2017-02-15 07:08 - 2016-10-05 05:15 - 00324896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-02-15 07:08 - 2016-10-05 05:15 - 00245320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-02-15 07:08 - 2016-10-04 21:39 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2017-02-15 07:08 - 2016-10-04 21:23 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-02-15 07:08 - 2016-10-04 21:08 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-02-15 07:08 - 2016-10-04 21:08 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-02-15 07:08 - 2016-09-20 23:30 - 02462040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-02-15 07:08 - 2016-09-17 19:16 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2017-02-15 07:08 - 2016-09-17 18:21 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adsmsext.dll
2017-02-15 07:08 - 2016-09-14 02:53 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-02-15 07:08 - 2016-09-14 02:53 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-02-15 07:08 - 2016-09-14 02:53 - 01490112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-02-15 07:08 - 2016-09-14 02:53 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-02-15 07:08 - 2016-09-12 23:03 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-02-15 07:08 - 2016-09-12 22:01 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-02-15 07:08 - 2016-09-09 23:14 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-02-15 07:08 - 2016-09-09 15:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-02-15 07:08 - 2016-09-09 15:03 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2017-02-15 07:08 - 2016-09-09 15:02 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2017-02-15 07:08 - 2016-09-08 21:41 - 00121176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-02-15 07:08 - 2016-09-08 15:00 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2017-02-15 07:08 - 2016-09-08 15:00 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-02-15 07:08 - 2016-09-07 22:59 - 01754112 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-02-15 07:08 - 2016-09-07 22:56 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-02-15 07:08 - 2016-09-03 19:20 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2017-02-15 07:08 - 2016-09-03 19:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2017-02-15 07:08 - 2016-09-03 18:21 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2017-02-15 07:08 - 2016-09-03 17:12 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-02-15 07:08 - 2016-09-03 17:05 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-02-15 07:08 - 2016-09-03 16:58 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-02-15 07:08 - 2016-09-02 15:05 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2017-02-15 07:08 - 2016-09-02 15:05 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2017-02-15 07:08 - 2016-09-01 15:33 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2017-02-15 07:08 - 2016-09-01 15:33 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2017-02-15 07:08 - 2016-09-01 15:31 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2017-02-15 07:08 - 2016-08-30 15:11 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-02-15 07:08 - 2016-08-30 03:45 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2017-02-15 07:08 - 2016-08-30 03:18 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2017-02-15 07:08 - 2016-08-30 03:18 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2017-02-15 07:08 - 2016-08-30 03:03 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2017-02-15 07:08 - 2016-08-25 21:50 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-02-15 07:08 - 2016-08-25 20:40 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2017-02-15 07:08 - 2016-08-22 14:34 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-02-15 07:08 - 2016-08-13 01:05 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2017-02-15 07:08 - 2016-08-13 01:03 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifibus.sys
2017-02-15 07:08 - 2016-08-13 01:02 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2017-02-15 07:08 - 2016-08-13 01:01 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-02-15 07:08 - 2016-08-12 23:35 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2017-02-15 07:08 - 2016-08-12 23:19 - 09323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2017-02-15 07:08 - 2016-08-12 22:47 - 15431168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-02-15 07:08 - 2016-08-12 22:17 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2017-02-15 07:08 - 2016-08-12 21:52 - 13317120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-02-15 07:08 - 2016-08-12 02:58 - 02315496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-02-15 07:08 - 2016-08-12 02:58 - 01946176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-02-15 07:08 - 2016-08-11 19:33 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\parport.sys
2017-02-15 07:08 - 2016-08-11 19:33 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2017-02-15 07:08 - 2016-08-11 19:33 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serenum.sys
2017-02-15 07:08 - 2016-08-11 18:17 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2017-02-15 07:08 - 2016-08-03 16:42 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-02-15 07:08 - 2016-08-03 16:36 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2017-02-15 07:08 - 2016-08-03 16:36 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-02-15 07:08 - 2016-08-03 16:33 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2017-02-15 07:08 - 2016-07-30 18:12 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2017-02-15 07:08 - 2016-07-30 17:36 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2017-02-15 07:08 - 2016-07-26 14:40 - 00162850 _____ C:\WINDOWS\SysWOW64\C_932.NLS
2017-02-15 07:08 - 2016-07-26 14:40 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2017-02-15 07:08 - 2016-07-23 19:18 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-02-15 07:08 - 2016-07-23 19:12 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-02-15 07:08 - 2016-07-08 15:17 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-02-15 07:08 - 2016-02-08 19:14 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2017-02-15 07:08 - 2016-02-04 19:07 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2017-02-15 07:08 - 2016-02-04 18:35 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2017-02-15 07:08 - 2016-01-30 20:50 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2017-02-15 07:08 - 2016-01-30 20:00 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2017-02-15 07:08 - 2016-01-30 19:18 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2017-02-15 07:08 - 2016-01-30 18:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2017-02-15 07:08 - 2016-01-24 12:57 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-02-15 07:08 - 2016-01-24 12:45 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2017-02-15 07:08 - 2015-09-10 17:51 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2017-02-15 07:08 - 2015-06-15 22:58 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2017-02-15 07:08 - 2015-06-15 21:44 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2017-02-15 07:08 - 2015-05-22 19:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-02-15 07:08 - 2015-03-20 04:49 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2017-02-15 07:08 - 2015-02-03 01:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-02-15 07:08 - 2015-02-03 01:02 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-02-15 07:08 - 2015-01-30 03:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2017-02-15 07:08 - 2015-01-30 03:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2017-02-15 07:08 - 2015-01-30 02:44 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2017-02-15 07:08 - 2015-01-30 02:42 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2017-02-15 07:08 - 2015-01-30 02:29 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2017-02-15 07:08 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-02-15 07:08 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-02-15 07:08 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-02-15 07:05 - 2016-07-09 17:10 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-02-15 07:05 - 2016-07-08 23:35 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2017-02-15 07:05 - 2016-07-08 15:17 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2017-02-15 07:05 - 2016-07-08 15:17 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2017-02-15 07:05 - 2016-07-07 23:32 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2017-02-15 07:05 - 2016-07-07 23:18 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-02-15 07:05 - 2016-07-07 23:10 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2017-02-15 07:05 - 2016-07-07 23:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2017-02-15 07:05 - 2016-07-07 22:04 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-02-15 07:05 - 2016-07-07 21:59 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-02-15 07:05 - 2016-07-07 21:44 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2017-02-15 07:05 - 2016-07-07 21:41 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-02-15 07:05 - 2016-07-07 21:34 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-02-15 07:05 - 2016-07-07 21:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-02-15 07:05 - 2016-07-07 21:29 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-02-15 07:05 - 2016-07-07 21:23 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-02-15 07:05 - 2016-07-07 21:18 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2017-02-15 07:05 - 2016-07-07 21:11 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2017-02-15 07:05 - 2016-07-07 20:35 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-02-15 07:05 - 2016-07-07 20:14 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-02-15 07:05 - 2016-07-04 06:09 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-02-15 07:05 - 2016-07-04 04:45 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-02-15 07:05 - 2016-07-01 21:39 - 00197352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssenh.dll
2017-02-15 07:05 - 2016-07-01 21:39 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dssenh.dll
2017-02-15 07:05 - 2016-03-05 18:44 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2017-02-15 07:05 - 2016-03-05 18:04 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2017-02-15 07:05 - 2016-02-06 19:08 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2017-02-15 07:05 - 2016-01-31 18:17 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2017-02-15 07:05 - 2016-01-10 18:08 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-02-15 07:05 - 2016-01-10 17:41 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-02-15 07:05 - 2016-01-10 17:31 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2017-02-15 07:05 - 2015-12-30 21:49 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-02-15 07:05 - 2015-11-21 17:47 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2017-02-15 07:05 - 2015-11-21 17:40 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2017-02-15 07:05 - 2015-11-19 15:33 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-02-15 07:05 - 2015-11-19 15:26 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-02-15 07:05 - 2015-07-22 15:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-02-15 07:05 - 2015-07-22 15:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-02-15 07:05 - 2015-05-03 16:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-02-15 07:05 - 2015-05-03 15:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-02-15 07:05 - 2015-05-03 15:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-02-15 07:05 - 2015-05-03 15:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-02-15 07:05 - 2015-03-06 03:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-02-15 07:05 - 2015-01-28 03:24 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2017-02-15 07:05 - 2015-01-28 02:47 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2017-02-15 07:04 - 2016-08-22 17:06 - 00179248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2017-02-15 07:04 - 2016-08-22 17:06 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-02-15 07:04 - 2016-08-21 02:03 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-02-15 07:04 - 2016-08-21 02:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-02-15 07:04 - 2016-08-20 23:55 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2017-02-15 07:04 - 2016-05-19 00:18 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2017-02-15 07:04 - 2016-05-19 00:16 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2017-02-15 07:04 - 2016-05-18 23:28 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-02-15 07:04 - 2016-02-05 20:07 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2017-02-15 07:04 - 2016-02-05 20:07 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2017-02-15 07:04 - 2016-01-19 20:13 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-02-15 07:04 - 2016-01-19 20:13 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-02-15 07:04 - 2016-01-19 19:23 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-02-15 07:04 - 2016-01-19 19:23 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2017-02-15 07:04 - 2016-01-19 17:37 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2017-02-15 07:04 - 2015-10-08 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-02-15 07:04 - 2015-10-08 16:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-02-15 07:04 - 2015-04-13 23:37 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-02-15 07:04 - 2015-04-13 23:34 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-02-15 07:03 - 2016-03-14 17:50 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2017-02-15 07:03 - 2016-01-31 20:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2017-02-15 07:03 - 2015-10-11 07:34 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2017-02-15 07:03 - 2015-10-11 07:34 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2017-02-15 07:03 - 2015-10-11 07:34 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2017-02-15 07:03 - 2015-10-11 07:34 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2017-02-15 07:03 - 2015-10-10 19:41 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2017-02-15 07:03 - 2015-10-10 19:41 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2017-02-15 07:03 - 2015-10-10 19:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winusb.sys
2017-02-15 07:03 - 2015-07-14 22:59 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-02-15 07:03 - 2015-07-14 22:59 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2017-02-15 07:03 - 2015-07-14 22:59 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2017-02-15 07:03 - 2015-07-09 18:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2017-02-15 07:03 - 2015-07-09 18:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2017-02-15 07:03 - 2015-07-09 17:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2017-02-15 07:03 - 2015-07-09 17:14 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-02-15 07:03 - 2015-05-11 17:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2017-02-15 07:03 - 2015-04-25 03:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2017-02-15 07:03 - 2015-04-25 03:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2017-02-15 07:03 - 2015-04-16 07:17 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-02-15 07:03 - 2015-04-10 01:40 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-02-15 07:03 - 2015-04-10 01:17 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-02-15 07:03 - 2015-01-31 00:20 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-02-15 07:02 - 2016-08-27 20:44 - 22360288 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-02-15 07:02 - 2016-08-27 20:44 - 02755504 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-02-15 07:02 - 2016-08-27 20:44 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2017-02-15 07:02 - 2016-08-27 19:26 - 19789232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-02-15 07:02 - 2016-08-27 19:26 - 02411048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-02-15 07:02 - 2016-08-27 19:26 - 00113656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2017-02-15 07:02 - 2016-08-27 17:33 - 02881536 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2017-02-15 07:02 - 2016-08-27 17:11 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2017-02-15 07:02 - 2016-08-27 17:09 - 14466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-02-15 07:02 - 2016-08-27 16:55 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-02-15 07:02 - 2016-08-13 08:40 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-02-15 07:02 - 2016-08-13 01:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2017-02-15 07:02 - 2016-03-12 01:47 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2017-02-15 07:02 - 2016-03-12 01:47 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2017-02-15 07:02 - 2016-03-10 17:52 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-02-15 07:02 - 2016-03-03 17:13 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2017-02-15 07:02 - 2015-12-28 22:42 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2017-02-15 07:02 - 2015-12-28 21:31 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2017-02-15 07:02 - 2015-08-01 04:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2017-02-15 07:02 - 2015-08-01 04:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2017-02-15 07:02 - 2015-08-01 04:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-02-15 07:02 - 2015-08-01 04:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2017-02-15 07:02 - 2015-08-01 04:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2017-02-15 07:02 - 2015-06-11 21:12 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-02-15 07:02 - 2015-03-13 05:03 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-02-15 07:02 - 2015-03-13 05:03 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-02-15 07:02 - 2015-01-30 03:02 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2017-02-15 07:02 - 2015-01-30 02:40 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2017-02-15 07:02 - 2015-01-30 02:37 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2017-02-15 07:02 - 2015-01-30 02:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2017-02-15 07:02 - 2015-01-30 02:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2017-02-15 07:02 - 2015-01-30 02:16 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2017-02-15 07:02 - 2015-01-30 02:08 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2017-02-15 07:02 - 2015-01-30 02:06 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2017-02-15 07:02 - 2015-01-28 02:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
Zavirovaný pc s pomocí viru yundooo Vyřešeno
Re: Zavirovaný pc s pomocí viru yundooo
2017-02-15 07:02 - 2015-01-28 02:11 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2017-02-15 07:02 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2017-02-15 07:02 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2017-02-15 07:01 - 2016-08-11 17:26 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-02-15 07:01 - 2016-08-11 17:17 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-02-15 07:01 - 2016-08-11 17:16 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-02-15 07:01 - 2016-05-14 21:01 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2017-02-15 07:01 - 2016-05-14 21:01 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2017-02-15 07:01 - 2016-05-14 00:07 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-02-15 07:01 - 2016-05-13 22:58 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2017-02-15 07:01 - 2016-05-13 22:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2017-02-15 07:01 - 2016-04-11 07:21 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2017-02-15 07:01 - 2016-04-10 06:37 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-02-15 07:01 - 2016-02-04 18:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-02-15 07:01 - 2016-02-04 18:02 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-02-15 07:01 - 2016-01-05 16:00 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-02-15 07:01 - 2015-12-20 15:56 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2017-02-15 07:01 - 2015-12-08 20:08 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-02-15 07:01 - 2015-12-08 20:07 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2017-02-15 07:01 - 2015-10-05 19:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-02-15 07:01 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-02-15 07:01 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-02-15 07:01 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-02-15 07:01 - 2015-07-16 19:58 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-02-15 07:01 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2017-02-15 07:01 - 2015-07-10 20:06 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-02-15 07:01 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2017-02-15 07:01 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2017-02-15 07:01 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-02-15 07:01 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-02-15 07:01 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2017-02-15 07:01 - 2015-04-23 16:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-02-15 07:01 - 2015-04-23 16:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-02-15 07:01 - 2015-04-01 05:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-02-15 07:01 - 2015-04-01 05:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-02-15 07:01 - 2015-04-01 05:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-02-15 07:01 - 2015-04-01 05:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-02-15 07:01 - 2015-04-01 04:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-02-15 07:01 - 2015-04-01 04:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-02-15 07:01 - 2015-04-01 04:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-02-15 07:01 - 2015-04-01 03:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-02-15 07:01 - 2015-04-01 03:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-02-15 07:01 - 2015-04-01 03:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-02-15 07:01 - 2015-04-01 03:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-02-15 07:01 - 2015-04-01 03:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-02-15 07:01 - 2015-04-01 03:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-02-15 07:01 - 2015-03-14 01:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-02-15 07:01 - 2015-03-06 04:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2017-02-15 07:01 - 2015-03-06 03:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2017-02-15 07:01 - 2015-03-04 04:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2017-02-15 07:01 - 2015-03-04 03:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2017-02-15 07:01 - 2015-02-08 00:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-02-15 07:01 - 2015-02-08 00:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-02-15 07:01 - 2014-12-11 06:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2017-02-15 00:19 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-02-15 00:19 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2017-02-15 00:19 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-02-15 00:19 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2017-02-15 00:19 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2017-02-15 00:19 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-02-15 00:19 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-02-15 00:19 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-02-15 00:19 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-02-15 00:19 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-02-15 00:19 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2017-02-15 00:19 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-02-15 00:19 - 2016-06-11 04:44 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2017-02-15 00:19 - 2016-06-11 04:44 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2017-02-15 00:19 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-02-15 00:19 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-02-15 00:19 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-02-15 00:19 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-02-15 00:19 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2017-02-15 00:19 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2017-02-15 00:19 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-02-15 00:19 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2017-02-15 00:19 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2017-02-15 00:19 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2017-02-15 00:19 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2017-02-15 00:19 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2017-02-15 00:19 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2017-02-15 00:19 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-02-15 00:19 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-02-15 00:19 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-02-15 00:19 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-02-15 00:19 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-02-15 00:19 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-02-15 00:19 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2017-02-15 00:19 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2017-02-15 00:19 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2017-02-15 00:19 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-02-15 00:19 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-02-15 00:19 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2017-02-15 00:19 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2017-02-15 00:19 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2017-02-15 00:19 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-02-15 00:19 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2017-02-15 00:19 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-02-15 00:19 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2017-02-15 00:19 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2017-02-15 00:19 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-02-15 00:19 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-02-15 00:19 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2017-02-15 00:19 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2017-02-15 00:19 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-02-15 00:19 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2017-02-15 00:19 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2017-02-15 00:19 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2017-02-15 00:19 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2017-02-15 00:19 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-02-15 00:19 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-02-15 00:19 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2017-02-15 00:19 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2017-02-15 00:19 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2017-02-15 00:19 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2017-02-15 00:19 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-02-15 00:19 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2017-02-15 00:19 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-02-15 00:19 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2017-02-15 00:19 - 2016-04-06 22:13 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2017-02-15 00:19 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-02-15 00:19 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-02-15 00:19 - 2016-04-06 18:49 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2017-02-15 00:19 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-02-15 00:19 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2017-02-15 00:19 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2017-02-15 00:19 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2017-02-15 00:19 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2017-02-15 00:19 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-02-15 00:19 - 2016-02-11 21:16 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-02-15 00:19 - 2016-02-05 16:11 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2017-02-15 00:19 - 2016-02-05 16:11 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2017-02-15 00:19 - 2016-02-05 16:07 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2017-02-15 00:19 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2017-02-15 00:19 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-02-15 00:19 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2017-02-15 00:19 - 2016-02-04 17:22 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-02-15 00:19 - 2016-01-31 20:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2017-02-15 00:19 - 2016-01-31 19:07 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-02-15 00:19 - 2015-11-21 19:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2017-02-15 00:19 - 2015-11-21 18:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2017-02-15 00:19 - 2015-11-20 19:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2017-02-15 00:19 - 2015-07-09 19:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-02-15 00:19 - 2015-06-27 04:08 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-02-15 00:19 - 2015-06-27 03:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2017-02-15 00:19 - 2015-03-20 05:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-02-15 00:19 - 2015-03-20 05:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2017-02-15 00:19 - 2015-03-14 02:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2017-02-15 00:19 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2017-02-15 00:19 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2017-02-15 00:19 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2017-02-15 00:19 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2017-02-15 00:19 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2017-02-15 00:19 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2017-02-15 00:12 - 2016-06-21 19:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-02-15 00:12 - 2016-06-21 15:12 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-02-14 22:36 - 2017-02-14 22:36 - 00000000 ____D C:\ProgramData\Riot Games
2017-02-14 22:05 - 2017-02-14 22:05 - 00002498 _____ C:\Users\Public\Desktop\Heroes of Might and Magic V - Tribes of the East.lnk
2017-02-14 21:58 - 2017-02-14 21:58 - 00002329 _____ C:\Users\Public\Desktop\Heroes of Might and Magic V - Hammers of Fate.lnk
2017-02-14 21:52 - 2017-02-14 21:52 - 00002309 _____ C:\Users\Public\Desktop\Heroes of Might and Magic V.lnk
2017-02-14 21:51 - 2008-07-12 08:18 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-02-14 21:50 - 2017-02-14 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-02-14 21:47 - 2017-02-14 22:01 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2017-02-14 21:22 - 2017-02-15 11:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2017-02-14 21:22 - 2017-02-14 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-02-14 21:21 - 2017-02-14 21:21 - 00000000 ____D C:\WINDOWS\PCHEALTH
2017-02-14 21:21 - 2017-02-14 21:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2017-02-14 21:19 - 2017-02-15 11:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-02-14 21:19 - 2017-02-14 21:19 - 00000000 ____D C:\Users\ASUS\AppData\Local\Microsoft Help
2017-02-14 21:19 - 2017-02-14 21:19 - 00000000 ____D C:\Program Files\Microsoft Office
2017-02-14 21:19 - 2017-02-14 21:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2017-02-14 21:10 - 2017-02-14 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-02-14 21:10 - 2017-02-14 21:10 - 00000000 ____D C:\ProgramData\ESET
2017-02-14 21:10 - 2017-02-14 21:10 - 00000000 ____D C:\Program Files\ESET
2017-02-14 21:09 - 2017-02-21 18:50 - 00000000 ____D C:\Program Files (x86)\Audacity
2017-02-14 21:09 - 2017-02-14 21:09 - 00001035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2017-02-14 21:09 - 2017-02-14 21:09 - 00001023 _____ C:\Users\Public\Desktop\Audacity.lnk
2017-02-14 19:59 - 2017-02-14 19:59 - 00001061 _____ C:\Users\Public\Desktop\Vegas Pro 14.0 (64-bit).lnk
2017-02-14 19:59 - 2017-02-14 19:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\Users\ASUS\AppData\Local\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\ProgramData\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\Program Files\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\Program Files (x86)\VEGAS
2017-02-14 19:57 - 2017-02-19 16:45 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Sony
2017-02-14 19:53 - 2017-02-14 19:53 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2014.lnk
2017-02-14 19:40 - 2017-02-14 19:40 - 00001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2017-02-14 19:31 - 2017-02-14 19:31 - 00001134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2014.lnk
2017-02-14 19:27 - 2017-02-14 19:27 - 00001511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2017-02-14 19:16 - 2017-02-14 19:53 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-02-14 19:16 - 2017-02-14 19:16 - 00001242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk
2017-02-14 19:11 - 2017-02-14 19:52 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-02-14 19:11 - 2017-02-14 19:52 - 00000000 ____D C:\Program Files\Adobe
2017-02-14 19:11 - 2017-02-14 19:49 - 00001562 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-02-14 19:11 - 2017-02-14 19:49 - 00001550 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2017-02-14 19:08 - 2017-02-14 19:16 - 00000000 ____D C:\ProgramData\Adobe
2017-02-14 19:07 - 2017-02-15 00:05 - 00000000 ____D C:\Users\ASUS\AppData\Local\Adobe
2017-02-14 18:46 - 2017-02-14 18:46 - 00000219 _____ C:\Users\ASUS\Desktop\Team Fortress 2.url
2017-02-14 18:46 - 2017-02-14 18:46 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-14 18:35 - 2017-02-14 18:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\Steam
2017-02-14 18:35 - 2017-02-14 18:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\CEF
2017-02-14 18:28 - 2017-02-22 14:32 - 00250368 ___SH C:\Users\ASUS\Downloads\Thumbs.db
2017-02-14 18:27 - 2017-02-24 19:26 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-14 18:27 - 2017-02-14 18:27 - 00000979 _____ C:\Users\Public\Desktop\Steam.lnk
2017-02-14 18:27 - 2017-02-14 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-14 18:25 - 2017-02-24 20:47 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Skype
2017-02-14 18:25 - 2017-02-14 18:25 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-02-14 18:25 - 2017-02-14 18:25 - 00000000 ____D C:\ProgramData\Skype
2017-02-14 18:25 - 2017-02-14 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-02-14 18:24 - 2017-02-14 18:24 - 01629144 _____ (Skype Technologies S.A.) C:\Users\ASUS\Downloads\SkypeSetup (1).exe
2017-02-14 18:22 - 2017-02-24 06:35 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\WebStorage
2017-02-14 18:22 - 2017-02-15 00:21 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\awsRun
2017-02-14 18:21 - 2017-02-14 18:21 - 00001306 _____ C:\Users\Public\Desktop\WebStorage.lnk
2017-02-14 18:21 - 2017-02-14 18:21 - 00000000 ____D C:\ProgramData\WebStorage
2017-02-14 18:21 - 2017-02-14 18:21 - 00000000 ____D C:\ProgramData\ASUS WebStorage
2017-02-14 18:19 - 2017-02-14 21:21 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\Program Files\MSBuild
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-02-14 18:18 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-02-14 18:18 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-02-14 18:17 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-02-14 18:17 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-02-14 18:17 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-02-14 18:17 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-02-14 18:17 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-02-14 18:17 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-02-14 18:17 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-02-14 18:17 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-02-14 18:17 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-02-14 18:17 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-02-14 18:17 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-02-14 18:17 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-02-14 18:17 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-02-14 18:17 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-02-14 18:17 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-02-14 18:17 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-02-14 18:17 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-02-14 18:17 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-02-14 18:17 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-02-14 18:17 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-02-14 18:17 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-02-14 18:17 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-02-14 18:17 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-02-14 18:17 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-02-14 18:16 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-02-14 18:16 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-02-14 18:16 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-02-14 18:16 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-02-14 18:16 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-02-14 18:16 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-02-14 18:16 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-02-14 18:16 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-02-14 18:16 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-02-14 18:16 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-02-14 18:16 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-02-14 18:16 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-02-14 18:16 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-02-14 18:16 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-02-14 18:16 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-02-14 18:16 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-02-14 18:16 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-02-14 18:16 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-02-14 18:16 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-02-14 18:16 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-02-14 18:16 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-02-14 18:16 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-02-14 18:16 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-02-14 18:16 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-02-14 18:16 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-02-14 18:16 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-02-14 18:16 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-02-14 18:16 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-02-14 18:16 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-02-14 18:16 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-02-14 18:16 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-02-14 18:16 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-02-14 18:16 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-02-14 18:16 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-02-14 18:16 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-02-14 18:16 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-02-14 18:16 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-02-14 18:16 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-02-14 18:16 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-02-14 18:16 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-02-14 18:16 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-02-14 18:16 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-02-14 18:16 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-02-14 18:16 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-02-14 18:16 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-02-14 18:16 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-02-14 18:16 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-02-14 18:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-02-14 18:16 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-02-14 18:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-02-14 18:16 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-02-14 18:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-02-14 18:11 - 2017-02-14 18:11 - 00000979 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2017-02-14 18:11 - 2017-02-14 18:11 - 00000941 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2017-02-14 18:11 - 2017-02-14 18:11 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-02-14 18:11 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-02-14 18:10 - 2017-02-14 18:10 - 77761888 _____ (TeamSpeak Systems GmbH) C:\Users\ASUS\Downloads\TeamSpeak3-Client-win64-3.1.0.1 (1).exe
2017-02-14 18:06 - 2017-02-14 18:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2017-02-14 18:06 - 2017-02-14 18:06 - 00000000 ____D C:\WINDOWS\pss
2017-02-14 18:04 - 2012-03-20 14:08 - 00451072 ____N C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2017-02-14 18:03 - 2017-02-14 18:21 - 00000000 ____D C:\Program Files (x86)\Asus
2017-02-14 18:03 - 2017-02-14 18:03 - 00002048 _____ C:\Users\Public\Desktop\ASUS Vibe Fun Center.lnk
2017-02-14 18:03 - 2017-02-14 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-02-14 18:00 - 2017-02-14 18:00 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-02-14 17:59 - 2017-02-14 17:59 - 05966207 _____ C:\Users\ASUS\Downloads\RTL8112L_V768202009_WIN7 (1).zip
2017-02-14 17:52 - 2017-02-15 12:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-14 17:51 - 2017-02-14 17:51 - 00001226 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIA
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\Program Files\VIA
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\Program Files (x86)\VIA
2017-02-14 17:51 - 2007-04-11 08:35 - 00414632 ____N (Microsoft Corporation) C:\WINDOWS\difxapi.dll
2017-02-14 17:50 - 2017-02-17 20:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\NVIDIA
2017-02-14 17:50 - 2017-02-17 20:34 - 00000000 ____D C:\Users\ASUS\AppData\Local\NVIDIA Corporation
2017-02-14 17:50 - 2017-02-14 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-14 17:50 - 2017-02-14 17:50 - 00003688 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:50 - 2017-02-14 17:50 - 00001432 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-02-14 17:50 - 2017-02-10 01:52 - 01854400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-02-14 17:49 - 2017-02-14 17:49 - 00003738 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003738 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003676 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003500 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003440 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:48 - 2017-02-14 17:48 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-14 17:48 - 2017-02-09 23:39 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-02-14 17:48 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-02-14 17:48 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-02-14 17:48 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-02-14 17:48 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-02-14 17:44 - 2017-02-10 01:52 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 34937280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 28212280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 19110088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 19006832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 16510160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 16398896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 14373824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2017-02-14 17:44 - 2017-02-10 01:52 - 13377072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 11122912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 11019704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 09305984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-02-15 07:02 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2017-02-15 07:02 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2017-02-15 07:01 - 2016-08-11 17:26 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2017-02-15 07:01 - 2016-08-11 17:17 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2017-02-15 07:01 - 2016-08-11 17:16 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2017-02-15 07:01 - 2016-05-14 21:01 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2017-02-15 07:01 - 2016-05-14 21:01 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2017-02-15 07:01 - 2016-05-14 00:07 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-02-15 07:01 - 2016-05-13 22:58 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2017-02-15 07:01 - 2016-05-13 22:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2017-02-15 07:01 - 2016-04-11 07:21 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2017-02-15 07:01 - 2016-04-10 06:37 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-02-15 07:01 - 2016-02-04 18:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-02-15 07:01 - 2016-02-04 18:02 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-02-15 07:01 - 2016-01-05 16:00 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-02-15 07:01 - 2015-12-20 15:56 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2017-02-15 07:01 - 2015-12-08 20:08 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-02-15 07:01 - 2015-12-08 20:07 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2017-02-15 07:01 - 2015-10-05 19:28 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-02-15 07:01 - 2015-08-03 22:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-02-15 07:01 - 2015-08-03 22:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-02-15 07:01 - 2015-08-01 15:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2017-02-15 07:01 - 2015-07-16 19:58 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-02-15 07:01 - 2015-07-14 04:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2017-02-15 07:01 - 2015-07-10 20:06 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2017-02-15 07:01 - 2015-07-10 19:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2017-02-15 07:01 - 2015-07-10 18:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2017-02-15 07:01 - 2015-07-10 18:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-02-15 07:01 - 2015-07-10 17:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-02-15 07:01 - 2015-05-12 14:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2017-02-15 07:01 - 2015-04-23 16:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2017-02-15 07:01 - 2015-04-23 16:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2017-02-15 07:01 - 2015-04-01 05:21 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-02-15 07:01 - 2015-04-01 05:18 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-02-15 07:01 - 2015-04-01 05:17 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2017-02-15 07:01 - 2015-04-01 05:08 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-02-15 07:01 - 2015-04-01 04:46 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-02-15 07:01 - 2015-04-01 04:17 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-02-15 07:01 - 2015-04-01 04:17 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-02-15 07:01 - 2015-04-01 03:53 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2017-02-15 07:01 - 2015-04-01 03:53 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2017-02-15 07:01 - 2015-04-01 03:45 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-02-15 07:01 - 2015-04-01 03:45 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2017-02-15 07:01 - 2015-04-01 03:14 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-02-15 07:01 - 2015-04-01 03:12 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-02-15 07:01 - 2015-03-14 01:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-02-15 07:01 - 2015-03-06 04:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2017-02-15 07:01 - 2015-03-06 03:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2017-02-15 07:01 - 2015-03-04 04:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2017-02-15 07:01 - 2015-03-04 03:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2017-02-15 07:01 - 2015-02-08 00:57 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-02-15 07:01 - 2015-02-08 00:49 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2017-02-15 07:01 - 2014-12-11 06:36 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2017-02-15 00:19 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-02-15 00:19 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2017-02-15 00:19 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-02-15 00:19 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2017-02-15 00:19 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2017-02-15 00:19 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-02-15 00:19 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-02-15 00:19 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-02-15 00:19 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-02-15 00:19 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-02-15 00:19 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2017-02-15 00:19 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-02-15 00:19 - 2016-06-11 04:44 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2017-02-15 00:19 - 2016-06-11 04:44 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2017-02-15 00:19 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-02-15 00:19 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-02-15 00:19 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-02-15 00:19 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-02-15 00:19 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2017-02-15 00:19 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2017-02-15 00:19 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2017-02-15 00:19 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2017-02-15 00:19 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2017-02-15 00:19 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2017-02-15 00:19 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2017-02-15 00:19 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2017-02-15 00:19 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2017-02-15 00:19 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-02-15 00:19 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2017-02-15 00:19 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-02-15 00:19 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-02-15 00:19 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-02-15 00:19 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-02-15 00:19 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2017-02-15 00:19 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2017-02-15 00:19 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2017-02-15 00:19 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-02-15 00:19 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-02-15 00:19 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2017-02-15 00:19 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2017-02-15 00:19 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2017-02-15 00:19 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-02-15 00:19 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2017-02-15 00:19 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-02-15 00:19 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2017-02-15 00:19 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2017-02-15 00:19 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-02-15 00:19 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-02-15 00:19 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2017-02-15 00:19 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2017-02-15 00:19 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-02-15 00:19 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2017-02-15 00:19 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2017-02-15 00:19 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2017-02-15 00:19 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2017-02-15 00:19 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-02-15 00:19 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-02-15 00:19 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2017-02-15 00:19 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2017-02-15 00:19 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2017-02-15 00:19 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2017-02-15 00:19 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-02-15 00:19 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2017-02-15 00:19 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-02-15 00:19 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2017-02-15 00:19 - 2016-04-06 22:13 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2017-02-15 00:19 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-02-15 00:19 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-02-15 00:19 - 2016-04-06 18:49 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2017-02-15 00:19 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-02-15 00:19 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2017-02-15 00:19 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2017-02-15 00:19 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2017-02-15 00:19 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2017-02-15 00:19 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-02-15 00:19 - 2016-02-11 21:16 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-02-15 00:19 - 2016-02-05 16:11 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2017-02-15 00:19 - 2016-02-05 16:11 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2017-02-15 00:19 - 2016-02-05 16:07 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2017-02-15 00:19 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2017-02-15 00:19 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-02-15 00:19 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2017-02-15 00:19 - 2016-02-04 17:22 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-02-15 00:19 - 2016-01-31 20:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2017-02-15 00:19 - 2016-01-31 19:07 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-02-15 00:19 - 2015-11-21 19:32 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2017-02-15 00:19 - 2015-11-21 18:50 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2017-02-15 00:19 - 2015-11-20 19:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2017-02-15 00:19 - 2015-07-09 19:40 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2017-02-15 00:19 - 2015-06-27 04:08 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-02-15 00:19 - 2015-06-27 03:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2017-02-15 00:19 - 2015-03-20 05:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2017-02-15 00:19 - 2015-03-20 05:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2017-02-15 00:19 - 2015-03-14 02:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2017-02-15 00:19 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2017-02-15 00:19 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2017-02-15 00:19 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2017-02-15 00:19 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2017-02-15 00:19 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2017-02-15 00:19 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2017-02-15 00:12 - 2016-06-21 19:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-02-15 00:12 - 2016-06-21 15:12 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-02-14 22:36 - 2017-02-14 22:36 - 00000000 ____D C:\ProgramData\Riot Games
2017-02-14 22:05 - 2017-02-14 22:05 - 00002498 _____ C:\Users\Public\Desktop\Heroes of Might and Magic V - Tribes of the East.lnk
2017-02-14 21:58 - 2017-02-14 21:58 - 00002329 _____ C:\Users\Public\Desktop\Heroes of Might and Magic V - Hammers of Fate.lnk
2017-02-14 21:52 - 2017-02-14 21:52 - 00002309 _____ C:\Users\Public\Desktop\Heroes of Might and Magic V.lnk
2017-02-14 21:51 - 2008-07-12 08:18 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2017-02-14 21:51 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2017-02-14 21:50 - 2017-02-14 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
2017-02-14 21:47 - 2017-02-14 22:01 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2017-02-14 21:22 - 2017-02-15 11:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2017-02-14 21:22 - 2017-02-14 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-02-14 21:21 - 2017-02-14 21:21 - 00000000 ____D C:\WINDOWS\PCHEALTH
2017-02-14 21:21 - 2017-02-14 21:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2017-02-14 21:19 - 2017-02-15 11:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-02-14 21:19 - 2017-02-14 21:19 - 00000000 ____D C:\Users\ASUS\AppData\Local\Microsoft Help
2017-02-14 21:19 - 2017-02-14 21:19 - 00000000 ____D C:\Program Files\Microsoft Office
2017-02-14 21:19 - 2017-02-14 21:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2017-02-14 21:10 - 2017-02-14 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-02-14 21:10 - 2017-02-14 21:10 - 00000000 ____D C:\ProgramData\ESET
2017-02-14 21:10 - 2017-02-14 21:10 - 00000000 ____D C:\Program Files\ESET
2017-02-14 21:09 - 2017-02-21 18:50 - 00000000 ____D C:\Program Files (x86)\Audacity
2017-02-14 21:09 - 2017-02-14 21:09 - 00001035 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2017-02-14 21:09 - 2017-02-14 21:09 - 00001023 _____ C:\Users\Public\Desktop\Audacity.lnk
2017-02-14 19:59 - 2017-02-14 19:59 - 00001061 _____ C:\Users\Public\Desktop\Vegas Pro 14.0 (64-bit).lnk
2017-02-14 19:59 - 2017-02-14 19:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\Users\ASUS\AppData\Local\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\ProgramData\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\Program Files\VEGAS
2017-02-14 19:58 - 2017-02-14 19:58 - 00000000 ____D C:\Program Files (x86)\VEGAS
2017-02-14 19:57 - 2017-02-19 16:45 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Sony
2017-02-14 19:53 - 2017-02-14 19:53 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2014.lnk
2017-02-14 19:40 - 2017-02-14 19:40 - 00001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2017-02-14 19:31 - 2017-02-14 19:31 - 00001134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2014.lnk
2017-02-14 19:27 - 2017-02-14 19:27 - 00001511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator CC 2014.lnk
2017-02-14 19:16 - 2017-02-14 19:53 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-02-14 19:16 - 2017-02-14 19:16 - 00001242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk
2017-02-14 19:11 - 2017-02-14 19:52 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-02-14 19:11 - 2017-02-14 19:52 - 00000000 ____D C:\Program Files\Adobe
2017-02-14 19:11 - 2017-02-14 19:49 - 00001562 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-02-14 19:11 - 2017-02-14 19:49 - 00001550 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2017-02-14 19:08 - 2017-02-14 19:16 - 00000000 ____D C:\ProgramData\Adobe
2017-02-14 19:07 - 2017-02-15 00:05 - 00000000 ____D C:\Users\ASUS\AppData\Local\Adobe
2017-02-14 18:46 - 2017-02-14 18:46 - 00000219 _____ C:\Users\ASUS\Desktop\Team Fortress 2.url
2017-02-14 18:46 - 2017-02-14 18:46 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-14 18:35 - 2017-02-14 18:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\Steam
2017-02-14 18:35 - 2017-02-14 18:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\CEF
2017-02-14 18:28 - 2017-02-22 14:32 - 00250368 ___SH C:\Users\ASUS\Downloads\Thumbs.db
2017-02-14 18:27 - 2017-02-24 19:26 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-14 18:27 - 2017-02-14 18:27 - 00000979 _____ C:\Users\Public\Desktop\Steam.lnk
2017-02-14 18:27 - 2017-02-14 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-14 18:25 - 2017-02-24 20:47 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Skype
2017-02-14 18:25 - 2017-02-14 18:25 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-02-14 18:25 - 2017-02-14 18:25 - 00000000 ____D C:\ProgramData\Skype
2017-02-14 18:25 - 2017-02-14 18:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-02-14 18:24 - 2017-02-14 18:24 - 01629144 _____ (Skype Technologies S.A.) C:\Users\ASUS\Downloads\SkypeSetup (1).exe
2017-02-14 18:22 - 2017-02-24 06:35 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\WebStorage
2017-02-14 18:22 - 2017-02-15 00:21 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\awsRun
2017-02-14 18:21 - 2017-02-14 18:21 - 00001306 _____ C:\Users\Public\Desktop\WebStorage.lnk
2017-02-14 18:21 - 2017-02-14 18:21 - 00000000 ____D C:\ProgramData\WebStorage
2017-02-14 18:21 - 2017-02-14 18:21 - 00000000 ____D C:\ProgramData\ASUS WebStorage
2017-02-14 18:19 - 2017-02-14 21:21 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\Program Files\MSBuild
2017-02-14 18:19 - 2017-02-14 18:19 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-02-14 18:18 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-02-14 18:18 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-02-14 18:17 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-02-14 18:17 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-02-14 18:17 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-02-14 18:17 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-02-14 18:17 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-02-14 18:17 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-02-14 18:17 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-02-14 18:17 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-02-14 18:17 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2017-02-14 18:17 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2017-02-14 18:17 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2017-02-14 18:17 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2017-02-14 18:17 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-02-14 18:17 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2017-02-14 18:17 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2017-02-14 18:17 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-02-14 18:17 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-02-14 18:17 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2017-02-14 18:17 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2017-02-14 18:17 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-02-14 18:17 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2017-02-14 18:17 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-02-14 18:17 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2017-02-14 18:17 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2017-02-14 18:17 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-02-14 18:17 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-02-14 18:17 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-02-14 18:17 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2017-02-14 18:17 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-02-14 18:17 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2017-02-14 18:17 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-02-14 18:17 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2017-02-14 18:17 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-02-14 18:17 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2017-02-14 18:17 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-02-14 18:17 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2017-02-14 18:16 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-02-14 18:16 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2017-02-14 18:16 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-02-14 18:16 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2017-02-14 18:16 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-02-14 18:16 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-02-14 18:16 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2017-02-14 18:16 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-02-14 18:16 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-02-14 18:16 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2017-02-14 18:16 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-02-14 18:16 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2017-02-14 18:16 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-02-14 18:16 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2017-02-14 18:16 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-02-14 18:16 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-02-14 18:16 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2017-02-14 18:16 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-02-14 18:16 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2017-02-14 18:16 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-02-14 18:16 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2017-02-14 18:16 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2017-02-14 18:16 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-02-14 18:16 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2017-02-14 18:16 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-02-14 18:16 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2017-02-14 18:16 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2017-02-14 18:16 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-02-14 18:16 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-02-14 18:16 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-02-14 18:16 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2017-02-14 18:16 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2017-02-14 18:16 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2017-02-14 18:16 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-02-14 18:16 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-02-14 18:16 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2017-02-14 18:16 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-02-14 18:16 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2017-02-14 18:16 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-02-14 18:16 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2017-02-14 18:16 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-02-14 18:16 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2017-02-14 18:16 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-02-14 18:16 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2017-02-14 18:16 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-02-14 18:16 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2017-02-14 18:16 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-02-14 18:16 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2017-02-14 18:16 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-02-14 18:16 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2017-02-14 18:16 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-02-14 18:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2017-02-14 18:16 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-02-14 18:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2017-02-14 18:16 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-02-14 18:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2017-02-14 18:11 - 2017-02-14 18:11 - 00000979 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2017-02-14 18:11 - 2017-02-14 18:11 - 00000941 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2017-02-14 18:11 - 2017-02-14 18:11 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-02-14 18:11 - 2015-08-22 14:42 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:42 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-02-14 18:11 - 2015-08-22 14:35 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-02-14 18:10 - 2017-02-14 18:10 - 77761888 _____ (TeamSpeak Systems GmbH) C:\Users\ASUS\Downloads\TeamSpeak3-Client-win64-3.1.0.1 (1).exe
2017-02-14 18:06 - 2017-02-14 18:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2017-02-14 18:06 - 2017-02-14 18:06 - 00000000 ____D C:\WINDOWS\pss
2017-02-14 18:04 - 2012-03-20 14:08 - 00451072 ____N C:\WINDOWS\SysWOW64\ISSRemoveSP.exe
2017-02-14 18:03 - 2017-02-14 18:21 - 00000000 ____D C:\Program Files (x86)\Asus
2017-02-14 18:03 - 2017-02-14 18:03 - 00002048 _____ C:\Users\Public\Desktop\ASUS Vibe Fun Center.lnk
2017-02-14 18:03 - 2017-02-14 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-02-14 18:00 - 2017-02-14 18:00 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-02-14 17:59 - 2017-02-14 17:59 - 05966207 _____ C:\Users\ASUS\Downloads\RTL8112L_V768202009_WIN7 (1).zip
2017-02-14 17:52 - 2017-02-15 12:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-14 17:51 - 2017-02-14 17:51 - 00001226 _____ C:\Users\Public\Desktop\HD VDeck.lnk
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIA
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\Program Files\VIA
2017-02-14 17:51 - 2017-02-14 17:51 - 00000000 ____D C:\Program Files (x86)\VIA
2017-02-14 17:51 - 2007-04-11 08:35 - 00414632 ____N (Microsoft Corporation) C:\WINDOWS\difxapi.dll
2017-02-14 17:50 - 2017-02-17 20:35 - 00000000 ____D C:\Users\ASUS\AppData\Local\NVIDIA
2017-02-14 17:50 - 2017-02-17 20:34 - 00000000 ____D C:\Users\ASUS\AppData\Local\NVIDIA Corporation
2017-02-14 17:50 - 2017-02-14 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-02-14 17:50 - 2017-02-14 17:50 - 00003688 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:50 - 2017-02-14 17:50 - 00001432 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-02-14 17:50 - 2017-02-10 01:52 - 01854400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-02-14 17:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2017-02-14 17:49 - 2017-02-14 17:49 - 00003738 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003738 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003676 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003500 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:49 - 2017-02-14 17:49 - 00003440 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-14 17:48 - 2017-02-14 17:48 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-14 17:48 - 2017-02-09 23:39 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-02-14 17:48 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-02-14 17:48 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-02-14 17:48 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-02-14 17:48 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-02-14 17:44 - 2017-02-10 01:52 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 34937280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 28212280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 19110088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 19006832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 16510160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 16398896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 14373824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2017-02-14 17:44 - 2017-02-10 01:52 - 13377072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 11122912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 11019704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 09305984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
Re: Zavirovaný pc s pomocí viru yundooo
2017-02-14 17:44 - 2017-02-10 01:52 - 08990072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 04064088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 03627064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 03583560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 03187256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01600056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01051584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00989120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00961080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00912440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00895272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00687224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00611384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00576192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00504104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00500792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00492744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00425288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00408272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00217528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-02-14 17:44 - 2017-02-10 01:52 - 00170360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00153184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00148016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00131720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00101824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00091584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00047664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-02-14 17:44 - 2017-02-10 01:52 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-02-14 17:44 - 2017-02-10 01:52 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-02-14 17:40 - 2017-02-14 17:40 - 00000000 ____D C:\Users\ASUS\AppData\Local\Broadcom
2017-02-14 17:40 - 2012-09-28 05:52 - 00161560 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwampfl.sys
2017-02-14 17:39 - 2012-09-28 05:51 - 00057263 _____ C:\WINDOWS\system32\Drivers\BCM20702A1_001.002.014.0889.0928.hex
2017-02-14 17:39 - 2012-09-19 04:15 - 00186648 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwaudio.sys
2017-02-14 17:39 - 2012-09-16 20:34 - 00224568 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwavdt.sys
2017-02-14 17:39 - 2012-09-16 20:34 - 00022328 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwrchid.sys
2017-02-14 17:39 - 2012-08-25 00:03 - 02265400 _____ (Broadcom Corporation.) C:\WINDOWS\system32\BcmBtRSupport.dll
2017-02-14 17:39 - 2012-08-25 00:03 - 02252088 _____ (Broadcom Corporation.) C:\WINDOWS\system32\BtwRSupportService.exe
2017-02-14 17:39 - 2012-08-25 00:02 - 00165688 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\bcbtums.sys
2017-02-14 17:39 - 2012-07-27 00:48 - 00040248 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwl2cap.sys
2017-02-14 17:38 - 2017-02-14 17:38 - 00000000 ____D C:\Program Files\WIDCOMM
2017-02-14 17:37 - 2017-02-14 17:37 - 02377944 _____ C:\Users\ASUS\Downloads\winrar-x64-540cz (1).exe
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\WinRAR
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\Program Files\WinRAR
2017-02-14 17:34 - 2017-02-14 17:35 - 392628288 _____ (NVIDIA Corporation) C:\Users\ASUS\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe
2017-02-14 17:32 - 2017-02-14 17:32 - 00002291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-14 17:32 - 2017-02-14 17:32 - 00002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-14 17:32 - 2017-02-09 23:57 - 07791217 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-14 17:32 - 2017-02-09 23:57 - 06403640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 02477504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-14 17:31 - 2017-02-24 20:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-14 17:31 - 2017-02-10 01:52 - 00514616 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-02-14 17:31 - 2017-02-10 01:52 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-02-14 17:31 - 2017-02-10 01:52 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-14 17:30 - 2017-02-17 20:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-14 17:30 - 2017-02-14 18:05 - 00000000 ____D C:\Users\ASUS\AppData\Local\Google
2017-02-14 17:30 - 2017-02-14 17:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-14 17:30 - 2017-02-14 17:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-14 17:30 - 2017-02-14 17:31 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-14 17:30 - 2017-02-14 17:30 - 00003384 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-02-14 17:30 - 2017-02-14 17:30 - 00003256 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-02-14 17:28 - 2017-02-24 19:23 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B88DF1AC-01A5-47D7-B540-E638679BE3D7}
2017-02-14 17:28 - 2017-02-15 10:25 - 00000000 __SHD C:\Users\ASUS\AppData\LocalLow\EmieUserList
2017-02-14 17:28 - 2017-02-15 10:25 - 00000000 __SHD C:\Users\ASUS\AppData\LocalLow\EmieSiteList
2017-02-14 17:28 - 2017-02-14 17:28 - 00000000 __SHD C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList
2017-02-14 17:28 - 2017-02-14 17:28 - 00000000 __SHD C:\Users\ASUS\AppData\Local\EmieBrowserModeList
2017-02-14 17:28 - 2017-02-14 17:28 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Macromedia
2017-02-14 17:27 - 2017-02-24 07:19 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2685584803-2520720662-1230236981-1001
2017-02-14 17:22 - 2017-02-14 17:22 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-02-14 17:21 - 2017-02-24 20:44 - 00000000 ____D C:\Users\ASUS\AppData\Local\VirtualStore
2017-02-14 17:21 - 2017-02-22 19:32 - 00000000 ____D C:\Users\ASUS\AppData\Local\Packages
2017-02-14 17:21 - 2017-02-14 19:52 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Adobe
2017-02-14 17:21 - 2017-02-14 17:21 - 00001426 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-02-14 17:21 - 2017-02-14 17:21 - 00000020 ___SH C:\Users\ASUS\ntuser.ini
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Šablony
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Poslední
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Okolní síť
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Dokumenty
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Data aplikací
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Šablony
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Plocha
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Oblíbené položky
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Dokumenty
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Data aplikací
2017-02-14 17:17 - 2017-02-14 17:18 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2017-02-14 17:17 - 2017-02-14 17:18 - 00009528 _____ C:\WINDOWS\diagerr.xml
2017-02-14 17:16 - 2017-02-23 20:31 - 00000000 ____D C:\Users\ASUS
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Šablony
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Soubory cookie
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Poslední
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Okolní tiskárny
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Okolní síť
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Nabídka Start
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Dokumenty
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Documents\Obrázky
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Documents\Hudba
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Documents\Filmy
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Data aplikací
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\AppData\Local\Data aplikací
2017-02-14 17:16 - 2014-11-21 06:02 - 00000369 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2017-02-14 17:16 - 2014-11-21 06:02 - 00000369 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2017-02-14 17:10 - 2017-02-14 18:53 - 00000000 ___DC C:\WINDOWS\Panther
2017-02-14 17:09 - 2017-02-16 12:17 - 00000000 ____D C:\Windows.old
2017-02-14 17:09 - 2017-02-14 17:09 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2017-02-14 17:09 - 2017-02-14 17:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2017-02-14 17:09 - 2017-02-14 17:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2017-02-14 15:56 - 2017-02-14 15:57 - 01483336 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\mediacreationtool (1).exe
2017-02-14 10:17 - 2017-02-14 10:17 - 00000000 ___RD C:\Users\ASUS\Creative Cloud Files
2017-02-13 21:44 - 2017-02-13 21:44 - 01191360 _____ ( ) C:\Users\ASUS\Downloads\hwmonitor_1.30.exe
2017-02-13 21:44 - 2017-02-13 21:44 - 01090860 _____ ( ) C:\Users\ASUS\Downloads\Nepotvrzeno 604593.crdownload
2017-02-13 18:48 - 2017-02-13 18:48 - 00337233 _____ C:\Users\ASUS\Desktop\Bez názvu.wma
2017-02-13 18:20 - 2017-02-13 18:20 - 00000000 ___HD C:\$SysReset
2017-02-13 17:21 - 2012-10-22 11:13 - 02206864 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Drivers\viahduaa.sys
2017-02-13 17:21 - 2012-10-22 09:44 - 02994808 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIAPropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 01161336 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaKaraokeApo.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 01119352 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaMicArrayAPO.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00683640 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIASysFx.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00248952 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Dts2APO.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00123512 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaKaraokePropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00095352 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaMicArrayPropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00092280 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Dts2PropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00070776 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\VtSrdAPO.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00055416 _____ (TODO: <Company name>) C:\WINDOWS\system32\PropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00027768 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViakaraokeSrv.exe
2017-02-13 17:21 - 2012-09-24 09:33 - 03141496 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVIA64.dll
2017-02-13 17:21 - 2012-09-24 09:32 - 02080120 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2017-02-13 17:21 - 2012-09-05 10:12 - 00860024 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2017-02-13 17:21 - 2012-07-15 06:16 - 00394104 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-02-13 17:21 - 2012-06-28 09:54 - 00086016 _____ (QSound Labs, Inc.) C:\WINDOWS\system32\nQPropPageExt.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEP64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEP64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\WINDOWS\system32\EED64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\WINDOWS\system32\EED64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEL64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEL64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEA64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEA64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEG64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEG64A.dll
2017-02-13 17:21 - 2011-09-27 11:13 - 00879616 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMAPO64.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00739328 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMAPO32.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00619520 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMTHX64.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00554496 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMTHX32.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00057856 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPLD64.DLL
2017-02-13 17:21 - 2011-06-08 11:19 - 00083968 _____ (QSound Labs, Inc.) C:\WINDOWS\system32\nQAPO.dll
2017-02-13 17:21 - 2010-10-26 11:55 - 00074240 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMWRP64.DLL
2017-02-13 17:21 - 2010-10-26 11:54 - 00053760 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPCN64.DLL
2017-02-13 17:21 - 2009-07-31 04:40 - 00025600 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\VMfilt64.sys
2017-02-13 17:18 - 2017-02-13 17:18 - 145957149 _____ C:\Users\ASUS\Downloads\v10_1200a.zip
2017-02-13 17:06 - 2017-02-13 17:06 - 133198069 _____ C:\Users\ASUS\Downloads\VIA_HD_Audio_v11_1100f_Win10RS1_logo_11012016.zip
2017-02-13 15:30 - 2017-02-13 15:30 - 00000000 ____D C:\Users\ASUS\Documents\Složka Bluetooth Exchange
2017-02-13 15:21 - 2017-02-13 15:22 - 572263654 _____ C:\Users\ASUS\Downloads\UT_USB_BT400_6513400.rar
2017-02-13 14:47 - 2017-02-15 11:12 - 00000000 __RHD C:\ESD
2017-02-13 14:46 - 2017-02-13 14:46 - 00000000 ___HD C:\$Windows.~WS
2017-02-13 14:44 - 2017-02-13 14:44 - 18309328 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\MediaCreationTool.exe
2017-02-13 14:14 - 2017-02-13 14:14 - 41928587 _____ C:\Users\ASUS\Downloads\TeamViewer.Premium.12..rar
2017-02-13 14:08 - 2017-02-13 14:08 - 12975024 _____ (TeamViewer GmbH) C:\Users\ASUS\Downloads\TeamViewer_Setup_cs.exe
2017-02-13 10:09 - 2017-02-13 10:09 - 04399816 _____ C:\Users\ASUS\Downloads\2017-02-13-02-31-27271-224448-m7jccaql13sbzkpmznej.tar
2017-02-13 10:08 - 2017-02-13 10:09 - 181260213 _____ C:\Users\ASUS\Downloads\2017-02-13-08-31-27741-225535-rvvtm10zibxhkfxw213g.tar
2017-02-13 10:07 - 2017-02-13 10:08 - 216042874 _____ C:\Users\ASUS\Downloads\2017-01-05-16-57-27741-225535-4fnma49binj7pr6v7n16.tar
2017-02-13 10:06 - 2017-02-13 10:07 - 379545910 _____ C:\Users\ASUS\Downloads\2017-01-20-22-31-27741-225535-qqle6tqadfmw7e58ity8.tar
2017-02-12 21:48 - 2017-02-12 21:48 - 07363072 _____ C:\Users\ASUS\Downloads\MM26_CS.msi
2017-02-12 21:46 - 2017-02-12 21:46 - 30533688 _____ C:\Users\ASUS\Downloads\vlc-2.2.4-win32.exe
2017-02-12 21:37 - 2017-02-13 17:04 - 00000000 ___RD C:\Users\ASUS\OneDrive
2017-02-12 21:37 - 2017-02-12 21:39 - 120703968 _____ (obsproject.com) C:\Users\ASUS\Downloads\OBS-Studio-17.0.2-Full-Installer.exe
2017-02-12 21:35 - 2017-02-12 21:35 - 137322160 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\wlsetup-all.exe
2017-02-12 10:18 - 2017-02-12 10:18 - 05205147 _____ C:\Users\ASUS\Downloads\InstantOn_Win7_64_Z232.zip
2017-02-12 10:11 - 2017-02-12 10:11 - 15217485 _____ C:\Users\ASUS\Downloads\Splendid_Win7_32_64_1020028.zip
2017-02-11 12:18 - 2017-02-11 20:19 - 00000163 _____ C:\Users\ASUS\Documents\ClownfishForTeamspeak.ini
2017-02-11 12:18 - 2017-02-11 12:18 - 00248280 _____ C:\Users\ASUS\Downloads\ClownfishVoiceChanger-v1.65.ts3_plugin
2017-02-10 23:13 - 2017-02-10 23:13 - 00000000 ____D C:\Users\ASUS\Desktop\Loga do Youtube
2017-02-10 23:11 - 2017-02-10 23:11 - 00000949 _____ C:\Users\ASUS\Desktop\World Of Tanks.lnk
2017-02-10 23:10 - 2017-02-10 23:10 - 00000991 _____ C:\Users\ASUS\Desktop\World Of Warships.lnk
2017-02-10 22:23 - 2017-02-10 22:25 - 1110407495 _____ C:\Users\ASUS\Downloads\Heroes-of-Might-and-Magic-4-Complete-by-DejVIIK.rar
2017-02-10 16:41 - 2017-02-10 16:41 - 100273008 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\directx_Jun2010_redist.exe
2017-02-10 16:41 - 2017-02-10 16:41 - 00000000 ____D C:\Users\ASUS\Desktop\DirectX
2017-02-10 15:15 - 2017-02-10 15:15 - 00000000 __RHD C:\MSOCache
2017-02-10 15:13 - 2017-02-10 15:14 - 514250954 _____ C:\Users\ASUS\Downloads\Microsoft-Office-2007-CZ-full+key.rar
2017-02-10 14:58 - 2017-02-10 14:58 - 26496761 _____ (Audacity Team ) C:\Users\ASUS\Downloads\audacity-win-2.1.2.exe
2017-02-10 00:07 - 2017-02-10 00:08 - 01673544 _____ ( ) C:\Users\ASUS\Downloads\cpu-z_1.78-en.exe
2017-02-09 21:26 - 2017-02-09 21:26 - 04568220 _____ C:\Users\ASUS\Downloads\Cloudkid By DavidPolak.zip
2017-02-09 20:18 - 2017-02-09 20:18 - 00000000 ____D C:\Users\ASUS\Documents\League of Legends
2017-02-09 18:36 - 2017-02-09 18:38 - 213422944 _____ (Intel Corporation) C:\Users\ASUS\Downloads\win64_154028.4501.exe
2017-02-09 18:29 - 2017-02-09 18:30 - 10367435 _____ C:\Users\ASUS\Downloads\LiveUpdate_Win81_64_VER337.zip
2017-02-09 18:28 - 2017-02-09 18:28 - 00000000 ____D C:\Users\ASUS\.QtWebEngineProcess
2017-02-09 18:26 - 2017-02-09 18:26 - 00000000 ____D C:\Users\ASUS\.TeamSpeak 3
2017-02-09 18:16 - 2017-02-09 18:17 - 107020416 _____ (ESET) C:\Users\ASUS\Downloads\eav_nt64_csy.exe
2017-02-09 18:04 - 2017-02-09 18:04 - 75821769 _____ C:\Users\ASUS\Downloads\RemoteLinkSetup.zip
2017-02-09 18:01 - 2017-02-09 18:01 - 52769312 _____ C:\Users\ASUS\Downloads\SmartGesture_Win81_64_VER409.zip
2017-02-09 17:59 - 2017-02-09 17:59 - 09955696 _____ (Intel) C:\Users\ASUS\Downloads\Intel Driver Update Utility Installer.exe
2017-02-09 17:54 - 2017-02-09 17:54 - 61520750 _____ C:\Users\ASUS\Downloads\UT_PCE_N15_1012 (1).zip
2017-02-09 17:48 - 2017-02-09 17:48 - 161958737 _____ C:\Users\ASUS\Downloads\DR_PCE-N15_V1018.zip
2017-02-09 17:46 - 2017-02-14 18:03 - 00000000 ____D C:\AsusVibeData
2017-02-09 17:46 - 2017-02-09 17:46 - 06309839 _____ C:\Users\ASUS\Downloads\Vibe_Vista_32_Z206110.zip
2017-02-09 17:45 - 2017-02-09 17:45 - 00000000 ____D C:\Asus WebStorage
2017-02-09 17:44 - 2017-02-14 18:22 - 00000000 __SHD C:\aws
2017-02-09 17:43 - 2017-02-09 17:43 - 12812000 _____ (ASUS Cloud Corporation) C:\Users\ASUS\Downloads\ASUSWebStorageSyncAgent2.2.12.577.exe
2017-02-09 17:39 - 2017-02-09 17:39 - 61520750 _____ C:\Users\ASUS\Downloads\UT_PCE_N15_1012.zip
2017-02-09 17:39 - 2017-02-09 17:39 - 08719096 _____ C:\Users\ASUS\Downloads\DR_PCE_N15_1016.zip
2017-02-09 17:19 - 2017-02-19 15:24 - 00000000 ____D C:\Users\ASUS\Documents\My Games
2017-02-09 17:19 - 2017-02-09 17:19 - 00000000 ____D C:\Users\ASUS\Documents\Lucius
2017-02-09 17:14 - 2017-02-09 17:14 - 01446792 _____ C:\Users\ASUS\Downloads\SteamSetup.exe
2017-02-09 17:13 - 2017-02-14 18:25 - 00002747 _____ C:\Users\Public\Desktop\Skype.lnk
2017-02-09 17:13 - 2017-02-09 17:13 - 00000000 ____D C:\Users\ASUS\Tracing
2017-02-09 17:12 - 2017-02-09 17:12 - 01629144 _____ (Skype Technologies S.A.) C:\Users\ASUS\Downloads\SkypeSetup.exe
2017-02-09 17:10 - 2017-02-09 17:10 - 77761888 _____ (TeamSpeak Systems GmbH) C:\Users\ASUS\Downloads\TeamSpeak3-Client-win64-3.1.0.1.exe
2017-02-09 17:04 - 2017-02-14 17:00 - 00000177 ____H C:\dvmexp.idx
2017-02-09 17:03 - 2017-02-09 17:03 - 103072485 _____ C:\Users\ASUS\Downloads\VIA_Audio_V6019500_XPVistaWin7.zip
2017-02-09 17:02 - 2017-02-09 17:02 - 24172114 _____ C:\Users\ASUS\Downloads\IMSM_V8901023.zip
2017-02-09 17:01 - 2017-02-09 17:01 - 04262353 _____ C:\Users\ASUS\Downloads\TurboV_V10103_XpVistaWin7.zip
2017-02-09 17:00 - 2017-02-09 17:01 - 08480925 _____ C:\Users\ASUS\Downloads\ProbeII_V10483_XpVistaWin7.zip
2017-02-09 17:00 - 2017-02-09 17:00 - 10870018 _____ C:\Users\ASUS\Downloads\ASUSUpdt_v71711_WinXPVistaWin7.zip
2017-02-09 16:59 - 2017-02-09 16:59 - 22620888 _____ C:\Users\ASUS\Downloads\AISuite_V10542_WinXPVistaWin7.zip
2017-02-09 16:58 - 2017-02-09 16:58 - 11923296 _____ C:\Users\ASUS\Downloads\Epu4Engine_V10102_XpVistaWin7.zip
2017-02-09 16:57 - 2017-02-14 17:49 - 00000000 ___HD C:\temp
2017-02-09 16:57 - 2017-02-09 17:04 - 00000000 ___HD C:\dvmexp
2017-02-09 16:57 - 2017-02-09 16:57 - 08092289 _____ C:\Users\ASUS\Downloads\Realtek_LAN_Utility_V2010.zip
2017-02-09 16:57 - 2017-02-09 16:57 - 00000000 ___HD C:\ASUS.000
2017-02-09 16:56 - 2017-02-09 16:57 - 00000000 ___HD C:\ASUS.SYS
2017-02-09 16:55 - 2017-02-09 16:55 - 330636612 _____ C:\Users\ASUS\Downloads\ExpressGate_V141026Win7VistaXP3264.zip
2017-02-09 16:54 - 2017-02-09 16:54 - 01656601 _____ C:\Users\ASUS\Downloads\AiCharger_V10006_XpVistaWin7.zip
2017-02-09 16:53 - 2017-02-09 16:53 - 05882558 _____ C:\Users\ASUS\Downloads\Intel_chipset_V9111025.zip
2017-02-09 16:53 - 2017-02-09 16:53 - 00000000 ____D C:\Intel
2017-02-09 16:52 - 2017-02-09 16:52 - 05966207 _____ C:\Users\ASUS\Downloads\RTL8112L_V768202009_WIN7.zip
2017-02-09 16:52 - 2009-07-22 17:24 - 00097792 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RTNUninst64.dll
2017-02-09 16:49 - 2017-02-09 16:49 - 02377944 _____ C:\Users\ASUS\Downloads\winrar-x64-540cz.exe
2017-02-09 16:32 - 2017-02-09 16:32 - 00000000 ____D C:\NVIDIA
2017-02-09 16:31 - 2017-02-09 16:31 - 391600160 _____ (NVIDIA Corporation) C:\Users\ASUS\Downloads\378.49-desktop-win8-win7-64bit-international-whql.exe
2017-02-09 16:24 - 2017-02-09 16:24 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2017-02-09 16:24 - 2017-02-09 16:24 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2017-02-09 16:24 - 2017-02-09 16:24 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2017-01-26 01:13 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2017-01-26 01:12 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-02-23 20:40 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-23 20:31 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-02-23 15:21 - 2013-08-22 16:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-23 12:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppCompat
2017-02-22 21:17 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2017-02-22 19:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-22 19:32 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-22 10:57 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-02-22 10:30 - 2014-11-21 13:14 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2017-02-19 00:59 - 2013-08-22 15:44 - 05147664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-02-17 15:49 - 2014-11-21 05:53 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-17 15:49 - 2014-11-21 05:10 - 00738682 _____ C:\WINDOWS\system32\perfh005.dat
2017-02-17 15:49 - 2014-11-21 05:10 - 00151404 _____ C:\WINDOWS\system32\perfc005.dat
2017-02-17 10:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2017-02-17 10:07 - 2016-11-03 06:29 - 00000000 ____D C:\Users\ASUS\Desktop\Sister Location - Custom Night
2017-02-15 11:55 - 2013-08-22 14:25 - 00000245 _____ C:\WINDOWS\win.ini
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-02-15 10:03 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-02-15 10:02 - 2014-11-21 05:34 - 00000000 ____D C:\WINDOWS\ShellNew
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-02-15 09:20 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2017-02-14 21:10 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-02-14 18:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-02-14 18:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-02-14 17:49 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-02-14 17:32 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2017-02-14 17:20 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2017-02-14 17:18 - 2010-11-21 10:38 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-02-14 17:09 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2017-02-10 01:52 - 2017-01-04 10:08 - 00042606 _____ C:\WINDOWS\system32\nvinfo.pb
2017-02-09 16:57 - 2009-11-26 17:41 - 00000071 ____H C:\splash.idx
==================== Files in the root of some directories =======
2017-02-17 09:47 - 2017-02-17 09:47 - 3313720 _____ () C:\Users\ASUS\AppData\Local\Tempicpinst.exe
2017-02-15 09:21 - 2016-11-23 14:37 - 0000570 _____ () C:\Users\ASUS\AppData\Local\TroubleshooterConfig.json
Files to move or delete:
====================
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-02-14 17:11
==================== End of FRST.txt ============================
2017-02-14 17:44 - 2017-02-10 01:52 - 04064088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 03627064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 03583560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 03187256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01600056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 01051584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00989120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00961080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00912440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00895272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00687224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00611384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00576192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00504104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00500792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00492744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00425288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00408272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00217528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2017-02-14 17:44 - 2017-02-10 01:52 - 00170360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00153184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00148016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00131720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00101824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00091584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00047664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-02-14 17:44 - 2017-02-10 01:52 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2017-02-14 17:44 - 2017-02-10 01:52 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-02-14 17:44 - 2017-02-10 01:52 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-02-14 17:40 - 2017-02-14 17:40 - 00000000 ____D C:\Users\ASUS\AppData\Local\Broadcom
2017-02-14 17:40 - 2012-09-28 05:52 - 00161560 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwampfl.sys
2017-02-14 17:39 - 2012-09-28 05:51 - 00057263 _____ C:\WINDOWS\system32\Drivers\BCM20702A1_001.002.014.0889.0928.hex
2017-02-14 17:39 - 2012-09-19 04:15 - 00186648 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwaudio.sys
2017-02-14 17:39 - 2012-09-16 20:34 - 00224568 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwavdt.sys
2017-02-14 17:39 - 2012-09-16 20:34 - 00022328 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwrchid.sys
2017-02-14 17:39 - 2012-08-25 00:03 - 02265400 _____ (Broadcom Corporation.) C:\WINDOWS\system32\BcmBtRSupport.dll
2017-02-14 17:39 - 2012-08-25 00:03 - 02252088 _____ (Broadcom Corporation.) C:\WINDOWS\system32\BtwRSupportService.exe
2017-02-14 17:39 - 2012-08-25 00:02 - 00165688 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\bcbtums.sys
2017-02-14 17:39 - 2012-07-27 00:48 - 00040248 _____ (Broadcom Corporation.) C:\WINDOWS\system32\Drivers\btwl2cap.sys
2017-02-14 17:38 - 2017-02-14 17:38 - 00000000 ____D C:\Program Files\WIDCOMM
2017-02-14 17:37 - 2017-02-14 17:37 - 02377944 _____ C:\Users\ASUS\Downloads\winrar-x64-540cz (1).exe
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\WinRAR
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-02-14 17:37 - 2017-02-14 17:37 - 00000000 ____D C:\Program Files\WinRAR
2017-02-14 17:34 - 2017-02-14 17:35 - 392628288 _____ (NVIDIA Corporation) C:\Users\ASUS\Downloads\378.66-desktop-win8-win7-64bit-international-whql.exe
2017-02-14 17:32 - 2017-02-14 17:32 - 00002291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-14 17:32 - 2017-02-14 17:32 - 00002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-14 17:32 - 2017-02-09 23:57 - 07791217 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-14 17:32 - 2017-02-09 23:57 - 06403640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 02477504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-14 17:31 - 2017-02-24 20:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-14 17:31 - 2017-02-10 01:52 - 00514616 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-02-14 17:31 - 2017-02-10 01:52 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-02-14 17:31 - 2017-02-10 01:52 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-14 17:30 - 2017-02-17 20:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-14 17:30 - 2017-02-14 18:05 - 00000000 ____D C:\Users\ASUS\AppData\Local\Google
2017-02-14 17:30 - 2017-02-14 17:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-14 17:30 - 2017-02-14 17:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-14 17:30 - 2017-02-14 17:31 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-14 17:30 - 2017-02-14 17:30 - 00003384 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-02-14 17:30 - 2017-02-14 17:30 - 00003256 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-02-14 17:28 - 2017-02-24 19:23 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B88DF1AC-01A5-47D7-B540-E638679BE3D7}
2017-02-14 17:28 - 2017-02-15 10:25 - 00000000 __SHD C:\Users\ASUS\AppData\LocalLow\EmieUserList
2017-02-14 17:28 - 2017-02-15 10:25 - 00000000 __SHD C:\Users\ASUS\AppData\LocalLow\EmieSiteList
2017-02-14 17:28 - 2017-02-14 17:28 - 00000000 __SHD C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList
2017-02-14 17:28 - 2017-02-14 17:28 - 00000000 __SHD C:\Users\ASUS\AppData\Local\EmieBrowserModeList
2017-02-14 17:28 - 2017-02-14 17:28 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Macromedia
2017-02-14 17:27 - 2017-02-24 07:19 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2685584803-2520720662-1230236981-1001
2017-02-14 17:22 - 2017-02-14 17:22 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2017-02-14 17:21 - 2017-02-24 20:44 - 00000000 ____D C:\Users\ASUS\AppData\Local\VirtualStore
2017-02-14 17:21 - 2017-02-22 19:32 - 00000000 ____D C:\Users\ASUS\AppData\Local\Packages
2017-02-14 17:21 - 2017-02-14 19:52 - 00000000 ____D C:\Users\ASUS\AppData\Roaming\Adobe
2017-02-14 17:21 - 2017-02-14 17:21 - 00001426 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-02-14 17:21 - 2017-02-14 17:21 - 00000020 ___SH C:\Users\ASUS\ntuser.ini
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Šablony
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Poslední
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Okolní síť
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Dokumenty
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\Data aplikací
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Šablony
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Plocha
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Oblíbené položky
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Dokumenty
2017-02-14 17:20 - 2017-02-14 17:20 - 00000000 _SHDL C:\ProgramData\Data aplikací
2017-02-14 17:17 - 2017-02-14 17:18 - 00009528 _____ C:\WINDOWS\diagwrn.xml
2017-02-14 17:17 - 2017-02-14 17:18 - 00009528 _____ C:\WINDOWS\diagerr.xml
2017-02-14 17:16 - 2017-02-23 20:31 - 00000000 ____D C:\Users\ASUS
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Šablony
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Soubory cookie
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Poslední
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Okolní tiskárny
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Okolní síť
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Nabídka Start
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Dokumenty
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Documents\Obrázky
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Documents\Hudba
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Documents\Filmy
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\Data aplikací
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-02-14 17:16 - 2017-02-14 17:16 - 00000000 _SHDL C:\Users\ASUS\AppData\Local\Data aplikací
2017-02-14 17:16 - 2014-11-21 06:02 - 00000369 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2017-02-14 17:16 - 2014-11-21 06:02 - 00000369 _____ C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2017-02-14 17:10 - 2017-02-14 18:53 - 00000000 ___DC C:\WINDOWS\Panther
2017-02-14 17:09 - 2017-02-16 12:17 - 00000000 ____D C:\Windows.old
2017-02-14 17:09 - 2017-02-14 17:09 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2017-02-14 17:09 - 2017-02-14 17:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2017-02-14 17:09 - 2017-02-14 17:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2017-02-14 15:56 - 2017-02-14 15:57 - 01483336 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\mediacreationtool (1).exe
2017-02-14 10:17 - 2017-02-14 10:17 - 00000000 ___RD C:\Users\ASUS\Creative Cloud Files
2017-02-13 21:44 - 2017-02-13 21:44 - 01191360 _____ ( ) C:\Users\ASUS\Downloads\hwmonitor_1.30.exe
2017-02-13 21:44 - 2017-02-13 21:44 - 01090860 _____ ( ) C:\Users\ASUS\Downloads\Nepotvrzeno 604593.crdownload
2017-02-13 18:48 - 2017-02-13 18:48 - 00337233 _____ C:\Users\ASUS\Desktop\Bez názvu.wma
2017-02-13 18:20 - 2017-02-13 18:20 - 00000000 ___HD C:\$SysReset
2017-02-13 17:21 - 2012-10-22 11:13 - 02206864 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Drivers\viahduaa.sys
2017-02-13 17:21 - 2012-10-22 09:44 - 02994808 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIAPropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 01161336 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaKaraokeApo.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 01119352 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaMicArrayAPO.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00683640 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIASysFx.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00248952 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Dts2APO.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00123512 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaKaraokePropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00095352 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaMicArrayPropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00092280 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Dts2PropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00070776 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\VtSrdAPO.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00055416 _____ (TODO: <Company name>) C:\WINDOWS\system32\PropPageExt.dll
2017-02-13 17:21 - 2012-10-22 09:44 - 00027768 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViakaraokeSrv.exe
2017-02-13 17:21 - 2012-09-24 09:33 - 03141496 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVIA64.dll
2017-02-13 17:21 - 2012-09-24 09:32 - 02080120 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2017-02-13 17:21 - 2012-09-05 10:12 - 00860024 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2017-02-13 17:21 - 2012-07-15 06:16 - 00394104 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-02-13 17:21 - 2012-06-28 09:54 - 00086016 _____ (QSound Labs, Inc.) C:\WINDOWS\system32\nQPropPageExt.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEP64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEP64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\WINDOWS\system32\EED64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\WINDOWS\system32\EED64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEL64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEL64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEA64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEA64A.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEG64H.dll
2017-02-13 17:21 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\WINDOWS\system32\EEG64A.dll
2017-02-13 17:21 - 2011-09-27 11:13 - 00879616 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMAPO64.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00739328 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMAPO32.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00619520 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMTHX64.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00554496 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMTHX32.DLL
2017-02-13 17:21 - 2011-09-27 11:13 - 00057856 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPLD64.DLL
2017-02-13 17:21 - 2011-06-08 11:19 - 00083968 _____ (QSound Labs, Inc.) C:\WINDOWS\system32\nQAPO.dll
2017-02-13 17:21 - 2010-10-26 11:55 - 00074240 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMWRP64.DLL
2017-02-13 17:21 - 2010-10-26 11:54 - 00053760 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPCN64.DLL
2017-02-13 17:21 - 2009-07-31 04:40 - 00025600 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\VMfilt64.sys
2017-02-13 17:18 - 2017-02-13 17:18 - 145957149 _____ C:\Users\ASUS\Downloads\v10_1200a.zip
2017-02-13 17:06 - 2017-02-13 17:06 - 133198069 _____ C:\Users\ASUS\Downloads\VIA_HD_Audio_v11_1100f_Win10RS1_logo_11012016.zip
2017-02-13 15:30 - 2017-02-13 15:30 - 00000000 ____D C:\Users\ASUS\Documents\Složka Bluetooth Exchange
2017-02-13 15:21 - 2017-02-13 15:22 - 572263654 _____ C:\Users\ASUS\Downloads\UT_USB_BT400_6513400.rar
2017-02-13 14:47 - 2017-02-15 11:12 - 00000000 __RHD C:\ESD
2017-02-13 14:46 - 2017-02-13 14:46 - 00000000 ___HD C:\$Windows.~WS
2017-02-13 14:44 - 2017-02-13 14:44 - 18309328 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\MediaCreationTool.exe
2017-02-13 14:14 - 2017-02-13 14:14 - 41928587 _____ C:\Users\ASUS\Downloads\TeamViewer.Premium.12..rar
2017-02-13 14:08 - 2017-02-13 14:08 - 12975024 _____ (TeamViewer GmbH) C:\Users\ASUS\Downloads\TeamViewer_Setup_cs.exe
2017-02-13 10:09 - 2017-02-13 10:09 - 04399816 _____ C:\Users\ASUS\Downloads\2017-02-13-02-31-27271-224448-m7jccaql13sbzkpmznej.tar
2017-02-13 10:08 - 2017-02-13 10:09 - 181260213 _____ C:\Users\ASUS\Downloads\2017-02-13-08-31-27741-225535-rvvtm10zibxhkfxw213g.tar
2017-02-13 10:07 - 2017-02-13 10:08 - 216042874 _____ C:\Users\ASUS\Downloads\2017-01-05-16-57-27741-225535-4fnma49binj7pr6v7n16.tar
2017-02-13 10:06 - 2017-02-13 10:07 - 379545910 _____ C:\Users\ASUS\Downloads\2017-01-20-22-31-27741-225535-qqle6tqadfmw7e58ity8.tar
2017-02-12 21:48 - 2017-02-12 21:48 - 07363072 _____ C:\Users\ASUS\Downloads\MM26_CS.msi
2017-02-12 21:46 - 2017-02-12 21:46 - 30533688 _____ C:\Users\ASUS\Downloads\vlc-2.2.4-win32.exe
2017-02-12 21:37 - 2017-02-13 17:04 - 00000000 ___RD C:\Users\ASUS\OneDrive
2017-02-12 21:37 - 2017-02-12 21:39 - 120703968 _____ (obsproject.com) C:\Users\ASUS\Downloads\OBS-Studio-17.0.2-Full-Installer.exe
2017-02-12 21:35 - 2017-02-12 21:35 - 137322160 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\wlsetup-all.exe
2017-02-12 10:18 - 2017-02-12 10:18 - 05205147 _____ C:\Users\ASUS\Downloads\InstantOn_Win7_64_Z232.zip
2017-02-12 10:11 - 2017-02-12 10:11 - 15217485 _____ C:\Users\ASUS\Downloads\Splendid_Win7_32_64_1020028.zip
2017-02-11 12:18 - 2017-02-11 20:19 - 00000163 _____ C:\Users\ASUS\Documents\ClownfishForTeamspeak.ini
2017-02-11 12:18 - 2017-02-11 12:18 - 00248280 _____ C:\Users\ASUS\Downloads\ClownfishVoiceChanger-v1.65.ts3_plugin
2017-02-10 23:13 - 2017-02-10 23:13 - 00000000 ____D C:\Users\ASUS\Desktop\Loga do Youtube
2017-02-10 23:11 - 2017-02-10 23:11 - 00000949 _____ C:\Users\ASUS\Desktop\World Of Tanks.lnk
2017-02-10 23:10 - 2017-02-10 23:10 - 00000991 _____ C:\Users\ASUS\Desktop\World Of Warships.lnk
2017-02-10 22:23 - 2017-02-10 22:25 - 1110407495 _____ C:\Users\ASUS\Downloads\Heroes-of-Might-and-Magic-4-Complete-by-DejVIIK.rar
2017-02-10 16:41 - 2017-02-10 16:41 - 100273008 _____ (Microsoft Corporation) C:\Users\ASUS\Downloads\directx_Jun2010_redist.exe
2017-02-10 16:41 - 2017-02-10 16:41 - 00000000 ____D C:\Users\ASUS\Desktop\DirectX
2017-02-10 15:15 - 2017-02-10 15:15 - 00000000 __RHD C:\MSOCache
2017-02-10 15:13 - 2017-02-10 15:14 - 514250954 _____ C:\Users\ASUS\Downloads\Microsoft-Office-2007-CZ-full+key.rar
2017-02-10 14:58 - 2017-02-10 14:58 - 26496761 _____ (Audacity Team ) C:\Users\ASUS\Downloads\audacity-win-2.1.2.exe
2017-02-10 00:07 - 2017-02-10 00:08 - 01673544 _____ ( ) C:\Users\ASUS\Downloads\cpu-z_1.78-en.exe
2017-02-09 21:26 - 2017-02-09 21:26 - 04568220 _____ C:\Users\ASUS\Downloads\Cloudkid By DavidPolak.zip
2017-02-09 20:18 - 2017-02-09 20:18 - 00000000 ____D C:\Users\ASUS\Documents\League of Legends
2017-02-09 18:36 - 2017-02-09 18:38 - 213422944 _____ (Intel Corporation) C:\Users\ASUS\Downloads\win64_154028.4501.exe
2017-02-09 18:29 - 2017-02-09 18:30 - 10367435 _____ C:\Users\ASUS\Downloads\LiveUpdate_Win81_64_VER337.zip
2017-02-09 18:28 - 2017-02-09 18:28 - 00000000 ____D C:\Users\ASUS\.QtWebEngineProcess
2017-02-09 18:26 - 2017-02-09 18:26 - 00000000 ____D C:\Users\ASUS\.TeamSpeak 3
2017-02-09 18:16 - 2017-02-09 18:17 - 107020416 _____ (ESET) C:\Users\ASUS\Downloads\eav_nt64_csy.exe
2017-02-09 18:04 - 2017-02-09 18:04 - 75821769 _____ C:\Users\ASUS\Downloads\RemoteLinkSetup.zip
2017-02-09 18:01 - 2017-02-09 18:01 - 52769312 _____ C:\Users\ASUS\Downloads\SmartGesture_Win81_64_VER409.zip
2017-02-09 17:59 - 2017-02-09 17:59 - 09955696 _____ (Intel) C:\Users\ASUS\Downloads\Intel Driver Update Utility Installer.exe
2017-02-09 17:54 - 2017-02-09 17:54 - 61520750 _____ C:\Users\ASUS\Downloads\UT_PCE_N15_1012 (1).zip
2017-02-09 17:48 - 2017-02-09 17:48 - 161958737 _____ C:\Users\ASUS\Downloads\DR_PCE-N15_V1018.zip
2017-02-09 17:46 - 2017-02-14 18:03 - 00000000 ____D C:\AsusVibeData
2017-02-09 17:46 - 2017-02-09 17:46 - 06309839 _____ C:\Users\ASUS\Downloads\Vibe_Vista_32_Z206110.zip
2017-02-09 17:45 - 2017-02-09 17:45 - 00000000 ____D C:\Asus WebStorage
2017-02-09 17:44 - 2017-02-14 18:22 - 00000000 __SHD C:\aws
2017-02-09 17:43 - 2017-02-09 17:43 - 12812000 _____ (ASUS Cloud Corporation) C:\Users\ASUS\Downloads\ASUSWebStorageSyncAgent2.2.12.577.exe
2017-02-09 17:39 - 2017-02-09 17:39 - 61520750 _____ C:\Users\ASUS\Downloads\UT_PCE_N15_1012.zip
2017-02-09 17:39 - 2017-02-09 17:39 - 08719096 _____ C:\Users\ASUS\Downloads\DR_PCE_N15_1016.zip
2017-02-09 17:19 - 2017-02-19 15:24 - 00000000 ____D C:\Users\ASUS\Documents\My Games
2017-02-09 17:19 - 2017-02-09 17:19 - 00000000 ____D C:\Users\ASUS\Documents\Lucius
2017-02-09 17:14 - 2017-02-09 17:14 - 01446792 _____ C:\Users\ASUS\Downloads\SteamSetup.exe
2017-02-09 17:13 - 2017-02-14 18:25 - 00002747 _____ C:\Users\Public\Desktop\Skype.lnk
2017-02-09 17:13 - 2017-02-09 17:13 - 00000000 ____D C:\Users\ASUS\Tracing
2017-02-09 17:12 - 2017-02-09 17:12 - 01629144 _____ (Skype Technologies S.A.) C:\Users\ASUS\Downloads\SkypeSetup.exe
2017-02-09 17:10 - 2017-02-09 17:10 - 77761888 _____ (TeamSpeak Systems GmbH) C:\Users\ASUS\Downloads\TeamSpeak3-Client-win64-3.1.0.1.exe
2017-02-09 17:04 - 2017-02-14 17:00 - 00000177 ____H C:\dvmexp.idx
2017-02-09 17:03 - 2017-02-09 17:03 - 103072485 _____ C:\Users\ASUS\Downloads\VIA_Audio_V6019500_XPVistaWin7.zip
2017-02-09 17:02 - 2017-02-09 17:02 - 24172114 _____ C:\Users\ASUS\Downloads\IMSM_V8901023.zip
2017-02-09 17:01 - 2017-02-09 17:01 - 04262353 _____ C:\Users\ASUS\Downloads\TurboV_V10103_XpVistaWin7.zip
2017-02-09 17:00 - 2017-02-09 17:01 - 08480925 _____ C:\Users\ASUS\Downloads\ProbeII_V10483_XpVistaWin7.zip
2017-02-09 17:00 - 2017-02-09 17:00 - 10870018 _____ C:\Users\ASUS\Downloads\ASUSUpdt_v71711_WinXPVistaWin7.zip
2017-02-09 16:59 - 2017-02-09 16:59 - 22620888 _____ C:\Users\ASUS\Downloads\AISuite_V10542_WinXPVistaWin7.zip
2017-02-09 16:58 - 2017-02-09 16:58 - 11923296 _____ C:\Users\ASUS\Downloads\Epu4Engine_V10102_XpVistaWin7.zip
2017-02-09 16:57 - 2017-02-14 17:49 - 00000000 ___HD C:\temp
2017-02-09 16:57 - 2017-02-09 17:04 - 00000000 ___HD C:\dvmexp
2017-02-09 16:57 - 2017-02-09 16:57 - 08092289 _____ C:\Users\ASUS\Downloads\Realtek_LAN_Utility_V2010.zip
2017-02-09 16:57 - 2017-02-09 16:57 - 00000000 ___HD C:\ASUS.000
2017-02-09 16:56 - 2017-02-09 16:57 - 00000000 ___HD C:\ASUS.SYS
2017-02-09 16:55 - 2017-02-09 16:55 - 330636612 _____ C:\Users\ASUS\Downloads\ExpressGate_V141026Win7VistaXP3264.zip
2017-02-09 16:54 - 2017-02-09 16:54 - 01656601 _____ C:\Users\ASUS\Downloads\AiCharger_V10006_XpVistaWin7.zip
2017-02-09 16:53 - 2017-02-09 16:53 - 05882558 _____ C:\Users\ASUS\Downloads\Intel_chipset_V9111025.zip
2017-02-09 16:53 - 2017-02-09 16:53 - 00000000 ____D C:\Intel
2017-02-09 16:52 - 2017-02-09 16:52 - 05966207 _____ C:\Users\ASUS\Downloads\RTL8112L_V768202009_WIN7.zip
2017-02-09 16:52 - 2009-07-22 17:24 - 00097792 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RTNUninst64.dll
2017-02-09 16:49 - 2017-02-09 16:49 - 02377944 _____ C:\Users\ASUS\Downloads\winrar-x64-540cz.exe
2017-02-09 16:32 - 2017-02-09 16:32 - 00000000 ____D C:\NVIDIA
2017-02-09 16:31 - 2017-02-09 16:31 - 391600160 _____ (NVIDIA Corporation) C:\Users\ASUS\Downloads\378.49-desktop-win8-win7-64bit-international-whql.exe
2017-02-09 16:24 - 2017-02-09 16:24 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2017-02-09 16:24 - 2017-02-09 16:24 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2017-02-09 16:24 - 2017-02-09 16:24 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2017-01-26 01:13 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2017-01-26 01:12 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-02-23 20:40 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-23 20:31 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-02-23 15:21 - 2013-08-22 16:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-23 12:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppCompat
2017-02-22 21:17 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2017-02-22 19:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-22 19:32 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-22 10:57 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-02-22 10:30 - 2014-11-21 13:14 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2017-02-19 00:59 - 2013-08-22 15:44 - 05147664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-02-17 15:49 - 2014-11-21 05:53 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-17 15:49 - 2014-11-21 05:10 - 00738682 _____ C:\WINDOWS\system32\perfh005.dat
2017-02-17 15:49 - 2014-11-21 05:10 - 00151404 _____ C:\WINDOWS\system32\perfc005.dat
2017-02-17 10:22 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2017-02-17 10:07 - 2016-11-03 06:29 - 00000000 ____D C:\Users\ASUS\Desktop\Sister Location - Custom Night
2017-02-15 11:55 - 2013-08-22 14:25 - 00000245 _____ C:\WINDOWS\win.ini
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2017-02-15 10:03 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-02-15 10:03 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-02-15 10:02 - 2014-11-21 05:34 - 00000000 ____D C:\WINDOWS\ShellNew
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\setup
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2017-02-15 10:02 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-02-15 09:20 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2017-02-14 21:10 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-02-14 18:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-02-14 18:19 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-02-14 17:49 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2017-02-14 17:32 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2017-02-14 17:20 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2017-02-14 17:18 - 2010-11-21 10:38 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-02-14 17:09 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2017-02-10 01:52 - 2017-01-04 10:08 - 00042606 _____ C:\WINDOWS\system32\nvinfo.pb
2017-02-09 16:57 - 2009-11-26 17:41 - 00000071 ____H C:\splash.idx
==================== Files in the root of some directories =======
2017-02-17 09:47 - 2017-02-17 09:47 - 3313720 _____ () C:\Users\ASUS\AppData\Local\Tempicpinst.exe
2017-02-15 09:21 - 2016-11-23 14:37 - 0000570 _____ () C:\Users\ASUS\AppData\Local\TroubleshooterConfig.json
Files to move or delete:
====================
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-02-14 17:11
==================== End of FRST.txt ============================
Re: Zavirovaný pc s pomocí viru yundooo
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-02-2017 01
Ran by ASUS (24-02-2017 20:59:49)
Running from C:\Users\ASUS\Desktop
Windows 8.1 (Update) (X64) (2017-02-14 16:21:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2685584803-2520720662-1230236981-500 - Administrator - Disabled)
ASUS (S-1-5-21-2685584803-2520720662-1230236981-1001 - Administrator - Enabled) => C:\Users\ASUS
Guest (S-1-5-21-2685584803-2520720662-1230236981-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2685584803-2520720662-1230236981-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.)
4K Video Downloader 3.8 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.8.0.1830 - Open Media LLC)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.0 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.0.0 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.13.0.21 (Version: 2.13.0.21 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ansel (Version: 378.66 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 16 (HKLM-x32\...\{91B33C97-A730-69CE-7A4F-4ADF378BB993}_is1) (Version: 16.0.7 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
ASUS PCE-N15 WLAN Card Utilities & Driver (HKLM-x32\...\{556BEFE2-30FF-4113-98F4-01234396DF2B}) (Version: 1.0.1.2 - )
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.6.110 - ASUSTEK)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.4.1.903 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.5.83.6332 - BlueStack Systems, Inc.)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
Command & Conquer™ 3 Tiberium Wars and Kane's Wrath (HKLM-x32\...\{35A2FE53-CC80-4D17-941F-3A7C82824FC7}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ 4 Tiberian Twilight (HKLM-x32\...\{BA4C8F9F-D81B-4AFE-AE5A-3837830F5B89}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{609F6FD5-4B22-4D7A-AD30-8C9DD480D5BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
ESET NOD32 Antivirus (HKLM\...\{2539B193-C4AD-455E-8A76-86A8AA88CD7B}) (Version: 10.0.390.0 - ESET, spol. s r.o.)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Heroes of Might and Magic 3 Complete (HKLM-x32\...\Heroes of Might and Magic 3 Complete_is1) (Version: - GOG.com)
Heroes of Might and Magic V - Hammers of Fate (HKLM-x32\...\{EEF7568A-BD2C-42B7-A22E-6D55EA287C34}) (Version: 2.1 - Ubisoft)
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{82FF9CEB-A50B-45A4-B6B1-7BF8C585D8CA}) (Version: 3.1 - Ubisoft)
Heroes of Might and Magic V (HKLM-x32\...\{9B22D57A-5338-49A5-AC08-70FE3E8B878B}) (Version: 1.6 - Ubisoft)
Heroes of Might and Magic® IV (HKLM-x32\...\InstallShield_{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}) (Version: 1.00.0000 - 3DO)
Heroes of Might and Magic® IV (x32 Version: 1.00.0000 - 3DO) Hidden
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Install Creator Pro (HKLM-x32\...\Install Creator Pro) (Version: - )
Malwarebytes verze 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Need For Speed - Porsche Unleashed (HKLM-x32\...\Need For Speed - Porsche Unleashed) (Version: - )
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.21 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Virtuální audio Miracast 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 378.66 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.2 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.4.3.15631 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 378.66 (Version: 378.66 - NVIDIA Corporation) Hidden
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
ROBLOX Player for ASUS (HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.0 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.12.577 - ASUS Cloud Corporation)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.101 - Zemana Ltd.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2685584803-2520720662-1230236981-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\ASUS\AppData\Local\Roblox\Versions\version-b31134db0a5f40bd\RobloxProxy64.dll (ROBLOX Corporation)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {386BA4E3-122C-4E60-9344-D428B7F15824} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-10] (NVIDIA Corporation)
Task: {417957A9-CFFF-497C-8E73-76C5393C872F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-10] (NVIDIA Corporation)
Task: {629B3954-8C31-4008-8CD6-8A47260B776E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-10] (NVIDIA Corporation)
Task: {6ED8103B-28E8-4249-B47E-FE407396046F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-10] (NVIDIA Corporation)
Task: {709309E6-286E-40B5-9B5D-E028D2D99ED3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
Task: {95AC78D0-A573-4FED-9808-0F3BB29825D4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-10] (NVIDIA Corporation)
Task: {985D95E8-E6A5-486D-AADA-B79F8E6CA31E} - System32\Tasks\Dokeingplertaght Center => C:\Program Files (x86)\Grawition\qderch.exe [2017-02-19] (Glarysoft Ltd)
Task: {D8AE5253-4994-4163-99BF-FCD88F31659A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-10] (NVIDIA Corporation)
Task: {E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2017-02-19 10:58 - 2017-01-20 07:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-02-19 10:58 - 2017-01-20 07:47 - 02829776 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll
2017-02-19 10:58 - 2017-01-20 07:47 - 02254800 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2012-09-28 00:52 - 2012-09-28 00:52 - 00047480 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\BtwLeAPI.dll
2017-02-23 19:51 - 2017-02-23 19:51 - 00154480 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2017-02-19 00:28 - 2017-02-19 00:28 - 04015056 _____ () C:\Users\ASUS\Desktop\adwcleaner_6.043.exe
2017-02-14 17:49 - 2017-02-10 01:52 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-02-15 09:19 - 2016-12-13 18:17 - 03243616 _____ () C:\Program Files (x86)\Bluestacks\libGLESv2.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2017-02-23 20:14 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{AA118010-3592-46FF-ABB3-F63344A5CF8C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F03A7BAE-C754-412B-A12A-910A9EC53506}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{3D4C8C2D-4771-46E4-9175-4A9FD56ED6FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{F649C08B-2B69-4F8E-8094-DA4EDF1346B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6E5D2764-A97A-4D01-8BFE-906437319118}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{40F6EF02-8CDC-4FE2-A0D9-B77D4413E658}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{5B4B9375-F1D8-4FFC-8B2E-8F431A610E7B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{37DB813C-EE9E-48DC-AE72-883F1D61158E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{D339379D-61FB-497B-A7B2-1AF3F0FFEBBA}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{ADA1EA90-6089-4575-8825-2B9EAC7549F2}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{C7A8D742-B36E-4F3A-999A-CFEB4A2C7772}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E8D964F7-51F9-4169-AE5E-4410D4DEDF74}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CF80A663-C849-430A-83D8-DE833D88FECE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F5A03E2B-4F20-4640-B1D0-A45AC903F833}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{273DD849-9B0B-4D94-AC74-46065D72DDBA}] => (Allow) D:\SteamLibrary\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{ACD8E8A8-6F34-4996-9CE8-39D58DE07DD5}] => (Allow) D:\SteamLibrary\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{64947AB4-1DC4-49F9-AB37-DDF1806ED283}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{48C699F8-7271-4407-BC68-04532BAC3768}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [{12015D80-7FD5-4DAE-B20E-72640FD3DA40}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{652E0F19-EBB6-4535-97D6-34A0D187E9DD}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{06482A28-FD34-479B-83D2-42BD09997929}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3 TW and KW\CNC3Launcher.exe
FirewallRules: [{A90E0559-B5B8-47CF-83A2-75086443D0BB}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3 TW and KW\CNC3Launcher.exe
FirewallRules: [{A8780268-959F-4225-9A8E-47ED08724813}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{C41D61CD-F126-4184-B9E2-11A2903759E8}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{63D96D53-D593-40C9-803C-CC8EC0629679}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F444D3B9-9136-49C2-A940-0E672FF0214F}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CC455075-67D1-4C54-BF3D-ADA5D29E8201}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{6B73620F-C8F0-47A3-8692-2C8A473C0B82}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{47640C93-7007-4714-8018-7A827C17DCD0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9CD40811-8DA1-4C39-B0CA-81A9089DBB7D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5C210A80-77DA-4213-8703-A73B56CE1BB1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D3C086D1-8905-4DE4-B6D3-4DDE322AB25B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{A55675FB-D434-444B-BC38-0DBEE8490A93}F:\v1.05_raft_win64\v1.05_raft_win64.exe] => (Allow) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [UDP Query User{183DED9A-1513-4003-A060-42C0F552D050}F:\v1.05_raft_win64\v1.05_raft_win64.exe] => (Allow) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{B099CA9B-7434-45C4-A51C-CD2DE802D05F}] => (Block) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{431C756E-07C1-43A6-B028-02AC986938C9}] => (Block) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{3A6F6ADB-121D-4640-A6C1-1FE69DA03D22}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5B5BC6B2-479E-47EC-A40B-57DA79EC0F6B}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8516FFA8-2346-4DB0-9F41-E2A0B6671ED4}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DB6BD26A-A657-48E0-B173-47D8637CE1FE}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{54DD3E2E-6EC5-446D-BC0D-65DCFA9D5706}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F66530BA-43A4-495E-A834-395F679D5C33}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{154E0169-F70E-4118-A29D-915BB59DB466}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{4B205728-EC0F-4B47-A279-C0E385436F00}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B465D0A9-C7C8-4C6F-B8EC-56AFCC1ED4E6}] => (Allow) LPort=8317
FirewallRules: [{B9AE19FC-D933-4C30-B887-93217FD0F76D}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{364DC8D3-4B70-4472-909C-CAC3486B368E}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{7AD2200C-8CC0-42FD-939B-10B9B1451867}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{EDB73A1C-BFA8-4FB5-B724-F8DB4449F41C}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C14FFC88-6903-4365-85EB-555AFEDC61DA}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{F102EFE8-2AA6-4BE2-AE0B-F3BE66249EA1}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{49B2F452-17ED-490E-A1BB-E91B3115F783}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{149E605E-AD6B-4704-8D9E-3DA4F6F5EBC0}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F1AF1430-9544-4061-A83A-CAC6E84A8623}] => (Allow) D:\SteamLibrary\steamapps\common\Voxelized\Voxelized.exe
FirewallRules: [{C4D4D4FD-661F-4E78-A2E4-1F3E6853CE1A}] => (Allow) D:\SteamLibrary\steamapps\common\Voxelized\Voxelized.exe
FirewallRules: [{5A71FE59-697A-479A-BD92-5FEB475B53D9}] => (Allow) D:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{1A2E4CEB-1802-47AE-A89A-05FA77D4ECA4}] => (Allow) D:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
==================== Restore Points =========================
19-02-2017 14:48:49 Installed Camtasia Studio 8
21-02-2017 16:57:30 Nainstalováno rozhraní DirectX
22-02-2017 11:43:27 JRT Pre-Junkware Removal
23-02-2017 12:23:17 Installed Sophos Virus Removal Tool.
23-02-2017 15:31:17 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/24/2017 06:31:02 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:57 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (02/24/2017 06:30:55 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:50 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu MSDTC v knihovně DLL C:\WINDOWS\system32\msdtcuiu.DLL se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:43 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu Lsa v knihovně DLL C:\Windows\System32\Secur32.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:43 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ESENT v knihovně DLL C:\WINDOWS\system32\esentprf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:42 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/23/2017 08:42:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/23/2017 08:42:51 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (02/23/2017 08:42:49 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (02/24/2017 08:50:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ZAM Controller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba VIA Karaoke digital mixer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Bluetooth Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BlueStacks Log Rotator Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU 540 @ 3.07GHz
Percentage of memory in use: 37%
Total physical RAM: 6135.05 MB
Available physical RAM: 3823.74 MB
Total Virtual: 6941.12 MB
Available Virtual: 4141.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:404.88 GB) (Free:303.78 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:465.76 GB) (Free:136.76 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:465.76 GB) (Free:338.17 GB) NTFS
Drive f: () (Fixed) (Total:292.97 GB) (Free:280.86 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: 5BD9AF7F)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 698.6 GB) (Disk ID: 82AC37AF)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=404.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by ASUS (24-02-2017 20:59:49)
Running from C:\Users\ASUS\Desktop
Windows 8.1 (Update) (X64) (2017-02-14 16:21:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2685584803-2520720662-1230236981-500 - Administrator - Disabled)
ASUS (S-1-5-21-2685584803-2520720662-1230236981-1001 - Administrator - Enabled) => C:\Users\ASUS
Guest (S-1-5-21-2685584803-2520720662-1230236981-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2685584803-2520720662-1230236981-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.)
4K Video Downloader 3.8 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.8.0.1830 - Open Media LLC)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.0 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.0.0 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.13.0.21 (Version: 2.13.0.21 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ansel (Version: 378.66 - NVIDIA Corporation) Hidden
Ashampoo Burning Studio 16 (HKLM-x32\...\{91B33C97-A730-69CE-7A4F-4ADF378BB993}_is1) (Version: 16.0.7 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
ASUS PCE-N15 WLAN Card Utilities & Driver (HKLM-x32\...\{556BEFE2-30FF-4113-98F4-01234396DF2B}) (Version: 1.0.1.2 - )
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.6.110 - ASUSTEK)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.4.1.903 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.5.83.6332 - BlueStack Systems, Inc.)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
Command & Conquer™ 3 Tiberium Wars and Kane's Wrath (HKLM-x32\...\{35A2FE53-CC80-4D17-941F-3A7C82824FC7}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ 4 Tiberian Twilight (HKLM-x32\...\{BA4C8F9F-D81B-4AFE-AE5A-3837830F5B89}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{609F6FD5-4B22-4D7A-AD30-8C9DD480D5BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
ESET NOD32 Antivirus (HKLM\...\{2539B193-C4AD-455E-8A76-86A8AA88CD7B}) (Version: 10.0.390.0 - ESET, spol. s r.o.)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Heroes of Might and Magic 3 Complete (HKLM-x32\...\Heroes of Might and Magic 3 Complete_is1) (Version: - GOG.com)
Heroes of Might and Magic V - Hammers of Fate (HKLM-x32\...\{EEF7568A-BD2C-42B7-A22E-6D55EA287C34}) (Version: 2.1 - Ubisoft)
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{82FF9CEB-A50B-45A4-B6B1-7BF8C585D8CA}) (Version: 3.1 - Ubisoft)
Heroes of Might and Magic V (HKLM-x32\...\{9B22D57A-5338-49A5-AC08-70FE3E8B878B}) (Version: 1.6 - Ubisoft)
Heroes of Might and Magic® IV (HKLM-x32\...\InstallShield_{192E2132-E977-4D3E-90BA-9DBCE1B57F8C}) (Version: 1.00.0000 - 3DO)
Heroes of Might and Magic® IV (x32 Version: 1.00.0000 - 3DO) Hidden
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Install Creator Pro (HKLM-x32\...\Install Creator Pro) (Version: - )
Malwarebytes verze 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Need For Speed - Porsche Unleashed (HKLM-x32\...\Need For Speed - Porsche Unleashed) (Version: - )
Need for Speed Underground 2 (HKLM-x32\...\{909F8EBC-EC7F-48FF-0085-475D818F0F31}) (Version: - )
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.21 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.66 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Virtuální audio Miracast 378.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 378.66 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.2 - OBS Project)
Origin (HKLM-x32\...\Origin) (Version: 10.4.3.15631 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 378.66 (Version: 378.66 - NVIDIA Corporation) Hidden
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
ROBLOX Player for ASUS (HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.0 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.12.577 - ASUS Cloud Corporation)
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.2700 - Broadcom)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.101 - Zemana Ltd.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2685584803-2520720662-1230236981-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\ASUS\AppData\Local\Roblox\Versions\version-b31134db0a5f40bd\RobloxProxy64.dll (ROBLOX Corporation)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {386BA4E3-122C-4E60-9344-D428B7F15824} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-10] (NVIDIA Corporation)
Task: {417957A9-CFFF-497C-8E73-76C5393C872F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-10] (NVIDIA Corporation)
Task: {629B3954-8C31-4008-8CD6-8A47260B776E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-10] (NVIDIA Corporation)
Task: {6ED8103B-28E8-4249-B47E-FE407396046F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-10] (NVIDIA Corporation)
Task: {709309E6-286E-40B5-9B5D-E028D2D99ED3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
Task: {95AC78D0-A573-4FED-9808-0F3BB29825D4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-10] (NVIDIA Corporation)
Task: {985D95E8-E6A5-486D-AADA-B79F8E6CA31E} - System32\Tasks\Dokeingplertaght Center => C:\Program Files (x86)\Grawition\qderch.exe [2017-02-19] (Glarysoft Ltd)
Task: {D8AE5253-4994-4163-99BF-FCD88F31659A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-10] (NVIDIA Corporation)
Task: {E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2017-02-19 10:58 - 2017-01-20 07:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-02-19 10:58 - 2017-01-20 07:47 - 02829776 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll
2017-02-19 10:58 - 2017-01-20 07:47 - 02254800 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2012-09-28 00:52 - 2012-09-28 00:52 - 00047480 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\BtwLeAPI.dll
2017-02-23 19:51 - 2017-02-23 19:51 - 00154480 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2017-02-19 00:28 - 2017-02-19 00:28 - 04015056 _____ () C:\Users\ASUS\Desktop\adwcleaner_6.043.exe
2017-02-14 17:49 - 2017-02-10 01:52 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2017-02-14 17:50 - 2017-02-10 01:52 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2017-02-14 17:32 - 2017-02-09 23:57 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-02-15 09:19 - 2016-12-13 18:17 - 03243616 _____ () C:\Program Files (x86)\Bluestacks\libGLESv2.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2017-02-14 17:49 - 2017-02-10 01:52 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2017-02-23 20:14 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{AA118010-3592-46FF-ABB3-F63344A5CF8C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F03A7BAE-C754-412B-A12A-910A9EC53506}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{3D4C8C2D-4771-46E4-9175-4A9FD56ED6FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{F649C08B-2B69-4F8E-8094-DA4EDF1346B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{6E5D2764-A97A-4D01-8BFE-906437319118}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{40F6EF02-8CDC-4FE2-A0D9-B77D4413E658}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{5B4B9375-F1D8-4FFC-8B2E-8F431A610E7B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{37DB813C-EE9E-48DC-AE72-883F1D61158E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{D339379D-61FB-497B-A7B2-1AF3F0FFEBBA}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{ADA1EA90-6089-4575-8825-2B9EAC7549F2}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{C7A8D742-B36E-4F3A-999A-CFEB4A2C7772}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E8D964F7-51F9-4169-AE5E-4410D4DEDF74}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CF80A663-C849-430A-83D8-DE833D88FECE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F5A03E2B-4F20-4640-B1D0-A45AC903F833}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{273DD849-9B0B-4D94-AC74-46065D72DDBA}] => (Allow) D:\SteamLibrary\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{ACD8E8A8-6F34-4996-9CE8-39D58DE07DD5}] => (Allow) D:\SteamLibrary\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{64947AB4-1DC4-49F9-AB37-DDF1806ED283}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{48C699F8-7271-4407-BC68-04532BAC3768}D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamlibrary\steamapps\common\counter-strike global offensive\csgo.exe
FirewallRules: [{12015D80-7FD5-4DAE-B20E-72640FD3DA40}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{652E0F19-EBB6-4535-97D6-34A0D187E9DD}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{06482A28-FD34-479B-83D2-42BD09997929}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3 TW and KW\CNC3Launcher.exe
FirewallRules: [{A90E0559-B5B8-47CF-83A2-75086443D0BB}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3 TW and KW\CNC3Launcher.exe
FirewallRules: [{A8780268-959F-4225-9A8E-47ED08724813}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{C41D61CD-F126-4184-B9E2-11A2903759E8}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{63D96D53-D593-40C9-803C-CC8EC0629679}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F444D3B9-9136-49C2-A940-0E672FF0214F}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CC455075-67D1-4C54-BF3D-ADA5D29E8201}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{6B73620F-C8F0-47A3-8692-2C8A473C0B82}] => (Allow) D:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe
FirewallRules: [{47640C93-7007-4714-8018-7A827C17DCD0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9CD40811-8DA1-4C39-B0CA-81A9089DBB7D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5C210A80-77DA-4213-8703-A73B56CE1BB1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D3C086D1-8905-4DE4-B6D3-4DDE322AB25B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{A55675FB-D434-444B-BC38-0DBEE8490A93}F:\v1.05_raft_win64\v1.05_raft_win64.exe] => (Allow) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [UDP Query User{183DED9A-1513-4003-A060-42C0F552D050}F:\v1.05_raft_win64\v1.05_raft_win64.exe] => (Allow) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{B099CA9B-7434-45C4-A51C-CD2DE802D05F}] => (Block) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{431C756E-07C1-43A6-B028-02AC986938C9}] => (Block) F:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{3A6F6ADB-121D-4640-A6C1-1FE69DA03D22}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5B5BC6B2-479E-47EC-A40B-57DA79EC0F6B}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8516FFA8-2346-4DB0-9F41-E2A0B6671ED4}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DB6BD26A-A657-48E0-B173-47D8637CE1FE}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{54DD3E2E-6EC5-446D-BC0D-65DCFA9D5706}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F66530BA-43A4-495E-A834-395F679D5C33}] => (Allow) C:\Users\ASUS\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{154E0169-F70E-4118-A29D-915BB59DB466}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{4B205728-EC0F-4B47-A279-C0E385436F00}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B465D0A9-C7C8-4C6F-B8EC-56AFCC1ED4E6}] => (Allow) LPort=8317
FirewallRules: [{B9AE19FC-D933-4C30-B887-93217FD0F76D}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{364DC8D3-4B70-4472-909C-CAC3486B368E}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{7AD2200C-8CC0-42FD-939B-10B9B1451867}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{EDB73A1C-BFA8-4FB5-B724-F8DB4449F41C}] => (Allow) D:\SteamLibrary\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{C14FFC88-6903-4365-85EB-555AFEDC61DA}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{F102EFE8-2AA6-4BE2-AE0B-F3BE66249EA1}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{49B2F452-17ED-490E-A1BB-E91B3115F783}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{149E605E-AD6B-4704-8D9E-3DA4F6F5EBC0}] => (Allow) D:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{F1AF1430-9544-4061-A83A-CAC6E84A8623}] => (Allow) D:\SteamLibrary\steamapps\common\Voxelized\Voxelized.exe
FirewallRules: [{C4D4D4FD-661F-4E78-A2E4-1F3E6853CE1A}] => (Allow) D:\SteamLibrary\steamapps\common\Voxelized\Voxelized.exe
FirewallRules: [{5A71FE59-697A-479A-BD92-5FEB475B53D9}] => (Allow) D:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{1A2E4CEB-1802-47AE-A89A-05FA77D4ECA4}] => (Allow) D:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
==================== Restore Points =========================
19-02-2017 14:48:49 Installed Camtasia Studio 8
21-02-2017 16:57:30 Nainstalováno rozhraní DirectX
22-02-2017 11:43:27 JRT Pre-Junkware Removal
23-02-2017 12:23:17 Installed Sophos Virus Removal Tool.
23-02-2017 15:31:17 JRT Pre-Junkware Removal
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/24/2017 06:31:02 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:57 AM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (02/24/2017 06:30:55 AM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:50 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu MSDTC v knihovně DLL C:\WINDOWS\system32\msdtcuiu.DLL se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:43 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu Lsa v knihovně DLL C:\Windows\System32\Secur32.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:43 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ESENT v knihovně DLL C:\WINDOWS\system32\esentprf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/24/2017 06:30:42 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/23/2017 08:42:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu WmiApRpl v knihovně DLL C:\WINDOWS\system32\wbem\wmiaprpl.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (02/23/2017 08:42:51 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (02/23/2017 08:42:49 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (02/24/2017 08:50:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ZAM Controller Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba VIA Karaoke digital mixer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Bluetooth Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (02/24/2017 08:50:31 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BlueStacks Log Rotator Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU 540 @ 3.07GHz
Percentage of memory in use: 37%
Total physical RAM: 6135.05 MB
Available physical RAM: 3823.74 MB
Total Virtual: 6941.12 MB
Available Virtual: 4141.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:404.88 GB) (Free:303.78 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:465.76 GB) (Free:136.76 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:465.76 GB) (Free:338.17 GB) NTFS
Drive f: () (Fixed) (Total:292.97 GB) (Free:280.86 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: 5BD9AF7F)Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or
(Size: 698.6 GB) (Disk ID: 82AC37AF)Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=404.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zavirovaný pc s pomocí viru yundooo
JRT nevidím.
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Windows Defender-- trvale deaktivuj
Malwarebytes ---- trvale deaktivuj
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
C:\Users\ASUS\Downloads\2017-02-13-02-31-27271-224448-m7jccaql13sbzkpmznej.tar
C:\Users\ASUS\Downloads\2017-02-13-08-31-27741-225535-rvvtm10zibxhkfxw213g.tar
C:\Users\ASUS\Downloads\2017-01-05-16-57-27741-225535-4fnma49binj7pr6v7n16.tar
C:\Users\ASUS\Downloads\2017-01-20-22-31-27741-225535-qqle6tqadfmw7e58ity8.tar
znáš co jsi stahoval??
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
Windows Defender-- trvale deaktivuj
Malwarebytes ---- trvale deaktivuj
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
HKLM-x32\...\RunOnce: [DeleteOnReboot] => C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat [57 2017-02-24] () <===== ATTENTION
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\Run: [SysProc] => C:\Users\Public\Public\run.vbs
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\MountPoints2: {32b626eb-f6bb-11e6-825d-5cf3707d1e6a} - "I:\Setup.exe"
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\MountPoints2: {d0f6a355-f548-11e6-8257-5cf3707d1e6a} - "I:\AUTORUN.EXE"
C:\Users\Public\Public\run.vbs
C:\Users\ASUS\AppData\LocalLow\EmieUserList
C:\Users\ASUS\AppData\LocalLow\EmieSiteList
C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList
C:\Users\ASUS\AppData\Local\EmieBrowserModeList
C:\WINDOWS\System32\Tasks\Dokeingplertaght Center
C:\Users\ASUS\AppData\Local\Arerktaincotidom
C:\Users\ASUS\AppData\Local\Tempicpinst.exe
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat
Task: {709309E6-286E-40B5-9B5D-E028D2D99ED3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
Task: {E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
EmptyTemp:
End(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
C:\Users\ASUS\Downloads\2017-02-13-02-31-27271-224448-m7jccaql13sbzkpmznej.tar
C:\Users\ASUS\Downloads\2017-02-13-08-31-27741-225535-rvvtm10zibxhkfxw213g.tar
C:\Users\ASUS\Downloads\2017-01-05-16-57-27741-225535-4fnma49binj7pr6v7n16.tar
C:\Users\ASUS\Downloads\2017-01-20-22-31-27741-225535-qqle6tqadfmw7e58ity8.tar
znáš co jsi stahoval??
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zavirovaný pc s pomocí viru yundooo
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 8.1 x64
Ran by ASUS (Administrator) on p 24. 02. 2017 at 23:27:01,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p 24. 02. 2017 at 23:29:37,55
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ty věci co jsi psal o stahovaných opravdu fakt neznám. Ani nevím že bych něco takového stáhnula.. Naposledy jsem stahovala Daemon tools lite. A BlueStacks. (a už jsem si vzpomněla. to jsou zálohy z fakahedy jako minecraft tf servery a další..)
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 8.1 x64
Ran by ASUS (Administrator) on p 24. 02. 2017 at 23:27:01,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p 24. 02. 2017 at 23:29:37,55
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ty věci co jsi psal o stahovaných opravdu fakt neznám. Ani nevím že bych něco takového stáhnula.. Naposledy jsem stahovala Daemon tools lite. A BlueStacks. (a už jsem si vzpomněla. to jsou zálohy z fakahedy jako minecraft tf servery a další..)
Re: Zavirovaný pc s pomocí viru yundooo
Fix result of Farbar Recovery Scan Tool (x64) Version: 23-02-2017 01
Ran by ASUS (24-02-2017 23:41:26) Run:1
Running from C:\Users\ASUS\Desktop
Loaded Profiles: ASUS (Available Profiles: ASUS)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\RunOnce: [DeleteOnReboot] => C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat [57 2017-02-24] () <===== ATTENTION
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\Run: [SysProc] => C:\Users\Public\Public\run.vbs
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\MountPoints2: {32b626eb-f6bb-11e6-825d-5cf3707d1e6a} - "I:\Setup.exe"
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\MountPoints2: {d0f6a355-f548-11e6-8257-5cf3707d1e6a} - "I:\AUTORUN.EXE"
C:\Users\Public\Public\run.vbs
C:\Users\ASUS\AppData\LocalLow\EmieUserList
C:\Users\ASUS\AppData\LocalLow\EmieSiteList
C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList
C:\Users\ASUS\AppData\Local\EmieBrowserModeList
C:\WINDOWS\System32\Tasks\Dokeingplertaght Center
C:\Users\ASUS\AppData\Local\Arerktaincotidom
C:\Users\ASUS\AppData\Local\Tempicpinst.exe
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat
Task: {709309E6-286E-40B5-9B5D-E028D2D99ED3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
Task: {E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\DeleteOnReboot => value not found.
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Microsoft\Windows\CurrentVersion\Run\\SysProc => value removed successfully
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{32b626eb-f6bb-11e6-825d-5cf3707d1e6a} => key removed successfully
HKCR\CLSID\{32b626eb-f6bb-11e6-825d-5cf3707d1e6a} => key not found.
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d0f6a355-f548-11e6-8257-5cf3707d1e6a} => key removed successfully
HKCR\CLSID\{d0f6a355-f548-11e6-8257-5cf3707d1e6a} => key not found.
"C:\Users\Public\Public\run.vbs" => not found.
C:\Users\ASUS\AppData\LocalLow\EmieUserList => moved successfully
C:\Users\ASUS\AppData\LocalLow\EmieSiteList => moved successfully
C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList => moved successfully
C:\Users\ASUS\AppData\Local\EmieBrowserModeList => moved successfully
C:\WINDOWS\System32\Tasks\Dokeingplertaght Center => moved successfully
C:\Users\ASUS\AppData\Local\Arerktaincotidom => moved successfully
C:\Users\ASUS\AppData\Local\Tempicpinst.exe => moved successfully
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{709309E6-286E-40B5-9B5D-E028D2D99ED3} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{709309E6-286E-40B5-9B5D-E028D2D99ED3} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile => key removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 46810296 B
Java, Flash, Steam htmlcache => 360924332 B
Windows/system/drivers => 402 B
Edge => 0 B
Chrome => 4523523 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 4992 B
NetworkService => 0 B
ASUS => 116180758 B
RecycleBin => 7506763835 B
EmptyTemp: => 7.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 23:41:43 ====
Ran by ASUS (24-02-2017 23:41:26) Run:1
Running from C:\Users\ASUS\Desktop
Loaded Profiles: ASUS (Available Profiles: ASUS)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\RunOnce: [DeleteOnReboot] => C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat [57 2017-02-24] () <===== ATTENTION
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\Run: [SysProc] => C:\Users\Public\Public\run.vbs
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\MountPoints2: {32b626eb-f6bb-11e6-825d-5cf3707d1e6a} - "I:\Setup.exe"
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\...\MountPoints2: {d0f6a355-f548-11e6-8257-5cf3707d1e6a} - "I:\AUTORUN.EXE"
C:\Users\Public\Public\run.vbs
C:\Users\ASUS\AppData\LocalLow\EmieUserList
C:\Users\ASUS\AppData\LocalLow\EmieSiteList
C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList
C:\Users\ASUS\AppData\Local\EmieBrowserModeList
C:\WINDOWS\System32\Tasks\Dokeingplertaght Center
C:\Users\ASUS\AppData\Local\Arerktaincotidom
C:\Users\ASUS\AppData\Local\Tempicpinst.exe
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat
Task: {709309E6-286E-40B5-9B5D-E028D2D99ED3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
Task: {E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-14] (Google Inc.)
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile: regedit.exe "%1" <===== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\RunOnce\\DeleteOnReboot => value not found.
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Microsoft\Windows\CurrentVersion\Run\\SysProc => value removed successfully
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{32b626eb-f6bb-11e6-825d-5cf3707d1e6a} => key removed successfully
HKCR\CLSID\{32b626eb-f6bb-11e6-825d-5cf3707d1e6a} => key not found.
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d0f6a355-f548-11e6-8257-5cf3707d1e6a} => key removed successfully
HKCR\CLSID\{d0f6a355-f548-11e6-8257-5cf3707d1e6a} => key not found.
"C:\Users\Public\Public\run.vbs" => not found.
C:\Users\ASUS\AppData\LocalLow\EmieUserList => moved successfully
C:\Users\ASUS\AppData\LocalLow\EmieSiteList => moved successfully
C:\Users\ASUS\AppData\LocalLow\EmieBrowserModeList => moved successfully
C:\Users\ASUS\AppData\Local\EmieBrowserModeList => moved successfully
C:\WINDOWS\System32\Tasks\Dokeingplertaght Center => moved successfully
C:\Users\ASUS\AppData\Local\Arerktaincotidom => moved successfully
C:\Users\ASUS\AppData\Local\Tempicpinst.exe => moved successfully
C:\Users\ASUS\AppData\Local\Temp\DeleteOnReboot.bat => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{709309E6-286E-40B5-9B5D-E028D2D99ED3} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{709309E6-286E-40B5-9B5D-E028D2D99ED3} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E4BB12C3-7D5D-4CDA-943D-AB560AD0FB50} => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKU\S-1-5-21-2685584803-2520720662-1230236981-1001\Software\Classes\regfile => key removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 46810296 B
Java, Flash, Steam htmlcache => 360924332 B
Windows/system/drivers => 402 B
Edge => 0 B
Chrome => 4523523 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 4992 B
NetworkService => 0 B
ASUS => 116180758 B
RecycleBin => 7506763835 B
EmptyTemp: => 7.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 23:41:43 ====
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zavirovaný pc s pomocí viru yundooo
OK , já jen ty názvy..
Co problémy?
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zavirovaný pc s pomocí viru yundooo
vypadá to že je počítač O.K ale pořád v adwcleaner je toto:
# AdwCleaner v6.043 - Log vytvořen 26/02/2017 v 16:39:18
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-24.1 [Místní]
# Operační systém : Windows 8.1 (X64)
# Uživatelské jméno : ASUS - ASUS-PC
# Spuštěno z : C:\Users\ASUS\Desktop\adwcleaner_6.043.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
Nebyly nalezeny žádné škodlivé služby.
***** [ Složky ] *****
Nebyly nalezeny žádné škodlivé složky.
***** [ Soubory ] *****
Nebyly nalezeny žádné škodlivé soubory.
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupci ] *****
Žádný infikovaný zástupce nenalezen.
***** [ Naplánované úlohy ] *****
Žádná nebezpečná úloha nenalezena.
***** [ Registry ] *****
Klíč nalezen: HKU\.DEFAULT\Software\ecb`nl
Klíč nalezen: HKU\S-1-5-18\Software\ecb`nl
Klíč nalezen: HKLM\SOFTWARE\ecb`nl
Klíč nalezen: [x64] HKLM\SOFTWARE\ecb`nl
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1941 Bajty] - [19/02/2017 00:30:33]
C:\AdwCleaner\AdwCleaner[C2].txt - [1482 Bajty] - [19/02/2017 12:26:39]
C:\AdwCleaner\AdwCleaner[C3].txt - [1628 Bajty] - [19/02/2017 12:51:19]
C:\AdwCleaner\AdwCleaner[C4].txt - [1772 Bajty] - [22/02/2017 11:06:11]
C:\AdwCleaner\AdwCleaner[C5].txt - [2026 Bajty] - [24/02/2017 20:50:49]
C:\AdwCleaner\AdwCleaner[S0].txt - [2123 Bajty] - [19/02/2017 00:30:00]
C:\AdwCleaner\AdwCleaner[S1].txt - [1674 Bajty] - [19/02/2017 12:11:35]
C:\AdwCleaner\AdwCleaner[S2].txt - [1820 Bajty] - [19/02/2017 12:50:47]
C:\AdwCleaner\AdwCleaner[S3].txt - [1964 Bajty] - [22/02/2017 11:03:26]
C:\AdwCleaner\AdwCleaner[S4].txt - [2177 Bajty] - [24/02/2017 11:48:10]
C:\AdwCleaner\AdwCleaner[S5].txt - [2252 Bajty] - [24/02/2017 20:44:01]
C:\AdwCleaner\AdwCleaner[S6].txt - [2123 Bajty] - [26/02/2017 16:39:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [2196 Bajty] ##########
# AdwCleaner v6.043 - Log vytvořen 26/02/2017 v 16:39:18
# Aktualizováno dne 27/01/2017 z Malwarebytes
# Databáze : 2017-02-24.1 [Místní]
# Operační systém : Windows 8.1 (X64)
# Uživatelské jméno : ASUS - ASUS-PC
# Spuštěno z : C:\Users\ASUS\Desktop\adwcleaner_6.043.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
Nebyly nalezeny žádné škodlivé služby.
***** [ Složky ] *****
Nebyly nalezeny žádné škodlivé složky.
***** [ Soubory ] *****
Nebyly nalezeny žádné škodlivé soubory.
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupci ] *****
Žádný infikovaný zástupce nenalezen.
***** [ Naplánované úlohy ] *****
Žádná nebezpečná úloha nenalezena.
***** [ Registry ] *****
Klíč nalezen: HKU\.DEFAULT\Software\ecb`nl
Klíč nalezen: HKU\S-1-5-18\Software\ecb`nl
Klíč nalezen: HKLM\SOFTWARE\ecb`nl
Klíč nalezen: [x64] HKLM\SOFTWARE\ecb`nl
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1941 Bajty] - [19/02/2017 00:30:33]
C:\AdwCleaner\AdwCleaner[C2].txt - [1482 Bajty] - [19/02/2017 12:26:39]
C:\AdwCleaner\AdwCleaner[C3].txt - [1628 Bajty] - [19/02/2017 12:51:19]
C:\AdwCleaner\AdwCleaner[C4].txt - [1772 Bajty] - [22/02/2017 11:06:11]
C:\AdwCleaner\AdwCleaner[C5].txt - [2026 Bajty] - [24/02/2017 20:50:49]
C:\AdwCleaner\AdwCleaner[S0].txt - [2123 Bajty] - [19/02/2017 00:30:00]
C:\AdwCleaner\AdwCleaner[S1].txt - [1674 Bajty] - [19/02/2017 12:11:35]
C:\AdwCleaner\AdwCleaner[S2].txt - [1820 Bajty] - [19/02/2017 12:50:47]
C:\AdwCleaner\AdwCleaner[S3].txt - [1964 Bajty] - [22/02/2017 11:03:26]
C:\AdwCleaner\AdwCleaner[S4].txt - [2177 Bajty] - [24/02/2017 11:48:10]
C:\AdwCleaner\AdwCleaner[S5].txt - [2252 Bajty] - [24/02/2017 20:44:01]
C:\AdwCleaner\AdwCleaner[S6].txt - [2123 Bajty] - [26/02/2017 16:39:18]
########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [2196 Bajty] ##########
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43060
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Zavirovaný pc s pomocí viru yundooo
Tak to ještě projedem.
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Zavirovaný pc s pomocí viru yundooo
Omlouvám se za spoždění. Ale byla jsem v práci..
OTL logfile created on: 2. 3. 2017 9:34:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ASUS\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18538)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
5,99 Gb Total Physical Memory | 3,75 Gb Available Physical Memory | 62,53% Memory free
8,30 Gb Paging File | 5,96 Gb Available in Paging File | 71,80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 404,88 Gb Total Space | 303,79 Gb Free Space | 75,03% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 135,05 Gb Free Space | 29,00% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 335,15 Gb Free Space | 71,96% Space Free | Partition Type: NTFS
Drive F: | 292,97 Gb Total Space | 280,20 Gb Free Space | 95,64% Space Free | Partition Type: NTFS
Computer Name: ASUS-PC | User Name: ASUS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\ASUS\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\ASUS\AppData\Roaming\Kyubey\Kyubey.exe ()
PRC - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Node.js)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Copyright 2017.)
PRC - C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe (Skype Technologies)
PRC - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\Bluestacks\HD-Agent.exe (BlueStack Systems, Inc.)
PRC - C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe (BlueStack Systems, Inc.)
PRC - C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.)
PRC - C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.)
PRC - C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (VMware, Inc.)
PRC - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe ()
PRC - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.)
PRC - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe (Broadcom Corporation.)
========== Modules (No Company Name) ==========
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Web\2d1ac8081a2c05f944df8eb36678c49e\System.Web.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\2c6097450e483e713ed2021691f09a0d\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\f2a5cdacb8cc7ba731728359c2e2a39b\System.Xaml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\ee313ec152b39f7bce30944cb7f9338f\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\11a7447288b497bb2b5a68952a381a30\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\3081c095cd326a3366ec5d4c4ad0034b\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\3f1d4f966ac8c60b9feda19d7c4e0716\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\ca6718419de8d0e6c899075634e5db87\PresentationFramework.Aero2.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\8a7272d948925f1ea22a163ae55d835c\PresentationFramework.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\3977bb460fbe8696c8a07553bbd74c48\PresentationCore.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\a7ba2431fab5869c9a3af6c178805c15\WindowsBase.ni.dll ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\poco.dll ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvBackendAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameStreamAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvUtil.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ()
MOD - C:\Program Files (x86)\Bluestacks\libGLESv2.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\dca014f6fd155805c62e8e866554eed8\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\66373b74ff7e4270dccc8d8b3f3fcca9\System.Core.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\9bc9fee57df2a57a6240f7f470ec1222\mscorlib.ni.dll ()
========== Services (SafeList) ==========
SRV:64bit: - (NVIDIA Wireless Controller Service) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation)
SRV:64bit: - (NvContainerNetworkService) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
SRV:64bit: - (NvContainerLocalSystem) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
SRV:64bit: - (NVDisplay.ContainerLocalSystem) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation)
SRV:64bit: - (Disc Soft Lite Bus Service) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Disc Soft Ltd)
SRV:64bit: - (MBAMService) -- C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes)
SRV:64bit: - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:64bit: - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:64bit: - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:64bit: - (VIAKaraokeService) -- C:\Windows\SysNative\ViakaraokeSrv.exe (VIA Technologies, Inc.)
SRV:64bit: - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV:64bit: - (BcmBtRSupport) -- C:\Windows\SysNative\BtwRSupportService.exe (Broadcom Corporation.)
SRV - (Kyubey) -- C:\Users\ASUS\AppData\Roaming\Kyubey\Kyubey.exe ()
SRV - (Origin Web Helper Service) -- C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
SRV - (Origin Client Service) -- C:\Program Files (x86)\Origin\OriginClientService.exe (Electronic Arts)
SRV - (ZAMSvc) -- C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Copyright 2017.)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (TeamViewer) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (BstHdLogRotatorSvc) -- C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe (BlueStack Systems, Inc.)
SRV - (BstHdAndroidSvc) -- C:\Program Files (x86)\Bluestacks\HD-Service.exe (BlueStack Systems, Inc.)
SRV - (BstHdPlusAndroidSvc) -- C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe (BlueStack Systems, Inc.)
SRV - (VMware NAT Service) -- C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.)
SRV - (VMnetDHCP) -- C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.)
SRV - (VMwareHostd) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe ()
SRV - (VMAuthdService) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn Inc.)
SRV - (LMIGuardianSvc) -- C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (LogMeIn, Inc.)
SRV - (VMUSBArbService) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe (VMware, Inc.)
SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (lfsvc) -- C:\Windows\SysWOW64\GeofenceMonitorService.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV:64bit: - (MBAMWebProtection) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes)
DRV:64bit: - (MBAMChameleon) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys (Malwarebytes)
DRV:64bit: - (MBAMFarflt) -- C:\Windows\SysNative\drivers\farflt.sys (Malwarebytes)
DRV:64bit: - (MBAMProtection) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
DRV:64bit: - (ZAM_Guard) -- C:\Windows\SysNative\drivers\zamguard64.sys (Zemana Ltd.)
DRV:64bit: - (ZAM) -- C:\Windows\SysNative\drivers\zam64.sys (Zemana Ltd.)
DRV:64bit: - (dtliteusbbus) -- C:\Windows\SysNative\drivers\dtliteusbbus.sys (Disc Soft Ltd)
DRV:64bit: - (dtlitescsibus) -- C:\Windows\SysNative\drivers\dtlitescsibus.sys (Disc Soft Ltd)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:64bit: - (NvStreamKms) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NVIDIA Corporation)
DRV:64bit: - (ESProtectionDriver) -- C:\Windows\SysNative\drivers\mbae64.sys ()
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
DRV:64bit: - (eelam) -- C:\Windows\SysNative\drivers\eelam.sys (ESET)
DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:64bit: - (vmx86) -- C:\Windows\SysNative\drivers\vmx86.sys (VMware, Inc.)
DRV:64bit: - (VMnetBridge) -- C:\Windows\SysNative\drivers\vmnetbridge.sys (VMware, Inc.)
DRV:64bit: - (VMnetAdapter) -- C:\Windows\SysNative\drivers\vmnetadapter.sys (VMware, Inc.)
DRV:64bit: - (VMnetUserif) -- C:\Windows\SysNative\drivers\vmnetuserif.sys (VMware, Inc.)
DRV:64bit: - (Hamachi) -- C:\Windows\SysNative\drivers\Hamdrv.sys (LogMeIn Inc.)
DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:64bit: - (ReFS) -- C:\WINDOWS\SysNative\drivers\refs.sys (Microsoft Corporation)
DRV:64bit: - (vmci) -- C:\Windows\SysNative\drivers\vmci.sys (VMware, Inc.)
DRV:64bit: - (vsock) -- C:\Windows\SysNative\drivers\vsock.sys (VMware, Inc.)
DRV:64bit: - (hcmon) -- C:\Windows\SysNative\drivers\hcmon.sys (VMware, Inc.)
DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:64bit: - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\drivers\UCX01000.SYS (Microsoft Corporation)
DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc63.sys (Microsoft Corporation)
DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\drivers\BthLEEnum.sys (Microsoft Corporation)
DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:64bit: - (RTWlanE) -- C:\Windows\SysNative\drivers\rtwlane.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (LSI_SAS3) -- C:\Windows\SysNative\drivers\lsi_sas3.sys (LSI Corporation)
DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\drivers\fxppm.sys (Microsoft Corporation)
DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:64bit: - (RTL8168) -- C:\Windows\SysNative\drivers\Rt630x64.sys (Realtek )
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (VIAHdAudAddService) -- C:\Windows\SysNative\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV:64bit: - (btwampfl) -- C:\Windows\SysNative\drivers\btwampfl.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (bcbtums) -- C:\Windows\SysNative\drivers\bcbtums.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV - (BstHdDrv) -- C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys (BlueStack Systems)
DRV - (BstkDrv) -- C:\Program Files (x86)\Bluestacks\BstkDrv.sys (Bluestack System Inc. )
DRV - (secdrv) -- C:\WINDOWS\SysWow64\drivers\SECDRV.SYS ()
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs,en-US;q=0.7,en;q=0.3
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D5 5B D1 81 9B 87 D2 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 28 D3 85 6F 6D 87 D2 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\ASUS\AppData\Local\Roblox\Versions\version-b31134db0a5f40bd\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher64: C:\Users\ASUS\AppData\Local\Roblox\Versions\version-b31134db0a5f40bd\\NPRobloxProxy64.dll ()
O1 HOSTS File: ([2017/02/23 20:14:10 | 000,000,753 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4:64bit: - HKLM..\Run: [Malwarebytes TrayApp] C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ZAM] C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Copyright 2017.)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [vmware-tray.exe] C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (VMware, Inc.)
O4 - HKLM..\Run: [WebStorage] C:\Program Files (x86)\Asus\WebStorage\2.2.12.577\ASUSWSLoader.exe (ASUS Cloud Corporation)
O4 - HKCU..\Run: [BlueStacks Agent] C:\Program Files (x86)\Bluestacks\HD-Agent.exe (BlueStack Systems, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.)
O13 - gopher Prefix: missing
O15:64bit: - ..Trusted Domains: eset.com ([help] http in Trusted sites)
O15 - HKLM\..Trusted Domains: eset.com ([help] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{99BAAD2C-A8B6-4C62-84AC-D67527CE1D77}: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5DB50F3-FCEC-4E4D-A627-0EEBDE72FC5E}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\SysWow64\msv1_0.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2017/03/02 09:32:12 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\ASUS\Desktop\OTL.exe
[2017/03/01 22:34:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BikaQRss
[2017/03/01 22:34:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BikaQ
[2017/03/01 12:27:45 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Kyubey
[2017/03/01 12:27:38 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\WinSAPSvc
[2017/03/01 11:22:05 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\VMware
[2017/03/01 11:22:02 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\VMware
[2017/03/01 11:16:21 | 000,091,712 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vsock.sys
[2017/03/01 11:16:20 | 000,069,104 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\vsocklib.dll
[2017/03/01 11:16:20 | 000,065,016 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysWow64\vsocklib.dll
[2017/03/01 11:16:12 | 000,088,128 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vmx86.sys
[2017/03/01 11:15:44 | 000,366,664 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysWow64\vmnetdhcp.exe
[2017/03/01 11:15:37 | 000,400,968 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysWow64\vmnat.exe
[2017/03/01 11:15:37 | 000,066,624 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\vnetinst.dll
[2017/03/01 11:15:37 | 000,045,632 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vmnet.sys
[2017/03/01 11:15:37 | 000,044,096 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vmnetuserif.sys
[2017/03/01 11:15:30 | 001,148,488 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\vnetlib64.dll
[2017/03/01 11:14:52 | 000,083,008 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\hcmon.sys
OTL logfile created on: 2. 3. 2017 9:34:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ASUS\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18538)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
5,99 Gb Total Physical Memory | 3,75 Gb Available Physical Memory | 62,53% Memory free
8,30 Gb Paging File | 5,96 Gb Available in Paging File | 71,80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 404,88 Gb Total Space | 303,79 Gb Free Space | 75,03% Space Free | Partition Type: NTFS
Drive D: | 465,76 Gb Total Space | 135,05 Gb Free Space | 29,00% Space Free | Partition Type: NTFS
Drive E: | 465,76 Gb Total Space | 335,15 Gb Free Space | 71,96% Space Free | Partition Type: NTFS
Drive F: | 292,97 Gb Total Space | 280,20 Gb Free Space | 95,64% Space Free | Partition Type: NTFS
Computer Name: ASUS-PC | User Name: ASUS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - C:\Users\ASUS\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\ASUS\AppData\Roaming\Kyubey\Kyubey.exe ()
PRC - C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Node.js)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Copyright 2017.)
PRC - C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
PRC - C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe (Skype Technologies)
PRC - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
PRC - C:\Program Files (x86)\Bluestacks\HD-Agent.exe (BlueStack Systems, Inc.)
PRC - C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe (BlueStack Systems, Inc.)
PRC - C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.)
PRC - C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.)
PRC - C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (VMware, Inc.)
PRC - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe ()
PRC - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.)
PRC - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe (Broadcom Corporation.)
========== Modules (No Company Name) ==========
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Web\2d1ac8081a2c05f944df8eb36678c49e\System.Web.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\2c6097450e483e713ed2021691f09a0d\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xaml\f2a5cdacb8cc7ba731728359c2e2a39b\System.Xaml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\ee313ec152b39f7bce30944cb7f9338f\System.Windows.Forms.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Management\11a7447288b497bb2b5a68952a381a30\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\3081c095cd326a3366ec5d4c4ad0034b\System.Drawing.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\3f1d4f966ac8c60b9feda19d7c4e0716\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\ca6718419de8d0e6c899075634e5db87\PresentationFramework.Aero2.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\8a7272d948925f1ea22a163ae55d835c\PresentationFramework.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PresentationCore\3977bb460fbe8696c8a07553bbd74c48\PresentationCore.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\WindowsBase\a7ba2431fab5869c9a3af6c178805c15\WindowsBase.ni.dll ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\poco.dll ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvBackendAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameStreamAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvUtil.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node ()
MOD - \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node ()
MOD - C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ()
MOD - C:\Program Files (x86)\Bluestacks\libGLESv2.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\dca014f6fd155805c62e8e866554eed8\System.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\66373b74ff7e4270dccc8d8b3f3fcca9\System.Core.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\9bc9fee57df2a57a6240f7f470ec1222\mscorlib.ni.dll ()
========== Services (SafeList) ==========
SRV:64bit: - (NVIDIA Wireless Controller Service) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (NVIDIA Corporation)
SRV:64bit: - (NvContainerNetworkService) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
SRV:64bit: - (NvContainerLocalSystem) -- C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation)
SRV:64bit: - (NVDisplay.ContainerLocalSystem) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation)
SRV:64bit: - (Disc Soft Lite Bus Service) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Disc Soft Ltd)
SRV:64bit: - (MBAMService) -- C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes)
SRV:64bit: - (ekrn) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (ESET)
SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV:64bit: - (AppXSvc) -- C:\Windows\SysNative\AppXDeploymentServer.dll (Microsoft Corporation)
SRV:64bit: - (workfolderssvc) -- C:\Windows\SysNative\workfolderssvc.dll (Microsoft Corporation)
SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation)
SRV:64bit: - (WdNisSvc) -- C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation)
SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (lfsvc) -- C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation)
SRV:64bit: - (IEEtwCollectorService) -- C:\WINDOWS\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (NcbService) -- C:\Windows\SysNative\ncbservice.dll (Microsoft Corporation)
SRV:64bit: - (AppReadiness) -- C:\Windows\SysNative\AppReadiness.dll (Microsoft Corporation)
SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation)
SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation)
SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation)
SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation)
SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation)
SRV:64bit: - (WEPHOSTSVC) -- C:\Windows\SysNative\wephostsvc.dll (Microsoft Corporation)
SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation)
SRV:64bit: - (ScDeviceEnum) -- C:\Windows\SysNative\ScDeviceEnum.dll (Microsoft Corporation)
SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation)
SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation)
SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation)
SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation)
SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation)
SRV:64bit: - (smphost) -- C:\Windows\SysNative\smphost.dll (Microsoft Corporation)
SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (vmicguestinterface) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation)
SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation)
SRV:64bit: - (BthHFSrv) -- C:\Windows\SysNative\BthHFSrv.dll (Microsoft Corporation)
SRV:64bit: - (VIAKaraokeService) -- C:\Windows\SysNative\ViakaraokeSrv.exe (VIA Technologies, Inc.)
SRV:64bit: - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV:64bit: - (BcmBtRSupport) -- C:\Windows\SysNative\BtwRSupportService.exe (Broadcom Corporation.)
SRV - (Kyubey) -- C:\Users\ASUS\AppData\Roaming\Kyubey\Kyubey.exe ()
SRV - (Origin Web Helper Service) -- C:\Program Files (x86)\Origin\OriginWebHelperService.exe (Electronic Arts)
SRV - (Origin Client Service) -- C:\Program Files (x86)\Origin\OriginClientService.exe (Electronic Arts)
SRV - (ZAMSvc) -- C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Copyright 2017.)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (TeamViewer) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
SRV - (BstHdLogRotatorSvc) -- C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe (BlueStack Systems, Inc.)
SRV - (BstHdAndroidSvc) -- C:\Program Files (x86)\Bluestacks\HD-Service.exe (BlueStack Systems, Inc.)
SRV - (BstHdPlusAndroidSvc) -- C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe (BlueStack Systems, Inc.)
SRV - (VMware NAT Service) -- C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.)
SRV - (VMnetDHCP) -- C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.)
SRV - (VMwareHostd) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe ()
SRV - (VMAuthdService) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc.)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn Inc.)
SRV - (LMIGuardianSvc) -- C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe (LogMeIn, Inc.)
SRV - (VMUSBArbService) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe (VMware, Inc.)
SRV - (PrintNotify) -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation)
SRV - (lfsvc) -- C:\Windows\SysWOW64\GeofenceMonitorService.dll (Microsoft Corporation)
SRV - (smphost) -- C:\Windows\SysWOW64\smphost.dll (Microsoft Corporation)
SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation)
========== Driver Services (SafeList) ==========
DRV:64bit: - (MBAMWebProtection) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes)
DRV:64bit: - (MBAMChameleon) -- C:\Windows\SysNative\drivers\MBAMChameleon.sys (Malwarebytes)
DRV:64bit: - (MBAMFarflt) -- C:\Windows\SysNative\drivers\farflt.sys (Malwarebytes)
DRV:64bit: - (MBAMProtection) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes)
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes)
DRV:64bit: - (ZAM_Guard) -- C:\Windows\SysNative\drivers\zamguard64.sys (Zemana Ltd.)
DRV:64bit: - (ZAM) -- C:\Windows\SysNative\drivers\zam64.sys (Zemana Ltd.)
DRV:64bit: - (dtliteusbbus) -- C:\Windows\SysNative\drivers\dtliteusbbus.sys (Disc Soft Ltd)
DRV:64bit: - (dtlitescsibus) -- C:\Windows\SysNative\drivers\dtlitescsibus.sys (Disc Soft Ltd)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:64bit: - (NvStreamKms) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NVIDIA Corporation)
DRV:64bit: - (ESProtectionDriver) -- C:\Windows\SysNative\drivers\mbae64.sys ()
DRV:64bit: - (ehdrv) -- C:\Windows\SysNative\drivers\ehdrv.sys (ESET)
DRV:64bit: - (eamonm) -- C:\Windows\SysNative\drivers\eamonm.sys (ESET)
DRV:64bit: - (epfwwfpr) -- C:\Windows\SysNative\drivers\epfwwfpr.sys (ESET)
DRV:64bit: - (eelam) -- C:\Windows\SysNative\drivers\eelam.sys (ESET)
DRV:64bit: - (CLFS) -- C:\Windows\SysNative\drivers\clfs.sys (Microsoft Corporation)
DRV:64bit: - (vmx86) -- C:\Windows\SysNative\drivers\vmx86.sys (VMware, Inc.)
DRV:64bit: - (VMnetBridge) -- C:\Windows\SysNative\drivers\vmnetbridge.sys (VMware, Inc.)
DRV:64bit: - (VMnetAdapter) -- C:\Windows\SysNative\drivers\vmnetadapter.sys (VMware, Inc.)
DRV:64bit: - (VMnetUserif) -- C:\Windows\SysNative\drivers\vmnetuserif.sys (VMware, Inc.)
DRV:64bit: - (Hamachi) -- C:\Windows\SysNative\drivers\Hamdrv.sys (LogMeIn Inc.)
DRV:64bit: - (spaceport) -- C:\Windows\SysNative\drivers\spaceport.sys (Microsoft Corporation)
DRV:64bit: - (ReFS) -- C:\WINDOWS\SysNative\drivers\refs.sys (Microsoft Corporation)
DRV:64bit: - (vmci) -- C:\Windows\SysNative\drivers\vmci.sys (VMware, Inc.)
DRV:64bit: - (vsock) -- C:\Windows\SysNative\drivers\vsock.sys (VMware, Inc.)
DRV:64bit: - (hcmon) -- C:\Windows\SysNative\drivers\hcmon.sys (VMware, Inc.)
DRV:64bit: - (stornvme) -- C:\Windows\SysNative\drivers\stornvme.sys (Microsoft Corporation)
DRV:64bit: - (vpci) -- C:\Windows\SysNative\drivers\vpci.sys (Microsoft Corporation)
DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\drivers\USBHUB3.SYS (Microsoft Corporation)
DRV:64bit: - (TPM) -- C:\Windows\SysNative\drivers\tpm.sys (Microsoft Corporation)
DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\drivers\WdBoot.sys (Microsoft Corporation)
DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\drivers\WdFilter.sys (Microsoft Corporation)
DRV:64bit: - (WdNisDrv) -- C:\Windows\SysNative\drivers\WdNisDrv.sys (Microsoft Corporation)
DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\drivers\USBXHCI.SYS (Microsoft Corporation)
DRV:64bit: - (ahcache) -- C:\Windows\SysNative\drivers\ahcache.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\drivers\bthhfenum.sys (Microsoft Corporation)
DRV:64bit: - (Wof) -- C:\WINDOWS\SysNative\drivers\wof.sys (Microsoft Corporation)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\drivers\wpcfltr.sys (Microsoft Corporation)
DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\drivers\NdisImPlatform.sys (Microsoft Corporation)
DRV:64bit: - (Ndu) -- C:\Windows\SysNative\drivers\Ndu.sys (Microsoft Corporation)
DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\drivers\mslldp.sys (Microsoft Corporation)
DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\drivers\msgpioclx.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\drivers\UCX01000.SYS (Microsoft Corporation)
DRV:64bit: - (netvsc) -- C:\Windows\SysNative\drivers\netvsc63.sys (Microsoft Corporation)
DRV:64bit: - (SerCx2) -- C:\Windows\SysNative\drivers\SerCx2.sys (Microsoft Corporation)
DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\drivers\VerifierExt.sys (Microsoft Corporation)
DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\drivers\BthLEEnum.sys (Microsoft Corporation)
DRV:64bit: - (sdstor) -- C:\Windows\SysNative\drivers\sdstor.sys (Microsoft Corporation)
DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\drivers\BasicRender.sys (Microsoft Corporation)
DRV:64bit: - (terminpt) -- C:\Windows\SysNative\drivers\terminpt.sys (Microsoft Corporation)
DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\drivers\wfplwfs.sys (Microsoft Corporation)
DRV:64bit: - (dam) -- C:\Windows\SysNative\drivers\dam.sys (Microsoft Corporation)
DRV:64bit: - (intelpep) -- C:\Windows\SysNative\drivers\intelpep.sys (Microsoft Corporation)
DRV:64bit: - (pdc) -- C:\Windows\SysNative\drivers\pdc.sys (Microsoft Corporation)
DRV:64bit: - (RTWlanE) -- C:\Windows\SysNative\drivers\rtwlane.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (condrv) -- C:\Windows\SysNative\drivers\condrv.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (acpiex) -- C:\Windows\SysNative\drivers\acpiex.sys (Microsoft Corporation)
DRV:64bit: - (mvumis) -- C:\Windows\SysNative\drivers\mvumis.sys (Marvell Semiconductor, Inc.)
DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\drivers\msgpiowin32.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\drivers\lsi_sss.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (LSI_SAS3) -- C:\Windows\SysNative\drivers\lsi_sas3.sys (LSI Corporation)
DRV:64bit: - (ADP80XX) -- C:\Windows\SysNative\drivers\adp80xx.sys (PMC-Sierra)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (3ware) -- C:\Windows\SysNative\drivers\3ware.sys (LSI)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys (Microsoft Corporation)
DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\drivers\EhStorClass.sys (Microsoft Corporation)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\drivers\VSTXRAID.SYS (VIA Corporation)
DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\drivers\uaspstor.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology, Inc.)
DRV:64bit: - (storahci) -- C:\Windows\SysNative\drivers\storahci.sys (Microsoft Corporation)
DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\drivers\SpbCx.sys (Microsoft Corporation)
DRV:64bit: - (SerCx) -- C:\Windows\SysNative\drivers\SerCx.sys (Microsoft Corporation)
DRV:64bit: - (UEFI) -- C:\Windows\SysNative\drivers\uefi.sys (Microsoft Corporation)
DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\drivers\WpdUpFltr.sys (Microsoft Corporation)
DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\drivers\BasicDisplay.sys (Microsoft Corporation)
DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\drivers\HyperVideo.sys (Microsoft Corporation)
DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\drivers\mshidumdf.sys (Microsoft Corporation)
DRV:64bit: - (acpitime) -- C:\Windows\SysNative\drivers\acpitime.sys (Microsoft Corporation)
DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\drivers\acpipagr.sys (Microsoft Corporation)
DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys (Microsoft Corporation)
DRV:64bit: - (kdnic) -- C:\Windows\SysNative\drivers\kdnic.sys (Microsoft Corporation)
DRV:64bit: - (gencounter) -- C:\Windows\SysNative\drivers\vmgencounter.sys (Microsoft Corporation)
DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\drivers\npsvctrig.sys (Microsoft Corporation)
DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\drivers\BthhfHid.sys (Microsoft Corporation)
DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\drivers\hyperkbd.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\drivers\hidi2c.sys (Microsoft Corporation)
DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\drivers\dmvsc.sys (Microsoft Corporation)
DRV:64bit: - (NdisVirtualBus) -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys (Microsoft Corporation)
DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\drivers\fxppm.sys (Microsoft Corporation)
DRV:64bit: - (bcmfn2) -- C:\Windows\SysNative\drivers\bcmfn2.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (iaStorAV) -- C:\Windows\SysNative\drivers\iaStorAV.sys (Intel Corporation)
DRV:64bit: - (iaLPSSi_GPIO) -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys (Intel Corporation)
DRV:64bit: - (iaLPSSi_I2C) -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys (Intel Corporation)
DRV:64bit: - (RTL8168) -- C:\Windows\SysNative\drivers\Rt630x64.sys (Realtek )
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\drivers\ASACPI.sys ()
DRV:64bit: - (VIAHdAudAddService) -- C:\Windows\SysNative\drivers\viahduaa.sys (VIA Technologies, Inc.)
DRV:64bit: - (btwampfl) -- C:\Windows\SysNative\drivers\btwampfl.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (bcbtums) -- C:\Windows\SysNative\drivers\bcbtums.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV - (BstHdDrv) -- C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys (BlueStack Systems)
DRV - (BstkDrv) -- C:\Program Files (x86)\Bluestacks\BstkDrv.sys (Bluestack System Inc. )
DRV - (secdrv) -- C:\WINDOWS\SysWow64\drivers\SECDRV.SYS ()
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs,en-US;q=0.7,en;q=0.3
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D5 5B D1 81 9B 87 D2 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 28 D3 85 6F 6D 87 D2 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\ASUS\AppData\Local\Roblox\Versions\version-b31134db0a5f40bd\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher64: C:\Users\ASUS\AppData\Local\Roblox\Versions\version-b31134db0a5f40bd\\NPRobloxProxy64.dll ()
O1 HOSTS File: ([2017/02/23 20:14:10 | 000,000,753 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4:64bit: - HKLM..\Run: [Malwarebytes TrayApp] C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Malwarebytes)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ZAM] C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe (Copyright 2017.)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [vmware-tray.exe] C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (VMware, Inc.)
O4 - HKLM..\Run: [WebStorage] C:\Program Files (x86)\Asus\WebStorage\2.2.12.577\ASUSWSLoader.exe (ASUS Cloud Corporation)
O4 - HKCU..\Run: [BlueStacks Agent] C:\Program Files (x86)\Bluestacks\HD-Agent.exe (BlueStack Systems, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
O4 - HKCU..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKCU..\Run: [Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000001 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000002 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000004 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000005 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000006 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000013 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.)
O13 - gopher Prefix: missing
O15:64bit: - ..Trusted Domains: eset.com ([help] http in Trusted sites)
O15 - HKLM\..Trusted Domains: eset.com ([help] http in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{99BAAD2C-A8B6-4C62-84AC-D67527CE1D77}: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5DB50F3-FCEC-4E4D-A627-0EEBDE72FC5E}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\SYSTEM32\Userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\WINDOWS\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\WINDOWS\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\SysWow64\msv1_0.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2017/03/02 09:32:12 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\ASUS\Desktop\OTL.exe
[2017/03/01 22:34:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BikaQRss
[2017/03/01 22:34:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BikaQ
[2017/03/01 12:27:45 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Kyubey
[2017/03/01 12:27:38 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\WinSAPSvc
[2017/03/01 11:22:05 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\VMware
[2017/03/01 11:22:02 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\VMware
[2017/03/01 11:16:21 | 000,091,712 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vsock.sys
[2017/03/01 11:16:20 | 000,069,104 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\vsocklib.dll
[2017/03/01 11:16:20 | 000,065,016 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysWow64\vsocklib.dll
[2017/03/01 11:16:12 | 000,088,128 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vmx86.sys
[2017/03/01 11:15:44 | 000,366,664 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysWow64\vmnetdhcp.exe
[2017/03/01 11:15:37 | 000,400,968 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysWow64\vmnat.exe
[2017/03/01 11:15:37 | 000,066,624 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\vnetinst.dll
[2017/03/01 11:15:37 | 000,045,632 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vmnet.sys
[2017/03/01 11:15:37 | 000,044,096 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\vmnetuserif.sys
[2017/03/01 11:15:30 | 001,148,488 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\vnetlib64.dll
[2017/03/01 11:14:52 | 000,083,008 | ---- | C] (VMware, Inc.) -- C:\WINDOWS\SysNative\drivers\hcmon.sys
Re: Zavirovaný pc s pomocí viru yundooo
[2017/03/01 11:14:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\DRVSTORE
[2017/03/01 11:14:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
[2017/03/01 11:14:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ThinPrint
[2017/03/01 11:13:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\VMware
[2017/03/01 11:13:38 | 000,000,000 | ---D | C] -- C:\ProgramData\VMware
[2017/03/01 11:13:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VMware
[2017/03/01 11:13:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Shared Virtual Machines
[2017/03/01 11:12:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\VMware
[2017/02/26 21:17:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2017/02/26 21:17:21 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\LogMeIn Hamachi
[2017/02/26 21:01:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Tunngle
[2017/02/26 21:01:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Tunngle
[2017/02/26 21:01:25 | 000,039,464 | ---- | C] (Tunngle.net GmbH) -- C:\WINDOWS\SysNative\drivers\tap0901t.sys
[2017/02/26 20:44:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2017/02/26 20:44:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2017/02/26 20:36:41 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\LogMeIn
[2017/02/26 20:36:41 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2017/02/26 15:25:02 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Red Giant
[2017/02/26 15:24:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Giant Link
[2017/02/26 15:23:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2017/02/26 15:20:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
[2017/02/26 15:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Red Giant
[2017/02/26 15:16:27 | 015,576,576 | ---- | C] (Trapcode AB) -- C:\WINDOWS\SysNative\TCParticleBuilder.dll
[2017/02/26 15:16:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Giant
[2017/02/26 15:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\RedGiant
[2017/02/25 19:55:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ASUS MultiFrame
[2017/02/24 23:59:05 | 000,678,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcp120_clr0400.dll
[2017/02/24 23:59:05 | 000,536,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvcp120_clr0400.dll
[2017/02/24 23:59:02 | 000,875,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvcr120_clr0400.dll
[2017/02/24 23:59:02 | 000,869,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcr120_clr0400.dll
[2017/02/24 23:43:59 | 000,000,000 | -HSD | C] -- C:\Users\ASUS\AppData\Local\EmieBrowserModeList
[2017/02/24 23:28:24 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\hry
[2017/02/24 20:52:20 | 000,000,000 | ---D | C] -- C:\FRST
[2017/02/24 20:48:43 | 002,423,296 | ---- | C] (Farbar) -- C:\Users\ASUS\Desktop\FRST64.exe
[2017/02/23 20:41:46 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2017/02/23 20:35:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2017/02/23 20:35:26 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Temp
[2017/02/23 20:12:47 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2017/02/23 19:51:25 | 000,203,680 | ---- | C] (Zemana Ltd.) -- C:\WINDOWS\SysNative\drivers\zamguard64.sys
[2017/02/23 19:51:25 | 000,203,680 | ---- | C] (Zemana Ltd.) -- C:\WINDOWS\SysNative\drivers\zam64.sys
[2017/02/23 19:51:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
[2017/02/23 19:51:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zemana AntiMalware
[2017/02/23 19:51:10 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Zemana
[2017/02/23 19:04:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
[2017/02/23 19:04:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASIO4ALL v2
[2017/02/23 19:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\VST2
[2017/02/23 19:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Propellerhead Software
[2017/02/23 19:04:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Propellerhead Software
[2017/02/23 19:02:36 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Image-Line
[2017/02/23 19:02:35 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Image-Line
[2017/02/23 19:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Image-Line
[2017/02/23 19:02:31 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
[2017/02/23 19:02:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
[2017/02/23 18:51:58 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\Programy
[2017/02/23 18:51:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Image-Line
[2017/02/23 12:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2017/02/23 12:24:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
[2017/02/23 12:24:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2017/02/22 21:02:50 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\nová hudbička
[2017/02/22 14:32:26 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\ASUS\Desktop\hijackthis.exe
[2017/02/22 11:42:39 | 001,663,040 | ---- | C] (Malwarebytes) -- C:\Users\ASUS\Desktop\JRT.exe
[2017/02/22 10:30:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Migration
[2017/02/22 10:30:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appraiser
[2017/02/22 10:29:44 | 001,609,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2017/02/22 10:29:44 | 001,286,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2017/02/22 10:29:44 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2017/02/22 10:29:44 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2017/02/22 10:29:44 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2017/02/22 10:29:44 | 000,093,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe
[2017/02/22 10:29:43 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2017/02/22 10:29:43 | 000,556,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2017/02/22 10:29:43 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\centel.dll
[2017/02/21 18:50:36 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Audacity
[2017/02/21 18:50:36 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Audacity
[2017/02/21 10:23:30 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\telefon
[2017/02/21 10:03:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\w8i3w1l6
[2017/02/20 15:38:57 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
[2017/02/20 15:38:55 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Roblox
[2017/02/19 16:46:18 | 000,000,000 | ---D | C] -- C:\ProgramData\VEGAS Pro
[2017/02/19 16:45:56 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\VEGAS
[2017/02/19 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\VEGAS Pro
[2017/02/19 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\VEGAS Pro
[2017/02/19 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Sony
[2017/02/19 16:44:41 | 014,265,594 | ---- | C] (MAGIX ) -- C:\Users\ASUS\Desktop\Vegas PRO 14 Patch.exe
[2017/02/19 16:31:01 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\MAGIX
[2017/02/19 16:31:01 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX
[2017/02/19 15:17:34 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\NFS Underground 2
[2017/02/19 15:01:02 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\GeometryDash
[2017/02/19 14:53:35 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\TechSmith
[2017/02/19 14:53:29 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Camtasia Studio
[2017/02/19 14:53:09 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\TechSmith
[2017/02/19 14:50:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
[2017/02/19 14:50:32 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1995-08.com.techsmith
[2017/02/19 14:50:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2017/02/19 14:50:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\TechSmith Shared
[2017/02/19 14:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2017/02/19 14:50:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TechSmith
[2017/02/19 14:40:04 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\BANDISOFT
[2017/02/19 14:38:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
[2017/02/19 14:37:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BandiMPEG1
[2017/02/19 14:34:04 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Bandicam
[2017/02/19 14:33:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bandicam
[2017/02/19 14:31:37 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\vlc
[2017/02/19 14:16:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2017/02/19 14:15:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2017/02/19 14:10:54 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\obs-studio
[2017/02/19 14:10:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
[2017/02/19 14:09:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\obs-studio
[2017/02/19 12:58:16 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2017/02/19 10:58:37 | 000,176,584 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMChameleon.sys
[2017/02/19 10:58:24 | 000,110,536 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\farflt.sys
[2017/02/19 10:58:24 | 000,091,584 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2017/02/19 10:58:19 | 000,043,968 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2017/02/19 10:58:15 | 000,251,848 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2017/02/19 10:58:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
[2017/02/19 10:57:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2017/02/19 10:57:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes
[2017/02/19 10:55:18 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\ESET
[2017/02/19 01:05:41 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Disc_Soft_Ltd
[2017/02/19 01:04:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Daemon Tools Images
[2017/02/19 00:32:30 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Diagnostics
[2017/02/19 00:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2017/02/19 00:32:09 | 000,000,000 | ---D | C] -- C:\Program Files\EACom
[2017/02/19 00:31:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2017/02/19 00:31:20 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2017/02/19 00:28:55 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2017/02/19 00:27:07 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Profiles
[2017/02/19 00:27:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Grawition
[2017/02/19 00:26:55 | 000,047,672 | ---- | C] (Disc Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtliteusbbus.sys
[2017/02/19 00:26:52 | 000,030,264 | ---- | C] (Disc Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtlitescsibus.sys
[2017/02/19 00:26:52 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\DAEMON Tools Lite
[2017/02/19 00:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2017/02/19 00:26:37 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2017/02/19 00:22:17 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\uTorrent
[2017/02/18 23:38:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
[2017/02/18 22:50:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\4kdownload.com
[2017/02/18 22:50:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
[2017/02/18 22:50:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\4KDownload
[2017/02/17 19:35:10 | 000,367,104 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNC_BXL.dll
[2017/02/17 19:35:10 | 000,282,624 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNC_BXC.dll
[2017/02/17 19:35:10 | 000,106,496 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNC_BXI.dll
[2017/02/17 19:35:10 | 000,017,920 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNHMCA6.dll
[2017/02/17 09:47:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Install Creator Pro
[2017/02/17 09:47:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Install Creator Pro
[2017/02/16 19:45:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
[2017/02/16 19:45:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrystalDiskInfo
[2017/02/16 18:04:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\TeamViewer
[2017/02/16 18:04:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2017/02/15 18:08:28 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\TeamSpeak 3
[2017/02/15 18:08:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\NVIDIA
[2017/02/15 18:07:45 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\TS3Client
[2017/02/15 13:40:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer 4 Tiberian Twilight
[2017/02/15 13:29:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer 3 Tiberium Wars and Kane's Wrath
[2017/02/15 13:11:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Generals and Zero Hour
[2017/02/15 13:08:50 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\CrashDumps
[2017/02/15 13:08:44 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2017/02/15 13:08:44 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Command and Conquer Generals Zero Hour Data
[2017/02/15 13:08:44 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Command and Conquer Generals Data
[2017/02/15 13:01:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
[2017/02/15 13:01:16 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Origin
[2017/02/15 13:01:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2017/02/15 13:00:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2017/02/15 13:00:06 | 000,000,000 | ---D | C] -- C:\Users\ASUS\.Origin
[2017/02/15 13:00:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2017/02/15 12:59:58 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Origin
[2017/02/15 12:58:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2017/02/15 12:56:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GOG.com
[2017/02/15 12:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3DO
[2017/02/15 12:55:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\3DO
[2017/02/15 12:52:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
[2017/02/15 12:51:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES
[2017/02/15 11:59:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2017/02/15 11:30:24 | 000,029,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aspnet_counters.dll
[2017/02/15 11:30:24 | 000,028,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aspnet_counters.dll
[2017/02/15 11:27:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2017/02/15 11:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2017/02/15 11:25:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2017/02/15 10:42:48 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Ashampoo Burning Studio 16
[2017/02/15 10:41:56 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Ashampoo
[2017/02/15 10:40:11 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\ashampoo
[2017/02/15 10:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
[2017/02/15 10:39:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Ashampoo
[2017/02/15 10:39:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2017/02/15 10:27:40 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Readon_Technology
[2017/02/15 10:27:40 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Readon Player
[2017/02/15 10:21:10 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Mc & RENOX
[2017/02/15 10:11:15 | 000,835,576 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2017/02/15 10:11:15 | 000,177,656 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2017/02/15 09:38:57 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2017/02/15 09:38:57 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2017/02/15 09:23:07 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Macromedia
[2017/02/15 09:19:49 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Bluestacks
[2017/02/15 09:18:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bluestacks
[2017/02/15 09:18:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Bluestacks
[2017/02/15 07:56:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\MRT
[2017/02/15 07:34:07 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascfg.dll
[2017/02/15 07:34:07 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rascfg.dll
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kbdgeoqw.dll
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDAZST.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDAZST.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDAZEL.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDAZEL.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDAZE.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDAZE.DLL
[2017/02/15 07:22:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kbdgeoqw.dll
[2017/02/15 07:22:04 | 000,672,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2017/02/15 07:22:04 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.Handlers.dll
[2017/02/15 07:22:04 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsDatabase.dll
[2017/02/15 07:21:59 | 004,837,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2017/02/15 07:21:56 | 001,154,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2017/02/15 07:21:56 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2017/02/15 07:21:56 | 000,962,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2017/02/15 07:21:56 | 000,801,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2017/02/15 07:21:55 | 000,885,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2017/02/15 07:21:55 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2017/02/15 07:21:55 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2017/02/15 07:21:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSDMon.dll
[2017/02/15 07:21:55 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinSCard.dll
[2017/02/15 07:21:55 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2017/02/15 07:21:55 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QSVRMGMT.DLL
[2017/02/15 07:21:55 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\QSVRMGMT.DLL
[2017/02/15 07:21:55 | 000,086,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2017/02/15 07:21:55 | 000,058,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys
[2017/02/15 07:21:55 | 000,039,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2017/02/15 07:21:54 | 000,514,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2017/02/15 07:21:54 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll
[2017/02/15 07:21:54 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QSHVHOST.DLL
[2017/02/15 07:21:54 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\QSHVHOST.DLL
[2017/02/15 07:21:54 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2017/02/15 07:21:53 | 001,574,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vssapi.dll
[2017/02/15 07:21:53 | 000,733,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2017/02/15 07:21:53 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe
[2017/02/15 07:21:53 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdiag.dll
[2017/02/15 07:21:53 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vsstrace.dll
[2017/02/15 07:21:53 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdiag.dll
[2017/02/15 07:21:53 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kmddsp.tsp
[2017/02/15 07:21:53 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasmxs.dll
[2017/02/15 07:21:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kmddsp.tsp
[2017/02/15 07:21:53 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasmxs.dll
[2017/02/15 07:21:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasser.dll
[2017/02/15 07:21:53 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasser.dll
[2017/02/15 07:21:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eventcls.dll
[2017/02/15 07:21:52 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eventcls.dll
[2017/02/15 07:21:09 | 001,307,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2017/02/15 07:21:09 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2017/02/15 07:20:45 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\polstore.dll
[2017/02/15 07:20:45 | 000,135,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpapi.dll
[2017/02/15 07:20:44 | 000,898,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CPFilters.dll
[2017/02/15 07:20:44 | 000,702,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CPFilters.dll
[2017/02/15 07:20:44 | 000,532,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDec.dll
[2017/02/15 07:20:44 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EncDec.dll
[2017/02/15 07:20:44 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\polstore.dll
[2017/02/15 07:20:44 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FwRemoteSvr.dll
[2017/02/15 07:20:44 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cfgbkend.dll
[2017/02/15 07:20:44 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FwRemoteSvr.dll
[2017/02/15 07:20:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cfgbkend.dll
[2017/02/15 07:20:43 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceSetupStatusProvider.dll
[2017/02/15 07:20:43 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DeviceSetupStatusProvider.dll
[2017/02/15 07:20:42 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\calc.exe
[2017/02/15 07:20:42 | 000,816,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\calc.exe
[2017/02/15 07:19:51 | 000,723,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2017/02/15 07:19:51 | 000,560,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2017/02/15 07:18:04 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bthhfenum.sys
[2017/02/15 07:18:01 | 000,535,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2017/02/15 07:18:01 | 000,448,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2017/02/15 07:18:01 | 000,413,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2017/02/15 07:18:01 | 000,372,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2017/02/15 07:18:01 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2017/02/15 07:18:00 | 000,108,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2017/02/15 07:18:00 | 000,038,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2017/02/15 07:18:00 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2017/02/15 07:18:00 | 000,033,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2017/02/15 07:17:53 | 000,748,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll
[2017/02/15 07:17:45 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2017/02/15 07:17:45 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2017/02/15 07:17:45 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys
[2017/02/15 07:17:42 | 000,155,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tpm.sys
[2017/02/15 07:17:38 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2017/02/15 07:17:28 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GeofenceMonitorService.dll
[2017/02/15 07:17:28 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GeofenceMonitorService.dll
[2017/02/15 07:17:23 | 002,256,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2017/02/15 07:17:22 | 001,943,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2017/02/15 07:17:16 | 000,833,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2017/02/15 07:17:16 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2017/02/15 07:17:08 | 004,710,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2017/02/15 07:16:41 | 000,952,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2017/02/15 07:16:41 | 000,786,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2017/02/15 07:16:34 | 000,534,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2017/02/15 07:16:34 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2017/02/15 07:16:28 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\photowiz.dll
[2017/02/15 07:16:28 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\photowiz.dll
[2017/02/15 07:16:22 | 001,877,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2adec.dll
[2017/02/15 07:16:22 | 001,484,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2adec.dll
[2017/02/15 07:16:21 | 002,745,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2017/02/15 07:16:21 | 002,528,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2017/02/15 07:16:21 | 002,450,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVENCOD.DLL
[2017/02/15 07:16:21 | 002,334,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2017/02/15 07:16:21 | 002,324,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2017/02/15 07:16:21 | 001,697,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\quartz.dll
[2017/02/15 07:16:21 | 001,288,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2017/02/15 07:16:21 | 001,210,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOD.DLL
[2017/02/15 07:16:21 | 001,115,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2017/02/15 07:16:21 | 001,037,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOD.DLL
[2017/02/15 07:16:21 | 000,850,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2017/02/15 07:16:21 | 000,735,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2017/02/15 07:16:21 | 000,700,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2017/02/15 07:16:20 | 002,447,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVENCOD.DLL
[2017/02/15 07:16:20 | 001,664,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOE.DLL
[2017/02/15 07:16:20 | 001,501,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\quartz.dll
[2017/02/15 07:16:20 | 001,010,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOD.DLL
[2017/02/15 07:16:20 | 000,887,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOD.DLL
[2017/02/15 07:16:20 | 000,629,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP4SDECD.DLL
[2017/02/15 07:16:20 | 000,584,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2017/02/15 07:16:20 | 000,557,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSDECD.DLL
[2017/02/15 07:16:20 | 000,492,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSDECD.DLL
[2017/02/15 07:16:20 | 000,463,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP4SDECD.DLL
[2017/02/15 07:16:20 | 000,299,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VIDRESZR.DLL
[2017/02/15 07:16:20 | 000,250,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MPG4DECD.DLL
[2017/02/15 07:16:20 | 000,248,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP43DECD.DLL
[2017/02/15 07:16:20 | 000,246,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RESAMPLEDMO.DLL
[2017/02/15 07:16:20 | 000,229,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RESAMPLEDMO.DLL
[2017/02/15 07:16:20 | 000,203,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\COLORCNV.DLL
[2017/02/15 07:16:20 | 000,184,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\COLORCNV.DLL
[2017/02/15 07:16:20 | 000,116,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP3DMOD.DLL
[2017/02/15 07:16:20 | 000,099,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP3DMOD.DLL
[2017/02/15 07:16:20 | 000,090,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfvdsp.dll
[2017/02/15 07:16:19 | 001,411,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOE.DLL
[2017/02/15 07:16:19 | 001,150,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOE.DLL
[2017/02/15 07:16:19 | 000,914,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOE.DLL
[2017/02/15 07:16:19 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFWMAAEC.DLL
[2017/02/15 07:16:19 | 000,736,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVXENCD.DLL
[2017/02/15 07:16:19 | 000,644,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVXENCD.DLL
[2017/02/15 07:16:19 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2017/02/15 07:16:19 | 000,468,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFWMAAEC.DLL
[2017/02/15 07:16:19 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSENCD.DLL
[2017/02/15 07:16:19 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSENCD.DLL
[2017/02/15 07:16:19 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2017/02/15 07:16:19 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksproxy.ax
[2017/02/15 07:16:19 | 000,275,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MPG4DECD.DLL
[2017/02/15 07:16:19 | 000,274,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP43DECD.DLL
[2017/02/15 07:16:19 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ksproxy.ax
[2017/02/15 07:16:19 | 000,244,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2017/02/15 07:16:19 | 000,183,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VIDRESZR.DLL
[2017/02/15 07:16:19 | 000,110,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2017/02/15 07:16:19 | 000,090,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devenum.dll
[2017/02/15 07:16:19 | 000,081,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\devenum.dll
[2017/02/15 07:16:19 | 000,076,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfvdsp.dll
[2017/02/15 07:16:18 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntprint.dll
[2017/02/15 07:16:18 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ntprint.dll
[2017/02/15 07:16:18 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetpp.dll
[2017/02/15 07:15:59 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scesrv.dll
[2017/02/15 07:15:59 | 000,393,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scesrv.dll
[2017/02/15 07:15:43 | 000,183,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2017/02/15 07:15:37 | 000,951,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2017/02/15 07:15:37 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2017/02/15 07:15:36 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2017/02/15 07:15:28 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2017/02/15 07:15:28 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2017/02/15 07:14:36 | 001,763,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2017/02/15 07:13:15 | 000,218,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rsaenh.dll
[2017/02/15 07:13:09 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmWmiPl.dll
[2017/02/15 07:13:09 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmWmiPl.dll
[2017/02/15 07:13:09 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmAuto.dll
[2017/02/15 07:13:09 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmAuto.dll
[2017/02/15 07:13:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmAgent.dll
[2017/02/15 07:13:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmAgent.dll
[2017/02/15 07:12:52 | 004,417,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbgeng.dll
[2017/02/15 07:12:52 | 002,985,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbgeng.dll
[2017/02/15 07:12:52 | 001,491,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbghelp.dll
[2017/02/15 07:12:52 | 001,207,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbghelp.dll
[2017/02/15 07:12:46 | 002,162,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2017/02/15 07:12:46 | 001,812,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2017/02/15 07:12:28 | 000,273,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2017/02/15 07:12:27 | 002,819,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2017/02/15 07:12:27 | 002,171,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlowUI.dll
[2017/02/15 07:12:24 | 003,120,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2017/02/15 07:12:23 | 002,712,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2017/02/15 07:12:23 | 002,592,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2017/02/15 07:12:23 | 002,551,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2017/02/15 07:12:23 | 001,278,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2017/02/15 07:12:23 | 000,955,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2017/02/15 07:12:23 | 000,841,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2017/02/15 07:12:23 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2017/02/15 07:12:23 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2017/02/15 07:12:23 | 000,653,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2017/02/15 07:12:23 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hgcpl.dll
[2017/02/15 07:12:23 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hgcpl.dll
[2017/03/01 11:14:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
[2017/03/01 11:14:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ThinPrint
[2017/03/01 11:13:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\VMware
[2017/03/01 11:13:38 | 000,000,000 | ---D | C] -- C:\ProgramData\VMware
[2017/03/01 11:13:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VMware
[2017/03/01 11:13:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Shared Virtual Machines
[2017/03/01 11:12:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\VMware
[2017/02/26 21:17:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2017/02/26 21:17:21 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\LogMeIn Hamachi
[2017/02/26 21:01:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Tunngle
[2017/02/26 21:01:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Tunngle
[2017/02/26 21:01:25 | 000,039,464 | ---- | C] (Tunngle.net GmbH) -- C:\WINDOWS\SysNative\drivers\tap0901t.sys
[2017/02/26 20:44:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2017/02/26 20:44:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2017/02/26 20:36:41 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\LogMeIn
[2017/02/26 20:36:41 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2017/02/26 15:25:02 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Red Giant
[2017/02/26 15:24:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Giant Link
[2017/02/26 15:23:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2017/02/26 15:20:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
[2017/02/26 15:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Red Giant
[2017/02/26 15:16:27 | 015,576,576 | ---- | C] (Trapcode AB) -- C:\WINDOWS\SysNative\TCParticleBuilder.dll
[2017/02/26 15:16:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Red Giant
[2017/02/26 15:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\RedGiant
[2017/02/25 19:55:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ASUS MultiFrame
[2017/02/24 23:59:05 | 000,678,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcp120_clr0400.dll
[2017/02/24 23:59:05 | 000,536,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvcp120_clr0400.dll
[2017/02/24 23:59:02 | 000,875,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvcr120_clr0400.dll
[2017/02/24 23:59:02 | 000,869,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcr120_clr0400.dll
[2017/02/24 23:43:59 | 000,000,000 | -HSD | C] -- C:\Users\ASUS\AppData\Local\EmieBrowserModeList
[2017/02/24 23:28:24 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\hry
[2017/02/24 20:52:20 | 000,000,000 | ---D | C] -- C:\FRST
[2017/02/24 20:48:43 | 002,423,296 | ---- | C] (Farbar) -- C:\Users\ASUS\Desktop\FRST64.exe
[2017/02/23 20:41:46 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2017/02/23 20:35:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2017/02/23 20:35:26 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Temp
[2017/02/23 20:12:47 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2017/02/23 19:51:25 | 000,203,680 | ---- | C] (Zemana Ltd.) -- C:\WINDOWS\SysNative\drivers\zamguard64.sys
[2017/02/23 19:51:25 | 000,203,680 | ---- | C] (Zemana Ltd.) -- C:\WINDOWS\SysNative\drivers\zam64.sys
[2017/02/23 19:51:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
[2017/02/23 19:51:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Zemana AntiMalware
[2017/02/23 19:51:10 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Zemana
[2017/02/23 19:04:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
[2017/02/23 19:04:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASIO4ALL v2
[2017/02/23 19:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\VST2
[2017/02/23 19:04:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Propellerhead Software
[2017/02/23 19:04:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Propellerhead Software
[2017/02/23 19:02:36 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Image-Line
[2017/02/23 19:02:35 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Image-Line
[2017/02/23 19:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Image-Line
[2017/02/23 19:02:31 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
[2017/02/23 19:02:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
[2017/02/23 18:51:58 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\Programy
[2017/02/23 18:51:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Image-Line
[2017/02/23 12:24:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2017/02/23 12:24:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
[2017/02/23 12:24:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2017/02/22 21:02:50 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\nová hudbička
[2017/02/22 14:32:26 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\ASUS\Desktop\hijackthis.exe
[2017/02/22 11:42:39 | 001,663,040 | ---- | C] (Malwarebytes) -- C:\Users\ASUS\Desktop\JRT.exe
[2017/02/22 10:30:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Migration
[2017/02/22 10:30:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appraiser
[2017/02/22 10:29:44 | 001,609,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appraiser.dll
[2017/02/22 10:29:44 | 001,286,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2017/02/22 10:29:44 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\invagent.dll
[2017/02/22 10:29:44 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2017/02/22 10:29:44 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acmigration.dll
[2017/02/22 10:29:44 | 000,093,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CompatTelRunner.exe
[2017/02/22 10:29:43 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2017/02/22 10:29:43 | 000,556,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2017/02/22 10:29:43 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\centel.dll
[2017/02/21 18:50:36 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Audacity
[2017/02/21 18:50:36 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Audacity
[2017/02/21 10:23:30 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\telefon
[2017/02/21 10:03:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\w8i3w1l6
[2017/02/20 15:38:57 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
[2017/02/20 15:38:55 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Roblox
[2017/02/19 16:46:18 | 000,000,000 | ---D | C] -- C:\ProgramData\VEGAS Pro
[2017/02/19 16:45:56 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\VEGAS
[2017/02/19 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\VEGAS Pro
[2017/02/19 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\VEGAS Pro
[2017/02/19 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Sony
[2017/02/19 16:44:41 | 014,265,594 | ---- | C] (MAGIX ) -- C:\Users\ASUS\Desktop\Vegas PRO 14 Patch.exe
[2017/02/19 16:31:01 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\MAGIX
[2017/02/19 16:31:01 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX
[2017/02/19 15:17:34 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\NFS Underground 2
[2017/02/19 15:01:02 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\GeometryDash
[2017/02/19 14:53:35 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\TechSmith
[2017/02/19 14:53:29 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Camtasia Studio
[2017/02/19 14:53:09 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\TechSmith
[2017/02/19 14:50:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
[2017/02/19 14:50:32 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1995-08.com.techsmith
[2017/02/19 14:50:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2017/02/19 14:50:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\TechSmith Shared
[2017/02/19 14:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2017/02/19 14:50:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TechSmith
[2017/02/19 14:40:04 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\BANDISOFT
[2017/02/19 14:38:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
[2017/02/19 14:37:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BandiMPEG1
[2017/02/19 14:34:04 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Bandicam
[2017/02/19 14:33:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bandicam
[2017/02/19 14:31:37 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\vlc
[2017/02/19 14:16:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2017/02/19 14:15:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2017/02/19 14:10:54 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\obs-studio
[2017/02/19 14:10:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
[2017/02/19 14:09:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\obs-studio
[2017/02/19 12:58:16 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2017/02/19 10:58:37 | 000,176,584 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMChameleon.sys
[2017/02/19 10:58:24 | 000,110,536 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\farflt.sys
[2017/02/19 10:58:24 | 000,091,584 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mwac.sys
[2017/02/19 10:58:19 | 000,043,968 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2017/02/19 10:58:15 | 000,251,848 | ---- | C] (Malwarebytes) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2017/02/19 10:58:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
[2017/02/19 10:57:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2017/02/19 10:57:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes
[2017/02/19 10:55:18 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\ESET
[2017/02/19 01:05:41 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Disc_Soft_Ltd
[2017/02/19 01:04:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Daemon Tools Images
[2017/02/19 00:32:30 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Diagnostics
[2017/02/19 00:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2017/02/19 00:32:09 | 000,000,000 | ---D | C] -- C:\Program Files\EACom
[2017/02/19 00:31:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2017/02/19 00:31:20 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2017/02/19 00:28:55 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2017/02/19 00:27:07 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Profiles
[2017/02/19 00:27:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Grawition
[2017/02/19 00:26:55 | 000,047,672 | ---- | C] (Disc Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtliteusbbus.sys
[2017/02/19 00:26:52 | 000,030,264 | ---- | C] (Disc Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtlitescsibus.sys
[2017/02/19 00:26:52 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\DAEMON Tools Lite
[2017/02/19 00:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2017/02/19 00:26:37 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2017/02/19 00:22:17 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\uTorrent
[2017/02/18 23:38:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zařízení Bluetooth
[2017/02/18 22:50:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\4kdownload.com
[2017/02/18 22:50:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
[2017/02/18 22:50:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\4KDownload
[2017/02/17 19:35:10 | 000,367,104 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNC_BXL.dll
[2017/02/17 19:35:10 | 000,282,624 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNC_BXC.dll
[2017/02/17 19:35:10 | 000,106,496 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNC_BXI.dll
[2017/02/17 19:35:10 | 000,017,920 | ---- | C] (CANON INC.) -- C:\WINDOWS\SysNative\CNHMCA6.dll
[2017/02/17 09:47:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Install Creator Pro
[2017/02/17 09:47:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Install Creator Pro
[2017/02/16 19:45:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
[2017/02/16 19:45:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrystalDiskInfo
[2017/02/16 18:04:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\TeamViewer
[2017/02/16 18:04:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2017/02/15 18:08:28 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\TeamSpeak 3
[2017/02/15 18:08:27 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\NVIDIA
[2017/02/15 18:07:45 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\TS3Client
[2017/02/15 13:40:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer 4 Tiberian Twilight
[2017/02/15 13:29:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer 3 Tiberium Wars and Kane's Wrath
[2017/02/15 13:11:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Command and Conquer Generals and Zero Hour
[2017/02/15 13:08:50 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\CrashDumps
[2017/02/15 13:08:44 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2017/02/15 13:08:44 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Command and Conquer Generals Zero Hour Data
[2017/02/15 13:08:44 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Command and Conquer Generals Data
[2017/02/15 13:01:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
[2017/02/15 13:01:16 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Origin
[2017/02/15 13:01:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2017/02/15 13:00:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
[2017/02/15 13:00:06 | 000,000,000 | ---D | C] -- C:\Users\ASUS\.Origin
[2017/02/15 13:00:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2017/02/15 12:59:58 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Origin
[2017/02/15 12:58:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
[2017/02/15 12:56:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GOG.com
[2017/02/15 12:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3DO
[2017/02/15 12:55:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\3DO
[2017/02/15 12:52:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
[2017/02/15 12:51:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA GAMES
[2017/02/15 11:59:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2017/02/15 11:30:24 | 000,029,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aspnet_counters.dll
[2017/02/15 11:30:24 | 000,028,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aspnet_counters.dll
[2017/02/15 11:27:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2017/02/15 11:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2017/02/15 11:25:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2017/02/15 10:42:48 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Ashampoo Burning Studio 16
[2017/02/15 10:41:56 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Ashampoo
[2017/02/15 10:40:11 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\ashampoo
[2017/02/15 10:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
[2017/02/15 10:39:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Ashampoo
[2017/02/15 10:39:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo
[2017/02/15 10:27:40 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Readon_Technology
[2017/02/15 10:27:40 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Readon Player
[2017/02/15 10:21:10 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Mc & RENOX
[2017/02/15 10:11:15 | 000,835,576 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2017/02/15 10:11:15 | 000,177,656 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2017/02/15 09:38:57 | 000,124,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2017/02/15 09:38:57 | 000,103,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2017/02/15 09:23:07 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Macromedia
[2017/02/15 09:19:49 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Bluestacks
[2017/02/15 09:18:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bluestacks
[2017/02/15 09:18:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Bluestacks
[2017/02/15 07:56:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\MRT
[2017/02/15 07:34:07 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascfg.dll
[2017/02/15 07:34:07 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rascfg.dll
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kbdgeoqw.dll
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDAZST.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDAZST.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDAZEL.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDAZEL.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDAZE.DLL
[2017/02/15 07:22:36 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDAZE.DLL
[2017/02/15 07:22:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kbdgeoqw.dll
[2017/02/15 07:22:04 | 000,672,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2017/02/15 07:22:04 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.Handlers.dll
[2017/02/15 07:22:04 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsDatabase.dll
[2017/02/15 07:21:59 | 004,837,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2017/02/15 07:21:56 | 001,154,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2017/02/15 07:21:56 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2017/02/15 07:21:56 | 000,962,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2017/02/15 07:21:56 | 000,801,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2017/02/15 07:21:55 | 000,885,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2017/02/15 07:21:55 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2017/02/15 07:21:55 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2017/02/15 07:21:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSDMon.dll
[2017/02/15 07:21:55 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinSCard.dll
[2017/02/15 07:21:55 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2017/02/15 07:21:55 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QSVRMGMT.DLL
[2017/02/15 07:21:55 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\QSVRMGMT.DLL
[2017/02/15 07:21:55 | 000,086,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2017/02/15 07:21:55 | 000,058,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys
[2017/02/15 07:21:55 | 000,039,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2017/02/15 07:21:54 | 000,514,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2017/02/15 07:21:54 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll
[2017/02/15 07:21:54 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\QSHVHOST.DLL
[2017/02/15 07:21:54 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\QSHVHOST.DLL
[2017/02/15 07:21:54 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2017/02/15 07:21:53 | 001,574,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vssapi.dll
[2017/02/15 07:21:53 | 000,733,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2017/02/15 07:21:53 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\splwow64.exe
[2017/02/15 07:21:53 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdiag.dll
[2017/02/15 07:21:53 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vsstrace.dll
[2017/02/15 07:21:53 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdiag.dll
[2017/02/15 07:21:53 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kmddsp.tsp
[2017/02/15 07:21:53 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasmxs.dll
[2017/02/15 07:21:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kmddsp.tsp
[2017/02/15 07:21:53 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasmxs.dll
[2017/02/15 07:21:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasser.dll
[2017/02/15 07:21:53 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasser.dll
[2017/02/15 07:21:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eventcls.dll
[2017/02/15 07:21:52 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eventcls.dll
[2017/02/15 07:21:09 | 001,307,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2017/02/15 07:21:09 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2017/02/15 07:20:45 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\polstore.dll
[2017/02/15 07:20:45 | 000,135,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpapi.dll
[2017/02/15 07:20:44 | 000,898,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CPFilters.dll
[2017/02/15 07:20:44 | 000,702,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CPFilters.dll
[2017/02/15 07:20:44 | 000,532,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDec.dll
[2017/02/15 07:20:44 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\EncDec.dll
[2017/02/15 07:20:44 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\polstore.dll
[2017/02/15 07:20:44 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FwRemoteSvr.dll
[2017/02/15 07:20:44 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cfgbkend.dll
[2017/02/15 07:20:44 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FwRemoteSvr.dll
[2017/02/15 07:20:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cfgbkend.dll
[2017/02/15 07:20:43 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DeviceSetupStatusProvider.dll
[2017/02/15 07:20:43 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DeviceSetupStatusProvider.dll
[2017/02/15 07:20:42 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\calc.exe
[2017/02/15 07:20:42 | 000,816,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\calc.exe
[2017/02/15 07:19:51 | 000,723,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2017/02/15 07:19:51 | 000,560,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2017/02/15 07:18:04 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\bthhfenum.sys
[2017/02/15 07:18:01 | 000,535,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2017/02/15 07:18:01 | 000,448,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2017/02/15 07:18:01 | 000,413,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2017/02/15 07:18:01 | 000,372,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2017/02/15 07:18:01 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2017/02/15 07:18:00 | 000,108,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2017/02/15 07:18:00 | 000,038,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2017/02/15 07:18:00 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werdiagcontroller.dll
[2017/02/15 07:18:00 | 000,033,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2017/02/15 07:17:53 | 000,748,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll
[2017/02/15 07:17:45 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2017/02/15 07:17:45 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2017/02/15 07:17:45 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rmcast.sys
[2017/02/15 07:17:42 | 000,155,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tpm.sys
[2017/02/15 07:17:38 | 000,564,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2017/02/15 07:17:28 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GeofenceMonitorService.dll
[2017/02/15 07:17:28 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GeofenceMonitorService.dll
[2017/02/15 07:17:23 | 002,256,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2017/02/15 07:17:22 | 001,943,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2017/02/15 07:17:16 | 000,833,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2017/02/15 07:17:16 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2017/02/15 07:17:08 | 004,710,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2017/02/15 07:16:41 | 000,952,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2017/02/15 07:16:41 | 000,786,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2017/02/15 07:16:34 | 000,534,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.dll
[2017/02/15 07:16:34 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.dll
[2017/02/15 07:16:28 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\photowiz.dll
[2017/02/15 07:16:28 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\photowiz.dll
[2017/02/15 07:16:22 | 001,877,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2adec.dll
[2017/02/15 07:16:22 | 001,484,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2adec.dll
[2017/02/15 07:16:21 | 002,745,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2017/02/15 07:16:21 | 002,528,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2017/02/15 07:16:21 | 002,450,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVENCOD.DLL
[2017/02/15 07:16:21 | 002,334,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2017/02/15 07:16:21 | 002,324,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2017/02/15 07:16:21 | 001,697,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\quartz.dll
[2017/02/15 07:16:21 | 001,288,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2017/02/15 07:16:21 | 001,210,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOD.DLL
[2017/02/15 07:16:21 | 001,115,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2017/02/15 07:16:21 | 001,037,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOD.DLL
[2017/02/15 07:16:21 | 000,850,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2017/02/15 07:16:21 | 000,735,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\evr.dll
[2017/02/15 07:16:21 | 000,700,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2017/02/15 07:16:20 | 002,447,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVENCOD.DLL
[2017/02/15 07:16:20 | 001,664,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOE.DLL
[2017/02/15 07:16:20 | 001,501,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\quartz.dll
[2017/02/15 07:16:20 | 001,010,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMSPDMOD.DLL
[2017/02/15 07:16:20 | 000,887,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOD.DLL
[2017/02/15 07:16:20 | 000,629,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP4SDECD.DLL
[2017/02/15 07:16:20 | 000,584,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\evr.dll
[2017/02/15 07:16:20 | 000,557,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSDECD.DLL
[2017/02/15 07:16:20 | 000,492,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSDECD.DLL
[2017/02/15 07:16:20 | 000,463,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP4SDECD.DLL
[2017/02/15 07:16:20 | 000,299,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VIDRESZR.DLL
[2017/02/15 07:16:20 | 000,250,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MPG4DECD.DLL
[2017/02/15 07:16:20 | 000,248,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP43DECD.DLL
[2017/02/15 07:16:20 | 000,246,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RESAMPLEDMO.DLL
[2017/02/15 07:16:20 | 000,229,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RESAMPLEDMO.DLL
[2017/02/15 07:16:20 | 000,203,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\COLORCNV.DLL
[2017/02/15 07:16:20 | 000,184,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\COLORCNV.DLL
[2017/02/15 07:16:20 | 000,116,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MP3DMOD.DLL
[2017/02/15 07:16:20 | 000,099,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP3DMOD.DLL
[2017/02/15 07:16:20 | 000,090,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfvdsp.dll
[2017/02/15 07:16:19 | 001,411,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMSPDMOE.DLL
[2017/02/15 07:16:19 | 001,150,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMADMOE.DLL
[2017/02/15 07:16:19 | 000,914,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMADMOE.DLL
[2017/02/15 07:16:19 | 000,743,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFWMAAEC.DLL
[2017/02/15 07:16:19 | 000,736,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVXENCD.DLL
[2017/02/15 07:16:19 | 000,644,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVXENCD.DLL
[2017/02/15 07:16:19 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qdvd.dll
[2017/02/15 07:16:19 | 000,468,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFWMAAEC.DLL
[2017/02/15 07:16:19 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVSENCD.DLL
[2017/02/15 07:16:19 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVSENCD.DLL
[2017/02/15 07:16:19 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qdvd.dll
[2017/02/15 07:16:19 | 000,289,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ksproxy.ax
[2017/02/15 07:16:19 | 000,275,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MPG4DECD.DLL
[2017/02/15 07:16:19 | 000,274,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MP43DECD.DLL
[2017/02/15 07:16:19 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ksproxy.ax
[2017/02/15 07:16:19 | 000,244,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2017/02/15 07:16:19 | 000,183,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VIDRESZR.DLL
[2017/02/15 07:16:19 | 000,110,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfps.dll
[2017/02/15 07:16:19 | 000,090,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devenum.dll
[2017/02/15 07:16:19 | 000,081,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\devenum.dll
[2017/02/15 07:16:19 | 000,076,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfvdsp.dll
[2017/02/15 07:16:18 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntprint.dll
[2017/02/15 07:16:18 | 000,306,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ntprint.dll
[2017/02/15 07:16:18 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetpp.dll
[2017/02/15 07:15:59 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scesrv.dll
[2017/02/15 07:15:59 | 000,393,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scesrv.dll
[2017/02/15 07:15:43 | 000,183,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2017/02/15 07:15:37 | 000,951,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2017/02/15 07:15:37 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2017/02/15 07:15:36 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\ahcache.sys
[2017/02/15 07:15:28 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Input.Inking.dll
[2017/02/15 07:15:28 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Input.Inking.dll
[2017/02/15 07:14:36 | 001,763,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2017/02/15 07:13:15 | 000,218,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rsaenh.dll
[2017/02/15 07:13:09 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmWmiPl.dll
[2017/02/15 07:13:09 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmWmiPl.dll
[2017/02/15 07:13:09 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmAuto.dll
[2017/02/15 07:13:09 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmAuto.dll
[2017/02/15 07:13:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmAgent.dll
[2017/02/15 07:13:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WsmAgent.dll
[2017/02/15 07:12:52 | 004,417,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbgeng.dll
[2017/02/15 07:12:52 | 002,985,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbgeng.dll
[2017/02/15 07:12:52 | 001,491,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbghelp.dll
[2017/02/15 07:12:52 | 001,207,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbghelp.dll
[2017/02/15 07:12:46 | 002,162,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SRH.dll
[2017/02/15 07:12:46 | 001,812,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SRH.dll
[2017/02/15 07:12:28 | 000,273,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2017/02/15 07:12:27 | 002,819,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2017/02/15 07:12:27 | 002,171,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlowUI.dll
[2017/02/15 07:12:24 | 003,120,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2017/02/15 07:12:23 | 002,712,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2017/02/15 07:12:23 | 002,592,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2017/02/15 07:12:23 | 002,551,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2017/02/15 07:12:23 | 001,278,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2017/02/15 07:12:23 | 000,955,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2017/02/15 07:12:23 | 000,841,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2017/02/15 07:12:23 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2017/02/15 07:12:23 | 000,655,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2017/02/15 07:12:23 | 000,653,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2017/02/15 07:12:23 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hgcpl.dll
[2017/02/15 07:12:23 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\hgcpl.dll
Kdo je online
Uživatelé prohlížející si toto fórum: Google [Bot] a 13 hostů