Poslao: 06 Sep 2019 08:26
|
offline
- goust
- Elitni građanin
- Pridružio: 09 Apr 2005
- Poruke: 1799
|
Doneo mi drugar laptop da pokusam da ga ocistim od reklama i sličnih problema i da pokušam da mu osposobim wireless. Nisam bas siguran da wireless ima veze sa ciscenjem ali da pokusamo da ga za pocetak bar ocistimo od zlonamernih programa.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-09-2019
Ran by ComTech (administrator) on DESKTOP-M01V1L7 (ASUSTeK COMPUTER INC. X751SJ) (06-09-2019 08:59:55)
Running from C:\Users\ComTech\Desktop
Loaded Profiles: ComTech (Available Profiles: ComTech)
Platform: Windows 10 Pro Version 1809 17763.678 (X64) Language: English (United States)
Default browser not detected!
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ComTech\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11909.1001.7.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 0
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\Run: [uTorrent] => C:\Users\ComTech\AppData\Roaming\uTorrent\uTorrent.exe [1821424 2019-08-12] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7511384 2019-08-12] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\RunOnce: [Delete Cached Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\ComTech\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\Windows\system32\cmd.exe /q /c del /q "C:\Users\ComTech\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\RunOnce: [Uninstall 19.123.0624.0005\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ComTech\AppData\Local\Microsoft\OneDrive\19.123.0624.0005\amd64"
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\RunOnce: [Uninstall 19.123.0624.0005] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\ComTech\AppData\Local\Microsoft\OneDrive\19.123.0624.0005"
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\MountPoints2: {09a3f609-b8b7-11e8-be36-806e6f6e6963} - "F:\Bin\ASSETUP.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {180BC249-FF5A-4D79-B673-14F38AC1E647} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {39540AFE-FE58-404A-9C41-5EE61E03648E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {41F72436-7954-459F-A5B1-547AD91EA95C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4788E44D-9353-460E-AFA6-CD0AA3E236E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-23] (Google Inc -> Google LLC)
Task: {4EF703C1-B1B6-4DB7-8BDA-8A246758B467} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {50A99F51-C8D5-4E23-80CB-C3AA2DB49A8A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5D1FF572-D1AD-435C-A1CE-C966B2973DF9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {8323DD04-AD55-418A-AAC0-4AE5D49913E6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6FBDCB5-C4B2-40DF-96CB-5BFD9C72143E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB6A0D67-59F5-49E6-AA55-4791776F092D} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16409496 2015-11-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {DF053335-8A11-446E-8034-EA85C7453CA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-23] (Google Inc -> Google LLC)
Task: {E08DBB9E-68A6-416B-9396-B591E0D23EB7} - System32\Tasks\Opera scheduled Autoupdate 1565602290 => C:\Users\ComTech\AppData\Local\Programs\Opera\launcher.exe
Task: {E4A3EA6A-ACA5-42DC-A7D3-3FFCD887E8D6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{498dfdaa-f7ef-4715-b863-e2ae103cbf90}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{762fbfe2-c71c-4e2a-b373-2986f7fc751e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__190812
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [2019-07-23] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [2019-07-23] (Google Inc -> Google LLC)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default [2019-09-06]
CHR Extension: (Slides) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-23]
CHR Extension: (Docs) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-23]
CHR Extension: (Google Drive) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-23]
CHR Extension: (YouTube) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-26]
CHR Extension: (Sheets) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-23]
CHR Extension: (Google Docs Offline) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-26]
CHR Extension: (Avast Online Security) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-26]
CHR Extension: (Chrome Web Store Payments) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-23]
CHR Extension: (Gmail) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-23]
CHR Extension: (Chrome Media Router) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-10]
CHR Profile: C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-08-10]
CHR Profile: C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\System Profile [2019-08-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1392792 2015-10-29] (Intel(R) Software -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373712 2018-03-27] (Intel(R) pGFX -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5356848 2019-08-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25944 2019-08-12] (LAVASOFT SOFTWARE CANADA INC -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AsusTP; C:\Windows\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 athr; C:\Windows\System32\drivers\athw8x.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [601624 2015-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [52200 2015-10-29] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [260072 2015-10-29] (Intel(R) Software -> Intel Corporation)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [34232 2019-01-16] (ASUSTek Computer Inc. -> ASUS)
R3 igfxLP; C:\Windows\system32\DRIVERS\igdkmd64lp.sys [7408592 2018-03-27] (Intel(R) pGFX -> Intel Corporation)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-08-30] (Malwarebytes Corporation -> Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [943104 2016-12-20] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)
S3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [148280 2015-06-26] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [47496 2019-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344288 2019-08-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-06 08:59 - 2019-09-06 09:02 - 000018500 _____ C:\Users\ComTech\Desktop\FRST.txt
2019-09-06 08:59 - 2019-09-06 08:59 - 000000000 ____D C:\FRST
2019-09-06 08:57 - 2019-09-06 08:47 - 001615360 _____ (Farbar) C:\Users\ComTech\Desktop\FRST64.exe
2019-09-06 08:47 - 2019-09-06 08:47 - 001615360 _____ (Farbar) C:\Users\ComTech\Downloads\FRST64.exe
2019-08-30 10:56 - 2019-08-30 11:07 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-08-30 10:04 - 2019-08-30 10:04 - 000000000 ____D C:\Windows\System32\Tasks\S-1-5-21-2097477933-3821249489-41998351-1001
2019-08-30 08:29 - 2019-08-30 08:29 - 064333800 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270 (1).exe
2019-08-30 08:14 - 2019-08-30 08:14 - 000000000 ____D C:\Users\ComTech\AppData\Local\D3DSCache
2019-08-30 08:11 - 2019-08-30 08:11 - 000000000 ____D C:\Users\ComTech\AppData\Local\mbamtray
2019-08-30 08:11 - 2019-08-30 08:11 - 000000000 ____D C:\Users\ComTech\AppData\Local\mbam
2019-08-30 08:10 - 2019-08-30 08:10 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-08-30 08:10 - 2019-08-30 08:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-08-30 08:10 - 2019-08-30 08:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-08-30 08:10 - 2019-08-30 08:10 - 000000000 ____D C:\Program Files\Malwarebytes
2019-08-30 08:10 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-08-30 08:10 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-08-30 08:08 - 2019-08-30 08:09 - 064333800 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270.exe
2019-08-30 07:56 - 2019-08-30 07:56 - 016669112 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\Unconfirmed 113026.crdownload
2019-08-18 07:44 - 2019-03-28 08:35 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2019-08-18 07:44 - 2019-03-28 08:35 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2019-08-18 07:44 - 2019-03-28 08:35 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2019-08-18 07:44 - 2019-03-28 08:35 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2019-08-18 07:43 - 2019-03-28 11:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2019-08-18 07:43 - 2019-03-28 11:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2019-08-18 07:43 - 2019-03-28 11:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2019-08-18 07:43 - 2019-03-28 11:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2019-08-18 07:43 - 2019-03-28 08:35 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2019-08-18 07:43 - 2019-03-28 08:35 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2019-08-15 14:31 - 2019-08-15 14:33 - 000000000 ____D C:\Users\ComTech\Desktop\muzika
2019-08-15 14:19 - 2019-08-15 14:28 - 000000000 ____D C:\Users\ComTech\Desktop\slike
2019-08-14 15:04 - 2019-08-14 15:04 - 026808320 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 023453696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 020816896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 019011584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 012939776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 012244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 011724288 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 009941504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 008900608 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 007921664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 007871488 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 003614720 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002942976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002323688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002298880 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002177336 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002096128 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 15:04 - 2019-08-14 15:04 - 002017792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-08-14 15:04 - 2019-08-14 15:04 - 001290752 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 001224704 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000791040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000669184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000522104 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000495104 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000440320 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000360960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000345600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000317240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssecflt.sys
2019-08-14 15:04 - 2019-08-14 15:04 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-08-14 15:04 - 2019-08-14 15:04 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\p2pnetsh.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-08-14 15:04 - 2019-08-14 15:04 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\p2pnetsh.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000173568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2019-08-14 15:04 - 2019-08-14 15:04 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000092832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2019-08-14 15:04 - 2019-08-14 15:04 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000058882 _____ C:\Windows\system32\srms.dat
2019-08-14 15:04 - 2019-08-14 15:04 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2019-08-14 15:03 - 2019-08-14 15:04 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 022114960 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 009682744 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 006925312 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 006544552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 006441472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 006308016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 005764608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 005587968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 005086208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004737536 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004628992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004588544 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 004344832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004056576 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 003978240 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 003818632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 003656704 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 003635200 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 002926096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 002778760 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002700792 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002438576 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002278792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002073232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001966904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 001733120 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001715712 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001701880 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-08-14 15:03 - 2019-08-14 15:03 - 001668752 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001641400 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001485312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001483872 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001479184 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001477432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001472568 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001465984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001391096 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001344960 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-08-14 15:03 - 2019-08-14 15:03 - 001280000 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001278808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001267712 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001257472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001222160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001221528 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001182240 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001180464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001171968 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001160704 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000993792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000956416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000888832 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000833024 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000806024 _____ (Microsoft Corporation) C:\Windows\system32\BioIso.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000783184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000763392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000730112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000684544 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000678680 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000658944 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000616960 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000594944 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000586256 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000553784 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000535056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000532992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000523776 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000515440 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000447488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000425984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000398928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000385536 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000383504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000371200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\LicensingDiagSpp.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingDiagSpp.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000317952 _____ (Microsoft Corporation) C:\Windows\system32\ComposableShellProxyStub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShellCommonCommonProxyStub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000173216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000165888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComposableShellProxyStub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSoftwareInstallationClient.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000152080 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000121656 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000114128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\CoreShellExtFramework.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll
2019-08-14 15:02 - 2019-08-14 15:03 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 007884288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 007687784 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 005570968 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 004351656 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 003567104 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 003385856 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 003363856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 003335224 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 003333632 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002999808 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002842112 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002767160 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 002593544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002421760 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 002189312 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002031104 _____ C:\Windows\system32\rdpnano.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002022096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001892864 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001715000 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001674752 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001662264 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001466880 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001321784 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001294488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001260560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 001253688 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001232384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 001205248 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001054712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001048376 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001038336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001020416 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001004544 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000980992 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000900096 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000895792 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000889344 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000864568 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000853504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000850976 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000831288 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000799784 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000794040 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000788480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000771072 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000764416 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000758688 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000743224 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000732168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000652088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000649528 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000603280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000580024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000574464 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\ShellCommonCommonProxyStub.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000508968 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000482104 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000449576 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000444728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000396088 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000387832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000375752 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000349696 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000310072 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000305664 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000294512 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000281600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000278624 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000270848 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000253256 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000248120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000230848 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000212792 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000203064 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000200504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000193040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000189712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000152408 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000141736 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000125016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000120832 _____ (Microsoft Corporation) C:\Windows\system32\updatecsp.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000118480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pmem.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2019-08-14 15:02 - 2019-08-14 15:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\DiskSnapshot.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000087056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\WindowsUpdateElevatedInstaller.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000032784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000032568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\uefi.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\kdcpw.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2019-08-13 09:42 - 2019-08-13 09:42 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Google
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (4).exe
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (3).exe
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (2).exe
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (1).exe
2019-08-12 13:58 - 2019-08-12 13:58 - 000000000 ____D C:\Users\ComTech\AppData\Local\CrashDumps
2019-08-12 13:57 - 2019-08-12 13:57 - 000000000 ____D C:\Users\ComTech\AppData\Local\SKIDROW
2019-08-12 13:54 - 2019-08-12 13:54 - 000001623 _____ C:\Users\Public\Desktop\Serious Sam 3 BFE Deluxe Edition.lnk
2019-08-12 13:54 - 2019-08-12 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serious Sam 3 BFE Deluxe Edition
2019-08-12 11:33 - 2019-08-12 11:45 - 000000000 ____D C:\Users\ComTech\Downloads\Serious Sam 3 BFE Deluxe Edition - Jewel of the Nile [Revenants]
2019-08-12 11:32 - 2019-08-30 10:45 - 000003612 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1565602290
2019-08-12 11:32 - 2019-08-12 11:32 - 000000000 ____D C:\Users\ComTech\AppData\Local\Opera Software
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Lavasoft
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\Users\ComTech\AppData\Local\Lavasoft
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2019-08-12 11:30 - 2019-08-29 12:32 - 000000000 ____D C:\Users\ComTech\AppData\Local\BitTorrentHelper
2019-08-12 11:30 - 2019-08-12 11:30 - 000000000 ____D C:\ProgramData\Lavasoft
2019-08-12 11:29 - 2019-08-30 07:53 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\uTorrent
2019-08-12 11:29 - 2019-08-12 11:29 - 000000898 _____ C:\Users\ComTech\Desktop\µTorrent.lnk
2019-08-12 11:29 - 2019-08-12 11:29 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Opera Software
2019-08-12 11:28 - 2019-08-12 11:28 - 003162656 _____ (BitTorrent Inc.) C:\Users\ComTech\Downloads\uTorrent.exe
2019-08-07 08:48 - 2019-08-07 08:48 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\AndroidTbox
2019-08-07 08:38 - 2019-08-12 11:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2019-08-07 08:38 - 2019-08-07 08:41 - 000000000 ____D C:\ProgramData\Tencent
2019-08-07 08:37 - 2019-08-12 11:37 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Tencent
2019-08-07 08:36 - 2019-08-07 08:36 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2019-08-07 08:15 - 2019-08-07 08:16 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83.exe
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-06 08:59 - 2018-09-15 09:31 - 000000000 ____D C:\Windows\INF
2019-09-06 08:56 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\NDF
2019-09-06 08:54 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-06 08:44 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-06 08:44 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\AppReadiness
2019-09-06 08:39 - 2018-09-15 09:07 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2097477933-3821249489-41998351-1001
2019-09-06 08:39 - 2018-09-15 09:07 - 000000000 ___RD C:\Users\ComTech\OneDrive
2019-09-06 08:39 - 2018-09-15 08:57 - 000002369 _____ C:\Users\ComTech\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-08-30 11:07 - 2019-07-23 18:27 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-08-30 11:07 - 2019-07-23 18:16 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-08-30 11:07 - 2019-07-23 18:16 - 000000000 __SHD C:\Users\ComTech\IntelGraphicsProfiles
2019-08-30 11:06 - 2019-07-23 18:27 - 000000000 ____D C:\ProgramData\NVIDIA
2019-08-30 11:06 - 2018-09-15 08:57 - 000000000 ____D C:\Users\ComTech
2019-08-30 11:06 - 2018-09-15 08:15 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-30 11:06 - 2018-09-15 08:15 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-08-30 10:55 - 2019-07-23 19:08 - 000000000 ____D C:\ProgramData\AVAST Software
2019-08-30 10:54 - 2018-09-15 08:09 - 000524288 _____ C:\Windows\system32\config\BBI
2019-08-30 10:53 - 2018-09-15 08:16 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-08-30 10:45 - 2019-07-23 19:04 - 000003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-08-30 10:45 - 2019-07-23 19:04 - 000003122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-08-30 10:45 - 2019-07-23 18:20 - 000002346 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2019-08-30 10:45 - 2019-07-23 18:20 - 000002280 _____ C:\Windows\System32\Tasks\RTKCPL
2019-08-30 10:45 - 2019-07-23 18:13 - 000002866 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2019-08-30 09:26 - 2018-09-15 09:23 - 000000000 ____D C:\Windows\CbsTemp
2019-08-30 08:10 - 2018-09-15 09:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-08-28 15:21 - 2019-07-23 19:05 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 15:21 - 2019-07-23 19:05 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-18 08:10 - 2019-07-23 19:05 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\AIMP
2019-08-14 17:44 - 2018-09-15 08:30 - 000840852 _____ C:\Windows\system32\PerfStringBackup.INI
2019-08-14 17:39 - 2018-09-15 09:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-14 17:39 - 2018-09-15 09:03 - 000000000 ___RD C:\Users\ComTech\3D Objects
2019-08-14 16:41 - 2018-09-15 08:15 - 000434488 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-14 16:39 - 2018-09-15 09:33 - 000000000 ___SD C:\Windows\system32\UNP
2019-08-14 16:39 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\SysWOW64\oobe
2019-08-14 16:39 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\oobe
2019-08-14 16:38 - 2018-09-15 11:11 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-08-14 16:38 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\Provisioning
2019-08-14 16:38 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 16:38 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\bcastdvr
2019-08-14 15:13 - 2019-07-23 18:30 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 15:09 - 2019-07-23 18:30 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-13 17:42 - 2019-07-23 19:02 - 000000000 ____D C:\Users\ComTech\AppData\Local\PlaceholderTileLogoFolder
2019-08-10 09:02 - 2019-07-23 19:46 - 000000000 ____D C:\Users\ComTech\AppData\Local\Google
==================== FLock ================
2018-09-15 08:27 C:\Windows\CSC
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
https://www.mycity.rs/must-login.png
|
|
|
|
Poslao: 06 Sep 2019 21:28
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Za početak.
Preuzmi Malwarebytes Anti-Malware sa ovog ili ovog ili ovog linka i instaliraj aplikaciju.
Pokreni mb3-setup-consumer-{verzija}.exe i isprati uputstva za instalaciju programa. Nakon instalacije, klikni na Finish
Prilikom prvog pokretanja, program će prikazati prozor "dobrodošlice". Slobodno zatvori taj prozor.
Napomena: Premium funkcije programa su već aktivirane i važe 13 dana od trenutka instalacije. Premium funkcije možeš isključiti preko Settings > My Account tab podešavanja.
• Podešavanja skenera - u Settings, klikni na Protection tab. Ispod Scan Options sekcije, uključi "Scan for rootkits" opciju.
• Pripremi podešavanja za Threat Scan - u Dashboard , klikni na Scan Now dugme. MBAM će ažurirati bazu i započeti skeniranje.
Kada se skeniranje završi, ako je infekcija detektovana, obrati pažnju da je sve označeno, pa klikni na Remove Selected. Restartuj računar ako program upita za restart.
• Dostavi log: Pod Reports izaberi trenutni datum izveštaja Scan Report i potom klikni na View Report.
Izvezi log na Desktop;
- Klikni na Export dugme na dnu, pa onda izaberi 'Text file (*.txt)'
# U Save File dijalogu koji se pojavi, klikni na Desktop. U File name: polje, upiši "mbam" (bez navodnika) i klikni na Save.
- Pojaviće se poruka "Your file has been successfully exported", klikni Ok i zatvori prozor.
• U odgovoru prikači mbam.txt log koristeći "Prikači fajl" opciju.
|
|
|
|
|
Poslao: 07 Sep 2019 13:13
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Postavi mi nove FRST izvještaje.
|
|
|
|
Poslao: 08 Sep 2019 00:31
|
offline
- goust
- Elitni građanin
- Pridružio: 09 Apr 2005
- Poruke: 1799
|
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-09-2019
Ran by ComTech (administrator) on DESKTOP-M01V1L7 (ASUSTeK COMPUTER INC. X751SJ) (07-09-2019 13:32:02)
Running from C:\Users\ComTech\Desktop
Loaded Profiles: ComTech (Available Profiles: ComTech)
Platform: Windows 10 Pro Version 1809 17763.678 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\ComTech\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 0
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\Run: [uTorrent] => C:\Users\ComTech\AppData\Roaming\uTorrent\uTorrent.exe [1821424 2019-08-12] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7511384 2019-08-12] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\...\MountPoints2: {09a3f609-b8b7-11e8-be36-806e6f6e6963} - "F:\Bin\ASSETUP.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0AE25BC9-1191-48F9-84B9-B4CAD19F4610} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
Task: {180BC249-FF5A-4D79-B673-14F38AC1E647} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {4788E44D-9353-460E-AFA6-CD0AA3E236E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-23] (Google Inc -> Google LLC)
Task: {50A99F51-C8D5-4E23-80CB-C3AA2DB49A8A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5D1FF572-D1AD-435C-A1CE-C966B2973DF9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {8323DD04-AD55-418A-AAC0-4AE5D49913E6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {DB6A0D67-59F5-49E6-AA55-4791776F092D} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16409496 2015-11-20] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {DE56E7C9-C522-46F9-9356-DA9253DA759B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-09-07] (AVAST Software s.r.o. -> AVAST Software)
Task: {DF053335-8A11-446E-8034-EA85C7453CA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-23] (Google Inc -> Google LLC)
Task: {E08DBB9E-68A6-416B-9396-B591E0D23EB7} - System32\Tasks\Opera scheduled Autoupdate 1565602290 => C:\Users\ComTech\AppData\Local\Programs\Opera\launcher.exe
Task: {E4A3EA6A-ACA5-42DC-A7D3-3FFCD887E8D6} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-03-09] (ASUSTeK Computer Inc. -> AsusTek)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{762fbfe2-c71c-4e2a-b373-2986f7fc751e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b780e9ff-736a-42c0-8f11-ecd0b4d6030a}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2097477933-3821249489-41998351-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
SearchScopes: HKU\S-1-5-21-2097477933-3821249489-41998351-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [2019-07-23] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.13\npGoogleUpdate3.dll [2019-07-23] (Google Inc -> Google LLC)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default [2019-09-07]
CHR DownloadDir: C:\Users\ComTech\Desktop
CHR Extension: (Презентације) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-23]
CHR Extension: (Документи) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-23]
CHR Extension: (Google диск) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-23]
CHR Extension: (YouTube) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-26]
CHR Extension: (Табеле) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-23]
CHR Extension: (Google документи офлајн) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-26]
CHR Extension: (Avast Online Security) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-07-26]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-23]
CHR Extension: (Gmail) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-23]
CHR Extension: (Chrome Media Router) - C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-10]
CHR Profile: C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-08-10]
CHR Profile: C:\Users\ComTech\AppData\Local\Google\Chrome\User Data\System Profile [2019-08-10]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1392792 2015-10-29] (Intel(R) Software -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373712 2018-03-27] (Intel(R) pGFX -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5356848 2019-08-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25944 2019-08-12] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 LDrvSvc; C:\Program Files (x86)\OSTotoSoft\DriverTalent\LDrvSvc.dll [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AsusTP; C:\Windows\System32\drivers\AsusTP.sys [128024 2017-03-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37104 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [209552 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [263008 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [205848 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [61472 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [15488 2019-09-06] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [282768 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42288 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [169408 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112312 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [87944 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1030784 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [478096 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [387176 2019-09-06] (AVAST Software s.r.o. -> AVAST Software)
R3 athr; C:\Windows\System32\drivers\athw8x.sys [4233728 2018-09-15] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [601624 2015-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [52200 2015-10-29] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [260072 2015-10-29] (Intel(R) Software -> Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [34232 2019-01-16] (ASUSTek Computer Inc. -> ASUS)
R3 igfxLP; C:\Windows\system32\DRIVERS\igdkmd64lp.sys [7408592 2018-03-27] (Intel(R) pGFX -> Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [199768 2019-09-06] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [224408 2019-09-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73584 2019-09-07] (Malwarebytes Corporation -> Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [275232 2019-09-06] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [116112 2019-09-06] (Malwarebytes Corporation -> Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvam.inf_amd64_1aae4f19e68d0780\nvlddmkm.sys [17003280 2017-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1024848 2017-12-07] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Realsil Semiconductor Corporation)
S3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [148280 2015-06-26] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [47496 2019-08-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [344288 2019-08-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-30] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-07 13:32 - 2019-09-07 13:36 - 000020397 _____ C:\Users\ComTech\Desktop\FRST.txt
2019-09-07 13:31 - 2019-09-07 13:31 - 000000000 ____D C:\Users\ComTech\Desktop\New folder
2019-09-06 23:37 - 2019-09-06 23:37 - 000050683 _____ C:\Users\ComTech\Desktop\mbam.txt
2019-09-06 23:36 - 2019-09-07 13:29 - 000073584 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-09-06 23:35 - 2019-09-06 23:35 - 000224408 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-09-06 23:35 - 2019-09-06 23:35 - 000116112 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-09-06 22:43 - 2019-09-06 22:43 - 000275232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-09-06 22:43 - 2019-09-06 22:43 - 000199768 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-09-06 22:43 - 2019-09-06 22:43 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-09-06 22:43 - 2019-09-06 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-09-06 22:43 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-09-06 22:43 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-09-06 22:41 - 2019-09-06 22:41 - 066117064 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\mb3-setup-consumer-3.8.3.2965-1.0.613-1.0.12353.exe
2019-09-06 11:34 - 2019-09-06 11:34 - 000078863 _____ C:\Windows\dxdiag.txt
2019-09-06 11:33 - 2019-09-06 11:33 - 000000000 ____D C:\Users\Default\AppData\Local\D3DSCache
2019-09-06 11:33 - 2019-09-06 11:33 - 000000000 ____D C:\Users\Default User\AppData\Local\D3DSCache
2019-09-06 10:33 - 2019-09-06 10:33 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\AVAST Software
2019-09-06 10:32 - 2019-09-06 10:32 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2019-09-06 10:32 - 2019-09-06 10:32 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-09-06 10:31 - 2019-09-06 10:31 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-09-06 10:30 - 2019-09-06 10:31 - 000478096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-09-06 10:30 - 2019-09-06 10:30 - 000387176 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-09-06 10:30 - 2019-09-06 10:30 - 000003990 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-09-06 10:30 - 2019-09-06 10:30 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-09-06 10:30 - 2019-09-06 10:29 - 001030784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000363912 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-09-06 10:30 - 2019-09-06 10:29 - 000282768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000263008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000236024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000209552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000205848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000169408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000112312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000087944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000061472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000042288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000037104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2019-09-06 10:30 - 2019-09-06 10:29 - 000015488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2019-09-06 10:29 - 2019-09-06 10:29 - 000000000 ____D C:\Users\Public\Thunder Network
2019-09-06 10:29 - 2019-09-06 10:29 - 000000000 ____D C:\ProgramData\Thunder Network
2019-09-06 10:28 - 2019-09-06 10:28 - 000000000 ____D C:\ProgramData\PlugCache
2019-09-06 10:28 - 2019-09-06 10:28 - 000000000 ____D C:\Program Files\AVAST Software
2019-09-06 10:27 - 2019-09-06 23:34 - 000000000 ____D C:\Program Files (x86)\OSTotoSoft
2019-09-06 10:27 - 2019-09-06 10:27 - 000000000 ____D C:\Users\ComTech\Downloads\4mlf.CIS
2019-09-06 10:26 - 2019-09-06 10:27 - 043620952 _____ (OSToto Co., Ltd.) C:\Users\ComTech\Downloads\DriverTalent_setup7.1.27.76.exe
2019-09-06 10:20 - 2019-09-06 10:22 - 000529099 _____ C:\Users\ComTech\Downloads\openhardwaremonitor-v0.8.0-beta.zip
2019-09-06 10:13 - 2019-09-06 10:13 - 000000000 ____D C:\Program Files (x86)\Cisco
2019-09-06 10:12 - 2019-09-06 10:31 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-09-06 10:12 - 2019-09-06 10:31 - 000000000 ____D C:\Program Files (x86)\Realtek
2019-09-06 10:12 - 2016-08-31 10:22 - 001139416 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll
2019-09-06 10:11 - 2019-09-06 10:12 - 032028669 _____ C:\Users\ComTech\Downloads\WLAN_Realtek_Win10_64_VER2023408012016.zip
2019-09-06 09:38 - 2019-09-06 09:38 - 001274171 _____ C:\Users\ComTech\Downloads\20745233_24246235429984b4390e7d1453766e4bd144db14.cab
2019-09-06 09:36 - 2019-09-06 09:37 - 001274171 _____ C:\Users\ComTech\Downloads\20738705_c022d06f59e2c2d1d1df890e6c9f846d1834171b.cab
2019-09-06 09:09 - 2019-09-06 09:09 - 000000000 ____D C:\Users\ComTech\Documents\FeedbackHub
2019-09-06 09:09 - 2019-09-06 09:09 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\WinRAR
2019-09-06 08:59 - 2019-09-07 13:32 - 000000000 ____D C:\FRST
2019-09-06 08:57 - 2019-09-06 08:47 - 001615360 _____ (Farbar) C:\Users\ComTech\Desktop\FRST64.exe
2019-09-06 08:47 - 2019-09-06 08:47 - 001615360 _____ (Farbar) C:\Users\ComTech\Downloads\FRST64.exe
2019-08-30 10:04 - 2019-08-30 10:04 - 000000000 ____D C:\Windows\System32\Tasks\S-1-5-21-2097477933-3821249489-41998351-1001
2019-08-30 08:29 - 2019-08-30 08:29 - 064333800 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270 (1).exe
2019-08-30 08:14 - 2019-09-06 23:46 - 000000000 ____D C:\Users\ComTech\AppData\Local\D3DSCache
2019-08-30 08:11 - 2019-08-30 08:11 - 000000000 ____D C:\Users\ComTech\AppData\Local\mbamtray
2019-08-30 08:11 - 2019-08-30 08:11 - 000000000 ____D C:\Users\ComTech\AppData\Local\mbam
2019-08-30 08:10 - 2019-09-06 22:42 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-08-30 08:10 - 2019-08-30 08:10 - 000000000 ____D C:\Program Files\Malwarebytes
2019-08-30 08:08 - 2019-08-30 08:09 - 064333800 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270.exe
2019-08-30 07:56 - 2019-08-30 07:56 - 016669112 _____ (Malwarebytes ) C:\Users\ComTech\Downloads\Unconfirmed 113026.crdownload
2019-08-18 07:44 - 2019-03-28 08:35 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2019-08-18 07:44 - 2019-03-28 08:35 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2019-08-18 07:44 - 2019-03-28 08:35 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2019-08-18 07:44 - 2019-03-28 08:35 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2019-08-18 07:43 - 2019-03-28 11:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2019-08-18 07:43 - 2019-03-28 11:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2019-08-18 07:43 - 2019-03-28 11:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2019-08-18 07:43 - 2019-03-28 11:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2019-08-18 07:43 - 2019-03-28 08:35 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2019-08-18 07:43 - 2019-03-28 08:35 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2019-08-15 14:31 - 2019-08-15 14:33 - 000000000 ____D C:\Users\ComTech\Desktop\muzika
2019-08-15 14:19 - 2019-08-15 14:28 - 000000000 ____D C:\Users\ComTech\Desktop\slike
2019-08-14 15:04 - 2019-08-14 15:04 - 026808320 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 023453696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 020816896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 019011584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 012939776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 012244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 011724288 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 009941504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 008900608 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 007921664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 007871488 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 006065152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 003614720 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002942976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002323688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002298880 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002177336 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 002096128 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 15:04 - 2019-08-14 15:04 - 002017792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-08-14 15:04 - 2019-08-14 15:04 - 001290752 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 001224704 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000791040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000684032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000669184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000525824 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000522104 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncController.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000495104 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000440320 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000398848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000360960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000345600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000317240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssecflt.sys
2019-08-14 15:04 - 2019-08-14 15:04 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000228352 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000219136 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-08-14 15:04 - 2019-08-14 15:04 - 000205824 _____ (Microsoft Corporation) C:\Windows\system32\p2pnetsh.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-08-14 15:04 - 2019-08-14 15:04 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\p2pnetsh.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000173568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2019-08-14 15:04 - 2019-08-14 15:04 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2019-08-14 15:04 - 2019-08-14 15:04 - 000122368 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000092832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys
2019-08-14 15:04 - 2019-08-14 15:04 - 000078848 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 15:04 - 2019-08-14 15:04 - 000058882 _____ C:\Windows\system32\srms.dat
2019-08-14 15:04 - 2019-08-14 15:04 - 000058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offreg.dll
2019-08-14 15:03 - 2019-08-14 15:04 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 022114960 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 009682744 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 006925312 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 006544552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 006441472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 006308016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 005764608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 005587968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 005086208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004737536 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004628992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004588544 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 004344832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 004056576 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 003978240 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 003818632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 003656704 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 003635200 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 002926096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 002778760 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002700792 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002438576 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002346496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002278792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 002073232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001966904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 001733120 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001715712 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001711104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001701880 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-08-14 15:03 - 2019-08-14 15:03 - 001668752 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001641400 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001506304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001485312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001483872 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001479184 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001477432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxPackaging.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001472568 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001465984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001391096 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001344960 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-08-14 15:03 - 2019-08-14 15:03 - 001280000 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001278808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001267712 _____ (Microsoft Corporation) C:\Windows\system32\APMon.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001257472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001222160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001221528 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001182240 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 001180464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001171968 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 001160704 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000993792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000956416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000888832 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000882688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000833024 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000806024 _____ (Microsoft Corporation) C:\Windows\system32\BioIso.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000783184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000763392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000730112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FlightSettings.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000684544 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000678680 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000658944 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrSvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000616960 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000594944 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000586256 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000553784 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000535056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000532992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000523776 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000515440 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\newdev.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000447488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000425984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000398928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000385536 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000383504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000378880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Lights.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000371200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Diagnostics.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000363520 _____ (Microsoft Corporation) C:\Windows\system32\LicensingDiagSpp.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingDiagSpp.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000317952 _____ (Microsoft Corporation) C:\Windows\system32\ComposableShellProxyStub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Diagnostics.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000284672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000264704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Lights.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000262336 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShellCommonCommonProxyStub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.SystemManagement.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000201528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000173216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2019-08-14 15:03 - 2019-08-14 15:03 - 000165888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComposableShellProxyStub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSoftwareInstallationClient.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000152080 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000125440 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000121656 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000114128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\CoreShellExtFramework.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000089600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvsetup.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-08-14 15:03 - 2019-08-14 15:03 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hmkd.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2019-08-14 15:03 - 2019-08-14 15:03 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll
2019-08-14 15:02 - 2019-08-14 15:03 - 001057792 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 007884288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 007687784 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 005570968 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 004351656 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 003567104 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 003385856 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 003363856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 003335224 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 003333632 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002999808 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002842112 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002767160 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 002593544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002421760 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 002189312 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002031104 _____ C:\Windows\system32\rdpnano.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 002022096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001892864 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001715000 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001674752 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001662264 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001466880 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001321784 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001294488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001260560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 001253688 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001232384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 001205248 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001054712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001048376 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 001038336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001020416 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 001004544 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000980992 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000900096 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000895792 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000889344 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000864568 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000853504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000850976 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000831288 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000816640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000799784 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000794040 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000788480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000771072 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000764416 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000758688 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000743224 _____ (Microsoft Corporation) C:\Windows\system32\AppVReporting.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000732168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000680184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000652088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000649528 _____ (Microsoft Corporation) C:\Windows\system32\AppVPublishing.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000603280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000580024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000574464 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\ShellCommonCommonProxyStub.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000508968 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000482104 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000449576 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000444728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000396088 _____ (Microsoft Corporation) C:\Windows\system32\AppVScripting.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000394240 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000387832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000375752 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000349696 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000346624 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.SystemManagement.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000310072 _____ (Microsoft Corporation) C:\Windows\system32\computestorage.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000305664 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000294512 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000281600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000278624 _____ (Microsoft Corporation) C:\Windows\system32\LsaIso.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000270848 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000253256 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000248120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000241664 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000230848 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountTokenProvider.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000212792 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000203064 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000200504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SIUF.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000193040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000189712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000178176 _____ (Microsoft Corporation) C:\Windows\system32\appsruprov.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000152408 _____ (Microsoft Corporation) C:\Windows\system32\KerbClientShared.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000141736 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scmbus.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000125016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KerbClientShared.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000120832 _____ (Microsoft Corporation) C:\Windows\system32\updatecsp.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000118480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pmem.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\drvsetup.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000104248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2019-08-14 15:02 - 2019-08-14 15:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\DiskSnapshot.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000087056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhvr.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dtdump.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000071168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\hmkd.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000056320 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\WindowsUpdateElevatedInstaller.exe
2019-08-14 15:02 - 2019-08-14 15:02 - 000032784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000032568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\uefi.sys
2019-08-14 15:02 - 2019-08-14 15:02 - 000027136 _____ (Microsoft Corporation) C:\Windows\system32\kdcpw.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2019-08-14 15:02 - 2019-08-14 15:02 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2019-08-13 09:42 - 2019-08-13 09:42 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Google
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (4).exe
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (3).exe
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (2).exe
2019-08-12 14:28 - 2019-08-12 14:28 - 009700600 _____ (Tencent) C:\Users\ComTech\Downloads\com.tencent.ig$900202886$B4329CA165428F5C30BDBDB3F3C4D4C1$_SpecialPackage_83 (1).exe
2019-08-12 13:58 - 2019-09-06 10:28 - 000000000 ____D C:\Users\ComTech\AppData\Local\CrashDumps
2019-08-12 13:57 - 2019-08-12 13:57 - 000000000 ____D C:\Users\ComTech\AppData\Local\SKIDROW
2019-08-12 13:54 - 2019-08-12 13:54 - 000001623 _____ C:\Users\Public\Desktop\Serious Sam 3 BFE Deluxe Edition.lnk
2019-08-12 13:54 - 2019-08-12 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serious Sam 3 BFE Deluxe Edition
2019-08-12 11:33 - 2019-08-12 11:45 - 000000000 ____D C:\Users\ComTech\Downloads\Serious Sam 3 BFE Deluxe Edition - Jewel of the Nile [Revenants]
2019-08-12 11:32 - 2019-08-30 10:45 - 000003612 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1565602290
2019-08-12 11:32 - 2019-08-12 11:32 - 000000000 ____D C:\Users\ComTech\AppData\Local\Opera Software
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Lavasoft
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\Users\ComTech\AppData\Local\Lavasoft
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2019-08-12 11:31 - 2019-08-12 11:31 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2019-08-12 11:30 - 2019-08-29 12:32 - 000000000 ____D C:\Users\ComTech\AppData\Local\BitTorrentHelper
2019-08-12 11:30 - 2019-08-12 11:30 - 000000000 ____D C:\ProgramData\Lavasoft
2019-08-12 11:29 - 2019-08-30 07:53 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\uTorrent
2019-08-12 11:29 - 2019-08-12 11:29 - 000000898 _____ C:\Users\ComTech\Desktop\µTorrent.lnk
2019-08-12 11:29 - 2019-08-12 11:29 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Opera Software
2019-08-12 11:28 - 2019-08-12 11:28 - 003162656 _____ (BitTorrent Inc.) C:\Users\ComTech\Downloads\uTorrent.exe
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-07 13:37 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-07 13:29 - 2019-07-23 18:27 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-09-07 13:27 - 2019-07-23 18:27 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-07 13:27 - 2019-07-23 18:16 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-09-07 13:27 - 2019-07-23 18:16 - 000000000 __SHD C:\Users\ComTech\IntelGraphicsProfiles
2019-09-07 13:26 - 2018-09-15 08:15 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-07 13:26 - 2018-09-15 08:15 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-09-07 13:22 - 2019-03-19 09:30 - 000000000 ___HD C:\$WINDOWS.~BT
2019-09-07 12:34 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\AppReadiness
2019-09-07 12:26 - 2018-09-15 08:57 - 000000000 ____D C:\Users\ComTech
2019-09-07 10:03 - 2018-09-15 09:31 - 000000000 ____D C:\Windows\INF
2019-09-07 10:03 - 2018-09-15 08:30 - 000840852 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-07 00:27 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\NDF
2019-09-06 23:16 - 2018-09-15 09:14 - 000000000 ____D C:\Windows\Panther
2019-09-06 22:43 - 2018-09-15 09:33 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-09-06 10:28 - 2019-07-23 19:08 - 000000000 ____D C:\ProgramData\AVAST Software
2019-09-06 10:14 - 2018-09-15 08:09 - 000524288 _____ C:\Windows\system32\config\BBI
2019-09-06 08:44 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-06 08:39 - 2018-09-15 09:07 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2097477933-3821249489-41998351-1001
2019-09-06 08:39 - 2018-09-15 09:07 - 000000000 ___RD C:\Users\ComTech\OneDrive
2019-09-06 08:39 - 2018-09-15 08:57 - 000002369 _____ C:\Users\ComTech\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-08-30 10:53 - 2018-09-15 08:16 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-08-30 10:45 - 2019-07-23 19:04 - 000003346 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-08-30 10:45 - 2019-07-23 19:04 - 000003122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-08-30 10:45 - 2019-07-23 18:20 - 000002346 _____ C:\Windows\System32\Tasks\RtHDVBg_ListenToDevice
2019-08-30 10:45 - 2019-07-23 18:20 - 000002280 _____ C:\Windows\System32\Tasks\RTKCPL
2019-08-30 10:45 - 2019-07-23 18:13 - 000002866 _____ C:\Windows\System32\Tasks\ASUS Smart Gesture Launcher
2019-08-30 09:26 - 2018-09-15 09:23 - 000000000 ____D C:\Windows\CbsTemp
2019-08-28 15:21 - 2019-07-23 19:05 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 15:21 - 2019-07-23 19:05 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-18 08:10 - 2019-07-23 19:05 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\AIMP
2019-08-14 17:39 - 2018-09-15 09:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-14 17:39 - 2018-09-15 09:03 - 000000000 ___RD C:\Users\ComTech\3D Objects
2019-08-14 16:41 - 2018-09-15 08:15 - 000434488 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-14 16:39 - 2018-09-15 09:33 - 000000000 ___SD C:\Windows\system32\UNP
2019-08-14 16:39 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\SysWOW64\oobe
2019-08-14 16:39 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\system32\oobe
2019-08-14 16:38 - 2018-09-15 11:11 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-08-14 16:38 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\Provisioning
2019-08-14 16:38 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 16:38 - 2018-09-15 09:33 - 000000000 ____D C:\Windows\bcastdvr
2019-08-14 15:13 - 2019-07-23 18:30 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 15:09 - 2019-07-23 18:30 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-13 17:42 - 2019-07-23 19:02 - 000000000 ____D C:\Users\ComTech\AppData\Local\PlaceholderTileLogoFolder
2019-08-12 11:37 - 2019-08-07 08:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2019-08-12 11:37 - 2019-08-07 08:37 - 000000000 ____D C:\Users\ComTech\AppData\Roaming\Tencent
2019-08-10 09:02 - 2019-07-23 19:46 - 000000000 ____D C:\Users\ComTech\AppData\Local\Google
==================== FLock ================
2018-09-15 08:27 C:\Windows\CSC
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
https://www.mycity.rs/must-login.png
|
|
|
|
Poslao: 08 Sep 2019 14:43
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
U izvještajima ne vidim ništa sporno. Možeš obrisati C:\FRST
|
|
|
|
Poslao: 09 Sep 2019 11:20
|
offline
- goust
- Elitni građanin
- Pridružio: 09 Apr 2005
- Poruke: 1799
|
Nema više iskačućih prozora i čini mi se da brže radi. Obrisao sam C:\FRST
Hvala veliko.
|
|
|
|