tady prvni polovina logu z TRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-10-2017
Ran by Adela (administrator) on HP (16-10-2017 17:07:27)
Running from C:\Users\Adela\Desktop\gramy
Loaded Profiles: Adela (Available Profiles: Adela)
Platform: Windows 8.1 Pro (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Spotify Ltd) C:\Users\Adela\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM\...\Run: [SERVICE] => [X]
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-06-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-1277085983-4139081718-311539203-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-1277085983-4139081718-311539203-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-07-03] (Disc Soft Ltd)
HKU\S-1-5-21-1277085983-4139081718-311539203-1001\...\Run: [Spotify Web Helper] => C:\Users\Adela\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-10-10] (Spotify Ltd)
HKU\S-1-5-21-1277085983-4139081718-311539203-1001\...\MountPoints2: {e284a729-5f5d-11e7-8376-d0df9aa83a48} - "D:\setup.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\Parameters: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{23990FFD-9393-4FD2-9BD6-98272CAAEFEA}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{23990FFD-9393-4FD2-9BD6-98272CAAEFEA}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{7B98E086-7AE3-4428-8EE3-E0B9DE6FE919}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{7B98E086-7AE3-4428-8EE3-E0B9DE6FE919}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{7C8E1521-92EC-47FD-AD09-C12D173DA866}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{7C8E1521-92EC-47FD-AD09-C12D173DA866}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{81645F0E-4FDB-4CF9-A0C0-3D8C6C5F26A4}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{8718928D-CBEB-45EA-A621-800A9249001D}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{AC427FEA-C20A-447F-A6D6-B5E999629016}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{AC427FEA-C20A-447F-A6D6-B5E999629016}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{bbed3e08-0b41-11e3-8249-806e6f6e6963}: [NameServer] 8.8.8.8
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1277085983-4139081718-311539203-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL =
hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation)
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-06-08] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-01] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-06-08] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-07-31] (Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default [2017-10-16]
CHR Extension: (Prezentace) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (Dokumenty) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-16]
CHR Extension: (YouTube) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-16]
CHR Extension: (Adobe Acrobat) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-10-16]
CHR Extension: (Tabulky) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-10-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-16]
CHR Extension: (Gmail) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-10-16]
CHR Extension: (Chrome Media Router) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-16]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] -
hxxps://clients2.google.com/service/update2/crx==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [737984 2016-06-03] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-07-03] (Disc Soft Ltd)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2017-07-03] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2017-07-03] (Disc Soft Ltd)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [192952 2017-10-11] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [45504 2017-10-16] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2017-10-16] (Malwarebytes)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2017-10-13] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2017-10-16] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2017-10-16] (Zemana Ltd.)
S1 bovclsad; \??\C:\Windows\system32\drivers\bovclsad.sys [X]
S1 cuddyiap; \??\C:\Windows\system32\drivers\cuddyiap.sys [X]
S1 djqlvvbq; \??\C:\Windows\system32\drivers\djqlvvbq.sys [X]
S1 hcvdrweh; \??\C:\Windows\system32\drivers\hcvdrweh.sys [X]
S1 lphkruin; \??\C:\Windows\system32\drivers\lphkruin.sys [X]
S1 ltkutebv; \??\C:\Windows\system32\drivers\ltkutebv.sys [X]
S1 nytowmzz; \??\C:\Windows\system32\drivers\nytowmzz.sys [X]
S1 ohrqfygr; \??\C:\Windows\system32\drivers\ohrqfygr.sys [X]
S1 pzdssjuf; \??\C:\Windows\system32\drivers\pzdssjuf.sys [X]
S1 qbvwdmuq; \??\C:\Windows\system32\drivers\qbvwdmuq.sys [X]
S1 qgrcojfo; \??\C:\Windows\system32\drivers\qgrcojfo.sys [X]
S1 rpwznmko; \??\C:\Windows\system32\drivers\rpwznmko.sys [X]
S1 sayxuubm; \??\C:\Windows\system32\drivers\sayxuubm.sys [X]
S1 tlqdcsls; \??\C:\Windows\system32\drivers\tlqdcsls.sys [X]
S1 tmzzmgcl; \??\C:\Windows\system32\drivers\tmzzmgcl.sys [X]
S1 vejdaxip; \??\C:\Windows\system32\drivers\vejdaxip.sys [X]
S1 vkeelocy; \??\C:\Windows\system32\drivers\vkeelocy.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-16 17:07 - 2017-10-16 17:07 - 000000000 ____D C:\FRST
2017-10-16 17:03 - 2017-10-16 17:03 - 000003007 _____ C:\Users\Adela\Desktop\HiJackThis.lnk
2017-10-16 17:03 - 2017-10-16 17:03 - 000000000 ____D C:\Users\Adela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2017-10-16 17:03 - 2017-10-16 17:03 - 000000000 ____D C:\Program Files (x86)\Trend Micro
2017-10-16 16:40 - 2017-10-16 17:07 - 000023269 _____ C:\Windows\ZAM.krnl.trace
2017-10-16 16:40 - 2017-10-16 17:07 - 000010175 _____ C:\Windows\ZAM_Guard.krnl.trace
2017-10-16 16:40 - 2017-10-16 16:40 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2017-10-16 16:40 - 2017-10-16 16:40 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2017-10-16 16:40 - 2017-10-16 16:40 - 000001160 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2017-10-16 16:40 - 2017-10-16 16:40 - 000000000 ____D C:\Users\Adela\AppData\Local\Zemana
2017-10-16 16:40 - 2017-10-16 16:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2017-10-16 16:40 - 2017-10-16 16:40 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2017-10-16 16:36 - 2017-10-16 16:36 - 006625600 _____ (Zemana Ltd. ) C:\Users\Adela\Downloads\Zemana.AntiMalware.Setup.exe
2017-10-16 15:20 - 2017-10-16 15:03 - 000024064 _____ C:\Windows\zoek-delete.exe
2017-10-16 15:03 - 2017-10-16 15:18 - 000000000 ____D C:\zoek_backup
2017-10-13 01:30 - 2017-10-13 01:30 - 000024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-10-13 01:29 - 2017-10-16 15:00 - 000000000 ____D C:\ProgramData\RogueKiller
2017-10-11 11:34 - 2017-10-11 11:34 - 000000000 ____D C:\ProgramData\Sophos
2017-10-11 11:28 - 2017-10-11 11:28 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-10-11 11:28 - 2017-10-11 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-10-11 11:27 - 2017-10-11 11:27 - 000000000 ____D C:\Program Files (x86)\Sophos
2017-10-11 10:41 - 2017-10-11 10:41 - 000000737 _____ C:\Users\Adela\Desktop\JRT.txt
2017-10-11 10:26 - 2017-10-11 10:26 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-10-11 10:22 - 2017-10-11 10:22 - 001678576 _____ C:\Windows\Minidump\101117-15906-01.dmp
2017-10-11 10:00 - 2017-10-11 10:00 - 001683472 _____ C:\Windows\Minidump\101117-17921-01.dmp
2017-10-11 09:59 - 2017-10-11 09:59 - 001678560 _____ C:\Windows\Minidump\101117-17265-01.dmp
2017-10-11 02:44 - 2017-10-11 02:44 - 001678576 _____ C:\Windows\Minidump\101117-17296-01.dmp
2017-10-11 02:43 - 2017-10-11 02:43 - 001681392 _____ C:\Windows\Minidump\101117-17109-01.dmp
2017-10-10 21:42 - 2017-10-16 15:43 - 000252232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-10-10 21:42 - 2017-10-16 15:43 - 000045504 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-10-10 14:56 - 2017-10-11 02:35 - 000000000 ____D C:\AdwCleaner
2017-10-10 13:44 - 2017-10-11 10:26 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-10-10 13:44 - 2017-10-10 13:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-10-10 00:07 - 2017-10-10 13:43 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-10 00:07 - 2017-10-10 00:07 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-05 10:02 - 2017-10-05 10:02 - 001683488 _____ C:\Windows\Minidump\100517-15328-01.dmp
2017-10-05 10:00 - 2017-10-05 10:00 - 000310160 _____ C:\Windows\Minidump\100517-18656-01.dmp
2017-10-05 09:52 - 2017-10-05 09:52 - 000576504 _____ C:\Windows\Minidump\100517-15812-01.dmp
2017-10-05 09:07 - 2017-10-05 09:08 - 000310264 _____ C:\Windows\Minidump\100517-15531-01.dmp
2017-10-05 01:55 - 2017-10-05 01:55 - 000310200 _____ C:\Windows\Minidump\100517-30437-01.dmp
2017-10-05 01:53 - 2017-10-05 01:53 - 000310192 _____ C:\Windows\Minidump\100517-29953-01.dmp
2017-10-04 23:54 - 2017-10-04 23:55 - 001681392 _____ C:\Windows\Minidump\100417-30312-01.dmp
2017-10-03 14:04 - 2017-10-03 14:04 - 000001234 _____ C:\Users\Adela\Desktop\Google Chrome.lnk
2017-10-03 10:42 - 2017-10-03 10:42 - 001678576 _____ C:\Windows\Minidump\100317-31562-01.dmp
2017-10-03 10:03 - 2017-10-16 15:43 - 000000008 __RSH C:\Users\Adela\ntuser.pol
2017-10-03 08:59 - 2017-10-03 08:59 - 000000000 _____ C:\Windows\Minidump\100317-26484-01.dmp
2017-10-03 08:57 - 2017-10-03 08:57 - 000000000 _____ C:\Windows\Minidump\100317-27265-01.dmp
2017-10-02 10:35 - 2017-10-02 10:35 - 001678576 _____ C:\Windows\Minidump\100217-39500-01.dmp
2017-10-01 15:59 - 2017-10-01 15:59 - 001678576 _____ C:\Windows\Minidump\100117-41671-01.dmp
2017-10-01 14:57 - 2017-10-01 15:06 - 000000000 ____D C:\Users\Adela\AppData\Roaming\Seznam.cz
2017-10-01 14:56 - 2017-10-16 15:43 - 000000008 __RSH C:\ProgramData\ntuser.pol
2017-10-01 14:52 - 2017-10-01 14:52 - 000000000 ____D C:\Users\Adela\AppData\Roaming\Mozilla
2017-10-01 14:50 - 2017-10-05 09:58 - 000000000 ____D C:\Applications
2017-10-01 14:50 - 2017-10-01 14:50 - 000140800 _____ C:\Users\Adela\AppData\Local\installer.dat
2017-10-01 14:50 - 2017-10-01 14:50 - 000003232 _____ C:\Windows\System32\Tasks\ShadowsocksS
2017-10-01 14:50 - 2017-10-01 14:50 - 000000000 ____D C:\WinSys
2017-10-01 14:45 - 2017-10-01 14:45 - 003192832 _____ C:\Users\Adela\KMSPico 10.2.1 [DazTeam] (1).iso
2017-10-01 14:39 - 2017-10-01 14:39 - 003690328 _____ (@ByELDI ) C:\Users\Adela\Nepotvrzeno 333592.crdownload
2017-09-30 12:39 - 2017-09-30 12:39 - 001678576 _____ C:\Windows\Minidump\093017-25609-01.dmp
2017-09-30 02:43 - 2017-09-02 01:54 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-09-30 02:43 - 2017-09-02 01:54 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-09-30 02:38 - 2017-09-30 02:38 - 000310160 _____ C:\Windows\Minidump\093017-44656-01.dmp
2017-09-29 15:57 - 2017-09-29 16:03 - 000000000 ___SD C:\Windows\system32\CompatTel
2017-09-19 17:26 - 2017-09-19 17:31 - 000000000 ____D C:\Windows\system32\MRT
2017-09-19 17:25 - 2017-09-19 17:25 - 138202976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-09-19 16:35 - 2017-09-19 16:35 - 000002990 _____ C:\Windows\System32\Tasks\Synaptics TouchPad Enhancements
2017-09-19 16:35 - 2017-09-19 16:35 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-09-19 16:15 - 2016-01-10 19:50 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\cfgbkend.dll
2017-09-19 16:15 - 2016-01-10 19:31 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2017-09-19 16:15 - 2016-01-10 19:16 - 000898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2017-09-19 16:15 - 2016-01-10 19:14 - 000048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgbkend.dll
2017-09-19 16:15 - 2016-01-10 19:12 - 000532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2017-09-19 16:15 - 2016-01-10 18:58 - 000166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2017-09-19 16:15 - 2016-01-10 18:51 - 000702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2017-09-19 16:15 - 2016-01-10 18:49 - 000443392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2017-09-19 16:15 - 2016-01-10 18:40 - 000116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2017-09-19 16:15 - 2014-03-06 11:24 - 000111616 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2017-09-19 16:15 - 2014-03-06 11:24 - 000033280 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2017-09-19 16:15 - 2014-03-06 11:19 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2017-09-19 16:10 - 2015-05-30 21:36 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2017-09-19 16:10 - 2015-05-30 21:35 - 000911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2017-09-19 16:10 - 2014-12-08 21:42 - 000413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2017-09-19 16:10 - 2014-12-08 21:42 - 000372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2017-09-19 16:10 - 2014-12-08 21:42 - 000108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2017-09-19 16:10 - 2014-12-08 21:42 - 000038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2017-09-19 16:10 - 2014-12-08 21:42 - 000033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2017-09-19 16:09 - 2016-05-06 17:45 - 000748544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2017-09-19 16:09 - 2016-05-06 17:23 - 000503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2017-09-19 16:09 - 2015-11-05 10:59 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2017-09-19 16:09 - 2014-12-09 03:50 - 000225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2017-09-19 16:08 - 2016-04-09 23:58 - 000534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-09-19 16:08 - 2016-04-09 23:50 - 000375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 002745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 002528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 002450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 002447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 002334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 002324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 001877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 001798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 001484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 001288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 001210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 001150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 001115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 001037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2017-09-19 16:08 - 2015-12-05 07:58 - 000090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2017-09-19 16:08 - 2015-12-05 07:58 - 000076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2017-09-19 16:08 - 2015-12-03 20:07 - 000340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2017-09-19 16:08 - 2015-12-03 20:07 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2017-09-19 16:08 - 2015-12-03 20:05 - 000644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2017-09-19 16:08 - 2015-12-03 20:02 - 001664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2017-09-19 16:08 - 2015-12-03 20:00 - 000451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2017-09-19 16:08 - 2015-12-03 19:58 - 000378880 ____C (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2017-09-19 16:08 - 2015-12-03 19:30 - 000468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2017-09-19 16:08 - 2015-12-03 19:28 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2017-09-19 16:08 - 2015-12-03 19:28 - 000245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2017-09-19 16:08 - 2015-12-03 19:27 - 000736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2017-09-19 16:08 - 2015-12-03 19:24 - 001411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2017-09-19 16:08 - 2015-12-03 19:23 - 000402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2017-09-19 16:08 - 2015-12-03 19:01 - 000743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2017-09-19 16:08 - 2015-12-03 18:40 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2017-09-19 16:08 - 2015-12-03 18:29 - 000887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2017-09-19 16:08 - 2015-10-13 19:10 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-09-19 16:08 - 2015-07-10 19:54 - 001217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2017-09-19 16:08 - 2014-12-09 05:45 - 000393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2017-09-19 16:08 - 2014-12-09 03:56 - 000538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2017-09-19 16:08 - 2014-10-29 04:46 - 000272384 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2017-09-19 16:07 - 2016-05-12 18:17 - 000331776 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2017-09-19 16:07 - 2016-05-12 18:12 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2017-09-19 16:07 - 2016-05-12 18:08 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2017-09-19 16:07 - 2016-05-12 17:59 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2017-09-19 16:07 - 2016-05-12 17:43 - 000291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2017-09-19 16:07 - 2016-05-12 17:40 - 000034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2017-09-19 16:07 - 2016-05-12 17:37 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2017-09-19 16:07 - 2016-03-31 08:50 - 001307328 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-09-19 16:07 - 2016-03-31 05:40 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-09-19 16:07 - 2015-12-02 17:04 - 000670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-09-19 16:07 - 2015-12-02 17:01 - 000561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2017-09-19 16:06 - 2015-01-30 03:29 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2017-09-19 16:05 - 2014-10-29 03:28 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\rasadhlp.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000848568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000348048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verifier.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000255136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powrprof.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000164264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000120352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000029920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel.appcore.dll
2017-09-19 16:04 - 2014-10-29 05:18 - 000016504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psapi.dll
2017-09-19 16:04 - 2014-10-29 05:17 - 000033088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2017-09-19 16:04 - 2014-10-29 05:15 - 000192096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000168256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000165728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntasn1.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000156992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dssenh.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000154392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntmarta.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000110512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000099104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptxml.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000098152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000096032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000074352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdll.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000068168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000051608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000035592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll
2017-09-19 16:04 - 2014-10-29 05:15 - 000021696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsrole.dll
2017-09-19 16:04 - 2014-10-29 05:13 - 000185880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 001907384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000430176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000416760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2017-09-19 16:04 - 2014-10-29 05:12 - 000403776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000241680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000116696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxva2.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000102728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000087224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2017-09-19 16:04 - 2014-10-29 05:12 - 000051096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wwapi.dll
2017-09-19 16:04 - 2014-10-29 05:11 - 002689392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2017-09-19 16:04 - 2014-10-29 05:11 - 001024200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2017-09-19 16:04 - 2014-10-29 05:11 - 000488064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll
2017-09-19 16:04 - 2014-10-29 05:11 - 000191104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2017-09-19 16:04 - 2014-10-29 05:11 - 000190048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe
2017-09-19 16:04 - 2014-10-29 05:11 - 000187488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2017-09-19 16:04 - 2014-10-29 05:11 - 000150776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll
2017-09-19 16:04 - 2014-10-29 05:11 - 000028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CameraSettingsUIHost.exe
2017-09-19 16:04 - 2014-10-29 05:10 - 001287112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 001178104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000569128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000367248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000278352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000276816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000272648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000094464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RestoreOptIn.exe
2017-09-19 16:04 - 2014-10-29 05:10 - 000052664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wtsapi32.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000040816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudNotifications.exe
2017-09-19 16:04 - 2014-10-29 05:10 - 000038184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll
2017-09-19 16:04 - 2014-10-29 05:10 - 000034016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialUIBroker.exe
2017-09-19 16:04 - 2014-10-29 05:10 - 000030944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountBroker.exe
2017-09-19 16:04 - 2014-10-29 05:10 - 000029888 _____ (Microsoft Corporation)