Prosím o kontrolu PC
Napsal: 03 úno 2018 15:58
Dobrý den
poprosím vás o kontrolu Pc zde jsou logy
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018
Ran by Mara (administrator) on DESKTOP-2SQL7M7 (03-02-2018 15:35:53)
Running from C:\Users\Mara\Downloads
Loaded Profiles: Mara (Available Profiles: Mara)
Platform: Windows 10 Home Version 1703 15063.850 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.724_none_9e8a868b2d8a538d\TiWorker.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\updater.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\mshta.exe
(© 2015 Microsoft Corporation) C:\Users\Mara\AppData\Local\Microsoft\BingSvc\BingSvc.exe
() C:\Users\Mara\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Mara\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe
(Microsoft Corporation) C:\Program Files\rempl\remsh.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\UNP\UNPCampaignManager.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\updater.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1802424 2015-11-19] (NVIDIA Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [BingSvc] => C:\Users\Mara\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Mara\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Mara\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-03] (Skype Technologies S.A.)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\MountPoints2: {94c6ea77-8cd8-11e7-a590-4061860b4475} - "F:\OnePlus_setup.exe" /s
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 80.87.176.1 8.8.8.8
Tcpip\..\Interfaces\{12fd5212-26d1-4433-98bb-5a863957f9c8}: [DhcpNameServer] 80.87.176.1 8.8.8.8
Tcpip\..\Interfaces\{69d4874f-62b9-4546-9c7c-26375b8b0192}: [DhcpNameServer] 80.87.176.1 8.8.8.8
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {1A108CC4-3B5A-4DE5-A8F6-AF1078A2E2BE} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {513CF2CE-5C7A-4330-8FF6-1B1854D809BE} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {75C0BEDE-59C6-44C4-AC09-32DAB9706C30} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {79856514-7C12-4ECA-A2A8-98614592AAB4} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {8A968FAF-DEA1-4314-B820-5DC06FB4AD6B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {B1F19DE6-4A48-4C3C-B7A8-44AC3DC78305} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxps://www.amazon.com/gp/bit/amazonserp/ref=bi ... earchTerms}
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10301__160902__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {E198FD3B-D854-4E49-9C2D-EE760C9CE4E6} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {ECCCB144-17A7-44F6-ABEF-A76885934135} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {F6771896-BEF3-424E-9673-3EAB36DB543E} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
BHO: Amazon Assistant -> {0ddcea2a-7b00-4349-8acb-af7ba6da251f} -> C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
BHO-x32: Amazon Assistant -> {0ddcea2a-7b00-4349-8acb-af7ba6da251f} -> C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-15] (Oracle Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
FireFox:
========
FF DefaultProfile: 66h6usma.default
FF ProfilePath: C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default [2018-02-03]
FF Homepage: Mozilla\Firefox\Profiles\66h6usma.default -> hxxps://www.seznam.cz/
FF NewTab: Mozilla\Firefox\Profiles\66h6usma.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10301__160902__yaff
FF Extension: (Bing Search) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-08-07] [Legacy]
FF Extension: (NoiaButtons) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\NoiaButtons@ArisT2_Noia4dev.xpi [2017-09-14] [Legacy]
FF Extension: (Noia Fox options) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\NoiaFoxoption@davidvincent.tld.xpi [2016-05-17] [Legacy]
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2017-01-17] [Legacy]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\sko-extension@firma.seznam.cz [2017-11-21]
FF Extension: (Aeon Colors) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{1DEAE5AA-E19E-458b-9C8C-73CB651B9A58}.xpi [2015-10-07] [Legacy] [not signed]
FF Extension: (Open With Opera) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{60ac7b3b-86c0-4bca-8ba2-fb25abb46bef}.xpi [2017-10-07]
FF Extension: (Noia Fox) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi [2015-08-21] [Legacy]
FF Extension: (Aeon Jumbo) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{C8E400E3-44BC-4e78-8C17-8C48E74C67F4}.xpi [2015-10-07] [Legacy] [not signed]
FF Extension: (Adblock Plus) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-01-31]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-11-21]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-10-25]
FF Extension: (Firefox 2, the theme, reloaded) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{fd2f951f-77ea-4938-9493-0c892c027a13}.xpi [2017-10-23] [Legacy]
FF Extension: (Disable Crash Auto Submit) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\features\{4a8941cc-5f5f-4c51-b274-b8af61e63a00}\disable-crash-autosubmit@mozilla.org.xpi [2018-01-31] [Legacy]
FF SearchPlugin: C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\searchplugins\yahoo-lavasoft.xml [2017-09-25]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-09-02] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2017-12-15] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2017-12-15] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-15] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [2016-08-05] (pdfforge GmbH)
Chrome:
=======
CHR HomePage: Default -> msn.com
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC ... earchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__ ... earchTerms}
CHR Profile: C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default [2018-02-03]
CHR Extension: (Prezentace) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-15]
CHR Extension: (Dokumenty) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-15]
CHR Extension: (Disk Google) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-18]
CHR Extension: (Seznam pro Chrome - Email) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-11-21]
CHR Extension: (Seznam pro Chrome - Esko-) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-11-21]
CHR Extension: (YouTube) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-18]
CHR Extension: (Bing) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-11-21]
CHR Extension: (Tabulky) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-08]
CHR Extension: (Seznam pro Chrome - Esko) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-11-21]
CHR Extension: (Gmail) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-03]
CHR HKU\S-1-5-21-772858087-439378103-3593226653-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Amazon Assistant Service; C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe [105136 2017-10-04] ()
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2438880 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [972056 2016-05-18] (© pdfforge GmbH.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-02-01] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-02-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-02-01] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2018-02-01] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-02-01] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-02-03 15:35 - 2018-02-03 15:37 - 000020158 _____ C:\Users\Mara\Downloads\FRST.txt
2018-02-03 15:35 - 2018-02-03 15:35 - 000000000 ____D C:\FRST
2018-02-03 15:34 - 2018-02-03 15:35 - 002393088 _____ (Farbar) C:\Users\Mara\Downloads\FRST64.exe
2018-02-03 15:23 - 2018-02-03 15:23 - 000000000 ___HD C:\OneDriveTemp
2018-02-03 14:20 - 2018-02-03 14:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-01-31 05:29 - 2018-01-01 07:03 - 000891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-31 05:29 - 2018-01-01 03:27 - 000074648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-01-31 05:29 - 2018-01-01 03:26 - 000107416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-31 05:29 - 2018-01-01 03:25 - 001065608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-31 05:29 - 2018-01-01 03:25 - 000900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-31 05:29 - 2018-01-01 03:24 - 008345496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-31 05:29 - 2018-01-01 03:24 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-31 05:29 - 2018-01-01 03:24 - 001188544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-31 05:29 - 2018-01-01 03:24 - 000135576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-01-31 05:29 - 2018-01-01 03:24 - 000102808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2018-01-31 05:29 - 2018-01-01 03:24 - 000052632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys
2018-01-31 05:29 - 2018-01-01 03:23 - 000456088 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-31 05:29 - 2018-01-01 03:22 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-31 05:29 - 2018-01-01 03:22 - 001194784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-31 05:29 - 2018-01-01 03:22 - 000181912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-31 05:29 - 2018-01-01 03:22 - 000119704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2018-01-31 05:29 - 2018-01-01 03:21 - 000587160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-31 05:29 - 2018-01-01 03:20 - 000036760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000730008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000546712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000164760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000047512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2018-01-31 05:29 - 2018-01-01 03:18 - 000110600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-01-31 05:29 - 2018-01-01 03:18 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-31 05:29 - 2018-01-01 03:16 - 002672024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-31 05:29 - 2018-01-01 03:16 - 001107352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-31 05:29 - 2018-01-01 03:16 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-31 05:29 - 2018-01-01 03:15 - 001396680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-31 05:29 - 2018-01-01 03:15 - 000083352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-31 05:29 - 2018-01-01 03:14 - 000159640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-31 05:29 - 2018-01-01 03:09 - 000142744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-31 05:29 - 2018-01-01 03:09 - 000070224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-01-31 05:29 - 2018-01-01 03:08 - 001325960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-31 05:29 - 2018-01-01 03:07 - 000583688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2018-01-31 05:29 - 2018-01-01 03:03 - 000627584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-01-31 05:29 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-31 05:29 - 2018-01-01 02:52 - 023680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-31 05:29 - 2018-01-01 02:52 - 000195768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-01-31 05:29 - 2018-01-01 02:50 - 000787704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-31 05:29 - 2018-01-01 02:49 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-31 05:29 - 2018-01-01 02:48 - 005828768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-01-31 05:29 - 2018-01-01 02:48 - 002167320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-31 05:29 - 2018-01-01 02:48 - 000073896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 001998416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 000433888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 000186520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshhyperv.dll
2018-01-31 05:29 - 2018-01-01 02:46 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-31 05:29 - 2018-01-01 02:46 - 000087352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-01-31 05:29 - 2018-01-01 02:45 - 020374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-31 05:29 - 2018-01-01 02:45 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-31 05:29 - 2018-01-01 02:43 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-31 05:29 - 2018-01-01 02:42 - 000480912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-31 05:29 - 2018-01-01 02:42 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-01-31 05:29 - 2018-01-01 02:41 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-01-31 05:29 - 2018-01-01 02:41 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-01-31 05:29 - 2018-01-01 02:40 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2018-01-31 05:29 - 2018-01-01 02:40 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-01-31 05:29 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2018-01-31 05:29 - 2018-01-01 02:40 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-01-31 05:29 - 2018-01-01 02:40 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-01-31 05:29 - 2018-01-01 02:39 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-31 05:29 - 2018-01-01 02:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-01-31 05:29 - 2018-01-01 02:39 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-01-31 05:29 - 2018-01-01 02:39 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2018-01-31 05:29 - 2018-01-01 02:38 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-31 05:29 - 2018-01-01 02:38 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 023683072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-01-31 05:29 - 2018-01-01 02:37 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-31 05:29 - 2018-01-01 02:37 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-31 05:29 - 2018-01-01 02:37 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2018-01-31 05:29 - 2018-01-01 02:34 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 001177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ssdpapi.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-31 05:29 - 2018-01-01 02:32 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-31 05:29 - 2018-01-01 02:32 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2018-01-31 05:29 - 2018-01-01 02:32 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3dlg.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-01-31 05:29 - 2018-01-01 02:31 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-31 05:29 - 2018-01-01 02:31 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 020514304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 012803584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 004719104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-01-31 05:29 - 2018-01-01 02:30 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 006249472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 000946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 005964288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-31 05:29 - 2018-01-01 02:26 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-01-31 05:29 - 2018-01-01 02:26 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2018-01-31 05:29 - 2018-01-01 02:25 - 002010112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-31 05:29 - 2018-01-01 02:24 - 003651072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2018-01-31 05:29 - 2018-01-01 02:23 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-31 05:29 - 2018-01-01 02:23 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-01-31 05:29 - 2018-01-01 02:22 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2018-01-31 05:29 - 2018-01-01 02:21 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2018-01-31 05:29 - 2018-01-01 02:21 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvvmtransport.dll
2018-01-31 05:29 - 2018-01-01 02:20 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2018-01-31 05:29 - 2018-01-01 02:20 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2018-01-31 05:29 - 2018-01-01 02:19 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdPnp.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmiprop.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWNet.dll
2018-01-31 05:29 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2018-01-31 05:29 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-01-31 05:29 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-01-31 05:29 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-01-31 05:29 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-01-31 05:29 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-01-31 05:29 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-01-31 05:29 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-01-31 05:29 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2018-01-31 05:29 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2018-01-31 05:29 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2018-01-31 05:29 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2018-01-31 05:29 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2018-01-31 05:29 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2018-01-31 05:29 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-01-31 05:29 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-31 05:29 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-01-31 05:29 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-01-31 05:29 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 001021336 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000751576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000544152 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000264536 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000074648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-01-31 05:28 - 2018-01-01 03:27 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000022800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumbase.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000022208 _____ (Microsoft Corporation) C:\WINDOWS\system32\IumSdk.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000020376 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000015632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumdll.dll
2018-01-31 05:28 - 2018-01-01 03:24 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-31 05:28 - 2018-01-01 03:24 - 000105880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2018-01-31 05:28 - 2018-01-01 03:24 - 000033688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys
2018-01-31 05:28 - 2018-01-01 03:23 - 000386456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-31 05:28 - 2018-01-01 03:22 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-31 05:28 - 2018-01-01 03:21 - 000328616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-31 05:28 - 2018-01-01 03:21 - 000063896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-31 05:28 - 2018-01-01 03:20 - 007319912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-31 05:28 - 2018-01-01 03:20 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-31 05:28 - 2018-01-01 03:20 - 000524760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-31 05:28 - 2018-01-01 03:20 - 000459160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-01-31 05:28 - 2018-01-01 03:19 - 002466392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-01-31 05:28 - 2018-01-01 03:19 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-31 05:28 - 2018-01-01 03:19 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000643704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000282520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000247472 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2018-01-31 05:28 - 2018-01-01 03:19 - 000184728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000118680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000082328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000054168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vdrvroot.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000031640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000018672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshhyperv.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 021354736 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 001146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-01-31 05:28 - 2018-01-01 03:18 - 000966040 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2018-01-31 05:28 - 2018-01-01 03:18 - 000822680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2018-01-31 05:28 - 2018-01-01 03:18 - 000316240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 000175800 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-01-31 05:28 - 2018-01-01 03:17 - 000154520 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2018-01-31 05:28 - 2018-01-01 03:15 - 000644696 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-31 05:28 - 2018-01-01 03:10 - 000100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2018-01-31 05:28 - 2018-01-01 03:09 - 000434072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-31 05:28 - 2018-01-01 03:09 - 000114584 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-31 05:28 - 2018-01-01 02:44 - 000411184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110_win.dll
2018-01-31 05:28 - 2018-01-01 02:43 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-31 05:28 - 2018-01-01 02:42 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-31 05:28 - 2018-01-01 02:42 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-01-31 05:28 - 2018-01-01 02:42 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-01-31 05:28 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysntfy.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\nrpsrv.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys
2018-01-31 05:28 - 2018-01-01 02:40 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\container_xml.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\efslsaext.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-01-31 05:28 - 2018-01-01 02:40 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys
2018-01-31 05:28 - 2018-01-01 02:40 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimeprovider.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2018-01-31 05:28 - 2018-01-01 02:40 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2018-01-31 05:28 - 2018-01-01 02:39 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2018-01-31 05:28 - 2018-01-01 02:39 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2018-01-31 05:28 - 2018-01-01 02:39 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2018-01-31 05:28 - 2018-01-01 02:39 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2018-01-31 05:28 - 2018-01-01 02:38 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2018-01-31 05:28 - 2018-01-01 02:38 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2018-01-31 05:28 - 2018-01-01 02:38 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-01-31 05:28 - 2018-01-01 02:38 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2018-01-31 05:28 - 2018-01-01 02:35 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2018-01-31 05:28 - 2018-01-01 02:34 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2018-01-31 05:28 - 2018-01-01 02:34 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2018-01-31 05:28 - 2018-01-01 02:33 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2018-01-31 05:28 - 2018-01-01 02:33 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2018-01-31 05:28 - 2018-01-01 02:32 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 007339520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 001398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-31 05:28 - 2018-01-01 02:30 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 002426368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 001460736 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2018-01-31 05:28 - 2018-01-01 02:28 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-31 05:28 - 2018-01-01 02:26 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-31 05:28 - 2018-01-01 02:26 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-31 05:28 - 2018-01-01 02:25 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2018-01-31 05:28 - 2018-01-01 02:25 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2018-01-31 05:28 - 2018-01-01 02:25 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys
2018-01-31 05:28 - 2018-01-01 02:24 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdPnp.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-31 05:28 - 2018-01-01 02:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWNet.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiprop.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys
2018-01-31 05:28 - 2018-01-01 02:18 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfhost.exe
2018-01-31 05:28 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-31 05:28 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-01-31 05:28 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-01-31 05:28 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2018-01-31 05:28 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2018-01-31 05:28 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2018-01-31 05:28 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2018-01-31 05:28 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2018-01-31 05:28 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-01-31 05:28 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-31 05:28 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2018-01-31 05:28 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-31 05:28 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-01-31 05:28 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-01-31 05:28 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-01-31 05:28 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-01-31 05:28 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2018-01-31 05:28 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-01-31 05:28 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-01-31 05:12 - 2018-01-31 05:14 - 000000000 ___HD C:\$WINDOWS.~BT
2018-01-30 15:28 - 2018-02-01 12:21 - 000000000 ____D C:\Program Files\rempl
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-02-03 15:38 - 2017-02-14 23:36 - 000010476 _____ C:\Users\Mara\AppData\Local\FSDownloader.err
2018-02-03 15:38 - 2017-02-14 23:29 - 000001088 _____ C:\Users\Mara\AppData\Local\FSDownloader.nast
2018-02-03 15:35 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2018-02-03 15:33 - 2017-08-04 12:52 - 000004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{28B4EFD2-6DFB-4745-9634-36A22BCC91BB}
2018-02-03 15:27 - 2017-08-04 12:49 - 002284608 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-03 15:27 - 2017-03-20 05:43 - 001019542 _____ C:\WINDOWS\system32\perfh005.dat
2018-02-03 15:27 - 2017-03-20 05:43 - 000235512 _____ C:\WINDOWS\system32\perfc005.dat
2018-02-03 15:27 - 2016-12-11 19:33 - 000000000 ____D C:\Users\Mara\AppData\LocalLow\Mozilla
2018-02-03 15:27 - 2016-10-06 13:49 - 000000000 ____D C:\Users\Mara\AppData\Roaming\Seznam.cz
2018-02-03 15:27 - 2016-07-18 15:29 - 000000000 ____D C:\Users\Mara\AppData\Roaming\Mozilla
2018-02-03 15:26 - 2017-05-09 09:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-02-03 15:26 - 2016-07-18 15:29 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-02-03 15:26 - 2016-07-18 15:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-03 15:25 - 2016-08-07 19:37 - 000000000 ____D C:\Users\Mara\AppData\Roaming\Skype
2018-02-03 15:24 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-02-03 15:23 - 2016-07-18 14:34 - 000000000 ___RD C:\Users\Mara\OneDrive
2018-02-03 14:21 - 2017-08-04 12:34 - 000000000 ____D C:\Users\Mara
2018-02-02 10:48 - 2017-08-04 12:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-02-02 10:48 - 2017-08-04 12:29 - 000307776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-02 10:47 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2018-02-02 10:42 - 2016-02-13 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-02-02 10:36 - 2017-03-18 12:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-02-02 10:35 - 2017-06-14 00:18 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2018-02-02 10:35 - 2017-03-18 22:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-02-02 10:34 - 2017-03-18 22:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-02-02 10:34 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-02-01 18:44 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-02-01 18:44 - 2016-07-18 18:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-02-01 18:40 - 2017-10-12 09:26 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-01 18:40 - 2016-07-18 18:41 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-31 05:17 - 2017-08-01 13:07 - 000000000 ___DC C:\WINDOWS\Panther
2018-01-30 15:26 - 2016-07-18 17:56 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-01-30 15:23 - 2017-08-04 12:52 - 000003372 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-772858087-439378103-3593226653-1001
2018-01-30 15:23 - 2016-07-18 14:34 - 000002384 _____ C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Files in the root of some directories =======
2017-02-14 23:36 - 2018-02-03 15:38 - 000010476 _____ () C:\Users\Mara\AppData\Local\FSDownloader.err
2017-02-14 23:29 - 2018-02-03 15:38 - 000001088 _____ () C:\Users\Mara\AppData\Local\FSDownloader.nast
2016-10-06 13:39 - 2016-10-06 13:39 - 000032038 _____ () C:\Users\Mara\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico
Some files in TEMP:
====================
2017-12-13 12:03 - 2017-12-13 12:04 - 058818504 _____ (Skype Technologies S.A.) C:\Users\Mara\AppData\Local\Temp\SkypeSetup.exe
2017-11-21 09:07 - 2017-12-15 14:27 - 000534528 _____ () C:\Users\Mara\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-11-21 11:08
==================== End of FRST.txt ============================
dekuji
poprosím vás o kontrolu Pc zde jsou logy
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018
Ran by Mara (administrator) on DESKTOP-2SQL7M7 (03-02-2018 15:35:53)
Running from C:\Users\Mara\Downloads
Loaded Profiles: Mara (Available Profiles: Mara)
Platform: Windows 10 Home Version 1703 15063.850 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.724_none_9e8a868b2d8a538d\TiWorker.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.SmartMonitor.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\updater.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\mshta.exe
(© 2015 Microsoft Corporation) C:\Users\Mara\AppData\Local\Microsoft\BingSvc\BingSvc.exe
() C:\Users\Mara\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Mara\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\AmznSearchProtect.exe
(Microsoft Corporation) C:\Program Files\rempl\remsh.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\UNP\UNPCampaignManager.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Distromatic) C:\Program Files (x86)\Amazon Browser Settings\updater.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1802424 2015-11-19] (NVIDIA Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [BingSvc] => C:\Users\Mara\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Mara\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Mara\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-03] (Skype Technologies S.A.)
HKU\S-1-5-21-772858087-439378103-3593226653-1001\...\MountPoints2: {94c6ea77-8cd8-11e7-a590-4061860b4475} - "F:\OnePlus_setup.exe" /s
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 80.87.176.1 8.8.8.8
Tcpip\..\Interfaces\{12fd5212-26d1-4433-98bb-5a863957f9c8}: [DhcpNameServer] 80.87.176.1 8.8.8.8
Tcpip\..\Interfaces\{69d4874f-62b9-4546-9c7c-26375b8b0192}: [DhcpNameServer] 80.87.176.1 8.8.8.8
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {1A108CC4-3B5A-4DE5-A8F6-AF1078A2E2BE} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {513CF2CE-5C7A-4330-8FF6-1B1854D809BE} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {75C0BEDE-59C6-44C4-AC09-32DAB9706C30} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {79856514-7C12-4ECA-A2A8-98614592AAB4} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {8A968FAF-DEA1-4314-B820-5DC06FB4AD6B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {B1F19DE6-4A48-4C3C-B7A8-44AC3DC78305} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxps://www.amazon.com/gp/bit/amazonserp/ref=bi ... earchTerms}
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10301__160902__yaie&p={searchTerms}
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {E198FD3B-D854-4E49-9C2D-EE760C9CE4E6} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {ECCCB144-17A7-44F6-ABEF-A76885934135} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-772858087-439378103-3593226653-1001 -> {F6771896-BEF3-424E-9673-3EAB36DB543E} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
BHO: Amazon Assistant -> {0ddcea2a-7b00-4349-8acb-af7ba6da251f} -> C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
BHO-x32: Amazon Assistant -> {0ddcea2a-7b00-4349-8acb-af7ba6da251f} -> C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-15] (Oracle Corporation)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-06-26] (Intel Security)
Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-06-26] (Intel Security)
FireFox:
========
FF DefaultProfile: 66h6usma.default
FF ProfilePath: C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default [2018-02-03]
FF Homepage: Mozilla\Firefox\Profiles\66h6usma.default -> hxxps://www.seznam.cz/
FF NewTab: Mozilla\Firefox\Profiles\66h6usma.default -> hxxps://search.yahoo.com/yhs/web?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__hp_WCYID10301__160902__yaff
FF Extension: (Bing Search) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-08-07] [Legacy]
FF Extension: (NoiaButtons) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\NoiaButtons@ArisT2_Noia4dev.xpi [2017-09-14] [Legacy]
FF Extension: (Noia Fox options) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\NoiaFoxoption@davidvincent.tld.xpi [2016-05-17] [Legacy]
FF Extension: (NewScrollbars (aka NoiaScrollbars)) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\NoiaScrollbars@ArisT2_Noia4dev.xpi [2017-01-17] [Legacy]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\sko-extension@firma.seznam.cz [2017-11-21]
FF Extension: (Aeon Colors) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{1DEAE5AA-E19E-458b-9C8C-73CB651B9A58}.xpi [2015-10-07] [Legacy] [not signed]
FF Extension: (Open With Opera) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{60ac7b3b-86c0-4bca-8ba2-fb25abb46bef}.xpi [2017-10-07]
FF Extension: (Noia Fox) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi [2015-08-21] [Legacy]
FF Extension: (Aeon Jumbo) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{C8E400E3-44BC-4e78-8C17-8C48E74C67F4}.xpi [2015-10-07] [Legacy] [not signed]
FF Extension: (Adblock Plus) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-01-31]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-11-21]
FF Extension: (Seznam pro Firefox - Email) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2017-10-25]
FF Extension: (Firefox 2, the theme, reloaded) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\Extensions\{fd2f951f-77ea-4938-9493-0c892c027a13}.xpi [2017-10-23] [Legacy]
FF Extension: (Disable Crash Auto Submit) - C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\features\{4a8941cc-5f5f-4c51-b274-b8af61e63a00}\disable-crash-autosubmit@mozilla.org.xpi [2018-01-31] [Legacy]
FF SearchPlugin: C:\Users\Mara\AppData\Roaming\Mozilla\Firefox\Profiles\66h6usma.default\searchplugins\yahoo-lavasoft.xml [2017-09-25]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-09-02] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2017-12-15] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2017-12-15] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-15] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [2016-08-05] (pdfforge GmbH)
Chrome:
=======
CHR HomePage: Default -> msn.com
CHR NewTab: Default -> Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC ... earchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__ ... earchTerms}
CHR Profile: C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default [2018-02-03]
CHR Extension: (Prezentace) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-15]
CHR Extension: (Dokumenty) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-15]
CHR Extension: (Disk Google) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-18]
CHR Extension: (Seznam pro Chrome - Email) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-11-21]
CHR Extension: (Seznam pro Chrome - Esko-) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-11-21]
CHR Extension: (YouTube) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-18]
CHR Extension: (Bing) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-11-21]
CHR Extension: (Tabulky) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-08]
CHR Extension: (Seznam pro Chrome - Esko) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-11-21]
CHR Extension: (Gmail) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-02-03]
CHR HKU\S-1-5-21-772858087-439378103-3593226653-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Amazon Assistant Service; C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe [105136 2017-10-04] ()
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2438880 2016-08-05] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [1038048 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Creator; C:\Program Files\PDF Architect 4\creator-ws.exe [851168 2016-08-05] (pdfforge GmbH)
R2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [972056 2016-05-18] (© pdfforge GmbH.)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2017-06-26] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2017-06-26] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2017-06-26] (McAfee, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\NisSrv.exe [356168 2018-02-01] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.18011-0\MsMpEng.exe [105792 2018-02-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2018-02-01] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2018-02-01] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2018-02-01] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-02-03 15:35 - 2018-02-03 15:37 - 000020158 _____ C:\Users\Mara\Downloads\FRST.txt
2018-02-03 15:35 - 2018-02-03 15:35 - 000000000 ____D C:\FRST
2018-02-03 15:34 - 2018-02-03 15:35 - 002393088 _____ (Farbar) C:\Users\Mara\Downloads\FRST64.exe
2018-02-03 15:23 - 2018-02-03 15:23 - 000000000 ___HD C:\OneDriveTemp
2018-02-03 14:20 - 2018-02-03 14:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-01-31 05:29 - 2018-01-01 07:03 - 000891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-01-31 05:29 - 2018-01-01 03:27 - 000074648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-01-31 05:29 - 2018-01-01 03:26 - 000107416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-01-31 05:29 - 2018-01-01 03:25 - 001065608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-31 05:29 - 2018-01-01 03:25 - 000900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-31 05:29 - 2018-01-01 03:24 - 008345496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-31 05:29 - 2018-01-01 03:24 - 002327448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-31 05:29 - 2018-01-01 03:24 - 001188544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-31 05:29 - 2018-01-01 03:24 - 000135576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-01-31 05:29 - 2018-01-01 03:24 - 000102808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2018-01-31 05:29 - 2018-01-01 03:24 - 000052632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys
2018-01-31 05:29 - 2018-01-01 03:23 - 000456088 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-31 05:29 - 2018-01-01 03:22 - 001239448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-01-31 05:29 - 2018-01-01 03:22 - 001194784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-31 05:29 - 2018-01-01 03:22 - 000181912 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2018-01-31 05:29 - 2018-01-01 03:22 - 000119704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2018-01-31 05:29 - 2018-01-01 03:21 - 000587160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-01-31 05:29 - 2018-01-01 03:20 - 000036760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000730008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000546712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000164760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000047512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2018-01-31 05:29 - 2018-01-01 03:19 - 000027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2018-01-31 05:29 - 2018-01-01 03:18 - 000110600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-01-31 05:29 - 2018-01-01 03:18 - 000057752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-31 05:29 - 2018-01-01 03:16 - 002672024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-31 05:29 - 2018-01-01 03:16 - 001107352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-31 05:29 - 2018-01-01 03:16 - 000610712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-31 05:29 - 2018-01-01 03:15 - 001396680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-31 05:29 - 2018-01-01 03:15 - 000083352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-01-31 05:29 - 2018-01-01 03:14 - 000159640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2018-01-31 05:29 - 2018-01-01 03:09 - 000142744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2018-01-31 05:29 - 2018-01-01 03:09 - 000070224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-01-31 05:29 - 2018-01-01 03:08 - 001325960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-31 05:29 - 2018-01-01 03:07 - 000583688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp110_win.dll
2018-01-31 05:29 - 2018-01-01 03:03 - 000627584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-01-31 05:29 - 2018-01-01 03:03 - 000311704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-31 05:29 - 2018-01-01 02:52 - 023680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-01-31 05:29 - 2018-01-01 02:52 - 000195768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2018-01-31 05:29 - 2018-01-01 02:50 - 000787704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-31 05:29 - 2018-01-01 02:49 - 000267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-31 05:29 - 2018-01-01 02:48 - 005828768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-01-31 05:29 - 2018-01-01 02:48 - 002167320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-31 05:29 - 2018-01-01 02:48 - 000073896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wwapi.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 001998416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 000433888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 000186520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2018-01-31 05:29 - 2018-01-01 02:47 - 000016592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshhyperv.dll
2018-01-31 05:29 - 2018-01-01 02:46 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-31 05:29 - 2018-01-01 02:46 - 000087352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-01-31 05:29 - 2018-01-01 02:45 - 020374424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-31 05:29 - 2018-01-01 02:45 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-31 05:29 - 2018-01-01 02:43 - 000558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-31 05:29 - 2018-01-01 02:42 - 000480912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-31 05:29 - 2018-01-01 02:42 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2018-01-31 05:29 - 2018-01-01 02:41 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2018-01-31 05:29 - 2018-01-01 02:41 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-01-31 05:29 - 2018-01-01 02:40 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2018-01-31 05:29 - 2018-01-01 02:40 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-01-31 05:29 - 2018-01-01 02:40 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2018-01-31 05:29 - 2018-01-01 02:40 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2018-01-31 05:29 - 2018-01-01 02:40 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RfxVmt.sys
2018-01-31 05:29 - 2018-01-01 02:40 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2018-01-31 05:29 - 2018-01-01 02:39 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2018-01-31 05:29 - 2018-01-01 02:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-01-31 05:29 - 2018-01-01 02:39 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2018-01-31 05:29 - 2018-01-01 02:39 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2018-01-31 05:29 - 2018-01-01 02:38 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-31 05:29 - 2018-01-01 02:38 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2018-01-31 05:29 - 2018-01-01 02:38 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsisvc.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 023683072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-01-31 05:29 - 2018-01-01 02:37 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2018-01-31 05:29 - 2018-01-01 02:37 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-31 05:29 - 2018-01-01 02:37 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-31 05:29 - 2018-01-01 02:37 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-01-31 05:29 - 2018-01-01 02:36 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2018-01-31 05:29 - 2018-01-01 02:35 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\virtdisk.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2018-01-31 05:29 - 2018-01-01 02:34 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2018-01-31 05:29 - 2018-01-01 02:34 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 001177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-31 05:29 - 2018-01-01 02:33 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ssdpapi.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-31 05:29 - 2018-01-01 02:32 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-31 05:29 - 2018-01-01 02:32 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2018-01-31 05:29 - 2018-01-01 02:32 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2018-01-31 05:29 - 2018-01-01 02:32 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3dlg.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-01-31 05:29 - 2018-01-01 02:31 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-31 05:29 - 2018-01-01 02:31 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2018-01-31 05:29 - 2018-01-01 02:31 - 000173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 020514304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 019337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 012803584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 004719104 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-01-31 05:29 - 2018-01-01 02:30 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-31 05:29 - 2018-01-01 02:30 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2018-01-31 05:29 - 2018-01-01 02:29 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2018-01-31 05:29 - 2018-01-01 02:28 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 006249472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 000946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-31 05:29 - 2018-01-01 02:27 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 005964288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-31 05:29 - 2018-01-01 02:26 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-01-31 05:29 - 2018-01-01 02:26 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvvmtransport.dll
2018-01-31 05:29 - 2018-01-01 02:26 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys
2018-01-31 05:29 - 2018-01-01 02:25 - 002010112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-31 05:29 - 2018-01-01 02:24 - 003651072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-31 05:29 - 2018-01-01 02:24 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2018-01-31 05:29 - 2018-01-01 02:23 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-31 05:29 - 2018-01-01 02:23 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2018-01-31 05:29 - 2018-01-01 02:22 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2018-01-31 05:29 - 2018-01-01 02:21 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2018-01-31 05:29 - 2018-01-01 02:21 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvvmtransport.dll
2018-01-31 05:29 - 2018-01-01 02:20 - 000708096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2018-01-31 05:29 - 2018-01-01 02:20 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2018-01-31 05:29 - 2018-01-01 02:19 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscproxystub.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdPnp.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmiprop.dll
2018-01-31 05:29 - 2018-01-01 02:18 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWNet.dll
2018-01-31 05:29 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2018-01-31 05:29 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-01-31 05:29 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-01-31 05:29 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-01-31 05:29 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-01-31 05:29 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-01-31 05:29 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-01-31 05:29 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-01-31 05:29 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2018-01-31 05:29 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2018-01-31 05:29 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2018-01-31 05:29 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2018-01-31 05:29 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2018-01-31 05:29 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2018-01-31 05:29 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-01-31 05:29 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-01-31 05:29 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-01-31 05:29 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-01-31 05:29 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 001021336 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000751576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000544152 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000382864 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000264536 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2018-01-31 05:28 - 2018-01-01 03:27 - 000074648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-01-31 05:28 - 2018-01-01 03:27 - 000066712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000022800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumbase.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000022208 _____ (Microsoft Corporation) C:\WINDOWS\system32\IumSdk.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000020376 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2018-01-31 05:28 - 2018-01-01 03:27 - 000015632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumdll.dll
2018-01-31 05:28 - 2018-01-01 03:24 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2018-01-31 05:28 - 2018-01-01 03:24 - 000105880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2018-01-31 05:28 - 2018-01-01 03:24 - 000033688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys
2018-01-31 05:28 - 2018-01-01 03:23 - 000386456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-31 05:28 - 2018-01-01 03:22 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-31 05:28 - 2018-01-01 03:21 - 000328616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-31 05:28 - 2018-01-01 03:21 - 000063896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
2018-01-31 05:28 - 2018-01-01 03:20 - 007319912 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-01-31 05:28 - 2018-01-01 03:20 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-31 05:28 - 2018-01-01 03:20 - 000524760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2018-01-31 05:28 - 2018-01-01 03:20 - 000459160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2018-01-31 05:28 - 2018-01-01 03:19 - 002466392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-01-31 05:28 - 2018-01-01 03:19 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-31 05:28 - 2018-01-01 03:19 - 000714648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000643704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000282520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000247472 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2018-01-31 05:28 - 2018-01-01 03:19 - 000184728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000118680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000082328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000054168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vdrvroot.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000031640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-01-31 05:28 - 2018-01-01 03:19 - 000018672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshhyperv.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 021354736 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 001146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-01-31 05:28 - 2018-01-01 03:18 - 000966040 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2018-01-31 05:28 - 2018-01-01 03:18 - 000822680 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2018-01-31 05:28 - 2018-01-01 03:18 - 000316240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 000175800 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-01-31 05:28 - 2018-01-01 03:18 - 000059800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-01-31 05:28 - 2018-01-01 03:17 - 000154520 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2018-01-31 05:28 - 2018-01-01 03:15 - 000644696 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-31 05:28 - 2018-01-01 03:10 - 000100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2018-01-31 05:28 - 2018-01-01 03:09 - 000434072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-31 05:28 - 2018-01-01 03:09 - 000114584 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-31 05:28 - 2018-01-01 02:44 - 000411184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110_win.dll
2018-01-31 05:28 - 2018-01-01 02:43 - 003670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-01-31 05:28 - 2018-01-01 02:42 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-31 05:28 - 2018-01-01 02:42 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2018-01-31 05:28 - 2018-01-01 02:42 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-01-31 05:28 - 2018-01-01 02:42 - 000047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysntfy.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\nrpsrv.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2018-01-31 05:28 - 2018-01-01 02:41 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys
2018-01-31 05:28 - 2018-01-01 02:41 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys
2018-01-31 05:28 - 2018-01-01 02:40 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\container_xml.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\efslsaext.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2018-01-31 05:28 - 2018-01-01 02:40 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys
2018-01-31 05:28 - 2018-01-01 02:40 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\efssvc.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimeprovider.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2018-01-31 05:28 - 2018-01-01 02:40 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2018-01-31 05:28 - 2018-01-01 02:40 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2018-01-31 05:28 - 2018-01-01 02:39 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2018-01-31 05:28 - 2018-01-01 02:39 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2018-01-31 05:28 - 2018-01-01 02:39 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2018-01-31 05:28 - 2018-01-01 02:39 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasauto.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2018-01-31 05:28 - 2018-01-01 02:39 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2018-01-31 05:28 - 2018-01-01 02:38 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2018-01-31 05:28 - 2018-01-01 02:38 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2018-01-31 05:28 - 2018-01-01 02:38 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-01-31 05:28 - 2018-01-01 02:38 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2018-01-31 05:28 - 2018-01-01 02:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalAuth.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2018-01-31 05:28 - 2018-01-01 02:37 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-31 05:28 - 2018-01-01 02:36 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2018-01-31 05:28 - 2018-01-01 02:35 - 000538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2018-01-31 05:28 - 2018-01-01 02:35 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2018-01-31 05:28 - 2018-01-01 02:34 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2018-01-31 05:28 - 2018-01-01 02:34 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2018-01-31 05:28 - 2018-01-01 02:34 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2018-01-31 05:28 - 2018-01-01 02:33 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2018-01-31 05:28 - 2018-01-01 02:33 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2018-01-31 05:28 - 2018-01-01 02:33 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2018-01-31 05:28 - 2018-01-01 02:32 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2018-01-31 05:28 - 2018-01-01 02:32 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 007339520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 001398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2018-01-31 05:28 - 2018-01-01 02:31 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-31 05:28 - 2018-01-01 02:30 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-01-31 05:28 - 2018-01-01 02:30 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 002426368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 001460736 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2018-01-31 05:28 - 2018-01-01 02:29 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2018-01-31 05:28 - 2018-01-01 02:28 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-31 05:28 - 2018-01-01 02:26 - 000722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-31 05:28 - 2018-01-01 02:26 - 000502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2018-01-31 05:28 - 2018-01-01 02:25 - 000824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2018-01-31 05:28 - 2018-01-01 02:25 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2018-01-31 05:28 - 2018-01-01 02:25 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys
2018-01-31 05:28 - 2018-01-01 02:24 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscproxystub.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdPnp.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2018-01-31 05:28 - 2018-01-01 02:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-31 05:28 - 2018-01-01 02:23 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWNet.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmiprop.dll
2018-01-31 05:28 - 2018-01-01 02:23 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys
2018-01-31 05:28 - 2018-01-01 02:18 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfhost.exe
2018-01-31 05:28 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-01-31 05:28 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-01-31 05:28 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-01-31 05:28 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2018-01-31 05:28 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2018-01-31 05:28 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2018-01-31 05:28 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2018-01-31 05:28 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2018-01-31 05:28 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-01-31 05:28 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2018-01-31 05:28 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2018-01-31 05:28 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-01-31 05:28 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-01-31 05:28 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-01-31 05:28 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-01-31 05:28 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-01-31 05:28 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-01-31 05:28 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2018-01-31 05:28 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2018-01-31 05:28 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-01-31 05:12 - 2018-01-31 05:14 - 000000000 ___HD C:\$WINDOWS.~BT
2018-01-30 15:28 - 2018-02-01 12:21 - 000000000 ____D C:\Program Files\rempl
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-02-03 15:38 - 2017-02-14 23:36 - 000010476 _____ C:\Users\Mara\AppData\Local\FSDownloader.err
2018-02-03 15:38 - 2017-02-14 23:29 - 000001088 _____ C:\Users\Mara\AppData\Local\FSDownloader.nast
2018-02-03 15:35 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2018-02-03 15:33 - 2017-08-04 12:52 - 000004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{28B4EFD2-6DFB-4745-9634-36A22BCC91BB}
2018-02-03 15:27 - 2017-08-04 12:49 - 002284608 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-02-03 15:27 - 2017-03-20 05:43 - 001019542 _____ C:\WINDOWS\system32\perfh005.dat
2018-02-03 15:27 - 2017-03-20 05:43 - 000235512 _____ C:\WINDOWS\system32\perfc005.dat
2018-02-03 15:27 - 2016-12-11 19:33 - 000000000 ____D C:\Users\Mara\AppData\LocalLow\Mozilla
2018-02-03 15:27 - 2016-10-06 13:49 - 000000000 ____D C:\Users\Mara\AppData\Roaming\Seznam.cz
2018-02-03 15:27 - 2016-07-18 15:29 - 000000000 ____D C:\Users\Mara\AppData\Roaming\Mozilla
2018-02-03 15:26 - 2017-05-09 09:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-02-03 15:26 - 2016-07-18 15:29 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-02-03 15:26 - 2016-07-18 15:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-03 15:25 - 2016-08-07 19:37 - 000000000 ____D C:\Users\Mara\AppData\Roaming\Skype
2018-02-03 15:24 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-02-03 15:23 - 2016-07-18 14:34 - 000000000 ___RD C:\Users\Mara\OneDrive
2018-02-03 14:21 - 2017-08-04 12:34 - 000000000 ____D C:\Users\Mara
2018-02-02 10:48 - 2017-08-04 12:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-02-02 10:48 - 2017-08-04 12:29 - 000307776 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-02-02 10:47 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2018-02-02 10:42 - 2016-02-13 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-02-02 10:36 - 2017-03-18 12:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-02-02 10:35 - 2017-06-14 00:18 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2018-02-02 10:35 - 2017-03-18 22:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-02-02 10:34 - 2017-03-18 22:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-02-02 10:34 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-02-01 18:44 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-02-01 18:44 - 2016-07-18 18:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-02-01 18:40 - 2017-10-12 09:26 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-02-01 18:40 - 2016-07-18 18:41 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-31 05:17 - 2017-08-01 13:07 - 000000000 ___DC C:\WINDOWS\Panther
2018-01-30 15:26 - 2016-07-18 17:56 - 000548000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2018-01-30 15:23 - 2017-08-04 12:52 - 000003372 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-772858087-439378103-3593226653-1001
2018-01-30 15:23 - 2016-07-18 14:34 - 000002384 _____ C:\Users\Mara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== Files in the root of some directories =======
2017-02-14 23:36 - 2018-02-03 15:38 - 000010476 _____ () C:\Users\Mara\AppData\Local\FSDownloader.err
2017-02-14 23:29 - 2018-02-03 15:38 - 000001088 _____ () C:\Users\Mara\AppData\Local\FSDownloader.nast
2016-10-06 13:39 - 2016-10-06 13:39 - 000032038 _____ () C:\Users\Mara\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico
Some files in TEMP:
====================
2017-12-13 12:03 - 2017-12-13 12:04 - 058818504 _____ (Skype Technologies S.A.) C:\Users\Mara\AppData\Local\Temp\SkypeSetup.exe
2017-11-21 09:07 - 2017-12-15 14:27 - 000534528 _____ () C:\Users\Mara\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-11-21 11:08
==================== End of FRST.txt ============================
dekuji
