Prosím o kontrolu logu Vyřešeno

[jaro3]

ano , zadej si nové téma v sekci BSOD.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[Kotik]

FRST 1/3:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Micha (administrator) on MICHAL (20-03-2017 09:08:32)
Running from C:\Users\Micha\Desktop
Loaded Profiles: Micha (Available Profiles: defaultuser0 & Micha)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(HP) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(%CFullName%) C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3962992 2016-05-27] (Synaptics Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-07-22] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7636696 2014-09-02] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [653576 2015-06-29] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-2161040758-816928078-233886813-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-2161040758-816928078-233886813-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-2161040758-816928078-233886813-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1091384 2016-11-02] (Apple Inc.)
HKU\S-1-5-21-2161040758-816928078-233886813-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2017-01-17] (Apple Inc.)
HKU\S-1-5-21-2161040758-816928078-233886813-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2017-01-17] (Apple Inc.)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{b650a200-e7a0-4509-a900-98a2a520a65d}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2161040758-816928078-233886813-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: mlahvggb.default
FF ProfilePath: C:\Users\Micha\AppData\Roaming\Mozilla\Firefox\Profiles\mlahvggb.default [2017-03-17]
FF NewTab: Mozilla\Firefox\Profiles\mlahvggb.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\mlahvggb.default -> about:home
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: (HP SimplePass) - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2017-01-06] [not signed]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default [2017-03-20]
CHR Extension: (Disk Google) - C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-12]
CHR Extension: (YouTube) - C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-12]
CHR Extension: (AdBlock) - C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-03-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-12]
CHR Extension: (Gmail) - C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-12]
CHR Extension: (Chrome Media Router) - C:\Users\Micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-12]
CHR HKU\S-1-5-21-2161040758-816928078-233886813-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2278152 2015-08-05] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3735744 2017-03-02] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2836296 2016-12-14] (ESET)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 hpsrv; C:\Windows\system32\Hpservice.exe [38728 2016-10-12] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [602888 2015-06-29] (Hewlett-Packard Development Company, L.P.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
S3 MyWiFiDHCPDNS; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-10-28] ()
R2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [124928 2015-07-02] (Softex Inc.) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [291032 2014-08-18] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [263784 2016-05-27] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-03-04] (Microsoft Corporation)
R2 ZeroConfigService; c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-10-28] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\Windows\system32\DRIVERS\Accelerometer.sys [56128 2016-10-12] (HP)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [199472 2015-08-05] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7551240 2017-01-05] (Broadcom Corporation)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132272 2016-12-13] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-12-13] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [180544 2016-12-13] (ESET)
R1 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [70960 2016-12-13] (ESET)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [42312 2016-10-12] (HP)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251840 2017-03-09] (Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [92088 2017-03-08] (Malwarebytes)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-06-16] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-05-29] (Realsil Semiconductor Corporation)
U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [402136 2015-05-27] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [60024 2016-05-27] (Synaptics Incorporated)
R3 VirtualButtons; C:\Windows\System32\drivers\VirtualButtons.sys [31280 2015-04-14] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (HP Inc.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2017-03-12] (Zemana Ltd.)
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-20 09:08 - 2017-03-20 09:08 - 02424832 _____ (Farbar) C:\Users\Micha\Desktop\FRST64.exe
2017-03-20 09:08 - 2017-03-20 09:08 - 00017630 _____ C:\Users\Micha\Desktop\FRST.txt
2017-03-20 09:08 - 2017-03-20 09:08 - 00000000 ____D C:\FRST
2017-03-16 00:48 - 2017-03-16 00:49 - 08458240 _____ C:\Users\Micha\Desktop\Prohlížeč událostí.evtx
2017-03-16 00:16 - 2017-03-16 00:16 - 01095356 _____ C:\Users\Micha\Desktop\Mezinároní-obchod.pptx
2017-03-15 11:34 - 2017-03-17 00:45 - 00000000 ____D C:\KMPlayer
2017-03-15 11:34 - 2017-03-15 11:34 - 00000000 ____D C:\Users\Micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2017-03-14 20:32 - 2017-03-14 20:32 - 00000000 ____D C:\ProgramData\Comms
2017-03-14 20:15 - 2017-03-04 07:47 - 06667528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-03-14 20:14 - 2017-03-04 08:57 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-03-14 20:14 - 2017-03-04 08:57 - 00315744 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2017-03-14 20:14 - 2017-03-04 08:57 - 00192352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2017-03-14 20:14 - 2017-03-04 08:40 - 00965472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 01617760 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 01294688 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00655200 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00565088 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00378720 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00343904 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00315232 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00242528 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00142176 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-14 20:14 - 2017-03-04 08:35 - 00086368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-03-14 20:14 - 2017-03-04 08:35 - 00038240 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2017-03-14 20:14 - 2017-03-04 08:27 - 00603488 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2017-03-14 20:14 - 2017-03-04 08:26 - 00794416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2017-03-14 20:14 - 2017-03-04 08:25 - 01117024 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2017-03-14 20:14 - 2017-03-04 08:24 - 02482280 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-03-14 20:14 - 2017-03-04 08:24 - 02186896 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2017-03-14 20:14 - 2017-03-04 08:24 - 01051112 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-03-14 20:14 - 2017-03-04 08:24 - 00894096 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-03-14 20:14 - 2017-03-04 08:24 - 00646688 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-03-14 20:14 - 2017-03-04 08:24 - 00108384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2017-03-14 20:14 - 2017-03-04 08:24 - 00090976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2017-03-14 20:14 - 2017-03-04 08:23 - 02512304 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-03-14 20:14 - 2017-03-04 08:22 - 07786336 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-14 20:14 - 2017-03-04 08:22 - 02213760 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-03-14 20:14 - 2017-03-04 08:22 - 01354312 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-03-14 20:14 - 2017-03-04 08:22 - 01172984 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-03-14 20:14 - 2017-03-04 08:21 - 02255712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-03-14 20:14 - 2017-03-04 08:20 - 00128352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2017-03-14 20:14 - 2017-03-04 08:19 - 02681200 _____ C:\Windows\system32\CoreUIComponents.dll
2017-03-14 20:14 - 2017-03-04 08:19 - 02049480 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-03-14 20:14 - 2017-03-04 08:18 - 01181024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-03-14 20:14 - 2017-03-04 08:18 - 00219040 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2017-03-14 20:14 - 2017-03-04 08:18 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-03-14 20:14 - 2017-03-04 08:17 - 00409952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2017-03-14 20:14 - 2017-03-04 08:15 - 01000280 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2017-03-14 20:14 - 2017-03-04 08:15 - 00404320 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2017-03-14 20:14 - 2017-03-04 08:15 - 00063328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2017-03-14 20:14 - 2017-03-04 08:13 - 00635456 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2017-03-14 20:14 - 2017-03-04 08:11 - 00328008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2017-03-14 20:14 - 2017-03-04 08:11 - 00266544 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2017-03-14 20:14 - 2017-03-04 08:10 - 02828384 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2017-03-14 20:14 - 2017-03-04 08:10 - 02189664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-03-14 20:14 - 2017-03-04 08:10 - 00360040 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2017-03-14 20:14 - 2017-03-04 08:09 - 07220696 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 02750384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 01969912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 01860288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 01293152 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 01157000 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 00857440 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-03-14 20:14 - 2017-03-04 08:09 - 00681312 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 00658784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-03-14 20:14 - 2017-03-04 08:09 - 00635864 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 00578392 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-03-14 20:14 - 2017-03-04 08:09 - 00527808 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 00497416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-03-14 20:14 - 2017-03-04 08:09 - 00402272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2017-03-14 20:14 - 2017-03-04 08:09 - 00396168 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-03-14 20:14 - 2017-03-04 08:08 - 00509280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-03-14 20:14 - 2017-03-04 08:08 - 00450400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-03-14 20:14 - 2017-03-04 08:08 - 00342456 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-03-14 20:14 - 2017-03-04 08:08 - 00223584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-03-14 20:14 - 2017-03-04 08:08 - 00130912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2017-03-14 20:14 - 2017-03-04 08:07 - 02913144 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2017-03-14 20:14 - 2017-03-04 08:07 - 02446704 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2017-03-14 20:14 - 2017-03-04 08:07 - 00947552 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-03-14 20:14 - 2017-03-04 08:07 - 00811872 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.exe
2017-03-14 20:14 - 2017-03-04 08:07 - 00682808 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-03-14 20:14 - 2017-03-04 08:07 - 00557400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2017-03-14 20:14 - 2017-03-04 08:07 - 00432992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-03-14 20:14 - 2017-03-04 08:07 - 00080224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmcl.sys
2017-03-14 20:14 - 2017-03-04 08:06 - 01706488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-03-14 20:14 - 2017-03-04 08:04 - 08169536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-03-14 20:14 - 2017-03-04 08:04 - 02048496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2017-03-14 20:14 - 2017-03-04 08:04 - 01362512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2017-03-14 20:14 - 2017-03-04 08:04 - 01063472 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 22223968 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 04674360 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-03-14 20:14 - 2017-03-04 08:03 - 04260576 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01989072 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01848072 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01723560 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2017-03-14 20:14 - 2017-03-04 08:03 - 01702392 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01694712 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01600632 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01473048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01454512 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01301112 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01071736 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 01062480 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00811416 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00755648 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00596040 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00523712 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00443232 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00424616 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00382272 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2017-03-14 20:14 - 2017-03-04 08:03 - 00241496 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2017-03-14 20:14 - 2017-03-04 08:03 - 00160096 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2017-03-14 20:14 - 2017-03-04 08:02 - 00184416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2017-03-14 20:14 - 2017-03-04 08:01 - 00201568 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-03-14 20:14 - 2017-03-04 08:01 - 00137936 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2017-03-14 20:14 - 2017-03-04 07:59 - 01570208 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-03-14 20:14 - 2017-03-04 07:58 - 01416224 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-03-14 20:14 - 2017-03-04 07:58 - 00628552 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-03-14 20:14 - 2017-03-04 07:57 - 02536288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-03-14 20:14 - 2017-03-04 07:57 - 00387872 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2017-03-14 20:14 - 2017-03-04 07:56 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-03-14 20:14 - 2017-03-04 07:56 - 00248992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2017-03-14 20:14 - 2017-03-04 07:54 - 02277288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2017-03-14 20:14 - 2017-03-04 07:54 - 00524776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 05722320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 02256080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 01431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 00975744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 00861024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 00781152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-03-14 20:14 - 2017-03-04 07:53 - 00493912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-03-14 20:14 - 2017-03-04 07:53 - 00313568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2017-03-14 20:14 - 2017-03-04 07:53 - 00136032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostUser.dll
2017-03-14 20:14 - 2017-03-04 07:52 - 00549088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2017-03-14 20:14 - 2017-03-04 07:52 - 00272720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2017-03-14 20:14 - 2017-03-04 07:51 - 01980768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2017-03-14 20:14 - 2017-03-04 07:51 - 00576408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-03-14 20:14 - 2017-03-04 07:50 - 00846560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 04023000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01853224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01360456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01344448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01277856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01202384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 01123912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00981376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00976184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00952416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00640976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00530480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00374448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00352760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll
2017-03-14 20:14 - 2017-03-04 07:47 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CompPkgSup.dll
2017-03-14 20:14 - 2017-03-04 07:46 - 04312248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-03-14 20:14 - 2017-03-04 07:46 - 00321792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2017-03-14 20:14 - 2017-03-04 07:45 - 00173408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-03-14 20:14 - 2017-03-04 07:45 - 00112120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2017-03-14 20:14 - 2017-03-04 07:42 - 07216640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2017-03-14 20:14 - 2017-03-04 07:42 - 01415240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-03-14 20:14 - 2017-03-04 07:42 - 01260784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-03-14 20:14 - 2017-03-04 07:42 - 00545944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-03-14 20:14 - 2017-03-04 07:42 - 00276832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-03-14 20:14 - 2017-03-04 07:40 - 00306800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-03-14 20:14 - 2017-03-04 07:39 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2017-03-14 20:14 - 2017-03-04 07:37 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 22565376 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 05685760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\DuCsps.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2017-03-14 20:14 - 2017-03-04 07:36 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys
2017-03-14 20:14 - 2017-03-04 07:35 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-03-14 20:14 - 2017-03-04 07:35 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ddrawex.dll
2017-03-14 20:14 - 2017-03-04 07:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2017-03-14 20:14 - 2017-03-04 07:34 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
2017-03-14 20:14 - 2017-03-04 07:34 - 00237568 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Diagnostics.dll
2017-03-14 20:14 - 2017-03-04 07:34 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-03-14 20:14 - 2017-03-04 07:34 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-03-14 20:14 - 2017-03-04 07:34 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-03-14 20:14 - 2017-03-04 07:34 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2017-03-14 20:14 - 2017-03-04 07:33 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2017-03-14 20:14 - 2017-03-04 07:33 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2017-03-14 20:14 - 2017-03-04 07:33 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2017-03-14 20:14 - 2017-03-04 07:33 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.UI.GameBar.dll
2017-03-14 20:14 - 2017-03-04 07:33 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\tbauth.dll
2017-03-14 20:14 - 2017-03-04 07:33 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2017-03-14 20:14 - 2017-03-04 07:32 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2017-03-14 20:14 - 2017-03-04 07:32 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2017-03-14 20:14 - 2017-03-04 07:32 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\MCCSEngineShared.dll
2017-03-14 20:14 - 2017-03-04 07:32 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_WorkAccess.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2017-03-14 20:14 - 2017-03-04 07:31 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Core.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00535552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-03-14 20:14 - 2017-03-04 07:30 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00418304 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-03-14 20:14 - 2017-03-04 07:30 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-03-14 20:14 - 2017-03-04 07:30 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-03-14 20:14 - 2017-03-04 07:30 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-03-14 20:14 - 2017-03-04 07:30 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2017-03-14 20:14 - 2017-03-04 07:30 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerCookies.exe

[Kotik]

FRST 2/3:

2017-03-14 20:14 - 2017-03-04 07:29 - 01291264 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\cemapi.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\tapi32.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SerialCommunication.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\BrowserSettingSync.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\XblGameSaveExt.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00112640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XInputUap.dll
2017-03-14 20:14 - 2017-03-04 07:29 - 00019968 _____ C:\Windows\SysWOW64\GamePanelExternalHook.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 01507840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.FaceAnalysis.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\PCPTpm12.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00568320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00462848 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00394752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2017-03-14 20:14 - 2017-03-04 07:28 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExSMime.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2017-03-14 20:14 - 2017-03-04 07:28 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00719872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2017-03-14 20:14 - 2017-03-04 07:27 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00549376 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00460288 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00349184 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-03-14 20:14 - 2017-03-04 07:27 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accountaccessor.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Radios.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2017-03-14 20:14 - 2017-03-04 07:27 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddrawex.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00561664 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00431616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\DavSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Diagnostics.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BcastDVRHelper.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VCardParser.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.HostName.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.UI.GameBar.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2017-03-14 20:14 - 2017-03-04 07:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe
2017-03-14 20:14 - 2017-03-04 07:25 - 01388544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 01060352 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 01016320 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00579584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00425984 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00255488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp
2017-03-14 20:14 - 2017-03-04 07:25 - 00251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscandui.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\WwaApi.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCCSEngineShared.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinRtTracing.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BrowserSettingSync.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00097792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll
2017-03-14 20:14 - 2017-03-04 07:25 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tbauth.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 01293312 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00956416 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00671744 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00495104 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFi.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SerialCommunication.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfui.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDeviceRegistration.Ngc.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-03-14 20:14 - 2017-03-04 07:24 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerCookies.exe
2017-03-14 20:14 - 2017-03-04 07:23 - 03753984 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00963584 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00896512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00820224 _____ (Microsoft Corporation) C:\Windows\system32\PrintRenderAPIHost.DLL
2017-03-14 20:14 - 2017-03-04 07:23 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2017-03-14 20:14 - 2017-03-04 07:23 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00541696 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00531456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2017-03-14 20:14 - 2017-03-04 07:23 - 00506368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2017-03-14 20:14 - 2017-03-04 07:23 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.Input.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.LowLevel.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DavSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Gaming.XboxLive.Storage.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00291840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00184320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2017-03-14 20:14 - 2017-03-04 07:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 01299968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00265728 _____ C:\Windows\SysWOW64\Windows.Perception.Stub.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00237568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icm32.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cemapi.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2017-03-14 20:14 - 2017-03-04 07:22 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthBroker.dll
2017-03-14 20:14 - 2017-03-04 07:22 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 06285824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 01937920 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2017-03-14 20:14 - 2017-03-04 07:21 - 01243136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.FaceAnalysis.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00809984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.PointOfService.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00631296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl
2017-03-14 20:14 - 2017-03-04 07:21 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00575488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.AllJoyn.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapi32.dll
2017-03-14 20:14 - 2017-03-04 07:21 - 00185856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 13873664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 01913856 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 01361408 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 01280512 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00650752 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00632832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00611328 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.SmartCards.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPTpm12.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Wallet.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00426496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00424960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00386048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.WiFiDirect.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WwaApi.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vaultcli.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Scanners.dll
2017-03-14 20:14 - 2017-03-04 07:20 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 23676416 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 03777536 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 01639424 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 01589760 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 01403392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00714752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00635904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00431616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efswrt.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00414208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2017-03-14 20:14 - 2017-03-04 07:19 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-03-14 20:14 - 2017-03-04 07:19 - 00390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Picker.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll
2017-03-14 20:14 - 2017-03-04 07:19 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\Tabbtn.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 17198592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 01762816 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 01231360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 01189376 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00896512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00819200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppContracts.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Ocr.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00548352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ddraw.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00525824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintDialogs.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2017-03-14 20:14 - 2017-03-04 07:18 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2017-03-14 20:14 - 2017-03-04 07:18 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 07812096 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 01082368 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00529920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2017-03-14 20:14 - 2017-03-04 07:17 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2017-03-14 20:14 - 2017-03-04 07:17 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AboveLockAppHost.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 13441536 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 03289088 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 01908224 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 01456640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00968704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00846336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00816640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00760832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl
2017-03-14 20:14 - 2017-03-04 07:16 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00636928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00500224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CryptoWinRT.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2017-03-14 20:14 - 2017-03-04 07:16 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 18362368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 09130496 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 02860032 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 01837056 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 01543680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2017-03-14 20:14 - 2017-03-04 07:15 - 01443328 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2017-03-14 20:14 - 2017-03-04 07:15 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll
2017-03-14 20:14 - 2017-03-04 07:15 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 04749312 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 01562112 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.3D.dll

[Kotik]

FRST 3/3:


2017-03-14 20:14 - 2017-03-04 07:14 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\wlidprov.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2017-03-14 20:14 - 2017-03-04 07:14 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2017-03-14 20:14 - 2017-03-04 07:13 - 19411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 06474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-03-14 20:14 - 2017-03-04 07:13 - 04613120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 03733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 02458112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 01228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00982528 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00947200 _____ (Microsoft Corporation) C:\Windows\system32\wsp_sr.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00937472 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00858112 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00675840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.AccountsControl.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdshext.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\CameraCaptureUI.dll
2017-03-14 20:14 - 2017-03-04 07:13 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersGPExt.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 13085184 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 07654912 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 04596224 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2017-03-14 20:14 - 2017-03-04 07:12 - 01692160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\MSVP9DEC.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00901120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2017-03-14 20:14 - 2017-03-04 07:12 - 00805888 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00700416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.Search.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00589312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmenrollengine.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 04474368 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 03441664 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 02953216 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 02611200 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01891328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01656832 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01643008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01357312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01320448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2017-03-14 20:14 - 2017-03-04 07:11 - 01137152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 00975872 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-03-14 20:14 - 2017-03-04 07:11 - 00821248 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 00818176 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2017-03-14 20:14 - 2017-03-04 07:11 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2017-03-14 20:14 - 2017-03-04 07:11 - 00355328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 03307008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 02852864 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 02208768 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 02095616 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-03-14 20:14 - 2017-03-04 07:10 - 01917440 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 01555456 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2017-03-14 20:14 - 2017-03-04 07:10 - 01536000 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 01399296 _____ (Microsoft Corporation) C:\Windows\system32\Pimstore.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 01282048 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 01275392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Editing.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00960000 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00913920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00770560 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00471552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00300544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regedit.exe
2017-03-14 20:14 - 2017-03-04 07:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll
2017-03-14 20:14 - 2017-03-04 07:10 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2017-03-14 20:14 - 2017-03-04 07:09 - 08125952 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 01633792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MiracastReceiver.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00570368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00343040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2017-03-14 20:14 - 2017-03-04 07:09 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 12349952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 08076288 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 03405312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 02800128 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 02424320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 01981440 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 01780224 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 01714688 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 01266176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 00792576 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2017-03-14 20:14 - 2017-03-04 07:08 - 00713216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 00540160 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 12178944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02914816 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02895872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02748928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02691072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02643456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02512384 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 02370048 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01840640 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01513472 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-03-14 20:14 - 2017-03-04 07:07 - 01512448 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01490944 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01348608 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 01064448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00903680 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-03-14 20:14 - 2017-03-04 07:07 - 00895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00875520 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00707584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00545280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-03-14 20:14 - 2017-03-04 07:07 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 06109184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 05384192 _____ (Microsoft) C:\Windows\system32\dbgeng.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 05380608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 04746752 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 04708864 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 04060672 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 03614720 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-03-14 20:14 - 2017-03-04 07:06 - 03202048 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 03198464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 02820096 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 02538496 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 02475008 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 02317824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 02287104 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 02153984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 01369088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 01131008 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 01013760 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 00881664 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToReceiver.dll
2017-03-14 20:14 - 2017-03-04 07:06 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 07468544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 03520512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2017-03-14 20:14 - 2017-03-04 07:05 - 01726976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 01328640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 01221120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 01133568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 01121280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00924672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00545792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidprov.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00298496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00134144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ErrorDetails.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraCaptureUI.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 01826816 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00998912 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00753152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00719872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_sr.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00640000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00531456 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2017-03-14 20:14 - 2017-03-04 07:04 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RADCUI.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 06044672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 03666432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 02109952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 01817088 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 01247232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 00409600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2017-03-14 20:14 - 2017-03-04 07:03 - 00400384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2017-03-14 20:14 - 2017-03-04 07:03 - 00359936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 04423680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 02740224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 02484736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 02138112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 01709056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 01004544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 00580608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2017-03-14 20:14 - 2017-03-04 07:02 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr
2017-03-14 20:14 - 2017-03-04 07:01 - 03478528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 02682880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 02646528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01993216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01656320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Perception.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01595904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01571840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01564160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01293312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2017-03-14 20:14 - 2017-03-04 07:01 - 01232384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01154560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Pimstore.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 00827904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 00773120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2017-03-14 20:14 - 2017-03-04 07:01 - 00620544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShareHost.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 00560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2017-03-14 20:14 - 2017-03-04 07:01 - 00422400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 04557824 _____ (Microsoft) C:\Windows\SysWOW64\dbgeng.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 02996736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-03-14 20:14 - 2017-03-04 07:00 - 02483200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 02026496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-03-14 20:14 - 2017-03-04 07:00 - 02003968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 01883648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00862208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00751104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00691200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00654336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00598528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2017-03-14 20:14 - 2017-03-04 07:00 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Midi.dll
2017-03-14 20:14 - 2017-03-04 06:59 - 00353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2017-03-14 20:14 - 2017-03-04 06:59 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2017-03-14 20:14 - 2017-03-04 06:57 - 03106304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-03-14 20:14 - 2017-03-04 06:57 - 00783360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2017-03-14 20:14 - 2017-03-04 06:57 - 00449024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-03-14 20:14 - 2017-03-04 06:57 - 00299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RADCUI.dll
2017-03-14 20:14 - 2017-03-04 06:36 - 00483840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2017-03-14 20:14 - 2017-02-22 03:17 - 00448285 _____ C:\Windows\system32\ApnDatabase.xml
2017-03-14 20:14 - 2016-07-16 03:29 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\CspCellularSettings.dll
2017-03-14 20:14 - 2016-07-16 03:28 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAPNCsp.dll
2017-03-14 20:14 - 2016-07-16 03:26 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\CfgSPCellular.dll
2017-03-14 20:13 - 2017-03-04 08:35 - 00590952 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2017-03-14 20:13 - 2017-03-04 08:24 - 00354264 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2017-03-14 20:13 - 2017-03-04 08:20 - 00379744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2017-03-14 20:13 - 2017-03-04 08:18 - 00764392 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2017-03-14 20:13 - 2017-03-04 08:09 - 00178520 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostUser.dll
2017-03-14 20:13 - 2017-03-04 08:08 - 00624048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-03-14 20:13 - 2017-03-04 08:07 - 01267512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2017-03-14 20:13 - 2017-03-04 08:07 - 01100128 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-03-14 20:13 - 2017-03-04 08:07 - 00989016 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-03-14 20:13 - 2017-03-04 08:07 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2017-03-14 20:13 - 2017-03-04 08:07 - 00110944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocket.sys
2017-03-14 20:13 - 2017-03-04 08:03 - 00038768 _____ (Microsoft Corporation) C:\Windows\system32\CompPkgSup.dll
2017-03-14 20:13 - 2017-03-04 08:01 - 00128648 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2017-03-14 20:13 - 2017-03-04 07:58 - 00322912 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-03-14 20:13 - 2017-03-04 07:57 - 00372432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2017-03-14 20:13 - 2017-03-04 07:37 - 00025088 _____ C:\Windows\system32\GamePanelExternalHook.dll
2017-03-14 20:13 - 2017-03-04 07:36 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2017-03-14 20:13 - 2017-03-04 07:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-03-14 20:13 - 2017-03-04 07:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2017-03-14 20:13 - 2017-03-04 07:35 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2017-03-14 20:13 - 2017-03-04 07:34 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2017-03-14 20:13 - 2017-03-04 07:34 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2017-03-14 20:13 - 2017-03-04 07:34 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2017-03-14 20:13 - 2017-03-04 07:33 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2017-03-14 20:13 - 2017-03-04 07:33 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2017-03-14 20:13 - 2017-03-04 07:33 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothDesktopHandlers.dll
2017-03-14 20:13 - 2017-03-04 07:33 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\XInputUap.dll
2017-03-14 20:13 - 2017-03-04 07:32 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-03-14 20:13 - 2017-03-04 07:32 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2017-03-14 20:13 - 2017-03-04 07:32 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2017-03-14 20:13 - 2017-03-04 07:32 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2017-03-14 20:13 - 2017-03-04 07:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2017-03-14 20:13 - 2017-03-04 07:31 - 00567296 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2017-03-14 20:13 - 2017-03-04 07:31 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2017-03-14 20:13 - 2017-03-04 07:30 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2017-03-14 20:13 - 2017-03-04 07:30 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Flights.dll
2017-03-14 20:13 - 2017-03-04 07:30 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2017-03-14 20:13 - 2017-03-04 07:30 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2017-03-14 20:13 - 2017-03-04 07:29 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\DeveloperOptionsSettingsHandlers.dll
2017-03-14 20:13 - 2017-03-04 07:29 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2017-03-14 20:13 - 2017-03-04 07:28 - 00947712 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2017-03-14 20:13 - 2017-03-04 07:28 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2017-03-14 20:13 - 2017-03-04 07:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2017-03-14 20:13 - 2017-03-04 07:28 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\vaultcli.dll
2017-03-14 20:13 - 2017-03-04 07:28 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2017-03-14 20:13 - 2017-03-04 07:28 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-03-14 20:13 - 2017-03-04 07:27 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2017-03-14 20:13 - 2017-03-04 07:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2017-03-14 20:13 - 2017-03-04 07:27 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2017-03-14 20:13 - 2017-03-04 07:27 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2017-03-14 20:13 - 2017-03-04 07:27 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2017-03-14 20:13 - 2017-03-04 07:26 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl
2017-03-14 20:13 - 2017-03-04 07:26 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2017-03-14 20:13 - 2017-03-04 07:26 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2017-03-14 20:13 - 2017-03-04 07:26 - 00450048 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2017-03-14 20:13 - 2017-03-04 07:26 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2017-03-14 20:13 - 2017-03-04 07:26 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-03-14 20:13 - 2017-03-04 07:26 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2017-03-14 20:13 - 2017-03-04 07:25 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2017-03-14 20:13 - 2017-03-04 07:24 - 01092096 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll
2017-03-14 20:13 - 2017-03-04 07:24 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2017-03-14 20:13 - 2017-03-04 07:24 - 00560128 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-03-14 20:13 - 2017-03-04 07:24 - 00329728 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2017-03-14 20:13 - 2017-03-04 07:22 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2017-03-14 20:13 - 2017-03-04 07:21 - 00776192 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl
2017-03-14 20:13 - 2017-03-04 07:21 - 00347648 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2017-03-14 20:13 - 2017-03-04 07:20 - 00893952 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-03-14 20:13 - 2017-03-04 07:20 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2017-03-14 20:13 - 2017-03-04 07:19 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2017-03-14 20:13 - 2017-03-04 07:19 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe
2017-03-14 20:13 - 2017-03-04 07:18 - 01227264 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2017-03-14 20:13 - 2017-03-04 07:18 - 00320512 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2017-03-14 20:13 - 2017-03-04 07:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2017-03-14 20:13 - 2017-03-04 07:14 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2017-03-14 20:13 - 2017-03-04 07:14 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2017-03-14 20:13 - 2017-03-04 07:13 - 05114368 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2017-03-14 20:13 - 2017-03-04 07:13 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe
2017-03-14 20:13 - 2017-03-04 07:10 - 06664192 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2017-03-14 20:13 - 2017-03-04 07:10 - 01586176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2017-03-14 20:13 - 2017-03-04 07:08 - 00629248 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2017-03-14 20:13 - 2017-03-04 07:07 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2017-03-14 20:13 - 2017-03-04 07:05 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2017-03-14 20:13 - 2017-03-04 07:04 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2017-03-14 20:13 - 2016-05-29 19:38 - 08886976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSetup.exe
2017-03-14 14:36 - 2017-03-17 19:18 - 00000000 ____D C:\Users\Micha\Documents\diplomka
2017-03-14 10:49 - 2017-03-14 10:49 - 00042145 _____ C:\Users\Micha\Desktop\rozvrh.pdf
2017-03-13 21:29 - 2017-03-17 01:18 - 1210978255 _____ C:\Users\Micha\Downloads\Hleda se Nemo 3D SBS 1080p.mkv
2017-03-12 21:01 - 2017-03-12 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2017-03-12 21:01 - 2017-03-12 21:01 - 00000000 ____D C:\Program Files (x86)\HD Tune
2017-03-12 20:58 - 2017-03-12 20:58 - 00000000 ____D C:\ProgramData\Binarysense
2017-03-12 20:31 - 2017-03-12 20:31 - 00001083 _____ C:\DelFix.txt
2017-03-12 19:50 - 2017-03-12 19:54 - 90953174 _____ C:\Users\Micha\Desktop\Untitled.mp4
2017-03-12 19:39 - 2017-03-17 01:18 - 00000000 ____D C:\Users\Micha\AppData\Local\CrashDumps
2017-03-12 19:31 - 2017-03-12 19:31 - 00000000 ____D C:\Users\Micha\AppData\Local\NetworkTiles
2017-03-12 10:46 - 2017-03-20 09:08 - 00023937 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-03-12 10:46 - 2017-03-12 20:51 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-03-12 10:46 - 2017-03-12 10:48 - 00012008 _____ C:\Windows\ZAM.krnl.trace
2017-03-12 10:46 - 2017-03-12 10:46 - 00203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2017-03-12 10:46 - 2017-03-12 10:46 - 00000000 ____D C:\Users\Micha\AppData\Local\Zemana
2017-03-12 10:42 - 2017-03-12 10:42 - 00000000 ____D C:\Users\Micha\AppData\Local\VirtualStore
2017-03-12 10:42 - 2017-03-12 10:29 - 00024064 _____ C:\Windows\zoek-delete.exe
2017-03-10 10:02 - 2017-03-10 10:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-03-10 10:02 - 2017-03-10 10:02 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2017-03-10 09:37 - 2017-03-12 10:03 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-03-10 09:10 - 2017-03-10 09:10 - 00000000 ____D C:\ProgramData\Sophos
2017-03-09 15:26 - 2017-03-09 15:26 - 00000000 ____D C:\Users\Micha\AppData\Local\Adobe
2017-03-09 10:47 - 2017-03-09 19:51 - 00000000 ____D C:\Users\Micha\AppData\Local\Apple
2017-03-08 12:23 - 2017-03-09 14:45 - 00251840 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-03-08 12:23 - 2017-03-08 12:24 - 00092088 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-03-08 12:23 - 2017-03-08 12:23 - 00186304 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-03-08 12:23 - 2017-03-08 12:23 - 00111544 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-03-08 12:23 - 2017-03-08 12:23 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-03-08 12:23 - 2017-03-08 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-03-08 12:23 - 2017-03-08 12:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-08 12:23 - 2017-03-08 12:23 - 00000000 ____D C:\Program Files\Malwarebytes
2017-03-08 12:23 - 2017-02-24 06:23 - 00077408 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-03-08 12:19 - 2017-03-08 12:19 - 00002852 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-03-08 12:19 - 2017-03-08 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-03-08 12:19 - 2017-03-08 12:19 - 00000000 ____D C:\Program Files\CCleaner
2017-03-01 12:11 - 2017-03-01 12:11 - 00475844 _____ C:\Users\Micha\Desktop\Prototyp.pptx
2017-02-26 21:38 - 2017-02-26 21:58 - 00000000 ____D C:\Users\Micha\Downloads\S01
2017-02-21 09:26 - 2017-02-21 09:26 - 06059987 _____ C:\Users\Micha\Desktop\ZZ15_V4.pdf
2017-02-20 22:54 - 2017-02-20 23:51 - 3882138960 _____ C:\Users\Micha\Downloads\Se7en - Sedm (1995) 1080p Bluray.mkv
2017-02-19 13:16 - 2017-03-19 22:38 - 00004190 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F194BFA2-E2F6-4CF8-A45D-1324746F695B}
2017-02-19 12:03 - 2017-03-17 19:16 - 00000000 ____D C:\Users\Micha\Desktop\Fotky diplomka

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-20 09:06 - 2017-01-05 18:12 - 05998196 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-20 09:06 - 2016-07-16 23:25 - 02810462 _____ C:\Windows\system32\perfh005.dat
2017-03-20 09:06 - 2016-07-16 23:25 - 00787880 _____ C:\Windows\system32\perfc005.dat
2017-03-20 09:05 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-20 09:05 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-03-20 09:02 - 2017-01-22 20:03 - 00000000 ___RD C:\Users\Micha\iCloudDrive
2017-03-20 09:02 - 2017-01-05 18:53 - 00000000 ___RD C:\Users\Micha\Disk Google
2017-03-20 09:02 - 2017-01-05 18:39 - 00000000 __SHD C:\Users\Micha\IntelGraphicsProfiles
2017-03-20 09:02 - 2017-01-05 18:38 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-03-20 09:01 - 2017-01-05 18:07 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-20 09:01 - 2016-07-16 07:04 - 00262144 _____ C:\Windows\system32\config\BBI
2017-03-19 23:28 - 2017-01-05 18:06 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-03-18 17:28 - 2017-01-16 21:02 - 00000000 ____D C:\Users\Micha\Desktop\Stažené práce
2017-03-17 19:17 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-03-17 14:11 - 2017-01-23 20:48 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForMicha.job
2017-03-17 01:18 - 2017-01-16 21:54 - 00000000 ____D C:\Users\Micha\AppData\Roaming\uTorrent
2017-03-17 00:46 - 2017-01-07 01:14 - 00000000 ___RD C:\Users\Micha\Desktop\Programy
2017-03-16 22:49 - 2017-01-23 20:48 - 00003238 _____ C:\Windows\System32\Tasks\HPCeeScheduleForMicha
2017-03-16 20:24 - 2017-01-22 20:03 - 00003486 _____ C:\Windows\System32\Tasks\Apple Diagnostics
2017-03-16 00:16 - 2017-01-05 18:10 - 00000000 ____D C:\Users\Micha\AppData\Local\Packages
2017-03-15 23:14 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\appraiser
2017-03-15 23:14 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2017-03-15 11:30 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-15 11:28 - 2017-01-08 21:05 - 00002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-03-15 11:28 - 2017-01-05 18:59 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2017-03-15 10:18 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-03-14 23:38 - 2017-01-05 18:10 - 00000000 ____D C:\Users\Micha
2017-03-14 20:35 - 2017-01-05 18:10 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-14 20:33 - 2017-01-05 18:06 - 00352800 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\SysWOW64\F12
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ___SD C:\Windows\system32\F12
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\PrintDialog
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ___RD C:\Program Files\Windows Defender
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\setup
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\setup
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\system32\oobe
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\bcastdvr
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-14 20:32 - 2016-07-16 12:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-14 20:21 - 2017-01-06 01:01 - 00000000 ____D C:\Windows\system32\MRT
2017-03-14 20:20 - 2017-01-06 01:01 - 138634176 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-03-12 20:58 - 2017-01-06 01:36 - 00000000 ____D C:\ProgramData\Temp
2017-03-12 10:40 - 2016-07-16 12:47 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2017-03-12 10:28 - 2017-01-05 18:57 - 00000000 ____D C:\Users\Micha\AppData\LocalLow\Mozilla
2017-03-10 06:17 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-10 06:17 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-08 12:19 - 2017-01-05 18:06 - 00000000 ____D C:\Windows\Panther
2017-03-06 23:45 - 2017-01-14 13:31 - 00000000 ____D C:\Program Files (x86)\Steam
2017-03-04 08:09 - 2017-01-05 18:08 - 02717184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2017-02-27 11:07 - 2017-01-05 18:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-26 23:09 - 2017-01-16 21:01 - 00012920 _____ C:\Users\Micha\Desktop\Tellomar - Apple.xlsx
2017-02-26 23:05 - 2017-01-05 18:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-22 13:01 - 2017-01-06 12:51 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2017-01-24 01:29 - 2017-01-24 01:29 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-03-13 18:41

==================== End of FRST.txt ============================

[Kotik]

Additional:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Micha (20-03-2017 09:09:10)
Running from C:\Users\Micha\Desktop
Windows 10 Home Version 1607 (X64) (2017-01-05 17:09:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2161040758-816928078-233886813-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2161040758-816928078-233886813-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2161040758-816928078-233886813-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2161040758-816928078-233886813-501 - Limited - Disabled)
Micha (S-1-5-21-2161040758-816928078-233886813-1001 - Administrator - Enabled) => C:\Users\Micha

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus 10.0.390.0 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acrylic Wi-Fi Home v3.1 (HKU\S-1-5-21-2161040758-816928078-233886813-1001\...\{3706FB7A-11FB-44C4-AD94-2B29878D75DC}_is1) (Version: 3.1 - Tarlogic Security S.L.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 7.35.275.0 - Broadcom Corporation)
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.720 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.30 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6618 - CyberLink Corp.)
Cyberlink PhotoDirector (Version: 5.0.5.6618 - Název společnosti:) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
ESET NOD32 Antivirus (HKLM\...\{D44F6B96-987A-47FF-AC37-4C82CD9DAE15}) (Version: 10.0.386.1 - ESET, spol. s r.o.)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.3.50.9 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{83D9E6C0-5F20-49B4-9ACF-80A24A1A045D}) (Version: 12.5.32.203 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{8B4EE87E-6D40-4C91-B5E8-0DC77DC412F1}) (Version: 1.4.1 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{0493048C-CB1A-44B7-8BB3-8467AF7BA9E4}) (Version: 6.1.2.13 - Apple Inc.)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) PRO/Wireless Driver (HKLM\...\{9f63698a-6f92-4dd3-be96-6a75e3672dae}) (Version: 18.30.0000.3514 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.0.21 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.5.8 - PandoraTV)
Malwarebytes verze 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.7870.2024 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Preview Redistributable (x64) - 12.0.20617 (HKLM-x32\...\{448652c1-f5f3-4230-98c6-68c10c88b1fb}) (Version: 12.0.20617.1 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 cs)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7766.2039 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.87 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7335 - Realtek Semiconductor Corp.)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.107 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Vegas Pro 13.0 (64-bit) (HKLM\...\{1EEE0BEE-0BC8-11E5-A19E-F04DA23A5C58}) (Version: 13.0.453 - Sony)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06E75F17-AE88-4E9F-B1A3-CB5EB880584E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {0B5A5B9D-27F7-4083-AD09-2B91C9790E03} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {0CD4AB30-9F01-441B-B091-CA7BEB07DEFD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-09] (Microsoft Corporation)
Task: {222E2536-065E-4B07-B11B-34A839C99BCE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {3EB51E57-CB6A-431A-B4BA-1A745B3530EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-05] (Google Inc.)
Task: {468E181B-4A0D-4D50-A3A9-2C8F345E373B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-03-09] (Microsoft Corporation)
Task: {5E444FAA-45C9-4647-9658-DF86A08881EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-05] (Google Inc.)
Task: {5EB68009-D167-4BB7-AEBB-644EE93A0819} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2017-01-17] (Apple Inc.)
Task: {61E6487D-DE2F-4191-9854-AB93D42ECCA9} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
Task: {68989FC6-579A-4C60-ADD3-FE3BD59EB385} - System32\Tasks\HPCeeScheduleForMicha => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {6F2B4AC5-A0C0-4364-8567-ABC0CCE02EBB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {759147CA-A8EB-4759-A632-C7C276BBCD8E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {75FF7952-70F1-417D-88F0-5A1D7EA9FA9A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {765F2E1F-C2BE-480F-89E0-CA3E44815AA0} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-02] (Microsoft Corporation)
Task: {7F140B4F-957D-4C62-8210-B1D71D3E42B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {90893BB8-2FA4-4156-AD6A-D6BD6D049F84} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
Task: {94219B54-BB2C-4A41-ABDD-26D8B4D66FDC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.)
Task: {98F571BB-E459-4174-BA71-A7CA299F361B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {B46F077E-9EC3-4624-A802-ECFA68B74C2D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-09] (Microsoft Corporation)
Task: {BA8C5F89-2EF4-405D-98A7-8527A631FA19} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-02] (Microsoft Corporation)
Task: {BF0D2A36-581C-4AB1-A1A8-4115BB61F5EC} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {CDE4FF8F-B8F5-4194-9D7C-B6E531400B15} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\HPCeeScheduleForMicha.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-03-14 20:14 - 2017-03-04 08:19 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 13:56 - 2017-01-13 13:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-05-19 09:11 - 2015-05-19 09:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2015-07-13 12:23 - 2016-11-01 23:05 - 00401896 _____ () C:\Windows\system32\igfxTray.exe
2017-03-14 20:14 - 2017-03-04 08:19 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2017-01-23 19:01 - 2017-01-23 19:01 - 00959168 _____ () C:\Users\Micha\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll
2017-01-06 00:56 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 20:13 - 2017-03-04 07:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 20:14 - 2017-03-04 07:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-14 20:14 - 2017-03-04 07:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-14 20:14 - 2017-03-04 07:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00098816 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32api.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00110080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pywintypes27.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00364544 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pythoncom27.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00320512 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32com.shell.shell.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00914432 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_hashlib.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01176576 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._core_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00806400 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._gdi_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00816128 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._windows_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01067008 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._controls_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00733184 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._misc_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00682496 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pysqlite2._sqlite.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00088064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ctypes.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00686080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\unicodedata.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00119808 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32file.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00108544 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32security.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00007168 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\hashobjs_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00017920 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\thumbnails_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00088064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\usb_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00012800 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\common.time34.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00018432 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32event.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00167936 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32gui.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00046080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_socket.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01303552 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ssl.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00128512 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_elementtree.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00127488 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pyexpat.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00038912 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32inet.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00036864 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_psutil_windows.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00524248 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\windows._lib_cacheinvalidation.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00011264 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32crypt.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00123392 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._wizard.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00077312 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._html2.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00027648 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_multiprocessing.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00020480 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_yappi.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00035840 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32process.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00078848 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._animate.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00024064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pipe.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00010240 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\select.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00025600 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pdh.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00017408 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32profile.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00022528 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32ts.pyd
2017-01-13 13:56 - 2017-01-13 13:56 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-17 01:29 - 2016-11-17 01:29 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-13 13:56 - 2017-01-13 13:56 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2015-07-10 23:37 - 2015-07-10 23:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2017-03-12 10:30 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2161040758-816928078-233886813-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Micha\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\memorable_sunset_beach-wallpaper-1366x768.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{22D5D692-B2B2-4C25-8AD1-947F853CF91F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B19F8FBF-2366-4A54-9035-67763B7365B8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6227E246-5F3F-46EA-ACC6-EAACCD17FBA6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{852DD8FC-1881-477B-B6F7-9F3CD6BB0CC2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{7CACD405-0FC3-497B-AA53-D471D12CAFA8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AB6A19CD-A9FE-44BD-AD71-3DAD6ED0F1B2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CF1FB8DE-E506-47DB-9D4D-F807AD5A9D22}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AB30D74D-D8D2-4AEB-9FF8-CD6DBDA48866}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F48FCF90-36EC-4DC5-BED1-0A71476D5E46}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{8C7C00C3-12AF-4421-98BD-C79109E69E6D}] => (Allow) c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{FCCAC5D3-CD0C-46AF-809E-1A333D44110D}] => (Allow) C:\Program Files\Acrylic Wi-Fi Home\Acrylic.exe
FirewallRules: [{1B7F1106-F87F-4AE2-B081-427806D7D200}] => (Allow) C:\Program Files\Acrylic Wi-Fi Home\Acrylic.exe
FirewallRules: [{D95AF9BF-08ED-4D89-88B0-5161DB617AA6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6A1429C4-744F-41E7-A30E-E09440D94FAC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{602BCD07-633D-47AA-87B9-A8C034AE7B84}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{4449B66E-459A-4BA1-BD99-2605BEFAD778}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{CF4F998F-2874-42DB-AF79-9F3BC06B65DE}C:\users\micha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\micha\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{2D4B1E31-AB43-41D5-85A4-6285EB545C9D}C:\users\micha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\micha\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{813D3FF7-F985-46BA-AA94-9F9DBC362731}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{A9432905-82B6-4273-9F0E-D872B83C0CB9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{B8252916-8E30-4B65-A2AB-6AB927ED72B9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{45D30DAD-87F9-42A2-B6E2-02E2243F3CF4}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{2A0DE582-1F73-4A2D-BAF8-3574073685C0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

12-03-2017 20:31:28 End of disinfection
15-03-2017 23:13:52 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/20/2017 09:09:27 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (03/19/2017 11:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1203

Error: (03/19/2017 11:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1203

Error: (03/19/2017 11:28:23 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/19/2017 10:36:46 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/17/2017 02:36:52 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (03/17/2017 02:34:05 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL na řádku 1.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definice je UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (03/17/2017 02:16:06 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (03/17/2017 01:18:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.14393.206, časové razítko: 0x57dad2ca
Kód výjimky: 0xc000041d
Posun chyby: 0x00003e82
ID chybujícího procesu: 0x2158
Čas spuštění chybující aplikace: 0x01d29eae9aca2caa
Cesta k chybující aplikaci: C:\Users\Micha\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\Windows\System32\GDI32.dll
ID zprávy: 13d32348-fc58-4d6e-96bc-5dacb2db582b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/17/2017 01:18:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: ntdll.dll, verze: 10.0.14393.479, časové razítko: 0x58256ca0
Kód výjimky: 0xc0000005
Posun chyby: 0x00045b0e
ID chybujícího procesu: 0x2158
Čas spuštění chybující aplikace: 0x01d29eae9aca2caa
Cesta k chybující aplikaci: C:\Users\Micha\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 839b9a21-8e41-4a33-aa45-73fbcfad8172
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (03/20/2017 09:02:03 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 09:02:03 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 09:02:02 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 09:01:29 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 08:59:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 08:59:51 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 08:59:50 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 01:36:30 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/20/2017 01:16:16 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/19/2017 11:51:38 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================
Date: 2017-03-20 09:08:28.109
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:08:28.108
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:08:06.727
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:08:06.726
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:08:03.275
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:08:03.273
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:07:59.834
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:07:59.832
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:07:58.864
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-20 09:07:58.860
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 47%
Total physical RAM: 4018.27 MB
Available physical RAM: 2090.53 MB
Total Virtual: 4786.27 MB
Available Virtual: 3009.18 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:217.62 GB) (Free:103.65 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:19.83 GB) (Free:2.24 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 3DE5FE0E)

Partition: GPT.

==================== End of Addition.txt ============================

[jaro3]

Odinstaluj:
Bonjour

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
SearchScopes: HKU\S-1-5-21-2161040758-816928078-233886813-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-05] (Google Inc.)
CHR HKU\S-1-5-21-2161040758-816928078-233886813-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
C:\ProgramData\DP45977C.lfl
Task: {3EB51E57-CB6A-431A-B4BA-1A745B3530EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-05] (Google Inc.)
Task: {5E444FAA-45C9-4647-9658-DF86A08881EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-05] (Google Inc.)
2017-03-20 09:02 - 2017-03-20 09:02 - 00098816 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32api.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00110080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pywintypes27.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00364544 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pythoncom27.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00320512 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32com.shell.shell.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00914432 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_hashlib.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01176576 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._core_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00806400 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._gdi_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00816128 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._windows_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01067008 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._controls_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00733184 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._misc_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00682496 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pysqlite2._sqlite.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00088064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ctypes.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00686080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\unicodedata.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00119808 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32file.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00108544 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32security.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00007168 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\hashobjs_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00017920 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\thumbnails_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00088064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\usb_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00012800 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\common.time34.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00018432 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32event.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00167936 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32gui.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00046080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_socket.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01303552 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ssl.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00128512 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_elementtree.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00127488 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pyexpat.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00038912 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32inet.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00036864 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_psutil_windows.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00524248 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\windows._lib_cacheinvalidation.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00011264 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32crypt.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00123392 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._wizard.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00077312 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._html2.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00027648 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_multiprocessing.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00020480 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_yappi.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00035840 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32process.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00078848 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._animate.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00024064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pipe.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00010240 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\select.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00025600 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pdh.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00017408 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32profile.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00022528 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32ts.pyd
C:\Users\Micha\AppData\Local\Temp\_MEI63242

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[Kotik]

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Micha (20-03-2017 12:27:48) Run:1
Running from C:\Users\Micha\Desktop
Loaded Profiles: Micha (Available Profiles: defaultuser0 & Micha)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKU\S-1-5-21-2161040758-816928078-233886813-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-01-05] (Google Inc.)
CHR HKU\S-1-5-21-2161040758-816928078-233886813-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
C:\ProgramData\DP45977C.lfl
Task: {3EB51E57-CB6A-431A-B4BA-1A745B3530EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-05] (Google Inc.)
Task: {5E444FAA-45C9-4647-9658-DF86A08881EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-05] (Google Inc.)
2017-03-20 09:02 - 2017-03-20 09:02 - 00098816 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32api.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00110080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pywintypes27.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00364544 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pythoncom27.dll
2017-03-20 09:02 - 2017-03-20 09:02 - 00320512 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32com.shell.shell.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00914432 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_hashlib.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01176576 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._core_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00806400 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._gdi_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00816128 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._windows_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01067008 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._controls_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00733184 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._misc_.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00682496 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pysqlite2._sqlite.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00088064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ctypes.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00686080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\unicodedata.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00119808 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32file.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00108544 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32security.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00007168 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\hashobjs_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00017920 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\thumbnails_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00088064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\usb_ext.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00012800 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\common.time34.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00018432 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32event.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00167936 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32gui.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00046080 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_socket.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 01303552 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ssl.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00128512 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_elementtree.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00127488 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\pyexpat.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00038912 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32inet.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00036864 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_psutil_windows.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00524248 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\windows._lib_cacheinvalidation.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00011264 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32crypt.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00123392 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._wizard.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00077312 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._html2.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00027648 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_multiprocessing.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00020480 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\_yappi.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00035840 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32process.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00078848 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._animate.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00024064 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pipe.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00010240 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\select.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00025600 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pdh.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00017408 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32profile.pyd
2017-03-20 09:02 - 2017-03-20 09:02 - 00022528 ____R () C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32ts.pyd
C:\Users\Micha\AppData\Local\Temp\_MEI63242

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-2161040758-816928078-233886813-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3 => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll => moved successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9 => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll => not found.
HKU\S-1-5-21-2161040758-816928078-233886813-1001\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fidikogfgleiaefnjbmnjaplmgknppkg => key removed successfully
C:\ProgramData\DP45977C.lfl => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3EB51E57-CB6A-431A-B4BA-1A745B3530EC} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3EB51E57-CB6A-431A-B4BA-1A745B3530EC} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5E444FAA-45C9-4647-9658-DF86A08881EE} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E444FAA-45C9-4647-9658-DF86A08881EE} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32api.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\pywintypes27.dll => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\pythoncom27.dll => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32com.shell.shell.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_hashlib.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._core_.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._gdi_.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._windows_.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._controls_.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._misc_.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\pysqlite2._sqlite.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ctypes.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\unicodedata.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32file.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32security.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\hashobjs_ext.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\thumbnails_ext.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\usb_ext.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\common.time34.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32event.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32gui.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_socket.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_ssl.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_elementtree.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\pyexpat.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32inet.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_psutil_windows.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\windows._lib_cacheinvalidation.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32crypt.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._wizard.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._html2.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_multiprocessing.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\_yappi.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32process.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\wx._animate.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pipe.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\select.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32pdh.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32profile.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242\win32ts.pyd => moved successfully
C:\Users\Micha\AppData\Local\Temp\_MEI63242 => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 70358656 B
Java, Flash, Steam htmlcache => 34403323 B
Windows/system/drivers => 887586 B
Edge => 2279 B
Chrome => 389666983 B
Firefox => 5014743 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 4898 B
NetworkService => 0 B
defaultuser0 => 0 B
Micha => 6808616 B

RecycleBin => 166521 B
EmptyTemp: => 483.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:27:53 ====

[jaro3]

Co problémy?

[Kotik]

Tak problemy zatim vypada, ze zmizely. S vypinanim jsem zadny problem zatim nezaznamenal, ani pri probuzeni z usporneho rezimu notebook neblbne. Diky moc :)


Sent from my iPhone using Tapatalk

[jaro3]

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nebudou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.