VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

prosím o preventivní kontrolu RSIT logu

https://forum.viry.cz:443/viewtopic.php?t=151059

Stránka 1 z 1

prosím o preventivní kontrolu RSIT logu

Napsal: 07 led 2017 11:55
od katrops
Mám dva roky notebook. Zatím jsem neměl žádné problémy. Pouze minulý týden se mi 2x při vypínání objevilo nějaké upozornění. Bylo to jen na okamžik, takže se to nestačilo ani přečíst.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Admin at 2017-01-07 11:44:11
Microsoft Windows 10 Home
System drive C: has 430 GB (90%) free of 476 GB
Total RAM: 3985 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:44:23, on 7. 1. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Admin.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\SysWOW64\rpcnet.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7348 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {4aaa1b5b-03d0-4930-ad07ddda94437be1}
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
"C:\Program Files\Elantech\ETDService.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k appmodel

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
igfxEM.exe
C:\WINDOWS\Explorer.EXE
igfxHK.exe
igfxTray.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"fontdrvhost.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{49F6E667-6658-4BD1-9DE9-6AF87F9FAF85}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe11_ Global\UsGthrCtrlFltPipeMssGthrPipe11 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\AUDIODG.EXE 0x2ec
"C:\Users\Admin\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player PPAPI Notifier.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_23_0_0_162_pepper.exe -check pepperplugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wxplo9hb.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"jid1-r1tDuNiNb4SEww@jetpack"=C:\Program Files\AVAST Software\Avast\pam\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.186 Plugin
"Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.186 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.101.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.101.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-10 3242696]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2013-09-19 7818040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2014-08-27 111216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-12-06 9080768]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-01-07 11:44:11 ----D---- C:\rsit
2017-01-07 11:44:11 ----D---- C:\Program Files\trend micro
2016-12-29 20:32:22 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-12-29 20:06:39 ----D---- C:\Users\Admin\AppData\Roaming\Seznam.cz
2016-12-17 20:07:38 ----D---- C:\WINDOWS\LastGood.Tmp
2016-12-17 15:47:56 ----D---- C:\%LOCALAPPDATA%
2016-12-17 15:47:44 ----D---- C:\Program Files (x86)\Seznam.cz
2016-12-17 15:46:52 ----D---- C:\Users\Admin\AppData\Roaming\LizardSystems
2016-12-17 15:46:52 ----D---- C:\Program Files (x86)\LizardSystems
2016-12-16 18:29:31 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2016-12-14 20:16:33 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2016-12-14 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2016-12-14 20:16:31 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2016-12-14 20:16:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-12-14 20:16:30 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-12-14 20:16:29 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-14 20:16:29 ----A---- C:\WINDOWS\system32\ole32.dll
2016-12-14 20:16:28 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2016-12-14 20:16:28 ----A---- C:\WINDOWS\system32\msi.dll
2016-12-14 20:16:27 ----A---- C:\WINDOWS\system32\hvix64.exe
2016-12-14 20:16:27 ----A---- C:\WINDOWS\system32\hvax64.exe
2016-12-14 20:16:27 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-14 20:16:26 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-12-14 20:16:24 ----A---- C:\WINDOWS\system32\hvloader.exe
2016-12-14 20:16:23 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-12-14 20:16:23 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 20:16:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-12-14 20:16:22 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-12-14 20:16:21 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2016-12-14 20:16:21 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2016-12-14 20:16:20 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-14 20:16:20 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-14 20:16:19 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-12-14 20:16:19 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-14 20:16:19 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-14 20:16:18 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-14 20:16:17 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-14 20:16:17 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-12-14 20:16:17 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-14 20:16:17 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 20:16:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-12-14 20:16:15 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-12-14 20:16:15 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-12-14 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2016-12-14 20:16:08 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2016-12-14 20:16:05 ----A---- C:\WINDOWS\system32\InputService.dll
2016-12-14 20:16:03 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2016-12-14 20:16:02 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-12-14 20:16:02 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-14 20:16:02 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-12-14 20:16:02 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-14 20:16:02 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-14 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2016-12-14 20:16:01 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2016-12-14 20:16:01 ----A---- C:\WINDOWS\system32\win32k.sys
2016-12-14 20:16:01 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-12-14 20:16:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-14 20:15:59 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-12-14 20:15:59 ----A---- C:\WINDOWS\system32\user32.dll
2016-12-14 20:15:57 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-12-14 20:15:56 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-12-14 20:15:53 ----A---- C:\WINDOWS\system32\cdp.dll
2016-12-14 20:15:46 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-12-14 20:15:46 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-12-14 20:15:45 ----A---- C:\WINDOWS\system32\securekernel.exe
2016-12-14 20:15:45 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-14 20:15:44 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2016-12-14 20:15:44 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-12-14 20:15:40 ----A---- C:\WINDOWS\system32\winresume.exe
2016-12-14 20:15:40 ----A---- C:\WINDOWS\system32\winload.exe
2016-12-14 20:15:39 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-12-14 20:15:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-14 20:15:36 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2016-12-14 20:15:36 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2016-12-14 20:15:36 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-12-14 20:15:36 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-12-14 20:15:36 ----A---- C:\WINDOWS\system32\combase.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-14 20:15:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-12-14 20:15:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-12-14 20:15:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-14 20:15:34 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2016-12-14 20:15:34 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2016-12-14 20:15:34 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-12-14 20:15:34 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-12-14 20:15:33 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-12-14 20:15:33 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2016-12-14 20:15:33 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-12-14 20:15:33 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-12-14 20:15:33 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-12-14 20:15:33 ----A---- C:\WINDOWS\system32\bcrypt.dll
2016-12-14 20:15:32 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2016-12-14 20:15:31 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2016-12-14 20:15:31 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2016-12-14 20:15:31 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-12-14 20:15:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-12-14 20:15:30 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-12-14 20:15:30 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-12-14 20:15:29 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-12-14 20:15:29 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-12-14 20:15:29 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-12-14 20:15:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-12-14 20:15:28 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-12-14 20:15:27 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-12-14 20:15:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-12-14 20:15:26 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-14 20:15:26 ----A---- C:\WINDOWS\system32\cdd.dll
2016-12-14 20:15:25 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-12-14 20:15:24 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-12-14 20:15:24 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-12-14 20:15:23 ----A---- C:\WINDOWS\SYSWOW64\indexeddbserver.dll
2016-12-14 20:15:22 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2016-12-14 20:15:22 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-12-14 20:15:20 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-12-14 20:15:19 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-12-14 20:15:19 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2016-12-14 20:15:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-10 17:39:24 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2016-12-10 17:39:24 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2016-12-10 17:39:23 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2016-12-10 17:39:23 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2016-12-10 17:39:23 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2016-12-10 17:39:23 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2016-12-10 17:39:20 ----A---- C:\WINDOWS\SYSWOW64\netshell.dll
2016-12-10 17:39:18 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2016-12-10 17:39:16 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-12-10 17:39:16 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-12-10 17:39:14 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-12-10 17:39:14 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2016-12-10 17:39:14 ----A---- C:\WINDOWS\SYSWOW64\DevicePairing.dll
2016-12-10 17:39:12 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2016-12-10 17:39:11 ----A---- C:\WINDOWS\SYSWOW64\mtxclu.dll
2016-12-10 17:39:11 ----A---- C:\WINDOWS\SYSWOW64\msdtcuiu.dll
2016-12-10 17:39:11 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2016-12-10 17:39:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2016-12-10 17:39:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2016-12-10 17:39:08 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2016-12-10 17:39:07 ----A---- C:\WINDOWS\SYSWOW64\hevcdecoder.dll
2016-12-10 17:39:05 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2016-12-10 17:39:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\WSManHTTPConfig.exe
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\InstallAgentUserBroker.exe
2016-12-10 17:39:02 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-12-10 17:39:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2016-12-10 17:39:01 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-12-10 17:39:01 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2016-12-10 17:39:00 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2016-12-10 17:39:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 17:39:00 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-12-10 17:39:00 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2016-12-10 17:39:00 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2016-12-10 17:38:59 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2016-12-10 17:38:59 ----A---- C:\WINDOWS\SYSWOW64\RTWorkQ.dll
2016-12-10 17:38:59 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2016-12-10 17:38:59 ----A---- C:\WINDOWS\SYSWOW64\efswrt.dll
2016-12-10 17:38:59 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2016-12-10 17:38:57 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2016-12-10 17:38:57 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2016-12-10 17:38:57 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2016-12-10 17:38:55 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-12-10 17:38:55 ----A---- C:\WINDOWS\SYSWOW64\NetCfgNotifyObjectHost.exe
2016-12-10 17:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\mspaint.exe
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2016-12-10 17:38:53 ----A---- C:\WINDOWS\SYSWOW64\mfaudiocnv.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-12-10 17:38:52 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-12-10 17:38:51 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2016-12-10 17:38:51 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2016-12-10 17:38:51 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2016-12-10 17:38:43 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2016-12-10 17:38:43 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2016-12-10 17:38:43 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2016-12-10 17:38:43 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2016-12-10 17:38:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2016-12-10 17:38:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-12-10 17:38:42 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2016-12-10 17:38:42 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2016-12-10 17:38:42 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2016-12-10 17:38:42 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2016-12-10 17:38:41 ----A---- C:\WINDOWS\SYSWOW64\xolehlp.dll
2016-12-10 17:38:41 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-12-10 17:38:41 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-12-10 17:38:41 ----A---- C:\WINDOWS\SYSWOW64\DeviceFlows.DataModel.dll
2016-12-10 17:38:40 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2016-12-10 17:38:40 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2016-12-10 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2016-12-10 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2016-12-10 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\apprepsync.dll
2016-12-10 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\apprepapi.dll
2016-12-10 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-12-10 17:38:39 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2016-12-10 17:38:38 ----A---- C:\WINDOWS\SYSWOW64\BcastDVRHelper.dll
2016-12-10 17:38:38 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2016-12-10 17:38:38 ----A---- C:\WINDOWS\SYSWOW64\AppCapture.dll
2016-12-10 17:32:57 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-10 17:32:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-10 17:32:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-12-10 17:32:57 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-10 17:32:57 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-10 17:32:56 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-12-10 17:32:38 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-12-10 17:32:26 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-12-10 17:32:25 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-12-10 17:32:24 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-12-10 17:32:24 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-10 17:32:24 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2016-12-10 17:32:23 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-12-10 17:32:21 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-12-10 17:32:21 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-12-10 17:32:21 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-10 17:32:20 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-10 17:32:20 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-12-10 17:32:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-10 17:32:20 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-12-10 17:32:20 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-10 17:32:20 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-12-10 17:32:19 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2016-12-10 17:32:19 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-12-10 17:32:18 ----A---- C:\WINDOWS\system32\umpoext.dll
2016-12-10 17:32:18 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2016-12-10 17:32:16 ----A---- C:\WINDOWS\system32\twinui.dll
2016-12-10 17:32:16 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-10 17:32:15 ----A---- C:\WINDOWS\system32\msctf.dll
2016-12-10 17:32:15 ----A---- C:\WINDOWS\system32\lsm.dll
2016-12-10 17:32:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 17:32:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-10 17:32:14 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-12-10 17:32:14 ----A---- C:\WINDOWS\system32\stobject.dll
2016-12-10 17:32:14 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-12-10 17:32:14 ----A---- C:\WINDOWS\system32\SRH.dll
2016-12-10 17:32:13 ----A---- C:\WINDOWS\system32\shell32.dll
2016-12-10 17:32:13 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-12-10 17:32:13 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-12-10 17:32:13 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\sendmail.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-10 17:32:11 ----A---- C:\WINDOWS\system32\cryptngc.dll
2016-12-10 17:32:10 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-12-10 17:32:10 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2016-12-10 17:32:09 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-12-10 17:32:09 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-10 17:32:04 ----A---- C:\WINDOWS\system32\wsecedit.dll
2016-12-10 17:32:04 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-10 17:32:03 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-10 17:32:03 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-12-10 17:32:03 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-12-10 17:32:00 ----A---- C:\WINDOWS\system32\wscinterop.dll
2016-12-10 17:31:59 ----A---- C:\WINDOWS\system32\services.exe
2016-12-10 17:31:58 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-12-10 17:31:58 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-10 17:31:57 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2016-12-10 17:31:57 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-10 17:31:56 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-12-10 17:31:56 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-12-10 17:31:55 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-12-10 17:31:55 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-12-10 17:31:54 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-12-10 17:31:54 ----A---- C:\WINDOWS\system32\ProvSysprep.dll
2016-12-10 17:31:53 ----A---- C:\WINDOWS\system32\sppnp.dll
2016-12-10 17:31:53 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-12-10 17:31:53 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-12-10 17:31:51 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-12-10 17:31:51 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-12-10 17:31:48 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-12-10 17:31:48 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-12-10 17:31:46 ----A---- C:\WINDOWS\system32\netshell.dll
2016-12-10 17:31:46 ----A---- C:\WINDOWS\system32\netplwiz.dll
2016-12-10 17:31:45 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-12-10 17:31:45 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-10 17:31:44 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 17:31:42 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-12-10 17:31:42 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-10 17:31:40 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2016-12-10 17:31:40 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-12-10 17:31:39 ----A---- C:\WINDOWS\system32\MFPlay.dll
2016-12-10 17:31:39 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-12-10 17:31:39 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-10 17:31:39 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-12-10 17:31:38 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-12-10 17:31:38 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-12-10 17:31:38 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-12-10 17:31:38 ----A---- C:\WINDOWS\system32\moshost.dll
2016-12-10 17:31:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-12-10 17:31:38 ----A---- C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\mos.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-12-10 17:31:37 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-12-10 17:31:36 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-12-10 17:31:34 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-12-10 17:31:34 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-12-10 17:31:34 ----A---- C:\WINDOWS\system32\migisol.dll
2016-12-10 17:31:32 ----A---- C:\WINDOWS\system32\lpremove.exe
2016-12-10 17:31:30 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-12-10 17:31:28 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-12-10 17:31:24 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-12-10 17:31:23 ----A---- C:\WINDOWS\system32\wininet.dll
2016-12-10 17:31:23 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2016-12-10 17:31:15 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-12-10 17:31:14 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-10 17:31:14 ----A---- C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-10 17:31:12 ----A---- C:\WINDOWS\system32\gameux.dll
2016-12-10 17:31:12 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-12-10 17:31:05 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-10 17:31:05 ----A---- C:\WINDOWS\explorer.exe
2016-12-10 17:31:04 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-12-10 17:31:03 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-10 17:31:03 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-10 17:31:03 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-12-10 17:31:03 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-12-10 17:31:03 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-12-10 17:31:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-10 17:31:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-10 17:31:02 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-12-10 17:31:02 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-12-10 17:31:01 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-12-10 17:31:01 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-12-10 17:31:01 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-12-10 17:31:01 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-12-10 17:31:01 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-10 17:31:00 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-12-10 17:30:58 ----A---- C:\WINDOWS\system32\ReportingCSP.dll
2016-12-10 17:30:58 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-12-10 17:30:57 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-12-10 17:30:56 ----A---- C:\WINDOWS\system32\comdlg32.dll
2016-12-10 17:30:55 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2016-12-10 17:30:55 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2016-12-10 17:30:54 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2016-12-10 17:30:54 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-12-10 17:30:54 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-12-10 17:30:53 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2016-12-10 17:30:53 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-10 17:30:51 ----A---- C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-10 17:30:45 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\AudioEng.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-12-10 17:30:39 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-10 17:30:38 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-12-10 17:30:38 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-12-10 17:30:35 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-10 17:30:35 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-12-10 17:30:32 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-12-10 17:30:31 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2016-12-10 17:30:31 ----A---- C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-10 17:30:31 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-12-10 17:30:31 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-12-10 17:30:09 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-12-10 17:30:09 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-12-10 17:30:08 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-12-10 17:30:08 ----A---- C:\WINDOWS\system32\drivers\bthport.sys

======List of files/folders modified in the last 1 month======

2017-01-07 11:44:11 ----RD---- C:\Program Files
2017-01-07 11:31:31 ----D---- C:\WINDOWS\Temp
2017-01-07 11:23:34 ----D---- C:\WINDOWS\Prefetch
2017-01-07 11:08:00 ----D---- C:\WINDOWS\system32\sru
2017-01-07 10:07:16 ----D---- C:\WINDOWS\LiveKernelReports
2017-01-07 10:05:29 ----D---- C:\WINDOWS\System32
2017-01-06 20:27:10 ----A---- C:\WINDOWS\system32\rpcnetp.exe
2017-01-06 20:27:07 ----A---- C:\WINDOWS\SYSWOW64\rpcnetp.dll
2017-01-06 20:27:07 ----A---- C:\WINDOWS\SYSWOW64\rpcnet.dll
2017-01-06 20:27:04 ----D---- C:\Windows
2017-01-06 20:27:04 ----A---- C:\WINDOWS\SYSWOW64\rpcnetp.exe
2017-01-06 20:26:58 ----A---- C:\WINDOWS\system32\wpbbin.exe
2017-01-06 19:49:42 ----D---- C:\WINDOWS\system32\drivers
2017-01-06 19:12:07 ----HD---- C:\ProgramData
2017-01-06 18:36:55 ----D---- C:\WINDOWS\system32\SleepStudy
2017-01-05 21:57:52 ----RD---- C:\WINDOWS\Microsoft.NET
2017-01-05 19:54:25 ----HD---- C:\Program Files\WindowsApps
2017-01-05 19:54:25 ----D---- C:\WINDOWS\AppReadiness
2017-01-03 17:51:49 ----D---- C:\WINDOWS\debug
2017-01-02 17:59:05 ----D---- C:\WINDOWS\INF
2016-12-30 13:14:43 ----D---- C:\WINDOWS\system32\NDF
2016-12-30 12:51:02 ----SHD---- C:\System Volume Information
2016-12-29 20:39:39 ----D---- C:\WINDOWS\system32\Tasks
2016-12-27 10:46:44 ----D---- C:\WINDOWS\system32\config
2016-12-20 21:49:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-19 17:19:32 ----D---- C:\WINDOWS\system32\catroot2
2016-12-19 10:36:28 ----D---- C:\WINDOWS\rescache
2016-12-18 11:19:57 ----SHD---- C:\WINDOWS\Installer
2016-12-18 11:15:03 ----RD---- C:\Program Files (x86)
2016-12-18 11:14:55 ----D---- C:\WINDOWS\Tasks
2016-12-17 20:07:42 ----D---- C:\Intel
2016-12-17 20:07:36 ----D---- C:\WINDOWS\system32\CatRoot
2016-12-17 20:07:32 ----D---- C:\WINDOWS\system32\DriverStore
2016-12-17 19:23:39 ----D---- C:\WINDOWS\WinSxS
2016-12-17 13:32:15 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-16 19:28:22 ----D---- C:\WINDOWS\system32\Macromed
2016-12-16 19:28:19 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2016-12-16 18:40:04 ----RD---- C:\WINDOWS\assembly
2016-12-14 21:50:47 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-12-14 21:50:47 ----D---- C:\WINDOWS\SysWOW64
2016-12-14 21:50:45 ----D---- C:\WINDOWS\system32\en-US
2016-12-14 21:50:44 ----D---- C:\WINDOWS\ShellExperiences
2016-12-14 21:50:44 ----D---- C:\WINDOWS\AppPatch
2016-12-14 21:50:43 ----D---- C:\WINDOWS\system32\Boot
2016-12-14 20:55:19 ----D---- C:\WINDOWS\CbsTemp
2016-12-14 20:49:34 ----D---- C:\WINDOWS\system32\MRT
2016-12-14 20:46:20 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-12-14 18:26:36 ----D---- C:\WINDOWS\system32\LogFiles
2016-12-12 00:56:25 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2016-12-10 18:58:20 ----D---- C:\WINDOWS\SYSWOW64\oobe
2016-12-10 18:58:20 ----D---- C:\WINDOWS\SYSWOW64\Dism
2016-12-10 18:58:17 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-12-10 18:58:17 ----D---- C:\WINDOWS\system32\wbem
2016-12-10 18:58:17 ----D---- C:\WINDOWS\system32\Sysprep
2016-12-10 18:58:17 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-12-10 18:58:15 ----D---- C:\WINDOWS\system32\oobe
2016-12-10 18:58:14 ----D---- C:\WINDOWS\system32\Dism
2016-12-10 18:58:10 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-12-10 18:58:10 ----D---- C:\WINDOWS\servicing
2016-12-10 18:58:10 ----D---- C:\WINDOWS\bcastdvr
2016-12-10 18:58:10 ----D---- C:\Program Files\Internet Explorer
2016-12-10 18:58:10 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-10 17:02:14 ----A---- C:\WINDOWS\system32\enrollmentapi.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-12-06 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-12-06 293352]
R0 iaStor;@oem13.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-11-29 568600]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-12-06 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-12-06 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-12-06 969184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-12-06 513632]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-12-06 108816]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-12-06 163416]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-10-03 114176]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-09-15 249856]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-10-03 84992]
R3 ETD;@oem17.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-10 525512]
R3 ibtfltcoex;@oem16.inf,%PROVIDER_NAME%;Intel Corporation; C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys [2015-11-17 79632]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 IntcDAud;@oem9.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem24.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2016-07-16 446464]
R3 MEIx64;@oem23.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 NETwNe64;@oem21.inf,%NIC_Service_DispName_WIN8_64%;Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-07-28 3363112]
R3 Ps2Kb2Hid;@oem10.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2014-08-27 26736]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-12-06 37656]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\WINDOWS\system32\DRIVERS\btmaux.sys [2013-07-22 140600]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 dg_ssudbus;@oem20.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-10-03 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;@oem14.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem8.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
S3 ssudserd;@oem4.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2016-09-05 165504]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2016-07-16 95744]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 108544]
S3 UcmUcsi;@UcmUcsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2016-07-16 50688]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2016-07-16 45568]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2016-07-16 263008]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2016-07-16 96608]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2016-07-16 137056]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-10-21 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-12-06 197128]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2013-08-26 1157496]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_216fad;CDPUserSvc_216fad; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-10 144072]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 OneSyncSvc_216fad;Hostitel synchronizace_216fad; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2014-08-27 96880]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 PimIndexMaintenanceSvc_216fad;Data kontaktů_216fad; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 rpcnet;Remote Procedure Call (RPC) Net; C:\Windows\SysWOW64\rpcnet.exe [2014-08-27 69792]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-16 270936]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_216fad;Služba zasílání zpráv_216fad; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-16 172488]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-10-03 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]

-----------------EOF-----------------

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 08 led 2017 12:52
od Rudy
Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 08 led 2017 14:47
od katrops
# AdwCleaner v6.042 - Log vytvořen 08/01/2017 v 14:41:44
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-06.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Admin - PC-ACER
# Spuštěno z : C:\Users\Admin\Desktop\adwcleaner_6.042.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****

[-] Složka smazána: C:\Users\Admin\AppData\Local\DriverToolkit
[-] Složka smazána: C:\Program Files (x86)\DriverToolkit


***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wxplo9hb.default\invalidprefs.js


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[-] Klíč smazán: HKU\S-1-5-21-2596710714-2190514600-3366042029-1001\Software\DriverToolkit
[#] Klíč smazán po restartu: HKCU\Software\DriverToolkit
[#] Klíč smazán po restartu: [x64] HKCU\Software\DriverToolkit


***** [ Prohlížeče ] *****

[-] [C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: sl
[-] [C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1473 Bajty] - [08/01/2017 14:41:44]
C:\AdwCleaner\AdwCleaner[S0].txt - [1782 Bajty] - [08/01/2017 14:40:59]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1619 Bajty] ##########

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 08 led 2017 15:46
od Rudy
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 08 led 2017 16:10
od katrops
Jak se píše v tom návodu, tak mi Avast vyhonotil Launcher jako hrozbu. Dal jsem ignorovat, ale bohužel nyní již nemám stránku pro stažení Launcheru dostupnou. Doporučujete dočasně vypnout rezidentní štít. Který to je, v Avastu mám jen tři štíty (štít souborového systému, poštovní a webový štít). Typuji na ten souborový, ale raději se ptám. :D

Ta jsem zkusil ten souborový štít, ale stránka pro stažení je pořád nedostupná.


Stále to nejde stáhnout. Bez toho launcheru to nejde ?
Jinak nemám nějaký problém. Chci se zeptat, to vyčištění ADV Cleanerem nestačilo ?

Tak aspoň vkládám log z FRST :
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-01-2017
Ran by Admin (administrator) on PC-ACER (08-01-2017 17:08:14)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin & Rodina)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_24_0_0_186.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2014-08-27] (Dritek System Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-12-06] (AVAST Software)
HKU\S-1-5-21-2596710714-2190514600-3366042029-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-12-06] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{0fa85a2e-513b-470c-82c3-aa2df6750b39}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{8707d711-3f9a-4fdc-ae01-0ea83582f109}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{ac19e412-cf3c-4eb7-9d03-18df0f70078a}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File

FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wxplo9hb.default [2017-01-08]
FF Homepage: Mozilla\Firefox\Profiles\wxplo9hb.default -> www.seznam.cz/
FF Extension: (Adblock Plus) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\wxplo9hb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-12-29]
FF HKLM\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\AVAST Software\Avast\pam\FF
FF Extension: (Avast Passwords) - C:\Program Files\AVAST Software\Avast\pam\FF [2016-12-29]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-12-29]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [jid1-r1tDuNiNb4SEww@jetpack] - C:\Program Files\AVAST Software\Avast\pam\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-16] ()
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-16] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2017-01-08]
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-01]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-01]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-12-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-12-17]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-05]
CHR Extension: (Adblock Plus) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-09-11]
CHR Extension: (Vyhledávání Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-22]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-15]
CHR Extension: (Avast Online Security) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-08-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-08]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-12-17]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-12]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-05]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-01-02]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-12-06] (AVAST Software)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-10] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2014-08-27] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-12-06] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-12-06] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-12-06] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-12-06] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-12-06] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-12-06] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-12-06] (AVAST Software)
S3 btmaux; C:\WINDOWS\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3363112 2015-07-28] (Intel Corporation)
R3 Ps2Kb2Hid; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [26736 2014-08-27] (Dritek System Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-08 17:08 - 2017-01-08 17:08 - 00012610 _____ C:\Users\Admin\Desktop\FRST.txt
2017-01-08 17:08 - 2017-01-08 17:08 - 00000000 ____D C:\Users\Admin\Desktop\FRST-OlderVersion
2017-01-08 17:07 - 2017-01-08 17:08 - 00000000 ____D C:\FRST
2017-01-08 15:55 - 2017-01-08 17:08 - 02419200 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2017-01-08 14:44 - 2017-01-08 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2017-01-08 14:38 - 2017-01-08 14:41 - 00000000 ____D C:\AdwCleaner
2017-01-08 14:36 - 2017-01-08 14:37 - 03988944 _____ C:\Users\Admin\Desktop\adwcleaner_6.042.exe
2017-01-07 17:39 - 2017-01-07 17:39 - 00247772 _____ C:\Users\Admin\Downloads\20170107_potvrzeni.pdf
2017-01-07 11:44 - 2017-01-07 11:44 - 00000000 ____D C:\rsit
2017-01-07 11:44 - 2017-01-07 11:44 - 00000000 ____D C:\Program Files\trend micro
2017-01-07 11:43 - 2017-01-07 11:43 - 01222144 _____ C:\Users\Admin\Downloads\RSITx64.exe
2017-01-06 20:51 - 2017-01-06 20:51 - 00063583 _____ C:\Users\Admin\Downloads\20160930213128633581.PDF
2017-01-04 21:07 - 2017-01-04 21:08 - 00029735 _____ C:\Users\Admin\Downloads\Registrace uživatele - ČSOB-PS.htm
2017-01-04 21:07 - 2017-01-04 21:08 - 00000000 ____D C:\Users\Admin\Downloads\Registrace uživatele - ČSOB-PS_soubory
2017-01-03 18:09 - 2017-01-03 18:09 - 00001111 _____ C:\Users\Admin\Downloads\airbank_1114143020_2017-01-03_18-09.csv
2017-01-02 18:33 - 2017-01-02 18:34 - 00069499 _____ C:\Users\Admin\Downloads\14578_Zkladn_ron_zny_100__101.pdf
2016-12-29 22:48 - 2017-01-08 14:42 - 00034038 ____H C:\Users\Admin\AppData\Local\IconCache.db
2016-12-29 21:46 - 2016-12-29 21:46 - 00388608 _____ (Trend Micro Inc.) C:\Users\Admin\Downloads\HijackThis.exe
2016-12-29 20:32 - 2016-12-06 21:18 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-12-29 20:06 - 2016-12-29 20:35 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Seznam.cz
2016-12-28 11:52 - 2016-12-28 11:52 - 08506951 _____ C:\Users\Admin\Desktop\manuál Compal.pdf
2016-12-19 17:23 - 2016-12-19 17:23 - 00003276 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-19 17:21 - 2016-12-19 17:21 - 00000000 ____D C:\Users\Rodina\AppData\Roaming\LizardSystems
2016-12-18 18:19 - 2016-12-18 18:19 - 00000000 ____D C:\Users\Rodina\AppData\Local\Diagnostics
2016-12-18 18:16 - 2016-12-18 18:16 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-12-18 18:16 - 2016-12-18 18:16 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-12-18 18:15 - 2017-01-01 16:53 - 00000000 ____D C:\Users\Rodina\AppData\Roaming\Seznam.cz
2016-12-17 20:07 - 2016-12-17 20:07 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-12-17 15:48 - 2016-12-17 15:48 - 00002336 _____ C:\Users\Default\Desktop\Google Chrome.lnk
2016-12-17 15:48 - 2016-12-17 15:48 - 00002336 _____ C:\Users\Default User\Desktop\Google Chrome.lnk
2016-12-17 15:48 - 2016-12-17 15:48 - 00000000 __SHD C:\Users\Default\AppData\Local\EmieBrowserModeList
2016-12-17 15:48 - 2016-12-17 15:48 - 00000000 __SHD C:\Users\Default User\AppData\Local\EmieBrowserModeList
2016-12-17 15:48 - 2016-12-17 15:48 - 00000000 ____D C:\Users\Default\AppData\Local\MicrosoftEdge
2016-12-17 15:48 - 2016-12-17 15:48 - 00000000 ____D C:\Users\Default User\AppData\Local\MicrosoftEdge
2016-12-17 15:47 - 2016-12-29 20:09 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-12-17 15:47 - 2016-12-17 15:47 - 00000000 ____D C:\%LOCALAPPDATA%
2016-12-17 15:46 - 2016-12-17 15:46 - 00001300 _____ C:\Users\Public\Desktop\Wi-Fi Scanner.lnk
2016-12-17 15:46 - 2016-12-17 15:46 - 00000000 ____D C:\Users\Admin\AppData\Roaming\LizardSystems
2016-12-17 15:46 - 2016-12-17 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LizardSystems
2016-12-17 15:46 - 2016-12-17 15:46 - 00000000 ____D C:\Program Files (x86)\LizardSystems
2016-12-17 15:44 - 2016-12-17 15:45 - 10009344 _____ C:\Users\Admin\Downloads\wifiscanner_setup.exe
2016-12-16 19:32 - 2016-12-16 19:32 - 08803648 _____ (Piriform Ltd) C:\Users\Admin\Downloads\ccsetup525.exe
2016-12-16 18:29 - 2016-12-16 19:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-14 20:16 - 2016-12-09 11:32 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-14 20:16 - 2016-12-09 11:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 20:16 - 2016-12-09 11:19 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-14 20:16 - 2016-12-09 11:18 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-12-14 20:16 - 2016-12-09 11:18 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-12-14 20:16 - 2016-12-09 11:18 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-12-14 20:16 - 2016-12-09 11:18 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-12-14 20:16 - 2016-12-09 11:15 - 08168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 20:16 - 2016-12-09 11:15 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-14 20:16 - 2016-12-09 11:14 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-14 20:16 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-12-14 20:16 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-12-14 20:16 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-12-14 20:16 - 2016-12-09 10:52 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-12-14 20:16 - 2016-12-09 10:51 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2016-12-14 20:16 - 2016-12-09 10:45 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-14 20:16 - 2016-12-09 10:45 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-14 20:16 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2016-12-14 20:16 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2016-12-14 20:16 - 2016-12-09 10:38 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 20:16 - 2016-12-09 10:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-14 20:16 - 2016-12-09 10:36 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-14 20:16 - 2016-12-09 10:36 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-14 20:16 - 2016-12-09 10:36 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-14 20:16 - 2016-12-09 10:36 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-14 20:16 - 2016-12-09 10:33 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-14 20:16 - 2016-12-09 10:33 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-14 20:16 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-12-14 20:16 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-12-14 20:16 - 2016-12-09 10:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-14 20:16 - 2016-12-09 10:28 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-12-14 20:16 - 2016-12-09 10:27 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-12-14 20:16 - 2016-12-09 10:26 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-14 20:16 - 2016-12-09 10:24 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-14 20:16 - 2016-12-09 10:22 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-14 20:16 - 2016-12-09 10:22 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-14 20:16 - 2016-12-09 10:21 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-14 20:16 - 2016-12-09 10:19 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-14 20:16 - 2016-12-09 10:19 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-14 20:16 - 2016-12-09 10:19 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-14 20:16 - 2016-12-09 10:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-14 20:16 - 2016-12-09 10:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-14 20:16 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-12-14 20:16 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-12-14 20:16 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-12-14 20:16 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-12-14 20:16 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-12-14 20:16 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2016-12-14 20:16 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-14 20:15 - 2016-12-09 11:42 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-14 20:15 - 2016-12-09 11:42 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-14 20:15 - 2016-12-09 11:34 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-14 20:15 - 2016-12-09 11:34 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-14 20:15 - 2016-12-09 11:33 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-12-14 20:15 - 2016-12-09 11:33 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-12-14 20:15 - 2016-12-09 11:30 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-14 20:15 - 2016-12-09 11:28 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-14 20:15 - 2016-12-09 11:27 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-14 20:15 - 2016-12-09 11:20 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-14 20:15 - 2016-12-09 11:20 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-14 20:15 - 2016-12-09 11:20 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-14 20:15 - 2016-12-09 11:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-14 20:15 - 2016-12-09 11:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-14 20:15 - 2016-12-09 11:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-14 20:15 - 2016-12-09 11:18 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-14 20:15 - 2016-12-09 11:18 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-14 20:15 - 2016-12-09 11:18 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-14 20:15 - 2016-12-09 11:14 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-14 20:15 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-12-14 20:15 - 2016-12-09 11:10 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-14 20:15 - 2016-12-09 11:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-14 20:15 - 2016-12-09 11:09 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2016-12-14 20:15 - 2016-12-09 11:01 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-12-14 20:15 - 2016-12-09 11:00 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2016-12-14 20:15 - 2016-12-09 10:59 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-12-14 20:15 - 2016-12-09 10:59 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-12-14 20:15 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-12-14 20:15 - 2016-12-09 10:56 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-12-14 20:15 - 2016-12-09 10:52 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2016-12-14 20:15 - 2016-12-09 10:47 - 22563328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-14 20:15 - 2016-12-09 10:42 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-14 20:15 - 2016-12-09 10:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-14 20:15 - 2016-12-09 10:37 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-14 20:15 - 2016-12-09 10:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-12-14 20:15 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2016-12-14 20:15 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-12-14 20:15 - 2016-12-09 10:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-12-14 20:15 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-12-14 20:15 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-12-14 20:15 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-12-14 20:15 - 2016-12-09 10:30 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-14 20:15 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-12-14 20:15 - 2016-12-09 10:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-14 20:15 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-12-14 20:15 - 2016-12-09 10:27 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-14 20:15 - 2016-12-09 10:27 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-14 20:15 - 2016-12-09 10:26 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-14 20:15 - 2016-12-09 10:25 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-12-14 20:15 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-12-14 20:15 - 2016-12-09 10:22 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-14 20:15 - 2016-12-09 10:21 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-14 20:15 - 2016-12-09 10:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-14 20:15 - 2016-12-09 10:21 - 01512960 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-14 20:15 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-12-14 20:15 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2016-12-14 20:15 - 2016-12-09 10:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-14 20:15 - 2016-12-09 10:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-14 20:15 - 2016-12-09 10:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-14 20:15 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-12-14 20:15 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-12-14 20:15 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2016-12-14 20:15 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-12-14 20:15 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-12-14 20:15 - 2016-12-09 09:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2016-12-14 20:15 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-12-14 20:15 - 2016-09-15 17:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-10 17:39 - 2016-11-11 09:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-12-10 17:39 - 2016-11-11 09:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-12-10 17:39 - 2016-11-11 08:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2016-12-10 17:39 - 2016-11-11 08:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2016-12-10 17:39 - 2016-11-11 08:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-12-10 17:39 - 2016-11-11 08:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-12-10 17:39 - 2016-11-11 08:41 - 00157536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2016-12-10 17:39 - 2016-11-11 08:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-12-10 17:39 - 2016-11-11 08:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2016-12-10 17:39 - 2016-11-11 08:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2016-12-10 17:39 - 2016-11-11 08:24 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-12-10 17:39 - 2016-11-11 08:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-12-10 17:39 - 2016-11-11 08:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2016-12-10 17:39 - 2016-11-11 08:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-12-10 17:39 - 2016-11-11 08:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-12-10 17:39 - 2016-11-11 08:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-12-10 17:39 - 2016-11-11 08:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-12-10 17:39 - 2016-11-11 08:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-12-10 17:39 - 2016-11-11 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2016-12-10 17:39 - 2016-11-11 08:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-12-10 17:39 - 2016-11-11 08:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2016-12-10 17:39 - 2016-11-11 08:18 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2016-12-10 17:39 - 2016-11-11 08:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2016-12-10 17:39 - 2016-11-11 08:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 17:39 - 2016-11-11 08:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-12-10 17:39 - 2016-11-11 08:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-12-10 17:39 - 2016-11-11 08:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-12-10 17:39 - 2016-11-11 08:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2016-12-10 17:39 - 2016-11-11 08:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-12-10 17:39 - 2016-11-11 08:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxclu.dll
2016-12-10 17:39 - 2016-11-11 08:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-12-10 17:39 - 2016-11-11 08:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netshell.dll
2016-12-10 17:39 - 2016-11-11 08:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-12-10 17:39 - 2016-11-11 08:04 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2016-12-10 17:39 - 2016-11-11 08:04 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-12-10 17:39 - 2016-11-11 08:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-12-10 17:39 - 2016-11-11 08:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-12-10 17:39 - 2016-11-11 08:02 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-12-10 17:38 - 2016-11-11 09:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-12-10 17:38 - 2016-11-11 09:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2016-12-10 17:38 - 2016-11-11 09:00 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-12-10 17:38 - 2016-11-11 08:59 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-12-10 17:38 - 2016-11-11 08:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-12-10 17:38 - 2016-11-11 08:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-12-10 17:38 - 2016-11-11 08:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2016-12-10 17:38 - 2016-11-11 08:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-12-10 17:38 - 2016-11-11 08:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 00374448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2016-12-10 17:38 - 2016-11-11 08:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfaudiocnv.dll
2016-12-10 17:38 - 2016-11-11 08:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-12-10 17:38 - 2016-11-11 08:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-12-10 17:38 - 2016-11-11 08:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-12-10 17:38 - 2016-11-11 08:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-12-10 17:38 - 2016-11-11 08:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-12-10 17:38 - 2016-11-11 08:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2016-12-10 17:38 - 2016-11-11 08:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-12-10 17:38 - 2016-11-11 08:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2016-12-10 17:38 - 2016-11-11 08:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-12-10 17:38 - 2016-11-11 08:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-12-10 17:38 - 2016-11-11 08:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-12-10 17:38 - 2016-11-11 08:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 17:38 - 2016-11-11 08:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-12-10 17:38 - 2016-11-11 08:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2016-12-10 17:38 - 2016-11-11 08:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-12-10 17:38 - 2016-11-11 08:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-12-10 17:38 - 2016-11-11 08:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-12-10 17:38 - 2016-11-11 08:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-12-10 17:38 - 2016-11-11 08:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2016-12-10 17:38 - 2016-11-11 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2016-12-10 17:38 - 2016-11-11 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2016-12-10 17:38 - 2016-11-11 08:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2016-12-10 17:38 - 2016-11-11 08:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-12-10 17:38 - 2016-11-11 08:15 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2016-12-10 17:38 - 2016-11-11 08:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2016-12-10 17:38 - 2016-11-11 08:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-12-10 17:38 - 2016-11-11 08:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-12-10 17:38 - 2016-11-11 08:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-12-10 17:38 - 2016-11-11 08:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-12-10 17:38 - 2016-11-11 08:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2016-12-10 17:38 - 2016-11-11 08:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-12-10 17:38 - 2016-11-11 08:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2016-12-10 17:38 - 2016-11-11 08:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2016-12-10 17:38 - 2016-11-11 08:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2016-12-10 17:38 - 2016-11-11 08:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-12-10 17:38 - 2016-11-11 08:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-12-10 17:38 - 2016-11-11 08:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-12-10 17:38 - 2016-11-11 08:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-12-10 17:38 - 2016-11-11 08:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-12-10 17:38 - 2016-11-11 08:03 - 01576448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-12-10 17:38 - 2016-11-11 08:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2016-12-10 17:38 - 2016-11-11 08:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-12-10 17:38 - 2016-11-11 08:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-12-10 17:32 - 2016-11-11 11:15 - 00198856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-10 17:32 - 2016-11-11 11:15 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-10 17:32 - 2016-11-11 11:14 - 02186896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-10 17:32 - 2016-11-11 11:03 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-10 17:32 - 2016-11-11 11:02 - 00360040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-12-10 17:32 - 2016-11-11 11:01 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-10 17:32 - 2016-11-11 11:00 - 00223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-10 17:32 - 2016-11-11 10:57 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-10 17:32 - 2016-11-11 10:55 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-10 17:32 - 2016-11-11 10:55 - 00882680 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-10 17:32 - 2016-11-11 10:54 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-10 17:32 - 2016-11-11 10:28 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-10 17:32 - 2016-11-11 10:26 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-10 17:32 - 2016-11-11 10:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-10 17:32 - 2016-11-11 10:25 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-12-10 17:32 - 2016-11-11 10:24 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-10 17:32 - 2016-11-11 10:24 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-10 17:32 - 2016-11-11 10:24 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-10 17:32 - 2016-11-11 10:24 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-10 17:32 - 2016-11-11 10:23 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-10 17:32 - 2016-11-11 10:23 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-12-10 17:32 - 2016-11-11 10:22 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-10 17:32 - 2016-11-11 10:21 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-10 17:32 - 2016-11-11 10:20 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-10 17:32 - 2016-11-11 10:20 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-10 17:32 - 2016-11-11 10:20 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-10 17:32 - 2016-11-11 10:20 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-12-10 17:32 - 2016-11-11 10:20 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-10 17:32 - 2016-11-11 10:19 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-10 17:32 - 2016-11-11 10:19 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-10 17:32 - 2016-11-11 10:19 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-10 17:32 - 2016-11-11 10:19 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-12-10 17:32 - 2016-11-11 10:19 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-10 17:32 - 2016-11-11 10:17 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-10 17:32 - 2016-11-11 10:17 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-12-10 17:32 - 2016-11-11 10:16 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-10 17:32 - 2016-11-11 10:16 - 01477632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-10 17:32 - 2016-11-11 10:16 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-10 17:32 - 2016-11-11 10:16 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-10 17:32 - 2016-11-11 10:15 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-10 17:32 - 2016-11-11 10:15 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-10 17:32 - 2016-11-11 10:15 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-10 17:32 - 2016-11-11 10:14 - 02104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-10 17:32 - 2016-11-11 10:14 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-10 17:32 - 2016-11-11 10:13 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-10 17:32 - 2016-11-11 10:11 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-10 17:32 - 2016-11-11 10:07 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-12-10 17:32 - 2016-11-11 10:07 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-10 17:32 - 2016-11-11 10:05 - 04136448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-10 17:32 - 2016-11-11 10:05 - 02852864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-10 17:32 - 2016-11-11 10:05 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-10 17:32 - 2016-11-11 10:04 - 02317312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-10 17:32 - 2016-11-11 10:04 - 01709056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-10 17:32 - 2016-11-11 10:04 - 01359360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-10 17:32 - 2016-11-11 10:04 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-12-10 17:32 - 2016-11-11 10:04 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-10 17:32 - 2016-11-11 10:04 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-12-10 17:32 - 2016-11-11 10:03 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-10 17:32 - 2016-11-11 10:03 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-10 17:32 - 2016-11-11 10:02 - 01726976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-10 17:31 - 2016-11-11 11:14 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-10 17:31 - 2016-11-11 11:13 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-10 17:31 - 2016-11-11 11:13 - 01886344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-10 17:31 - 2016-11-11 11:13 - 00352096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-10 17:31 - 2016-11-11 11:12 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-10 17:31 - 2016-11-11 11:08 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-10 17:31 - 2016-11-11 11:02 - 02828376 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-10 17:31 - 2016-11-11 11:01 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-10 17:31 - 2016-11-11 11:01 - 00637400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-10 17:31 - 2016-11-11 10:59 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-10 17:31 - 2016-11-11 10:57 - 04130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-10 17:31 - 2016-11-11 10:57 - 01473048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-10 17:31 - 2016-11-11 10:56 - 04673304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-10 17:31 - 2016-11-11 10:56 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-10 17:31 - 2016-11-11 10:56 - 00424616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2016-12-10 17:31 - 2016-11-11 10:56 - 00163752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-10 17:31 - 2016-11-11 10:56 - 00126568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-10 17:31 - 2016-11-11 10:55 - 00743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-10 17:31 - 2016-11-11 10:51 - 00454592 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-10 17:31 - 2016-11-11 10:31 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-10 17:31 - 2016-11-11 10:29 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-10 17:31 - 2016-11-11 10:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-10 17:31 - 2016-11-11 10:27 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-10 17:31 - 2016-11-11 10:25 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-10 17:31 - 2016-11-11 10:25 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-10 17:31 - 2016-11-11 10:25 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-10 17:31 - 2016-11-11 10:25 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-10 17:31 - 2016-11-11 10:24 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-10 17:31 - 2016-11-11 10:23 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-10 17:31 - 2016-11-11 10:23 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-10 17:31 - 2016-11-11 10:22 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-10 17:31 - 2016-11-11 10:22 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-10 17:31 - 2016-11-11 10:21 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-10 17:31 - 2016-11-11 10:21 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-10 17:31 - 2016-11-11 10:21 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-10 17:31 - 2016-11-11 10:21 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-10 17:31 - 2016-11-11 10:20 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-10 17:31 - 2016-11-11 10:20 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-10 17:31 - 2016-11-11 10:20 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-10 17:31 - 2016-11-11 10:20 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-10 17:31 - 2016-11-11 10:20 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-12-10 17:31 - 2016-11-11 10:19 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-10 17:31 - 2016-11-11 10:19 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-10 17:31 - 2016-11-11 10:18 - 17188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-10 17:31 - 2016-11-11 10:18 - 02084352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-10 17:31 - 2016-11-11 10:18 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2016-12-10 17:31 - 2016-11-11 10:17 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-10 17:31 - 2016-11-11 10:16 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-10 17:31 - 2016-11-11 10:14 - 07654400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-10 17:31 - 2016-11-11 10:14 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-10 17:31 - 2016-11-11 10:14 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-10 17:31 - 2016-11-11 10:13 - 07812096 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-10 17:31 - 2016-11-11 10:11 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-10 17:31 - 2016-11-11 10:09 - 01366016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-10 17:31 - 2016-11-11 10:09 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-10 17:31 - 2016-11-11 10:08 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-10 17:31 - 2016-11-11 10:07 - 03441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-10 17:31 - 2016-11-11 10:07 - 02953216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-10 17:31 - 2016-11-11 10:07 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-10 17:31 - 2016-11-11 10:07 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-10 17:31 - 2016-11-11 10:06 - 03400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-12-10 17:31 - 2016-11-11 10:06 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-10 17:31 - 2016-11-11 10:06 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-10 17:31 - 2016-11-11 10:05 - 01779712 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-10 17:31 - 2016-11-11 10:05 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-10 17:31 - 2016-11-11 10:04 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-10 17:31 - 2016-11-11 10:04 - 02800128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-10 17:31 - 2016-11-11 10:04 - 02611200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-10 17:31 - 2016-11-11 10:04 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-10 17:31 - 2016-11-11 10:04 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 04708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 02669056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 00905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-10 17:31 - 2016-11-11 10:03 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-10 17:31 - 2016-11-11 10:02 - 00936448 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-10 17:30 - 2016-11-11 11:22 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-10 17:30 - 2016-11-11 11:14 - 00603488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-10 17:30 - 2016-11-11 11:03 - 01069720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-10 17:30 - 2016-11-11 11:03 - 00266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-10 17:30 - 2016-11-11 11:00 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-10 17:30 - 2016-11-11 11:00 - 00219488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-10 17:30 - 2016-11-11 10:56 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2016-12-10 17:30 - 2016-11-11 10:56 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-10 17:30 - 2016-11-11 10:56 - 00187520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2016-12-10 17:30 - 2016-11-11 10:28 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-10 17:30 - 2016-11-11 10:26 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-10 17:30 - 2016-11-11 10:26 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-10 17:30 - 2016-11-11 10:26 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-10 17:30 - 2016-11-11 10:25 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-10 17:30 - 2016-11-11 10:25 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-10 17:30 - 2016-11-11 10:24 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-10 17:30 - 2016-11-11 10:24 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-10 17:30 - 2016-11-11 10:24 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-10 17:30 - 2016-11-11 10:22 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-10 17:30 - 2016-11-11 10:21 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-10 17:30 - 2016-11-11 10:20 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-10 17:30 - 2016-11-11 10:20 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-10 17:30 - 2016-11-11 10:19 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-10 17:30 - 2016-11-11 10:19 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-10 17:30 - 2016-11-11 10:19 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-10 17:30 - 2016-11-11 10:18 - 00967168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-12-10 17:30 - 2016-11-11 10:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-10 17:30 - 2016-11-11 10:13 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-10 17:30 - 2016-11-11 10:12 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-10 17:30 - 2016-11-11 10:11 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-10 17:30 - 2016-11-11 10:11 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-12-10 17:30 - 2016-11-11 10:07 - 01691136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-10 17:30 - 2016-11-11 10:07 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-12-10 17:30 - 2016-11-11 10:02 - 03542016 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-01-08 15:52 - 2016-10-03 20:50 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-08 14:44 - 2016-11-15 20:40 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2017-01-08 14:43 - 2016-10-03 21:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-08 14:43 - 2016-10-03 20:51 - 00017408 _____ C:\WINDOWS\SysWOW64\rpcnetp.dll
2017-01-08 14:43 - 2016-10-03 20:49 - 00029336 _____ C:\WINDOWS\system32\wpbbin.exe
2017-01-08 14:43 - 2016-10-03 20:49 - 00017408 _____ C:\WINDOWS\SysWOW64\rpcnetp.exe
2017-01-08 14:43 - 2016-10-03 20:49 - 00017408 _____ C:\WINDOWS\system32\rpcnetp.exe
2017-01-08 14:43 - 2014-08-27 09:41 - 00000000 __SHD C:\Users\Admin\IntelGraphicsProfiles
2017-01-08 14:43 - 2014-08-27 08:52 - 00069792 _____ (Absolute Software Corp.) C:\WINDOWS\SysWOW64\rpcnet.dll
2017-01-08 14:42 - 2016-07-16 07:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-01-07 12:41 - 2016-01-24 16:43 - 00000000 __SHD C:\Users\Rodina\IntelGraphicsProfiles
2017-01-07 10:56 - 2016-01-24 17:01 - 00001569 _____ C:\Users\Rodina\Desktop\firefox – zástupce.lnk
2017-01-07 10:07 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-06 19:56 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-06 17:49 - 2016-10-03 21:20 - 00004278 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2017-01-05 20:52 - 2014-09-09 18:34 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2017-01-05 19:54 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-05 09:09 - 2016-11-17 18:58 - 00000000 ____D C:\Users\Rodina\AppData\LocalLow\Mozilla
2017-01-02 17:59 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-01 16:13 - 2014-08-30 17:58 - 00031038 _____ C:\Users\Admin\Documents\spotřeba energie.ods
2017-01-01 16:07 - 2014-08-30 17:57 - 00000000 ____D C:\Users\Admin\Documents\Sledování energií
2016-12-31 08:47 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\config\RegBack
2016-12-30 16:17 - 2016-10-03 20:56 - 00000000 ____D C:\Users\Admin
2016-12-30 13:14 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-12-29 20:39 - 2016-10-03 21:20 - 00004004 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1458752926
2016-12-29 20:39 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Tasks
2016-12-29 20:39 - 2016-03-23 18:08 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-12-29 20:35 - 2016-07-16 07:04 - 45613056 _____ C:\WINDOWS\system32\config\COMPONENTS
2016-12-29 20:33 - 2015-12-18 21:38 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-12-29 20:33 - 2015-05-19 16:42 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-12-29 20:06 - 2016-10-03 20:56 - 00000000 ____D C:\Users\Admin\AppData\Roaming
2016-12-29 14:03 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-12-27 22:22 - 2016-10-03 20:56 - 00000000 ____D C:\Users\Rodina
2016-12-27 10:46 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\config
2016-12-24 17:38 - 2016-01-24 16:43 - 00000000 ____D C:\Users\Rodina\AppData\Local\Google
2016-12-20 21:49 - 2016-07-16 23:25 - 00639162 _____ C:\WINDOWS\system32\perfh005.dat
2016-12-20 21:49 - 2016-07-16 23:25 - 00139746 _____ C:\WINDOWS\system32\perfc005.dat
2016-12-20 21:49 - 2016-07-16 12:49 - 00815850 _____ C:\WINDOWS\system32\perfh009.dat
2016-12-20 21:49 - 2016-07-16 12:49 - 00216176 _____ C:\WINDOWS\system32\perfc009.dat
2016-12-20 21:49 - 2015-08-01 09:29 - 01814346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-19 17:23 - 2016-10-03 20:56 - 00000000 ___RD C:\Users\Rodina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-19 17:23 - 2016-01-24 16:46 - 00002431 _____ C:\Users\Rodina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-19 17:23 - 2016-01-24 16:46 - 00000000 ___RD C:\Users\Rodina\OneDrive
2016-12-19 17:21 - 2016-10-03 20:56 - 00000000 ____D C:\Users\Rodina\AppData\Roaming
2016-12-19 17:19 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\catroot2
2016-12-19 10:44 - 2016-10-03 20:55 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{4a3fb119-4ba3-11e6-80cd-b8ca3aed6f7f}.TMContainer00000000000000000002.regtrans-ms
2016-12-19 10:44 - 2016-10-03 20:55 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{4a3fb119-4ba3-11e6-80cd-b8ca3aed6f7f}.TMContainer00000000000000000001.regtrans-ms
2016-12-19 10:44 - 2016-10-03 20:55 - 00065536 ___SH C:\WINDOWS\system32\config\COMPONENTS{4a3fb119-4ba3-11e6-80cd-b8ca3aed6f7f}.TM.blf
2016-12-19 10:36 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2016-12-18 18:19 - 2016-10-03 20:56 - 00000000 ____D C:\Users\Rodina\AppData\Local\Microsoft
2016-12-18 18:16 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local
2016-12-18 18:16 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local
2016-12-18 11:21 - 2014-09-03 13:33 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-18 11:19 - 2016-07-16 12:47 - 00000000 __SHD C:\WINDOWS\Installer
2016-12-18 11:14 - 2016-10-03 21:20 - 00003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-18 11:14 - 2016-10-03 21:20 - 00003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-18 11:14 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Tasks
2016-12-17 20:07 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\DriverStore
2016-12-17 20:07 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\CatRoot
2016-12-17 20:07 - 2014-08-27 08:52 - 00000000 ____D C:\Intel
2016-12-17 19:23 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\WinSxS
2016-12-17 15:48 - 2016-07-16 12:47 - 00000000 ___RD C:\Users\Default\Desktop
2016-12-17 15:48 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft
2016-12-17 15:48 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft
2016-12-17 15:46 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Desktop
2016-12-17 13:32 - 2014-10-28 18:45 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-17 13:32 - 2014-10-06 19:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-16 19:39 - 2016-12-04 11:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-12-16 19:33 - 2016-08-15 20:06 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-12-16 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-12-16 19:28 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-12-16 18:40 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\assembly
2016-12-16 18:22 - 2016-01-24 16:44 - 00000000 ____D C:\Users\Rodina\AppData\Local\Packages
2016-12-15 17:40 - 2016-07-16 07:04 - 00262144 _____ C:\Users\Default\NTUSER.DAT
2016-12-15 17:36 - 2016-10-03 20:50 - 00223784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-14 21:51 - 2016-10-03 20:49 - 00524288 ___SH C:\WINDOWS\system32\config\DRIVERS{4a3fb11f-4ba3-11e6-80cd-b8ca3aed6f7f}.TMContainer00000000000000000001.regtrans-ms
2016-12-14 21:51 - 2016-10-03 20:49 - 00065536 ___SH C:\WINDOWS\system32\config\DRIVERS{4a3fb11f-4ba3-11e6-80cd-b8ca3aed6f7f}.TM.blf
2016-12-14 21:50 - 2016-07-16 12:47 - 00000796 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-14 21:50 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-US
2016-12-14 21:50 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-US
2016-12-14 21:50 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Boot
2016-12-14 21:50 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-14 21:50 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppPatch
2016-12-14 21:50 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64
2016-12-14 20:55 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-14 20:49 - 2014-08-27 09:19 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-14 20:46 - 2014-08-27 09:19 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-14 18:26 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2016-12-12 00:56 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-11 17:06 - 2016-10-03 20:56 - 00524288 ___SH C:\Users\Admin\NTUSER.DAT{d95628cb-89aa-11e6-9ea9-8d1a52385715}.TMContainer00000000000000000002.regtrans-ms
2016-12-11 17:06 - 2016-10-03 20:56 - 00065536 ___SH C:\Users\Admin\NTUSER.DAT{d95628cb-89aa-11e6-9ea9-8d1a52385715}.TM.blf
2016-12-11 15:29 - 2016-10-04 17:33 - 00000174 ___SH C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-11 15:29 - 2016-10-03 20:56 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-11 15:29 - 2014-08-30 22:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-11 15:29 - 2014-08-27 14:25 - 00000402 ___SH C:\Users\Admin\Documents\desktop.ini
2016-12-11 15:29 - 2014-08-27 14:25 - 00000282 ___SH C:\Users\Admin\Downloads\desktop.ini
2016-12-11 15:29 - 2014-08-27 14:25 - 00000282 ___SH C:\Users\Admin\Desktop\desktop.ini
2016-12-11 15:29 - 2014-08-27 14:25 - 00000174 ___SH C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-11 15:29 - 2014-08-27 14:25 - 00000000 ___RD C:\Users\Admin\Searches
2016-12-11 15:29 - 2014-08-27 14:25 - 00000000 ___RD C:\Users\Admin\Contacts
2016-12-11 15:29 - 2014-08-27 14:25 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-11 15:29 - 2014-08-27 14:25 - 00000000 ___RD C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-11 15:29 - 2014-08-27 14:24 - 00000000 ___RD C:\Users\Admin\Videos
2016-12-11 15:29 - 2014-08-27 14:24 - 00000000 ___RD C:\Users\Admin\Saved Games
2016-12-11 15:29 - 2014-08-27 14:24 - 00000000 ___RD C:\Users\Admin\Pictures
2016-12-11 15:29 - 2014-08-27 14:24 - 00000000 ___RD C:\Users\Admin\Music
2016-12-11 15:29 - 2014-08-27 14:24 - 00000000 ___RD C:\Users\Admin\Links
2016-12-11 15:29 - 2014-08-27 14:24 - 00000000 ___RD C:\Users\Admin\Favorites
2016-12-11 13:55 - 2016-10-03 20:56 - 00524288 ___SH C:\Users\Rodina\NTUSER.DAT{d95628cb-89aa-11e6-9ea9-8d1a52385715}.TMContainer00000000000000000002.regtrans-ms
2016-12-11 13:55 - 2016-10-03 20:56 - 00524288 ___SH C:\Users\Rodina\NTUSER.DAT{d95628cb-89aa-11e6-9ea9-8d1a52385715}.TMContainer00000000000000000001.regtrans-ms
2016-12-11 13:55 - 2016-10-03 20:56 - 00065536 ___SH C:\Users\Rodina\NTUSER.DAT{d95628cb-89aa-11e6-9ea9-8d1a52385715}.TM.blf
2016-12-11 10:17 - 2016-10-10 09:37 - 00000174 ___SH C:\Users\Rodina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-11 10:17 - 2016-01-30 14:58 - 00000402 ___SH C:\Users\Rodina\Documents\desktop.ini
2016-12-11 10:17 - 2016-01-24 16:44 - 00000282 ___SH C:\Users\Rodina\Downloads\desktop.ini
2016-12-11 10:17 - 2016-01-24 16:44 - 00000282 ___SH C:\Users\Rodina\Desktop\desktop.ini
2016-12-11 10:17 - 2016-01-24 16:44 - 00000174 ___SH C:\Users\Rodina\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-11 10:17 - 2016-01-24 16:44 - 00000000 ___RD C:\Users\Rodina\Searches
2016-12-11 10:17 - 2016-01-24 16:44 - 00000000 ___RD C:\Users\Rodina\Contacts
2016-12-11 10:17 - 2016-01-24 16:44 - 00000000 ___RD C:\Users\Rodina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-11 10:17 - 2016-01-24 16:44 - 00000000 ___RD C:\Users\Rodina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Videos
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Saved Games
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Pictures
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Music
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Links
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Favorites
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Downloads
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Documents
2016-12-11 10:17 - 2016-01-24 16:43 - 00000000 ___RD C:\Users\Rodina\Desktop
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\wbem
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-10 18:58 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Internet Explorer
2016-12-10 18:58 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-12-10 18:58 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-10 18:58 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-10 18:58 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\servicing
2016-12-10 17:02 - 2016-07-16 12:42 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll

==================== Files in the root of some directories =======

2014-04-22 12:34 - 2014-04-22 12:34 - 118436235 _____ () C:\Program Files\openoffice1.cab
2014-04-22 12:32 - 2014-04-22 12:32 - 2306048 _____ () C:\Program Files\openoffice410.msi
2014-04-22 12:32 - 2014-04-22 12:32 - 0476160 _____ () C:\Program Files\setup.exe
2014-04-22 12:32 - 2014-04-22 12:32 - 0000279 _____ () C:\Program Files\setup.ini
2014-09-03 10:07 - 2014-09-03 10:07 - 0000017 _____ () C:\Users\Admin\AppData\Local\resmon.resmoncfg
2016-10-03 20:52 - 2016-10-03 20:52 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-12-31 08:47

==================== End of FRST.txt ============================

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 08 led 2017 17:44
od Rudy
FRST stačí. Otevřte poznámkový blok a zkopírujte do něj:
Start
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 09 led 2017 17:28
od katrops
Fix result of Farbar Recovery Scan Tool (x64) Version: 08-01-2017
Ran by Admin (09-01-2017 17:21:47) Run:1
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin & Rodina)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\DP45977C.lfl

EmptyTemp:
End
*****************

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key removed successfully
HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key removed successfully
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key not found.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1675653 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35897442 B
Java, Flash, Steam htmlcache => 492 B
Windows/system/drivers => 12783486 B
Edge => 13484078 B
Chrome => 958464 B
Firefox => 365330200 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 7048 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3266 B
NetworkService => 385024 B
Admin => 80954819 B
Rodina => 3347365 B

RecycleBin => 0 B
EmptyTemp: => 491 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:22:24 ====

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 09 led 2017 17:29
od Rudy
Smazáno. Log je již OK.

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 09 led 2017 17:32
od katrops
To je teda rychlovka. Díky moc.

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 09 led 2017 17:37
od Rudy
Když jsou tam v podstatě jen zbytečnosti, jde to rychle. :) Nemáte zač!

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 09 led 2017 17:40
od katrops
Jen ještě co s tím na ploše ? Programy ADW cleaner a FRST si můžu nechat na příště ?
Ten ADW cleaner můžu na čištění používat i sám ?
Ty tři logy v poznámkovém bloku můžu smazat ?

Re: prosím o preventivní kontrolu RSIT logu

Napsal: 09 led 2017 19:03
od Rudy
Můžete, ale za čas jistě budou nové verze. Logy smaozřejmě můžete smazat.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz