REKLAMA

FRST.txt

Komputer pc - Windows10 zawirusowałem, nie uruchamia się całkowicie.

Jak w temacie, moja wina, chciałem zainstalować aplikację Viber pc, niestety podczas pobierania zaczęło się, przeglądarka chrome zmieniała się w jakąś chińską, same dziwne znaczki, nie opanowałem już tego. W systemie nie miałem zainstalowanego żadnego innego antywirusa, prócz systemowego. System uruchamiam (metodą ratunkową) do momentu logowania, czyli mam możliwość za i wylogowania, ale niestety jest tylko czarny ekran z napisem: Nie można znaleźć pliku skryptu "C:\WINDOWS\run,vbs". Nie mam możliwości uruchomienia menadżera zadań aby cokolwiek zobaczyć. Za pomocą FRST wygenerowałem loga. Bardzo proszę o pomoc, podobał mi się ten system. Pozdrawiam


Pobierz plik - link do postu

Rezultaty skanowania Farbar Recovery Scan Tool (FRST) (x64) Wersja: 18-01-2017
Uruchomiony przez SYSTEM MININT-TGMSNBL (21-01-2017 21:22:08)
Uruchomiony z C:\FRST
Platform: Windows 10 Pro Wersja 1607 (X64) Język: Polski (Polska)
Internet Explorer Wersja 11
Tryb startu: Recovery
Domyślne: ControlSet001
[b]UWAGA!:===== & gt; Jeśli system uruchamia się, FRST należy uruchomić z poziomu Trybu awaryjnego lub normalnego w celu utworzenia kompletnego raportu.[/b]

Instrukcja obsługi Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Rejestr (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje usunięcie obiektu z rejestru lub przywrócenie jego domyślnej postaci. Powiązany plik nie zostanie przeniesiony.)

HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-01-27] (Realtek Semiconductor)
HKLM\...\Run: [VIAxHCUtl] = & gt; C:\Program Files\VIA XHCI UASP Utility\usb3Monitor
HKLM\...\Run: [IAStorIcon] = & gt; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [Windows Mobile Device Center] = & gt; C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [WindowsDefender] = & gt; C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-09-07] (Microsoft Corporation)
HKLM-x32\...\Run: [USB3MON] = & gt; " C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe "
HKLM-x32\...\Run: [PWRISOVM.EXE] = & gt; C:\Program Files\PowerISO\PWRISOVM.EXE [454792 2016-05-25] (Power Software Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM\...\RunOnce: [ucdrv_repair] = & gt; C:\Program Files (x86)\UCBrowser\Security\uclauncher.exe [739728 2017-01-15] (UC Web Inc.)
HKLM-x32\...\RunOnce: [PreRun] = & gt; C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [8192 2013-04-29] ()
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
AppInit_DLLs: C:\ProgramData\Hotfresh\Kinancom.dll = & gt; C:\ProgramData\Hotfresh\Kinancom.dll [358912 2017-01-17] ()
AppInit_DLLs-x32: C:\ProgramData\Hotfresh\Finsaotone.dll = & gt; C:\ProgramData\Hotfresh\Finsaotone.dll [248320 2017-01-17] ()
Startup: C:\Users\bodek22\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2016-04-29]
ShortcutTarget: EOS Utility.lnk - & gt; C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.)

==================== Usługi (filtrowane) ====================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S2 backlh; C:\ProgramData\Logic Handler\set.exe [3786752 2017-01-15] ()
S2 CloudPrinter; C:\ProgramData\\CloudPrinter\\CloudPrinter.exe [982016 2017-01-15] ()
S2 Coofele; C:\Program Files (x86)\Chivaleplecerle\rvsadapter.dll [179712 2017-01-15] ()
S2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16896 2015-04-14] ()
S2 GoogleChromeUpService; C:\ProgramData\service.exe [1620992 2017-01-15] ()
S2 Hotfresh; C:\ProgramData\\Hotfresh\\Hotfresh.exe [982016 2017-01-15] ()
S2 Huawei E3372; C:\ProgramData\MobileBrServ\mbbservice.exe [240720 2014-03-07] ()
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [62760 2015-11-12] (GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
S2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373744 2016-11-01] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [156960 2015-02-25] (Intel Corporation)
S2 KuaizipUpdateChecker; C:\Program Files\żěŃą\X86\kuaizipUpdateChecker.dll [219032 2017-01-15] ()
S2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188352 2016-12-12] (McAfee, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
S2 SPCAIISExpress; C:\Program Files (x86)\IIS Express\SPCAIISExpress.dll [225792 2017-01-15] ()
S2 UCBrowserSvc; C:\Program Files (x86)\UCBrowser\Application\UCService.exe [931112 2017-01-11] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 vimozypy; C:\Program Files (x86)\8db2d83a-e558-40e8-8266-40f6449e54b91484440049\kns8db2d83a-e558-40e8-8266-40f6449e54b9.tmpfs [X]

===================== Sterowniki (filtrowane) ======================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)

S3 Bulk1528; C:\Windows\System32\Drivers\Bulk1528.sys [17792 2009-10-20] (SunPlus)
S2 Ca1528av; C:\Windows\System32\Drivers\Ca1528av.sys [533760 2008-12-17] (Digital Camera)
S3 camdrv42; C:\Windows\system32\DRIVERS\camdrv42.sys [1533952 2007-04-23] ()
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (www.winchiphead.com)
S3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [118160 2016-10-04] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\system32\drivers\ftser2k.sys [88752 2016-10-04] ()
S2 KuaiZipDrive; C:\WINDOWS\system32\drivers\KuaiZipDrive.sys [92832 2017-01-15] (WinMount International Inc)
S2 MaxImIO; C:\Windows\SysWOW64\Drivers\maximio.sys [7610 2008-10-23] (Diffraction Limited)
S3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-02-25] (Intel Corporation)
S3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-06-23] (Realtek )
S1 ucdrv; C:\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys [23652 ] (UC Web Inc.) & lt; ==== UWAGA
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [121248 2016-08-16] (Oracle Corporation)
S1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [195936 2016-08-16] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 idsvc; Brak ImagePath

==================== NetSvcs (filtrowane) ===================

(Załączenie wejścia w fixlist spowoduje jego usunięcie z rejestru. Powiązany plik nie zostanie przeniesiony, o ile nie zostanie załączony z osobna.)


==================== Jeden miesiąc - utworzone pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-01-21 21:21 - 2017-01-21 21:21 - 00000000 _____ C:\Recovery.txt
2017-01-21 19:25 - 2017-01-21 21:22 - 00000000 ____D C:\FRST
2017-01-21 19:20 - 2017-01-21 19:54 - 00000000 ____D C:\FSRT
2017-01-20 23:38 - 2017-01-17 21:16 - 00001448 _____ C:\fixlist.txt
2017-01-17 21:16 - 2017-01-17 21:16 - 00001448 _____ C:\Users\bodek22\Desktop\fixlist.txt
2017-01-15 18:42 - 2017-01-15 18:53 - 00000000 ____D C:\Windows1
2017-01-15 11:40 - 2017-01-15 11:40 - 00000000 ___HD C:\$SysReset
2017-01-15 02:52 - 2016-12-21 10:54 - 00389396 __RSH C:\bootmgr
2017-01-15 01:33 - 2017-01-15 01:33 - 00412380 _____ C:\Windows\Minidump\011517-29515-01.dmp
2017-01-15 01:30 - 2017-01-15 01:33 - 00000472 _____ C:\Windows\Tasks\UCBrowserUpdater.job
2017-01-15 01:30 - 2017-01-15 01:33 - 00000308 _____ C:\Windows\Tasks\UCBrowserUpdaterCore.job
2017-01-15 01:30 - 2017-01-15 01:31 - 00002662 _____ C:\Windows\System32\Tasks\UCBrowserUpdaterCore
2017-01-15 01:30 - 2017-01-15 01:30 - 00003494 _____ C:\Windows\System32\Tasks\UCBrowserUpdater
2017-01-15 01:30 - 2017-01-15 01:30 - 00003476 _____ C:\Windows\System32\Tasks\UCBrowserSecureUpdater
2017-01-15 01:30 - 2017-01-15 01:30 - 00000000 ____D C:\Users\bodek22\AppData\Local\UCBrowser
2017-01-15 01:29 - 2017-01-15 01:30 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2017-01-15 01:29 - 2017-01-15 01:29 - 00092832 _____ (WinMount International Inc) C:\Windows\System32\Drivers\KuaiZipDrive.sys
2017-01-15 01:29 - 2017-01-15 01:29 - 00000858 _____ C:\Users\bodek22\Desktop\żěŃą.lnk
2017-01-15 01:29 - 2017-01-15 01:29 - 00000000 ____D C:\Users\bodek22\AppData\Roaming\Softlink
2017-01-15 01:29 - 2017-01-15 01:29 - 00000000 ____D C:\Users\bodek22\AppData\Roaming\KuaiZip
2017-01-15 01:28 - 2017-01-15 01:28 - 01620992 _____ C:\ProgramData\service.exe
2017-01-15 01:28 - 2017-01-15 01:28 - 00006076 _____ C:\Windows\System32\Tasks\Anuzuied Server
2017-01-15 01:28 - 2017-01-15 01:28 - 00001203 _____ C:\Users\bodek22\Desktop\AutoTime.lnk
2017-01-15 01:28 - 2017-01-15 01:28 - 00000000 __SHD C:\Users\bodek22\AppData\Local\svchost
2017-01-15 01:28 - 2017-01-15 01:28 - 00000000 ____D C:\Program Files\żěŃą
2017-01-15 01:28 - 2017-01-15 01:28 - 00000000 ____D C:\Program Files (x86)\Anuzuied Server
2017-01-15 01:28 - 2016-12-26 15:58 - 00965120 ___SH C:\ProgramData\igfxDH.dll
2017-01-15 01:27 - 2017-01-17 21:23 - 00002379 _____ C:\Windows\SysWOW64\findit.xml
2017-01-15 01:27 - 2017-01-15 15:22 - 00000000 ____D C:\Program Files (x86)\8db2d83a-e558-40e8-8266-40f6449e54b91484440049
2017-01-15 01:27 - 2017-01-15 01:36 - 00000000 ____D C:\Program Files (x86)\Ghijerght
2017-01-15 01:27 - 2017-01-15 01:29 - 00000000 ____D C:\Users\bodek22\AppData\Local\Shsspjtoing
2017-01-15 01:27 - 2017-01-15 01:29 - 00000000 ____D C:\Program Files (x86)\CleanBrowser
2017-01-15 01:27 - 2017-01-15 01:27 - 00000334 _____ C:\Users\bodek22\Desktop\Booking.com.url
2017-01-15 01:27 - 2017-01-15 01:27 - 00000329 _____ C:\Users\bodek22\Desktop\AliExpress.url
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 ____D C:\Users\bodek22\AppData\Roaming\Jaesywacuk
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 ____D C:\Users\bodek22\AppData\Local\Winutugash
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 ____D C:\ProgramData\Logic Handler
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 ____D C:\ProgramData\Avira
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 ____D C:\ProgramData\AVAST Software
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 ____D C:\Program Files (x86)\Chivaleplecerle
2017-01-15 01:27 - 2017-01-15 01:27 - 00000000 _____ C:\TOSTACK
2017-01-15 01:26 - 2017-01-21 19:32 - 00000000 ____D C:\ProgramData\Hotfresh
2017-01-15 01:26 - 2017-01-15 01:27 - 00000000 ____D C:\ProgramData\Hotfreshs
2017-01-15 01:26 - 2017-01-15 01:26 - 07316480 _____ C:\Users\bodek22\AppData\Roaming\agent.dat
2017-01-15 01:26 - 2017-01-15 01:26 - 01938534 _____ C:\Users\bodek22\AppData\Roaming\Lain.bin
2017-01-15 01:26 - 2017-01-15 01:26 - 01907634 _____ C:\Users\bodek22\AppData\Roaming\Tanfax.tst
2017-01-15 01:26 - 2017-01-15 01:26 - 01103872 _____ C:\Users\bodek22\Downloads\Download- Viber 430 Latest For Windows Full JaanSoft- Software And Apps (1).iso
2017-01-15 01:26 - 2017-01-15 01:26 - 00982016 _____ C:\Users\bodek22\AppData\Roaming\Tanfax.exe
2017-01-15 01:26 - 2017-01-15 01:26 - 00982016 _____ C:\Users\bodek22\AppData\Roaming\Movesololax.exe
2017-01-15 01:26 - 2017-01-15 01:26 - 00140288 _____ C:\Users\bodek22\AppData\Roaming\Installer.dat
2017-01-15 01:26 - 2017-01-15 01:26 - 00126464 _____ C:\Users\bodek22\AppData\Roaming\noah.dat
2017-01-15 01:26 - 2017-01-15 01:26 - 00126464 _____ C:\Users\bodek22\AppData\Roaming\lobby.dat
2017-01-15 01:26 - 2017-01-15 01:26 - 00072787 _____ C:\Users\bodek22\AppData\Roaming\Movesololax.tst
2017-01-15 01:26 - 2017-01-15 01:26 - 00070704 _____ C:\Users\bodek22\AppData\Roaming\Config.xml
2017-01-15 01:26 - 2017-01-15 01:26 - 00054272 _____ C:\Users\bodek22\AppData\Roaming\ApplicationHosting.dat
2017-01-15 01:26 - 2017-01-15 01:26 - 00018432 _____ C:\Users\bodek22\AppData\Roaming\Main.dat
2017-01-15 01:26 - 2017-01-15 01:26 - 00016560 _____ C:\Users\bodek22\AppData\Roaming\InstallationConfiguration.xml
2017-01-15 01:26 - 2017-01-15 01:26 - 00005568 _____ C:\Users\bodek22\AppData\Roaming\md.xml
2017-01-15 01:26 - 2017-01-15 01:26 - 00000000 ____D C:\ProgramData\CloudPrinter
2017-01-15 01:25 - 2017-01-15 01:25 - 01103872 _____ C:\Users\bodek22\Downloads\Download- Viber 430 Latest For Windows Full JaanSoft- Software And Apps.iso
2017-01-15 01:06 - 2017-01-15 01:06 - 00000000 ____D C:\Users\bodek22\Documents\ViberDownloads
2017-01-15 01:03 - 2017-01-15 01:04 - 68087360 _____ (Viber Media Inc.) C:\Users\bodek22\Downloads\ViberSetup.exe
2017-01-12 17:17 - 2017-01-12 17:17 - 00412188 _____ C:\Windows\Minidump\011217-21546-01.dmp
2017-01-11 17:56 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\Windows\System32\offlinesam.dll
2017-01-11 17:56 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\Windows\System32\ImplatSetup.dll
2017-01-11 17:56 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Storage.ApplicationData.dll
2017-01-11 17:56 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2017-01-11 17:56 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\Windows\System32\mfcore.dll
2017-01-11 17:56 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\Windows\System32\mfnetsrc.dll
2017-01-11 17:56 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\Windows\System32\mfnetcore.dll
2017-01-11 17:56 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\Windows\System32\rdpudd.dll
2017-01-11 17:56 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\Windows\System32\shell32.dll
2017-01-11 17:56 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\Windows\System32\mfmp4srcsnk.dll
2017-01-11 17:56 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\Windows\System32\mfasfsrcsnk.dll
2017-01-11 17:56 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\Windows\System32\mfmpeg2srcsnk.dll
2017-01-11 17:56 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\Windows\System32\sppobjs.dll
2017-01-11 17:56 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\Windows\System32\edgehtml.dll
2017-01-11 17:56 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\System32\LaunchWinApp.exe
2017-01-11 17:56 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\Windows\System32\OneBackupHandler.dll
2017-01-11 17:56 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\Windows\System32\rdpencom.dll
2017-01-11 17:56 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\Windows\System32\DeveloperOptionsSettingsHandlers.dll
2017-01-11 17:56 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Media.dll
2017-01-11 17:56 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\Windows\System32\aadcloudap.dll
2017-01-11 17:56 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\Windows\System32\indexeddbserver.dll
2017-01-11 17:56 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Shell.dll
2017-01-11 17:56 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\Windows\System32\twinui.dll
2017-01-11 17:56 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\Windows\System32\AzureSettingSyncProvider.dll
2017-01-11 17:56 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\Windows\System32\samsrv.dll
2017-01-11 17:56 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2017-01-11 17:56 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\Windows\System32\MSVP9DEC.dll
2017-01-11 17:56 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\Windows\System32\MCRecvSrc.dll
2017-01-11 17:56 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\Windows\System32\Chakra.dll
2017-01-11 17:56 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\Windows\System32\SettingsHandlers_nt.dll
2017-01-11 17:56 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\Windows\System32\mspaint.exe
2017-01-11 17:56 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\Windows\System32\D3DCompiler_47.dll
2017-01-11 17:56 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\Windows\System32\mstscax.dll
2017-01-11 17:56 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\Windows\System32\d2d1.dll
2017-01-11 17:56 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\Windows\System32\lsasrv.dll
2017-01-11 17:56 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll
2017-01-11 17:56 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\Windows\System32\aadtb.dll
2017-01-11 17:56 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2017-01-11 17:56 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2017-01-11 17:56 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2017-01-11 17:56 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-01-11 17:56 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2017-01-11 17:56 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BlockedShutdown.dll
2017-01-11 17:56 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.BioFeedback.dll
2017-01-11 17:56 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2017-01-11 17:56 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2017-01-11 17:56 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2017-01-11 17:56 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncSettings.dll
2017-01-11 17:56 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2017-01-11 17:56 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2017-01-11 17:56 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgentUserBroker.exe
2017-01-11 17:56 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2017-01-11 17:56 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2017-01-11 17:56 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\indexeddbserver.dll
2017-01-11 17:56 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-01-11 17:56 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-01-11 17:56 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-01-11 17:56 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aclui.dll
2017-01-11 17:56 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2017-01-11 17:56 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVP9DEC.dll
2017-01-11 17:56 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-01-11 17:56 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2017-01-11 17:56 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-01-11 17:56 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2017-01-11 17:56 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2017-01-11 17:56 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\Windows\System32\msmpeg2vdec.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 02169184 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntSubsystems64.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 01669984 _____ (Microsoft Corporation) C:\Windows\System32\AppVIntegration.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 01400160 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntSubsystemController.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 01054048 _____ (Microsoft Corporation) C:\Windows\System32\AppVPolicy.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00992096 _____ (Microsoft Corporation) C:\Windows\System32\AppVManifest.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00822624 _____ (Microsoft Corporation) C:\Windows\System32\AppVClient.exe
2017-01-11 17:56 - 2016-12-14 06:33 - 00813408 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntStreamingManager.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00779616 _____ (Microsoft Corporation) C:\Windows\System32\AppVReporting.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00752992 _____ (Microsoft Corporation) C:\Windows\System32\AppVOrchestration.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00704352 _____ (Microsoft Corporation) C:\Windows\System32\AppVEntVirtualization.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00696160 _____ (Microsoft Corporation) C:\Windows\System32\AppVPublishing.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00571744 _____ (Microsoft Corporation) C:\Windows\System32\AppVCatalog.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00513376 _____ (Microsoft Corporation) C:\Windows\System32\TransportDSA.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00406368 _____ (Microsoft Corporation) C:\Windows\System32\AppVScripting.dll
2017-01-11 17:56 - 2016-12-14 06:33 - 00241504 _____ (Microsoft Corporation) C:\Windows\System32\AppVShNotify.exe
2017-01-11 17:56 - 2016-12-14 06:33 - 00190816 _____ (Microsoft Corporation) C:\Windows\System32\AppVDllSurrogate.exe
2017-01-11 17:56 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\Windows\System32\msv1_0.dll
2017-01-11 17:56 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2017-01-11 17:56 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\Windows\System32\wow64.dll
2017-01-11 17:56 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\Windows\System32\winmde.dll
2017-01-11 17:56 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2017-01-11 17:56 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2017-01-11 17:56 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2017-01-11 17:56 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.Resources.dll
2017-01-11 17:56 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-01-11 17:56 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2017-01-11 17:56 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\Windows\System32\ScDeviceEnum.dll
2017-01-11 17:56 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\Windows\System32\WinSCard.dll
2017-01-11 17:56 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\Windows\System32\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 17:56 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2017-01-11 17:56 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudBackupSettings.dll
2017-01-11 17:56 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\System32\certprop.dll
2017-01-11 17:56 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\Windows\System32\updatehandlers.dll
2017-01-11 17:56 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Xaml.dll
2017-01-11 17:56 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-01-11 17:56 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.CredDialogController.dll
2017-01-11 17:56 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\Windows\System32\updatepolicy.dll
2017-01-11 17:56 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\Windows\System32\SRH.dll
2017-01-11 17:56 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\Windows\System32\usocore.dll
2017-01-11 17:56 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-01-11 17:56 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 17:56 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\Windows\System32\cryptui.dll
2017-01-11 17:56 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2017-01-11 17:56 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2017-01-11 17:56 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2017-01-11 17:56 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2017-01-11 17:56 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\Windows\System32\d3d12SDKLayers.dll
2017-01-11 17:56 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\Windows\System32\SRHInproc.dll
2017-01-11 17:56 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\Windows\System32\D3D12.dll
2017-01-11 17:56 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\Windows\System32\winlogon.exe
2017-01-11 17:56 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2017-01-11 17:56 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2017-01-11 17:56 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2017-01-11 17:56 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\Windows\System32\win32kbase.sys
2017-01-11 17:56 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\Windows\System32\wuuhext.dll
2017-01-11 17:56 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\Windows\System32\win32kfull.sys
2017-01-11 17:56 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2017-01-11 17:56 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\System32\Windows.ApplicationModel.LockScreen.dll
2017-01-11 17:56 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-01-11 17:55 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2017-01-11 17:55 - 2016-12-21 08:45 - 00153952 _____ (Microsoft Corporation) C:\Windows\System32\mqcmiplugin.dll
2017-01-11 17:55 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\Windows\System32\CloudExperienceHost.dll
2017-01-11 17:55 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\Windows\System32\securekernel.exe
2017-01-11 17:55 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\Windows\System32\KnobsCsp.dll
2017-01-11 17:55 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\Windows\System32\ProvPluginEng.dll
2017-01-11 17:55 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\Windows\System32\KnobsCore.dll
2017-01-11 17:55 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.BioFeedback.dll
2017-01-11 17:55 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\Windows\System32\MSVPXENC.dll
2017-01-11 17:55 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.BlockedShutdown.dll
2017-01-11 17:55 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\Windows\System32\provengine.dll
2017-01-11 17:55 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
2017-01-11 17:55 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\Windows\System32\StoreAgent.dll
2017-01-11 17:55 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\Windows\System32\SyncSettings.dll
2017-01-11 17:55 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
2017-01-11 17:55 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\Windows\System32\winsrv.dll
2017-01-11 17:55 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\Windows\System32\fhcfg.dll
2017-01-11 17:55 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\Windows\System32\fhsettingsprovider.dll
2017-01-11 17:55 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\Windows\System32\aclui.dll
2017-01-11 17:55 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentExtensions.onecore.dll
2017-01-11 17:55 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\Windows\System32\AppXDeploymentServer.dll
2017-01-11 17:55 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.Logon.dll
2017-01-11 17:55 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\Windows\System32\SettingSyncCore.dll
2017-01-11 17:55 - 2016-12-21 06:03 - 00136544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqmigplugin.dll
2017-01-11 17:55 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2017-01-11 17:55 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2017-01-11 17:55 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2017-01-11 17:55 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2017-01-11 17:55 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2017-01-11 17:55 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCRecvSrc.dll
2017-01-11 17:55 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-01-11 17:55 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2017-01-11 17:55 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2017-01-11 17:55 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2017-01-11 17:55 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\Windows\System32\AudioSes.dll
2017-01-11 17:55 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\Windows\System32\ClipUp.exe
2017-01-11 17:55 - 2016-12-14 06:26 - 01469792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppVEntSubsystems32.dll
2017-01-11 17:55 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
2017-01-11 17:55 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\vhdmp.sys
2017-01-11 17:55 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2017-01-11 17:55 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\Windows\System32\AUDIOKSE.dll
2017-01-11 17:55 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\Windows\System32\remoteaudioendpoint.dll
2017-01-11 17:55 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 17:55 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-01-11 17:55 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2017-01-11 17:55 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\Windows\System32\DXCpl.exe
2017-01-11 17:55 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\Windows\System32\cloudAP.dll
2017-01-11 17:55 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\Windows\SysWOW64\DXCpl.exe
2017-01-11 17:55 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2017-01-11 17:55 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\Windows\System32\domgmt.dll
2017-01-11 17:55 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\Windows\System32\ConsoleLogon.dll
2017-01-11 17:55 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
2017-01-11 17:55 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\Windows\System32\wbiosrvc.dll
2017-01-11 17:55 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\Windows\System32\Windows.UI.CredDialogController.dll
2017-01-11 17:55 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\Windows\System32\CloudBackupSettings.dll
2017-01-11 17:55 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d12SDKLayers.dll
2017-01-11 17:55 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-01-11 17:55 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3D12.dll
2017-01-11 17:55 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\Windows\System32\dosvc.dll
2017-01-11 17:55 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-01-11 17:55 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\Windows\System32\LogonController.dll
2017-01-11 17:55 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\Windows\System32\AudioEng.dll
2017-01-11 17:55 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\Windows\System32\AudioEndpointBuilder.dll
2017-01-11 17:55 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\Windows\System32\audiosrv.dll
2017-01-11 00:17 - 2017-01-11 00:17 - 00109367 _____ C:\Users\bodek22\Downloads\liycy-4x0-14-przewod-ekranowany.pdf
2017-01-10 21:23 - 2017-01-10 21:44 - 593625088 _____ C:\Users\bodek22\Downloads\XP_HOME.iso
2017-01-10 19:46 - 2017-01-10 19:46 - 02371549 _____ C:\Users\bodek22\Downloads\Serialio.com_PL2303_Prolific_DriverInstaller_v130.zip
2017-01-10 01:36 - 2017-01-10 01:36 - 19711758 _____ C:\Users\bodek22\Downloads\ASCOM Platform 4.1.zip
2017-01-10 00:46 - 2017-01-10 00:46 - 02959376 _____ (Microsoft Corporation) C:\Users\bodek22\Downloads\dotnetfx35setup.exe
2017-01-09 23:09 - 2017-01-09 23:09 - 00000029 _____ C:\Users\bodek22\Desktop\key laptop inki.txt
2017-01-09 23:06 - 2017-01-09 23:06 - 00000000 _____ C:\Users\bodek22\Desktop\Nowy dokument tekstowy (3).txt
2017-01-09 22:03 - 2017-01-10 21:24 - 607090688 _____ C:\Users\bodek22\Downloads\Windows XP Home SP3 PL OEM.iso
2017-01-08 23:21 - 2017-01-08 23:21 - 06708483 _____ (Novicorp ) C:\Users\bodek22\Downloads\WinToFlash Professional Edition 1.4.0000 [1].exe
2017-01-08 23:21 - 2017-01-08 23:21 - 01307384 _____ (Tot ) C:\Users\bodek22\Downloads\WinToFlash Professional Edition 1.4.0000.exe
2017-01-08 23:17 - 2017-01-08 23:18 - 00000000 ____D C:\Users\bodek22\Downloads\Windows XP SP3 Edycja specjalna 32 bit PL
2017-01-08 23:11 - 2017-01-08 23:11 - 01307384 _____ (Tot ) C:\Users\bodek22\Downloads\WinToFlash Lite Edition 1.4.0000 (1).exe
2017-01-08 23:05 - 2017-01-08 23:05 - 00000000 ____D C:\Users\bodek22\Downloads\WinToFlash Lite Edition 1.4.0000
2017-01-08 23:04 - 2017-01-08 23:04 - 10653362 _____ C:\Users\bodek22\Downloads\WinToFlash Lite Edition 1.4.0000.zip
2017-01-08 23:04 - 2017-01-08 23:04 - 01307384 _____ (Tot ) C:\Users\bodek22\Downloads\WinToFlash Lite Edition 1.4.0000.exe
2017-01-08 22:51 - 2017-01-08 22:59 - 656351801 _____ C:\Users\bodek22\Downloads\Windows XP SP3 Edycja specjalna 32 bit PL.rar
2017-01-08 19:23 - 2017-01-08 19:23 - 01034186 _____ C:\Users\bodek22\Downloads\assist-sv-20080214092045.zip
2017-01-08 18:05 - 2017-01-08 18:05 - 00035189 _____ C:\Users\bodek22\Downloads\Generic_usb_hub.zip
2017-01-08 16:27 - 2017-01-08 16:27 - 00404436 _____ C:\Windows\Minidump\010817-20468-01.dmp
2017-01-08 16:07 - 2017-01-08 16:07 - 00412236 _____ C:\Windows\Minidump\010817-20531-01.dmp
2017-01-05 18:50 - 2017-01-05 18:50 - 00657484 _____ C:\Users\bodek22\Downloads\PHD2-2.4.1g-manual.pdf
2017-01-03 02:55 - 2017-01-03 02:55 - 04987392 _____ C:\Users\bodek22\Downloads\Ukraina em.pps
2017-01-02 21:01 - 2017-01-02 21:01 - 00617472 _____ C:\Users\bodek22\Downloads\CCDN3Installer.exe
2017-01-01 23:59 - 2017-01-02 00:01 - 52869065 _____ C:\Users\bodek22\Downloads\TOSHIBA SATELLITE L20-182.ZIP
2016-12-31 22:45 - 2016-12-31 22:45 - 00073006 _____ C:\Users\bodek22\Downloads\Toshiba.html
2016-12-31 22:45 - 2016-12-31 22:45 - 00000000 ____D C:\Users\bodek22\Downloads\Toshiba_files
2016-12-31 01:49 - 2016-12-31 01:49 - 00878220 _____ C:\Windows\Minidump\123116-20437-01.dmp
2016-12-30 19:01 - 2016-12-30 19:01 - 00412364 _____ C:\Windows\Minidump\123016-21546-01.dmp
2016-12-29 19:50 - 2016-12-29 19:50 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-12-29 19:48 - 2016-12-29 19:48 - 00000000 ____D C:\Users\bodek22\Downloads\CameraRaw_9_7
2016-12-29 19:36 - 2016-12-29 19:36 - 315254440 _____ C:\Users\bodek22\Downloads\CameraRaw_9_7.zip
2016-12-29 19:28 - 2016-12-29 19:29 - 01259368 _____ ( ) C:\Users\bodek22\Downloads\Adobe-Camera-Raw-24672-dp.exe
2016-12-27 21:37 - 2016-12-27 21:37 - 00022954 _____ C:\Users\bodek22\AppData\Local\recently-used.xbel
2016-12-27 21:08 - 2016-12-27 21:09 - 00412340 _____ C:\Windows\Minidump\122716-24578-01.dmp
2016-12-26 13:56 - 2016-12-26 13:56 - 00000000 ____D C:\APT_Images
2016-12-26 13:50 - 2016-12-26 13:50 - 00001299 _____ C:\Users\Public\Desktop\Astro Photography Tool - APT.lnk
2016-12-25 20:07 - 2016-12-25 20:07 - 06323484 _____ C:\Users\bodek22\Downloads\humor.xcf
2016-12-25 18:16 - 2016-12-25 18:18 - 05142330 _____ C:\Users\bodek22\Downloads\CCDStack tutorial - Poland.pdf
2016-12-25 18:16 - 2016-12-25 18:17 - 03540049 _____ C:\Users\bodek22\Downloads\Obróbka DSS w PS5.pdf
2016-12-25 15:44 - 2016-12-25 15:44 - 00095469 _____ C:\Users\bodek22\Downloads\humor.jpg
2016-12-24 23:11 - 2016-12-24 23:11 - 00307942 _____ C:\Users\bodek22\Downloads\Ustawianie montażu na biegun - EQASCOM (1).pdf
2016-12-24 23:06 - 2016-12-24 23:06 - 00858609 _____ C:\Users\bodek22\Downloads\Polar Alignment.pdf
2016-12-24 10:46 - 2016-12-24 10:46 - 00566792 _____ C:\Users\bodek22\Downloads\Deep_Sky_Stacker_-_opis.pdf
2016-12-24 10:37 - 2016-12-24 10:37 - 00504296 _____ C:\Users\bodek22\Downloads\Kalibracja i stackowanie w DeepSkyStacker.pdf
2016-12-24 01:30 - 2016-12-24 01:30 - 00905293 _____ C:\Users\bodek22\Downloads\PHD2 Drift Alignment.pdf
2016-12-24 01:26 - 2016-12-24 01:26 - 00465216 _____ C:\Users\bodek22\Downloads\Instrukcja PHD1.pdf
2016-12-24 01:25 - 2016-12-24 01:25 - 00393231 _____ C:\Users\bodek22\Downloads\Instrukcja PHD2.pdf
2016-12-24 01:21 - 2016-12-24 01:21 - 00000000 _____ C:\Users\bodek22\Downloads\15116_.pdf
2016-12-24 01:04 - 2016-12-24 01:05 - 00391528 _____ C:\Users\bodek22\Downloads\Instrukcja PHD.pdf
2016-12-24 00:56 - 2016-12-24 00:56 - 00000000 _____ C:\Users\bodek22\Downloads\9046_.pdf

==================== Jeden miesiąc - zmodyfikowane pliki i foldery ========

(Załączenie wejścia w fixlist spowoduje przeniesienie pliku/folderu.)

2017-01-21 19:34 - 2016-09-02 19:26 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-21 19:34 - 2016-07-16 07:04 - 00262144 _____ C:\Windows\System32\config\BBI
2017-01-21 19:32 - 2016-09-02 19:14 - 07170152 _____ C:\Windows\System32\PerfStringBackup.INI
2017-01-21 19:32 - 2016-09-02 19:11 - 00000180 _____ C:\Windows\System32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-01-21 19:32 - 2016-09-02 19:10 - 00000000 ____D C:\Windows\System32\SleepStudy
2017-01-21 19:32 - 2016-07-16 23:05 - 03330114 _____ C:\Windows\System32\perfh015.dat
2017-01-21 19:32 - 2016-07-16 23:05 - 00977038 _____ C:\Windows\System32\perfc015.dat
2017-01-21 19:32 - 2016-04-27 19:44 - 00000000 __SHD C:\Users\bodek22\IntelGraphicsProfiles
2017-01-20 22:56 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\AppReadiness
2017-01-17 21:23 - 2016-10-20 01:07 - 00001114 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-01-15 16:06 - 2016-04-27 19:09 - 00008192 __RSH C:\BOOTSECT.BAK
2017-01-15 02:08 - 2016-10-18 20:12 - 00000000 ____D C:\temp
2017-01-15 01:36 - 2016-09-02 19:15 - 00000000 ____D C:\users\bodek22
2017-01-15 01:33 - 2016-09-03 19:36 - 00000000 ____D C:\Windows\Minidump
2017-01-15 01:33 - 2016-05-27 23:18 - 00000000 ____D C:\Program Files (x86)\IIS Express
2017-01-15 01:33 - 2016-05-01 12:35 - 580677079 _____ C:\Windows\MEMORY.DMP
2017-01-15 01:29 - 2016-11-17 00:32 - 00000000 ____D C:\Program Files (x86)\Sony Ericsson
2017-01-15 01:29 - 2016-05-16 22:44 - 00000000 ____D C:\Program Files (x86)\WinRAR
2017-01-15 01:29 - 2016-05-01 10:40 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-01-15 01:27 - 2016-10-20 23:00 - 00002596 _____ C:\Users\bodek22\Desktop\Google Chrome.lnk
2017-01-15 01:27 - 2016-09-27 18:25 - 00000000 ____D C:\Program Files (x86)\Astro Photography Tool - APT
2017-01-15 01:27 - 2016-05-16 18:57 - 00000000 ____D C:\Program Files (x86)\AstroHub
2017-01-15 01:27 - 2016-04-27 18:29 - 00000000 ____D C:\Program Files (x86)\Intel
2017-01-15 01:18 - 2016-05-15 18:51 - 00000000 ____D C:\Users\bodek22\AppData\Roaming\Skype
2017-01-15 01:17 - 2016-05-02 23:09 - 00026192 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2017-01-15 01:03 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-15 01:03 - 2016-05-02 18:28 - 00000000 ____D C:\Users\bodek22\AppData\Local\Packages
2017-01-14 15:15 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\LiveKernelReports
2017-01-13 00:29 - 2016-09-02 19:26 - 00004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-12 21:42 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\rescache
2017-01-12 17:28 - 2016-04-29 19:00 - 00000000 ____D C:\Users\bodek22\AppData\Roaming\Stellarium
2017-01-12 17:18 - 2016-07-16 12:45 - 00000000 ____D C:\Windows\INF
2017-01-12 02:12 - 2016-05-02 18:29 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-01-12 02:11 - 2016-12-18 19:33 - 00000000 ____D C:\Program Files (x86)\McAfee
2017-01-12 02:11 - 2016-10-20 00:54 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-12 02:11 - 2016-10-20 00:32 - 00000992 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-01-12 02:11 - 2016-09-02 19:10 - 02125424 _____ C:\Windows\System32\FNTCACHE.DAT
2017-01-12 02:10 - 2016-07-16 12:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2017-01-12 02:10 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\System32\WinBioPlugIns
2017-01-12 02:10 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\System32\oobe
2017-01-12 02:10 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\ShellExperiences
2017-01-12 02:10 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\Provisioning
2017-01-12 02:10 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-01-11 21:06 - 2016-07-16 12:36 - 00000000 ____D C:\Windows\CbsTemp
2017-01-11 21:01 - 2016-05-02 20:52 - 00000000 ____D C:\Windows\System32\MRT
2017-01-11 20:59 - 2016-05-02 20:52 - 135657872 ____C (Microsoft Corporation) C:\Windows\System32\MRT.exe
2017-01-11 00:52 - 2016-05-02 19:13 - 00000000 ____D C:\Users\bodek22\Documents\PHD2
2017-01-10 19:18 - 2016-04-27 22:18 - 00000000 ____D C:\Users\bodek22\AppData\Local\Arduino15
2017-01-10 18:06 - 2016-11-08 11:17 - 20630616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2017-01-10 18:06 - 2016-10-20 00:32 - 00004066 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-01-10 18:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-10 18:06 - 2016-07-16 12:47 - 00000000 ____D C:\Windows\System32\Macromed
2016-12-30 19:40 - 2016-05-23 22:03 - 00102912 ___SH C:\Users\bodek22\Desktop\Thumbs.db
2016-12-30 02:13 - 2016-09-07 23:05 - 00000000 ____D C:\Users\bodek22\Desktop\30s
2016-12-30 01:20 - 2016-05-28 04:53 - 00162304 ___SH C:\Users\bodek22\Downloads\Thumbs.db
2016-12-29 19:50 - 2016-07-16 07:04 - 00000000 ____D C:\Program Files\Common Files
2016-12-29 19:50 - 2016-05-01 10:40 - 00000000 ____D C:\ProgramData\Adobe
2016-12-27 23:21 - 2016-12-02 18:23 - 00000000 ____D C:\Users\bodek22\Downloads\IC1318_FIT
2016-12-27 21:38 - 2016-10-09 16:38 - 00000000 ____D C:\Users\bodek22\.gimp-2.8
2016-12-27 21:37 - 2016-12-18 20:09 - 00000000 ____D C:\Users\bodek22\AppData\Local\gtk-2.0
2016-12-26 11:49 - 2016-09-01 18:15 - 00000000 ____D C:\Users\bodek22\Desktop\ASTRO
2016-12-24 23:01 - 2016-04-27 18:18 - 00000000 ____D C:\Users\bodek22\AppData\Local\ElevatedDiagnostics
2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

Pliki do przeniesienia lub usunięcia:
====================
C:\ProgramData\igfxDH.dll
C:\ProgramData\service.exe


Niektóre pliki w TEMP:
====================
C:\Users\bodek22\AppData\Local\Temp\AECD.tmp.exe
C:\Users\bodek22\AppData\Local\Temp\CheckLang.dll
C:\Users\bodek22\AppData\Local\Temp\CtRunApp.dll
C:\Users\bodek22\AppData\Local\Temp\ICReinstall_QuickMark for PC r4876 3.8.0.exe


==================== Known DLLs (filtrowane) =========================


==================== Bamital & volsnap ======================

(Brak automatycznej naprawy dla plików które nie przeszły weryfikacji.)

C:\Windows\System32\winlogon.exe
[2017-01-11 17:56] - [2016-12-14 05:24] - 0673792 ____A (Microsoft Corporation) 917F081E2AB667C44F7D96DE1D16DFAE

C:\Windows\System32\wininit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0304240 ____A (Microsoft Corporation) 99A19C9A74E2F9820E501DCE77F84F70

C:\Windows\explorer.exe
[2016-12-09 18:48] - [2016-11-11 10:56] - 4673304 ____A (Microsoft Corporation) 4E10FB1A015B49AC68F76C1A3F4D9C0F

C:\Windows\SysWOW64\explorer.exe
[2016-12-09 18:49] - [2016-11-11 08:41] - 4311736 ____A (Microsoft Corporation) AF46710DDB8B0E304AA4FD2B940CABD8

C:\Windows\System32\svchost.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0044496 ____A (Microsoft Corporation) 36F670D89040709013F6A460176767EC

C:\Windows\SysWOW64\svchost.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0038792 ____A (Microsoft Corporation) 1F8434DD4907C832E6E90D6298EAB85B

C:\Windows\System32\services.exe
[2016-12-09 18:49] - [2016-11-11 10:51] - 0454592 ____A (Microsoft Corporation) 3C69CC28665854F1AAB4B4005005FA31

C:\Windows\System32\User32.dll
[2016-12-13 23:19] - [2016-12-09 11:10] - 1461200 ____A (Microsoft Corporation) C46EA86BF0E7C96235E9064CBAD6ED26

C:\Windows\SysWOW64\User32.dll
[2016-12-13 23:19] - [2016-12-09 10:52] - 1435896 ____A (Microsoft Corporation) 4BEC594A3D4AEAFAC400D88F7E328C7B

C:\Windows\System32\userinit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0033280 ____A (Microsoft Corporation) C1B1FFC800BE2F31EB2CF8CB40629C69

C:\Windows\SysWOW64\userinit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0027648 ____A (Microsoft Corporation) FA900E6CCCF0A429D5B720C6F0E2274B

C:\Windows\System32\rpcss.dll
[2016-07-16 12:42] - [2016-07-16 12:42] - 0888320 ____A (Microsoft Corporation) 7BD259FC59CF9C2AE1B979564B374CC6

C:\Windows\System32\dnsapi.dll
[2016-10-20 18:45] - [2016-09-15 18:30] - 0646136 ____A (Microsoft Corporation) 96B8A433F6407DE34850927C96C6CE9B

C:\Windows\SysWOW64\dnsapi.dll
[2016-10-20 18:45] - [2016-09-15 18:37] - 0496872 ____A (Microsoft Corporation) 227CFE3EDA82029AAC1C088A16297CD7

C:\Windows\System32\Drivers\volsnap.sys
[2016-07-16 12:42] - [2016-07-16 12:42] - 0391520 ____A (Microsoft Corporation) BF2546583BB75F01DDA60A7921DFB230


==================== Powiązania plików (filtrowane) =============


==================== Punkty Przywracania systemu =========================


==================== Statystyki pamięci ===========================

Procent pamięci w użyciu: 18%
Całkowita pamięć fizyczna: 3994.29 MB
Dostępna pamięć fizyczna: 3236.11 MB
Całkowita pamięć wirtualna: 3994.29 MB
Dostępna pamięć wirtualna: 3269.3 MB

==================== Dyski ================================

Drive c: () (Fixed) (Total:310.06 GB) (Free:181.25 GB) NTFS == & gt; [dysk z komponentami startowymi (pozyskano odczytując BCD)]
Drive d: () (Fixed) (Total:310.5 GB) (Free:278.31 GB) NTFS
Drive e: () (Fixed) (Total:310.51 GB) (Free:167.76 GB) NTFS
Drive f: () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS
Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.49 GB) NTFS

==================== MBR & Tablica partycji ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9BCC15A2)
Partition 1: (Active) - (Size=310.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=621 GB) - (Type=05)

LastRegBack: 2017-01-09 21:32

==================== Koniec FRST.txt ============================