local\PunkBuster
2016-07-30 19:34 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-07-30 19:34 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-07-30 19:34 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-07-30 19:34 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-07-30 19:34 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-07-30 19:34 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-30 18:51 - 2016-07-30 18:52 - 00000000 ____D C:\Users\Cukva\Downloads\IZArc2Go
2016-07-30 18:51 - 2009-11-23 10:27 - 02826752 _____ () C:\Users\Cukva\Desktop\IZArc2Go.exe
2016-07-30 16:40 - 2016-07-30 16:40 - 00000000 ____D C:\Users\Cukva\AppData\LocalLow\Smartly Dressed Games
2016-07-30 16:37 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-07-30 16:37 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-07-30 16:37 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-07-30 16:37 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-07-30 16:37 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-07-30 16:37 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-07-30 16:37 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-07-30 16:37 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-07-30 16:37 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-07-30 16:37 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-07-30 16:37 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-07-30 16:37 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-07-30 16:37 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-07-30 16:37 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-07-30 16:37 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-07-30 16:37 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-07-30 16:37 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-07-30 16:37 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-07-30 16:37 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-07-30 16:37 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-07-30 16:37 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-07-30 16:37 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-07-30 16:37 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-07-30 16:37 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-07-30 16:37 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-07-30 16:37 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-07-30 16:37 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-07-30 16:37 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-07-30 16:37 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-07-30 16:37 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-07-30 16:37 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-07-30 16:37 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-07-30 16:37 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-07-30 16:37 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-07-30 16:37 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-07-30 16:37 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-07-30 16:37 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-07-30 16:37 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-07-30 16:37 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-07-30 16:37 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-07-30 16:37 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-07-30 16:37 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-07-30 16:37 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-07-30 16:37 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-07-30 16:37 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-07-30 16:37 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-07-30 16:37 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-07-30 16:37 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-07-30 16:37 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-07-30 16:37 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-07-30 16:37 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-07-30 16:37 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-07-30 16:37 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-07-30 16:37 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-07-30 16:37 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-07-30 16:37 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-07-30 16:37 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-07-30 16:37 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-07-30 16:37 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-07-30 16:37 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-07-30 16:37 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-07-30 16:37 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-07-30 16:37 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-07-30 16:37 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-07-30 16:37 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-07-30 16:37 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-07-30 16:37 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-07-30 16:37 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-07-30 16:37 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-07-30 16:37 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-07-30 16:37 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-07-30 16:37 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-07-30 16:37 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-07-30 16:37 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-07-30 16:37 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-07-30 16:37 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-07-30 16:37 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-07-30 16:37 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-07-30 16:37 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-07-30 16:37 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-07-30 16:37 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-07-30 16:37 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-07-30 16:37 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-07-30 16:37 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-07-30 16:37 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-07-30 16:37 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-07-30 16:37 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-07-30 16:37 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-07-30 16:37 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-07-30 16:37 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-07-30 16:37 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-07-30 16:37 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-07-30 15:57 - 2016-08-18 22:40 - 00000000 ____D C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-30 15:17 - 2016-08-20 16:37 - 00002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-30 15:17 - 2016-08-20 16:37 - 00002462 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-30 15:16 - 2016-07-30 23:53 - 00000000 ____D C:\Users\Cukva\AppData\Local\Google
2016-07-30 15:16 - 2016-07-30 15:17 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-30 15:16 - 2016-07-30 15:16 - 00987728 _____ (Google Inc.) C:\Users\Cukva\Downloads\ChromeSetup.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-20 16:12 - 2016-07-17 22:22 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-20 16:12 - 2016-04-27 08:11 - 00750030 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-20 16:12 - 2016-04-27 08:11 - 00150654 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-20 16:12 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-20 16:08 - 2016-07-18 20:52 - 00000000 ___RD C:\Dropbox
2016-08-20 16:07 - 2016-07-18 20:25 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-20 16:06 - 2016-07-18 20:49 - 00000920 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-08-20 16:05 - 2016-07-18 04:07 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-20 16:05 - 2016-04-27 08:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-20 16:04 - 2016-07-18 04:10 - 00000000 ____D C:\Users\Cukva
2016-08-20 16:04 - 2015-10-30 08:28 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-08-20 15:54 - 2016-07-18 20:49 - 00000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-08-19 21:16 - 2016-07-18 20:49 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-08-19 19:47 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-18 21:16 - 2016-07-19 10:56 - 00000000 ____D C:\Users\Cukva\Documents\My Games
2016-08-18 19:14 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-18 19:06 - 2016-07-17 22:23 - 00002383 _____ C:\Users\Cukva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-18 19:06 - 2016-07-17 22:23 - 00000000 ___RD C:\Users\Cukva\OneDrive
2016-08-13 21:32 - 2015-06-07 19:20 - 00455328 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120.dll
2016-08-13 21:30 - 2015-06-07 19:20 - 00970912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120.dll
2016-08-13 13:31 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-12 21:55 - 2016-04-27 09:00 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-11 22:11 - 2016-04-27 08:34 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-11 22:11 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-11 22:11 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-10 18:55 - 2016-07-17 23:01 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 18:55 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-10 18:55 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-10 18:51 - 2016-07-17 23:00 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-07-30 19:37 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-07-30 19:37 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-07-27 21:25 - 2016-07-17 23:06 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-04-26 14:24 - 2016-04-26 14:24 - 0000009 ____N () C:\Users\Cukva\AppData\Roaming\a.bat
2010-08-28 22:43 - 2010-08-28 22:43 - 0577335 ____N () C:\Users\Cukva\AppData\Roaming\adb.exe
2010-08-28 22:43 - 2010-08-28 22:43 - 0096256 ____N (Google, inc) C:\Users\Cukva\AppData\Roaming\AdbWinApi.dll
2010-08-28 22:43 - 2010-08-28 22:43 - 0060928 ____N (Google, inc) C:\Users\Cukva\AppData\Roaming\AdbWinUsbApi.dll
2016-08-19 22:14 - 2016-08-19 22:14 - 7118336 _____ () C:\Users\Cukva\AppData\Roaming\agent.dat
2016-08-19 22:13 - 2016-08-19 22:13 - 0054272 _____ () C:\Users\Cukva\AppData\Roaming\ApplicationHosting.dat
2016-08-19 22:13 - 2016-08-19 22:13 - 0848437 _____ () C:\Users\Cukva\AppData\Roaming\Beta-Top.bin
2016-08-19 22:14 - 2016-08-19 22:14 - 0070704 _____ () C:\Users\Cukva\AppData\Roaming\Config.xml
2016-06-28 03:12 - 2016-06-28 03:12 - 0314434 ____N () C:\Users\Cukva\AppData\Roaming\EYapp.apk
2010-08-28 22:43 - 2010-08-28 22:43 - 0356009 ____N () C:\Users\Cukva\AppData\Roaming\fastboot.exe
2016-08-19 22:12 - 2016-08-19 22:13 - 0018384 _____ () C:\Users\Cukva\AppData\Roaming\InstallationConfiguration.xml
2016-08-19 22:12 - 2016-08-19 22:12 - 0138240 _____ () C:\Users\Cukva\AppData\Roaming\Installer.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 2279413 _____ () C:\Users\Cukva\AppData\Roaming\Intom.bin
2016-08-19 22:23 - 2016-08-01 06:51 - 1616896 _____ () C:\Users\Cukva\AppData\Roaming\kpzip.exe
2016-08-19 22:13 - 2016-08-19 22:13 - 0126464 _____ () C:\Users\Cukva\AppData\Roaming\lobby.dat
2016-08-19 22:14 - 2016-08-19 22:14 - 0018432 _____ () C:\Users\Cukva\AppData\Roaming\Main.dat
2016-08-19 22:32 - 2016-07-01 11:19 - 8284704 _____ (深圳市伟创科技软件有限公司) C:\Users\Cukva\AppData\Roaming\MaoHaWiFiSetup_262.exe
2016-08-19 22:13 - 2016-08-19 22:14 - 0005568 _____ () C:\Users\Cukva\AppData\Roaming\md.xml
2016-08-19 22:13 - 2016-08-19 22:11 - 0695296 _____ () C:\Users\Cukva\AppData\Roaming\MoveSanin.exe
2016-08-19 22:14 - 2016-08-19 22:14 - 1900430 _____ () C:\Users\Cukva\AppData\Roaming\MoveSanin.tst
2016-08-19 22:14 - 2016-08-19 22:14 - 0126464 _____ () C:\Users\Cukva\AppData\Roaming\noah.dat
2016-08-19 22:13 - 2016-08-19 22:11 - 0695296 _____ () C:\Users\Cukva\AppData\Roaming\QvoStrong.exe
2016-08-19 22:13 - 2016-08-19 22:13 - 0072707 _____ () C:\Users\Cukva\AppData\Roaming\QvoStrong.tst
2016-08-19 22:22 - 2016-08-18 07:27 - 0345088 _____ () C:\Users\Cukva\AppData\Roaming\RandomDelJiheReg.exe
2016-08-19 22:34 - 2016-08-20 16:31 - 7616340 _____ () C:\Users\Cukva\AppData\Roaming\setup.apk
2016-08-19 22:33 - 2016-07-05 07:58 - 9216000 _____ (eee) C:\Users\Cukva\AppData\Roaming\THREADAPP.exe
2016-08-19 22:22 - 2016-08-08 03:54 - 1611776 _____ () C:\Users\Cukva\AppData\Roaming\ucdlr.exe
2016-08-19 22:14 - 2016-08-19 22:14 - 0032038 _____ () C:\Users\Cukva\AppData\Roaming\uninstall_temp.ico
2016-08-19 22:34 - 2016-08-20 16:31 - 0732869 _____ () C:\Users\Cukva\AppData\Roaming\xdo.zip
2016-08-19 22:23 - 2016-02-18 10:10 - 5267952 _____ () C:\Users\Cukva\AppData\Roaming\ziptool_wc-9015_setup.exe
Some files in TEMP:
====================
C:\Users\Cukva\AppData\Local\Temp\69A.tmp.exe
C:\Users\Cukva\AppData\Local\Temp\ABD0.tmp.exe
C:\Users\Cukva\AppData\Local\Temp\Browser_V5.6.14087.902_f_4674_(Build1608021049).exe
C:\Users\Cukva\AppData\Local\Temp\DriverInstall.exe
C:\Users\Cukva\AppData\Local\Temp\DriverInstall_X64.exe
C:\Users\Cukva\AppData\Local\Temp\DriverTool.dll
C:\Users\Cukva\AppData\Local\Temp\E485.tmp.exe
C:\Users\Cukva\AppData\Local\Temp\maohasubstat.dll
C:\Users\Cukva\AppData\Local\Temp\MPCSetup_4.3.exe
C:\Users\Cukva\AppData\Local\Temp\setup.exe
C:\Users\Cukva\AppData\Local\Temp\softconfig.dll
C:\Users\Cukva\AppData\Local\Temp\uninstall.dll
C:\Users\Cukva\AppData\Local\Temp\Y0A4AVNNMM.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\UCBrowserUpdater.job => C:\Program Files (x86)\UCBrowser\Application\update_task.exe <==== ATTENTION
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Cukva\Desktop" je 5 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000001
==================== End Of Log ==============================
