Chybička se vloudila.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Kontrola logu: info.zip Vyřešeno
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu: info.zip
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu: info.zip
Posílám obal logy:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-10-2016
Ran by Domov (administrator) on DOMOV-PC (09-10-2016 20:52:26)
Running from C:\Users\Domov\Desktop
Loaded Profiles: Domov & (Available Profiles: Domov & DefaultAppPool)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Windows\PLFSetI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD App Manager\WDAppManager.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD App Manager\Plugins\WD Sync\App\WDSyncService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.82_none_ffc91b1349d62be7\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7399968 2009-04-11] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-04-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [487424 2009-08-19] (Acer Incorporated)
HKLM\...\Run: [BackupManagerTray] => C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [249600 2009-04-01] (NewTech Infosystems, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-02-12] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1194504 2009-08-27] (Dritek System Inc.)
HKLM\...\Run: [ODDPwr] => C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [186912 2009-09-04] (Acer Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-02] (AVAST Software)
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [222776 2011-04-12] (Software602)
HKLM\...\Run: [WDAppManager] => C:\Program Files\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-15] (Western Digital Technologies, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [ProductReg] => C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [NETGEARGenie] => C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe [603392 2015-08-26] (NETGEAR Inc.)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ProductReg] => C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [NETGEARGenie] => C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe [603392 2015-08-26] (NETGEAR Inc.)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [515072 2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-04-02] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk [2015-11-29]
ShortcutTarget: Acer VCM.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{10fafb6d-c08d-4bf5-ac21-787996885dd4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{79b61bfe-c292-4972-b800-8258caa5bca3}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-446455070-1593252463-3502011289-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-02] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll [2008-07-02] (Skype Technologies)
FireFox:
========
FF DefaultProfile: 7pvkinw7.default
FF ProfilePath: C:\Users\Domov\AppData\Roaming\Mozilla\Firefox\Profiles\7pvkinw7.default [2016-10-09]
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home
FF Extension: (Firefox Hotfix) - C:\Users\Domov\AppData\Roaming\Mozilla\Firefox\Profiles\7pvkinw7.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-02]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2015-11-18] (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google, Inc.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2011-03-15] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-02]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [84520 2011-03-14] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-02] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [688128 2009-08-19] (Acer Incorporated) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195840 2015-08-26] (NETGEAR)
R2 NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [54528 2009-04-01] (NewTech Infosystems, Inc.)
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [125472 2009-09-04] (Acer Incorporated)
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [237568 2009-02-05] (Acer Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-04-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-04-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [91232 2016-04-02] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-04-02] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [816304 2016-04-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [447848 2016-04-02] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [127432 2016-04-02] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224616 2016-08-14] (AVAST Software)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-10-09] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2016-07-16] (Intel Corporation)
R2 NPF; C:\Windows\system32\drivers\npf.sys [35088 2015-12-02] (CACE Technologies, Inc.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [192944 2015-12-08] (DEVGURU Co., LTD.(www.devguru.co.kr))
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-10-05] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-09 20:52 - 2016-10-09 20:54 - 00017467 _____ C:\Users\Domov\Desktop\FRST.txt
2016-10-09 20:52 - 2016-10-09 20:52 - 00000000 ____D C:\FRST
2016-10-09 20:50 - 2016-10-09 20:52 - 01755136 _____ (Farbar) C:\Users\Domov\Desktop\FRST.exe
2016-10-09 20:42 - 2016-10-09 20:42 - 00000000 ____D C:\Users\Domov\AppData\Local\GHISLER
2016-10-06 18:13 - 2016-10-06 18:13 - 00000000 ____D C:\Users\Domov\AppData\Local\NetworkTiles
2016-10-05 22:12 - 2016-10-05 21:34 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-10-05 22:04 - 2016-10-05 22:15 - 00000000 ____D C:\zoek
2016-10-05 20:25 - 2016-10-05 22:06 - 00000000 ____D C:\zoek_backup
2016-10-05 00:07 - 2016-10-05 00:07 - 00000000 ____D C:\ProgramData\Sophos
2016-10-05 00:07 - 2016-10-05 00:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2016-10-05 00:07 - 2016-10-05 00:07 - 00000000 ____D C:\Program Files\Sophos
2016-10-05 00:04 - 2016-10-07 11:15 - 00000000 ____D C:\Users\Domov\AppData\Local\CrashDumps
2016-10-04 23:04 - 2016-10-05 20:31 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-10-04 23:03 - 2016-10-04 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-10-04 23:03 - 2016-10-04 23:03 - 00000000 ____D C:\Program Files\RogueKiller
2016-10-04 23:02 - 2016-10-04 23:02 - 00000000 ____D C:\ProgramData\RogueKiller
2016-10-04 00:22 - 2016-10-05 22:29 - 00000000 ____D C:\Users\Domov\Desktop\Cisteni
2016-10-03 20:26 - 2016-10-03 20:26 - 00001658 _____ C:\Users\Domov\Desktop\My Cloud.lnk
2016-10-03 20:26 - 2016-10-03 20:26 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-10-03 20:26 - 2016-10-03 20:26 - 00000000 ___SD C:\Users\Domov\My Cloud
2016-10-03 20:26 - 2016-10-03 20:26 - 00000000 ____H C:\Users\Domov\Documents\.WUQ260600816.wdsync
2016-10-03 20:26 - 2016-04-15 15:33 - 00041772 _____ C:\Users\Domov\Documents\.Nápověda WD Sync.html
2016-10-03 20:23 - 2016-10-03 20:23 - 00001188 _____ C:\Users\Public\Desktop\WD My Cloud.lnk
2016-10-03 20:22 - 2016-10-03 20:22 - 00000206 _____ C:\Users\Domov\Desktop\Školicí středisko k úložišti WD My Cloud EX2.url
2016-10-03 20:22 - 2016-10-03 20:22 - 00000157 _____ C:\Users\Domov\Desktop\Veřejná složka úložiště WD My Cloud EX2.url
2016-10-03 20:22 - 2016-10-03 20:22 - 00000153 _____ C:\Users\Domov\Desktop\Ovládací panel úložiště WD My Cloud EX2.url
2016-10-03 20:22 - 2016-10-03 20:22 - 00000000 ____D C:\Users\Domov\AppData\Roaming\com.wd.WDMyCloud
2016-10-02 23:57 - 2016-10-09 20:40 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-02 23:55 - 2016-10-02 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-10-02 23:55 - 2016-10-02 23:59 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-10-02 23:55 - 2016-10-02 23:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-02 23:55 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-02 23:55 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-02 23:55 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-02 23:44 - 2016-10-04 22:20 - 00000000 ____D C:\AdwCleaner
2016-10-02 22:47 - 2016-10-02 22:47 - 00000000 ____D C:\Users\Domov\AppData\Local\ESET
2016-10-02 12:55 - 2016-10-02 21:13 - 00000000 ____D C:\Users\Domov\AppData\LocalLow\uTorrent
2016-10-01 19:36 - 2016-10-01 19:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-10-01 19:31 - 2016-10-01 19:32 - 00000000 ____D C:\Windows.old
2016-10-01 19:29 - 2016-10-01 19:29 - 20965248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 07625728 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 07467520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06534656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06015840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 04970224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03716096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03595264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-10-01 19:29 - 2016-10-01 19:29 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02254848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-10-01 19:29 - 2016-10-01 19:29 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01968480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01957216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 01938432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01842688 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01774080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01724592 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01583112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01144600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01072280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-01 19:29 - 2016-10-01 19:29 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00955528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00950112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00946272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00892008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-01 19:29 - 2016-10-01 19:29 - 00868704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-10-01 19:29 - 2016-10-01 19:29 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00834128 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00823808 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00798504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00784576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00781664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00711168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00557920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-01 19:29 - 2016-10-01 19:29 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00399712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00356704 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00356704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00315736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00292184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-01 19:29 - 2016-10-01 19:29 - 00290272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00279416 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-01 19:29 - 2016-10-01 19:29 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-10-01 19:29 - 2016-10-01 19:29 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00127168 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00125792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00092000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-10-2016
Ran by Domov (administrator) on DOMOV-PC (09-10-2016 20:52:26)
Running from C:\Users\Domov\Desktop
Loaded Profiles: Domov & (Available Profiles: Domov & DefaultAppPool)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Malwarebytes) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
() C:\Windows\PLFSetI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Software602) C:\Program Files\Software602\Print2PDF\Print2PDF.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD App Manager\WDAppManager.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD App Manager\Plugins\WD Sync\App\WDSyncService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer PowerSmart Manager\ePowerEvent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.82_none_ffc91b1349d62be7\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7399968 2009-04-11] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-04-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe [487424 2009-08-19] (Acer Incorporated)
HKLM\...\Run: [BackupManagerTray] => C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [249600 2009-04-01] (NewTech Infosystems, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-02-12] (Intel Corporation)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1194504 2009-08-27] (Dritek System Inc.)
HKLM\...\Run: [ODDPwr] => C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [186912 2009-09-04] (Acer Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-02] (AVAST Software)
HKLM\...\Run: [Print2PDF Print Monitor] => C:\Program Files\Software602\Print2PDF\Print2PDF.exe [222776 2011-04-12] (Software602)
HKLM\...\Run: [WDAppManager] => C:\Program Files\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-15] (Western Digital Technologies, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [ProductReg] => C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [NETGEARGenie] => C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe [603392 2015-08-26] (NETGEAR Inc.)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ProductReg] => C:\Program Files\Acer\WR_PopUp\ProductReg.exe [135168 2008-11-17] (Acer)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [NETGEARGenie] => C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe [603392 2015-08-26] (NETGEAR Inc.)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [515072 2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-04-02] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk [2015-11-29]
ShortcutTarget: Acer VCM.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{10fafb6d-c08d-4bf5-ac21-787996885dd4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{79b61bfe-c292-4972-b800-8258caa5bca3}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://global.acer.com
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKU\S-1-5-21-446455070-1593252463-3502011289-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-02] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-09] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll [2008-07-02] (Skype Technologies)
FireFox:
========
FF DefaultProfile: 7pvkinw7.default
FF ProfilePath: C:\Users\Domov\AppData\Roaming\Mozilla\Firefox\Profiles\7pvkinw7.default [2016-10-09]
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home
FF Extension: (Firefox Hotfix) - C:\Users\Domov\AppData\Roaming\Mozilla\Firefox\Profiles\7pvkinw7.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-02]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2015-11-18] (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google, Inc.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2011-03-15] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-02]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [84520 2011-03-14] (Software602 a.s.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-02] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [688128 2009-08-19] (Acer Incorporated) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195840 2015-08-26] (NETGEAR)
R2 NTI IScheduleSvc; C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [54528 2009-04-01] (NewTech Infosystems, Inc.)
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [125472 2009-09-04] (Acer Incorporated)
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [237568 2009-02-05] (Acer Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [32792 2016-04-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [91168 2016-04-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [91232 2016-04-02] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [58776 2016-04-02] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [816304 2016-04-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [447848 2016-04-02] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [127432 2016-04-02] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224616 2016-08-14] (AVAST Software)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-10-09] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2016-07-16] (Intel Corporation)
R2 NPF; C:\Windows\system32\drivers\npf.sys [35088 2015-12-02] (CACE Technologies, Inc.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [192944 2015-12-08] (DEVGURU Co., LTD.(www.devguru.co.kr))
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-10-05] ()
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-09 20:52 - 2016-10-09 20:54 - 00017467 _____ C:\Users\Domov\Desktop\FRST.txt
2016-10-09 20:52 - 2016-10-09 20:52 - 00000000 ____D C:\FRST
2016-10-09 20:50 - 2016-10-09 20:52 - 01755136 _____ (Farbar) C:\Users\Domov\Desktop\FRST.exe
2016-10-09 20:42 - 2016-10-09 20:42 - 00000000 ____D C:\Users\Domov\AppData\Local\GHISLER
2016-10-06 18:13 - 2016-10-06 18:13 - 00000000 ____D C:\Users\Domov\AppData\Local\NetworkTiles
2016-10-05 22:12 - 2016-10-05 21:34 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-10-05 22:04 - 2016-10-05 22:15 - 00000000 ____D C:\zoek
2016-10-05 20:25 - 2016-10-05 22:06 - 00000000 ____D C:\zoek_backup
2016-10-05 00:07 - 2016-10-05 00:07 - 00000000 ____D C:\ProgramData\Sophos
2016-10-05 00:07 - 2016-10-05 00:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2016-10-05 00:07 - 2016-10-05 00:07 - 00000000 ____D C:\Program Files\Sophos
2016-10-05 00:04 - 2016-10-07 11:15 - 00000000 ____D C:\Users\Domov\AppData\Local\CrashDumps
2016-10-04 23:04 - 2016-10-05 20:31 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-10-04 23:03 - 2016-10-04 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2016-10-04 23:03 - 2016-10-04 23:03 - 00000000 ____D C:\Program Files\RogueKiller
2016-10-04 23:02 - 2016-10-04 23:02 - 00000000 ____D C:\ProgramData\RogueKiller
2016-10-04 00:22 - 2016-10-05 22:29 - 00000000 ____D C:\Users\Domov\Desktop\Cisteni
2016-10-03 20:26 - 2016-10-03 20:26 - 00001658 _____ C:\Users\Domov\Desktop\My Cloud.lnk
2016-10-03 20:26 - 2016-10-03 20:26 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-10-03 20:26 - 2016-10-03 20:26 - 00000000 ___SD C:\Users\Domov\My Cloud
2016-10-03 20:26 - 2016-10-03 20:26 - 00000000 ____H C:\Users\Domov\Documents\.WUQ260600816.wdsync
2016-10-03 20:26 - 2016-04-15 15:33 - 00041772 _____ C:\Users\Domov\Documents\.Nápověda WD Sync.html
2016-10-03 20:23 - 2016-10-03 20:23 - 00001188 _____ C:\Users\Public\Desktop\WD My Cloud.lnk
2016-10-03 20:22 - 2016-10-03 20:22 - 00000206 _____ C:\Users\Domov\Desktop\Školicí středisko k úložišti WD My Cloud EX2.url
2016-10-03 20:22 - 2016-10-03 20:22 - 00000157 _____ C:\Users\Domov\Desktop\Veřejná složka úložiště WD My Cloud EX2.url
2016-10-03 20:22 - 2016-10-03 20:22 - 00000153 _____ C:\Users\Domov\Desktop\Ovládací panel úložiště WD My Cloud EX2.url
2016-10-03 20:22 - 2016-10-03 20:22 - 00000000 ____D C:\Users\Domov\AppData\Roaming\com.wd.WDMyCloud
2016-10-02 23:57 - 2016-10-09 20:40 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-02 23:55 - 2016-10-02 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-10-02 23:55 - 2016-10-02 23:59 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-10-02 23:55 - 2016-10-02 23:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-02 23:55 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-02 23:55 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-02 23:55 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-02 23:44 - 2016-10-04 22:20 - 00000000 ____D C:\AdwCleaner
2016-10-02 22:47 - 2016-10-02 22:47 - 00000000 ____D C:\Users\Domov\AppData\Local\ESET
2016-10-02 12:55 - 2016-10-02 21:13 - 00000000 ____D C:\Users\Domov\AppData\LocalLow\uTorrent
2016-10-01 19:36 - 2016-10-01 19:09 - 00000000 ___DC C:\WINDOWS\Panther
2016-10-01 19:31 - 2016-10-01 19:32 - 00000000 ____D C:\Windows.old
2016-10-01 19:29 - 2016-10-01 19:29 - 20965248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 07625728 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 07467520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06534656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06015840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 04970224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03716096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03595264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-10-01 19:29 - 2016-10-01 19:29 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02254848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-10-01 19:29 - 2016-10-01 19:29 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01968480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01957216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 01938432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01842688 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01774080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01724592 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01583112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01144600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01072280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-01 19:29 - 2016-10-01 19:29 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00955528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00950112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00946272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00892008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-01 19:29 - 2016-10-01 19:29 - 00868704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-10-01 19:29 - 2016-10-01 19:29 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00834128 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00823808 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00798504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00784576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00781664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00711168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00557920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-01 19:29 - 2016-10-01 19:29 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00399712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00356704 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00356704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00315736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00292184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-01 19:29 - 2016-10-01 19:29 - 00290272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00279416 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-01 19:29 - 2016-10-01 19:29 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-10-01 19:29 - 2016-10-01 19:29 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00127168 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00125792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00092000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
Re: Kontrola logu: info.zip
2016-10-01 19:29 - 2016-10-01 19:29 - 00043944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00021344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-10-01 19:29 - 2016-10-01 19:29 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 06654616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 05683712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 04557824 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 01885696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01321472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01276608 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01122304 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01112576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01015648 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00702416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00589144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00583648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00581672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00570720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00564488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00470368 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00461312 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00432328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00340320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00320152 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00265728 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00231776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00229888 _____ C:\WINDOWS\system32\wc_storage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00170448 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00145248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00094528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00093984 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00054624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00036704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-10-01 19:23 - 2016-07-15 19:45 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-10-01 19:23 - 2016-07-15 19:45 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-10-01 19:23 - 2016-07-15 19:29 - 05489664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-10-01 19:21 - 2016-10-01 19:21 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\inetpub
2016-10-01 19:19 - 2016-10-01 18:53 - 00000000 ____D C:\Program Files\MSBuild
2016-10-01 19:19 - 2016-10-01 18:48 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-10-01 19:18 - 2016-10-01 19:18 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-10-01 19:18 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-10-01 19:18 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-10-01 19:18 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-01 19:17 - 2016-10-01 19:17 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-10-01 19:10 - 2016-10-01 19:10 - 00000000 ____D C:\ProgramData\USOShared
2016-10-01 19:09 - 2016-10-01 19:31 - 00000000 ____D C:\Users\Domov\AppData\Local\ConnectedDevicesPlatform
2016-10-01 19:09 - 2016-10-01 19:09 - 00000020 ___SH C:\Users\Domov\ntuser.ini
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Šablony
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Poslední
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-10-01 19:07 - 2016-10-01 19:08 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2016-10-01 19:07 - 2016-10-01 19:08 - 00011433 _____ C:\WINDOWS\diagerr.xml
2016-10-01 19:01 - 2016-10-06 22:04 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-01 18:52 - 2016-10-01 18:52 - 00001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-10-01 18:46 - 2016-10-01 18:46 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-10-01 18:45 - 2016-10-01 18:53 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-10-01 18:43 - 2016-10-03 20:26 - 00000000 ____D C:\Users\Domov
2016-10-01 18:43 - 2016-10-03 20:26 - 00000000 ____D C:\Users\DefaultAppPool
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Šablony
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Soubory cookie
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Poslední
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Okolní tiskárny
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Okolní síť
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Nabídka Start
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Dokumenty
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Documents\Obrázky
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Documents\Hudba
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Documents\Filmy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Data aplikací
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\AppData\Local\Data aplikací
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Šablony
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Poslední
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2016-10-01 18:42 - 2016-10-06 22:09 - 01712074 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-01 18:39 - 2016-10-01 18:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01007.Wdf
2016-10-01 18:39 - 2016-10-01 18:39 - 00000000 ____D C:\Program Files\Synaptics
2016-10-01 18:38 - 2016-10-01 18:38 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2016-10-01 18:38 - 2016-10-01 18:38 - 00000000 ____D C:\Program Files\Realtek
2016-10-01 18:37 - 2016-10-09 20:39 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-10-01 18:37 - 2016-10-01 19:28 - 00348816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-01 18:37 - 2016-10-01 18:37 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-09-30 12:48 - 2016-10-01 19:28 - 00000000 ____D C:\Program Files\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-09 20:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-08 21:03 - 2016-07-16 10:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-08 10:33 - 2016-07-16 10:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-06 22:09 - 2016-07-16 19:01 - 00547886 _____ C:\WINDOWS\system32\perfh005.dat
2016-10-06 22:09 - 2016-07-16 19:01 - 00123090 _____ C:\WINDOWS\system32\perfc005.dat
2016-10-06 22:03 - 2016-07-16 04:22 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2016-10-05 22:06 - 2016-02-08 21:20 - 00000000 ____D C:\Program Files\Wise
2016-10-05 22:06 - 2009-07-14 04:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-10-04 23:08 - 2016-07-16 10:28 - 00000000 ____D C:\WINDOWS\INF
2016-10-03 20:24 - 2015-12-03 00:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2016-10-03 20:24 - 2015-11-30 00:26 - 00000000 ____D C:\ProgramData\Western Digital
2016-10-03 20:22 - 2015-12-03 00:11 - 00000000 ____D C:\Program Files\Western Digital
2016-10-03 00:27 - 2015-11-29 13:24 - 00000000 ____D C:\Users\Domov\AppData\Local\VirtualStore
2016-10-02 21:13 - 2015-11-29 23:15 - 00000000 ____D C:\Users\Domov\AppData\Roaming\uTorrent
2016-10-02 10:34 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\appcompat
2016-10-01 20:09 - 2015-12-22 08:31 - 00000000 ____D C:\Users\Domov\AppData\Local\Packages
2016-10-01 19:36 - 2016-07-16 10:30 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ___RD C:\Program Files\Windows Defender
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-01 19:31 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-01 19:28 - 2015-12-03 01:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-01 19:23 - 2016-07-16 19:01 - 00000000 ____D C:\WINDOWS\OCR
2016-10-01 19:19 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-10-01 19:19 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-10-01 19:19 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\rescache
2016-10-01 19:19 - 2016-07-16 10:26 - 01003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-10-01 19:19 - 2016-07-16 10:26 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-10-01 19:19 - 2016-07-16 10:26 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-10-01 19:19 - 2016-07-16 10:26 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-10-01 19:19 - 2016-07-16 10:26 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-10-01 19:11 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\USOPrivate
2016-10-01 19:10 - 2016-07-16 04:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-10-01 19:10 - 2015-12-22 08:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-01 19:09 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows NT
2016-10-01 19:06 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-10-01 19:06 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Registration
2016-10-01 19:06 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-10-01 19:01 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Media
2016-10-01 19:01 - 2015-11-29 18:27 - 00021592 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-10-01 19:00 - 2016-07-16 10:29 - 00000000 __RHD C:\Users\Public\Libraries
2016-10-01 18:53 - 2016-02-08 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2016-10-01 18:53 - 2016-02-08 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2016-10-01 18:53 - 2015-12-22 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2016-10-01 18:53 - 2015-12-22 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-10-01 18:53 - 2015-12-13 12:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-10-01 18:53 - 2015-12-03 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour Print Services
2016-10-01 18:53 - 2015-11-29 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2016-10-01 18:53 - 2015-11-29 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Upgrade Kit
2016-10-01 18:53 - 2015-11-29 13:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
2016-10-01 18:53 - 2015-11-29 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-10-01 18:53 - 2015-11-29 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2016-10-01 18:53 - 2015-11-29 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam
2016-10-01 18:53 - 2015-10-30 17:10 - 00000000 ____D C:\WINDOWS\ShellNew
2016-10-01 18:53 - 2009-04-11 03:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2016-10-01 18:53 - 2009-04-11 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2016-10-01 18:53 - 2009-04-11 03:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
2016-10-01 18:53 - 2009-04-11 03:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5
2016-10-01 18:53 - 2009-04-01 02:01 - 00000000 ____D C:\WINDOWS\system32\Atheros_L1e
2016-10-01 18:53 - 2009-04-01 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2016-10-01 18:53 - 2009-04-01 01:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2016-10-01 18:52 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-10-01 18:52 - 2015-10-30 07:13 - 00000000 ____D C:\Users\Default.migrated
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\spool
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\IME
2016-10-01 18:48 - 2015-12-01 22:11 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-10-01 18:48 - 2015-12-01 22:10 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-10-01 18:48 - 2015-11-29 13:08 - 00000000 ____D C:\WINDOWS\system32\Lang
2016-10-01 18:48 - 2006-11-02 13:18 - 00000000 ____D C:\WINDOWS\system32\RemInst
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\System
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\schemas
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-10-01 18:47 - 2015-12-03 01:38 - 00000000 ____D C:\WINDOWS\system32\Adobe
2016-10-01 18:47 - 2006-11-02 14:42 - 00000000 ____D C:\WINDOWS\system32\Branding
2016-10-01 18:46 - 2016-07-16 10:29 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-10-01 18:46 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\System
2016-10-01 18:46 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-01 18:46 - 2016-02-09 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2016-10-01 18:46 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\Microsoft Games
2016-10-01 18:46 - 2009-04-11 03:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GameZone
2016-10-01 18:41 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-01 18:39 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-10-01 18:39 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-10-01 18:39 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-01 18:07 - 2008-02-06 02:36 - 00008192 __RSH C:\BOOTSECT.BAK
2016-10-01 18:04 - 2015-11-29 22:09 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-01 18:00 - 2016-07-16 19:41 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-30 13:54 - 2015-12-03 21:12 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-28 18:21 - 2015-12-22 22:09 - 00000000 ____D C:\Users\Domov\AppData\Roaming\vlc
2016-09-23 11:59 - 2015-12-03 21:12 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-22 00:05 - 2015-11-29 19:39 - 00092800 _____ C:\Users\Domov\AppData\Local\GDIPFONTCACHEV1.DAT
2016-09-19 21:05 - 2015-12-03 21:14 - 00002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-19 21:05 - 2015-12-03 21:14 - 00002210 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-19 21:02 - 2015-11-30 22:17 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-19 20:52 - 2015-11-30 22:17 - 141747376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2016-01-01 13:19 - 2016-01-01 13:19 - 0003584 _____ () C:\Users\Domov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-10-01 18:37
==================== End of FRST.txt ============================
2016-10-01 19:29 - 2016-10-01 19:29 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-10-01 19:29 - 2016-10-01 19:29 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00021344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-10-01 19:29 - 2016-10-01 19:29 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-10-01 19:29 - 2016-10-01 19:29 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-10-01 19:29 - 2016-10-01 19:29 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 06654616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 05683712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 04557824 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 01885696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01321472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01276608 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01122304 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01112576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01015648 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00702416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00589144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00583648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00581672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00570720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00564488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00470368 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00461312 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00432328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00340320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00320152 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00265728 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00231776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00229888 _____ C:\WINDOWS\system32\wc_storage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00170448 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00145248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00094528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00093984 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00054624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00036704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-10-01 19:28 - 2016-10-01 19:28 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-10-01 19:28 - 2016-10-01 19:28 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-10-01 19:23 - 2016-07-15 19:45 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-10-01 19:23 - 2016-07-15 19:45 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-10-01 19:23 - 2016-07-15 19:29 - 05489664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-10-01 19:21 - 2016-10-01 19:21 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-10-01 19:19 - 2016-10-01 19:19 - 00000000 ____D C:\inetpub
2016-10-01 19:19 - 2016-10-01 18:53 - 00000000 ____D C:\Program Files\MSBuild
2016-10-01 19:19 - 2016-10-01 18:48 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-10-01 19:18 - 2016-10-01 19:18 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-10-01 19:18 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-10-01 19:18 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-10-01 19:18 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-01 19:17 - 2016-10-01 19:17 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-10-01 19:10 - 2016-10-01 19:10 - 00000000 ____D C:\ProgramData\USOShared
2016-10-01 19:09 - 2016-10-01 19:31 - 00000000 ____D C:\Users\Domov\AppData\Local\ConnectedDevicesPlatform
2016-10-01 19:09 - 2016-10-01 19:09 - 00000020 ___SH C:\Users\Domov\ntuser.ini
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Šablony
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Poslední
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 19:09 - 2016-10-01 19:09 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-10-01 19:07 - 2016-10-01 19:08 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2016-10-01 19:07 - 2016-10-01 19:08 - 00011433 _____ C:\WINDOWS\diagerr.xml
2016-10-01 19:01 - 2016-10-06 22:04 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-01 18:52 - 2016-10-01 18:52 - 00001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-10-01 18:52 - 2016-10-01 18:52 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-10-01 18:46 - 2016-10-01 18:46 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-10-01 18:45 - 2016-10-01 18:53 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-10-01 18:43 - 2016-10-03 20:26 - 00000000 ____D C:\Users\Domov
2016-10-01 18:43 - 2016-10-03 20:26 - 00000000 ____D C:\Users\DefaultAppPool
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Šablony
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Soubory cookie
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Poslední
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Okolní tiskárny
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Okolní síť
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Nabídka Start
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Dokumenty
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Documents\Obrázky
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Documents\Hudba
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Documents\Filmy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\Data aplikací
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\Domov\AppData\Local\Data aplikací
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Šablony
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Poslední
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-01 18:43 - 2016-10-01 18:43 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2016-10-01 18:42 - 2016-10-06 22:09 - 01712074 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-01 18:39 - 2016-10-01 18:39 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01007.Wdf
2016-10-01 18:39 - 2016-10-01 18:39 - 00000000 ____D C:\Program Files\Synaptics
2016-10-01 18:38 - 2016-10-01 18:38 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2016-10-01 18:38 - 2016-10-01 18:38 - 00000000 ____D C:\Program Files\Realtek
2016-10-01 18:37 - 2016-10-09 20:39 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-10-01 18:37 - 2016-10-01 19:28 - 00348816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-01 18:37 - 2016-10-01 18:37 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-09-30 12:48 - 2016-10-01 19:28 - 00000000 ____D C:\Program Files\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-09 20:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-08 21:03 - 2016-07-16 10:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-08 10:33 - 2016-07-16 10:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-06 22:09 - 2016-07-16 19:01 - 00547886 _____ C:\WINDOWS\system32\perfh005.dat
2016-10-06 22:09 - 2016-07-16 19:01 - 00123090 _____ C:\WINDOWS\system32\perfc005.dat
2016-10-06 22:03 - 2016-07-16 04:22 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2016-10-05 22:06 - 2016-02-08 21:20 - 00000000 ____D C:\Program Files\Wise
2016-10-05 22:06 - 2009-07-14 04:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-10-04 23:08 - 2016-07-16 10:28 - 00000000 ____D C:\WINDOWS\INF
2016-10-03 20:24 - 2015-12-03 00:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
2016-10-03 20:24 - 2015-11-30 00:26 - 00000000 ____D C:\ProgramData\Western Digital
2016-10-03 20:22 - 2015-12-03 00:11 - 00000000 ____D C:\Program Files\Western Digital
2016-10-03 00:27 - 2015-11-29 13:24 - 00000000 ____D C:\Users\Domov\AppData\Local\VirtualStore
2016-10-02 21:13 - 2015-11-29 23:15 - 00000000 ____D C:\Users\Domov\AppData\Roaming\uTorrent
2016-10-02 10:34 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\appcompat
2016-10-01 20:09 - 2015-12-22 08:31 - 00000000 ____D C:\Users\Domov\AppData\Local\Packages
2016-10-01 19:36 - 2016-07-16 10:30 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ___RD C:\Program Files\Windows Defender
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-10-01 19:31 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-01 19:31 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-01 19:28 - 2015-12-03 01:36 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-01 19:23 - 2016-07-16 19:01 - 00000000 ____D C:\WINDOWS\OCR
2016-10-01 19:19 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-10-01 19:19 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-10-01 19:19 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\rescache
2016-10-01 19:19 - 2016-07-16 10:26 - 01003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-10-01 19:19 - 2016-07-16 10:26 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-10-01 19:19 - 2016-07-16 10:26 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-10-01 19:19 - 2016-07-16 10:26 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-10-01 19:19 - 2016-07-16 10:26 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-10-01 19:19 - 2016-07-16 10:26 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-10-01 19:19 - 2016-07-16 10:26 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-10-01 19:11 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\USOPrivate
2016-10-01 19:10 - 2016-07-16 04:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-10-01 19:10 - 2015-12-22 08:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-01 19:09 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows NT
2016-10-01 19:06 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-10-01 19:06 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Registration
2016-10-01 19:06 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-10-01 19:01 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Media
2016-10-01 19:01 - 2015-11-29 18:27 - 00021592 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-10-01 19:00 - 2016-07-16 10:29 - 00000000 __RHD C:\Users\Public\Libraries
2016-10-01 18:53 - 2016-02-08 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2016-10-01 18:53 - 2016-02-08 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Registry Cleaner
2016-10-01 18:53 - 2015-12-22 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2016-10-01 18:53 - 2015-12-22 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-10-01 18:53 - 2015-12-13 12:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-10-01 18:53 - 2015-12-03 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour Print Services
2016-10-01 18:53 - 2015-11-29 22:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2016-10-01 18:53 - 2015-11-29 17:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Upgrade Kit
2016-10-01 18:53 - 2015-11-29 13:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GridVista
2016-10-01 18:53 - 2015-11-29 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-10-01 18:53 - 2015-11-29 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2016-10-01 18:53 - 2015-11-29 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam
2016-10-01 18:53 - 2015-10-30 17:10 - 00000000 ____D C:\WINDOWS\ShellNew
2016-10-01 18:53 - 2009-04-11 03:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2016-10-01 18:53 - 2009-04-11 03:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
2016-10-01 18:53 - 2009-04-11 03:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 8
2016-10-01 18:53 - 2009-04-11 03:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Backup Now 5
2016-10-01 18:53 - 2009-04-01 02:01 - 00000000 ____D C:\WINDOWS\system32\Atheros_L1e
2016-10-01 18:53 - 2009-04-01 01:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
2016-10-01 18:53 - 2009-04-01 01:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2016-10-01 18:52 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-10-01 18:52 - 2015-10-30 07:13 - 00000000 ____D C:\Users\Default.migrated
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\spool
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-01 18:48 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\IME
2016-10-01 18:48 - 2015-12-01 22:11 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-10-01 18:48 - 2015-12-01 22:10 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-10-01 18:48 - 2015-11-29 13:08 - 00000000 ____D C:\WINDOWS\system32\Lang
2016-10-01 18:48 - 2006-11-02 13:18 - 00000000 ____D C:\WINDOWS\system32\RemInst
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\System
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\schemas
2016-10-01 18:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-10-01 18:47 - 2015-12-03 01:38 - 00000000 ____D C:\WINDOWS\system32\Adobe
2016-10-01 18:47 - 2006-11-02 14:42 - 00000000 ____D C:\WINDOWS\system32\Branding
2016-10-01 18:46 - 2016-07-16 10:29 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-10-01 18:46 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\System
2016-10-01 18:46 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-01 18:46 - 2016-02-09 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
2016-10-01 18:46 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\Microsoft Games
2016-10-01 18:46 - 2009-04-11 03:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GameZone
2016-10-01 18:41 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-01 18:39 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-10-01 18:39 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-10-01 18:39 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-01 18:07 - 2008-02-06 02:36 - 00008192 __RSH C:\BOOTSECT.BAK
2016-10-01 18:04 - 2015-11-29 22:09 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-01 18:00 - 2016-07-16 19:41 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-30 13:54 - 2015-12-03 21:12 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-28 18:21 - 2015-12-22 22:09 - 00000000 ____D C:\Users\Domov\AppData\Roaming\vlc
2016-09-23 11:59 - 2015-12-03 21:12 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-22 00:05 - 2015-11-29 19:39 - 00092800 _____ C:\Users\Domov\AppData\Local\GDIPFONTCACHEV1.DAT
2016-09-19 21:05 - 2015-12-03 21:14 - 00002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-19 21:05 - 2015-12-03 21:14 - 00002210 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-19 21:02 - 2015-11-30 22:17 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-19 20:52 - 2015-11-30 22:17 - 141747376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2016-01-01 13:19 - 2016-01-01 13:19 - 0003584 _____ () C:\Users\Domov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-10-01 18:37
==================== End of FRST.txt ============================
Re: Kontrola logu: info.zip
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 04-10-2016
Ran by Domov (09-10-2016 20:56:18)
Running from C:\Users\Domov\Desktop
Microsoft Windows 10 Home Version 1607 (X86) (2016-10-01 17:09:43)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-446455070-1593252463-3502011289-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-446455070-1593252463-3502011289-503 - Limited - Disabled)
Domov (S-1-5-21-446455070-1593252463-3502011289-1000 - Administrator - Enabled) => C:\Users\Domov
Guest (S-1-5-21-446455070-1593252463-3502011289-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-446455070-1593252463-3502011289-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
Acer Backup Manager (HKLM\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 1.0.0.53 - NewTech Infosystems)
Acer Crystal Eye Webcam (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 5.2.3.1 - Suyin Optronics Corp)
Acer GridVista (HKLM\...\GridVista) (Version: 2.75.825 - Acer Inc.)
Acer PowerSmart Manager (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.07.3006 - Acer Incorporated)
Acer Product Registration (HKLM\...\{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}) (Version: 3.0.0.10 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\Acer Screensaver) (Version: - Acer)
Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.00.3006 - Acer Incorporated)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\{315BE77E-D725-477D-9C71-63F78844363C}) (Version: 12.2.2.172 - Adobe Systems, Inc)
Any Video Converter 5.9.0 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Asistent pro přihlášení ke službě Windows Live (HKLM\...\{1E779810-ACCA-4483-BC76-12DFE055B452}) (Version: 5.000.817.1 - Microsoft Corporation)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.10 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM\...\Avast) (Version: 11.1.2253 - AVAST Software)
Backup Manager Basic (Version: 1.0.0.53 - NewTech Infosystems) Hidden
Bonjour (HKLM\...\{0CB9668D-F979-4F31-B8B8-67FE90F929F8}) (Version: 2.0.2.0 - Apple Inc.)
Bonjour Print Services (HKLM\...\{9D210D79-AEC5-453B-960C-4DD2C73931E1}) (Version: 2.0.2.0 - Apple Inc.)
Bontia Studio (HKLM\...\{2d6806e5-f4af-476d-82eb-643a529e57ba}) (Version: 5.1.4279.16652 - Bontia a.s.)
Bontia Studio 5.1 (Version: 5.1.4279.1 - Bontia, a.s.) Hidden
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Junk Mail filter update (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Launch Manager (HKLM\...\LManager) (Version: 3.0.02 - Acer Inc.)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM\...\{99D7DE4C-2775-4B16-B155-7F09AE939E8E}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 49.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 49.0.1 (x86 cs)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nástroj pro odesílání služby Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
NETGEAR Genie (HKLM\...\NETGEAR Genie) (Version: 2.4.16.00 - NETGEAR Inc.)
NTI Backup Now 5 (HKLM\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.616 - NewTech Infosystems)
NTI Backup Now Standard (Version: 5.1.2.616 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.2.6509 - Název společnosti:)
NTI Media Maker 8 (Version: 8.0.2.6509 - Název společnosti:) Hidden
Optical Drive Power Management (HKLM\...\{AE09C972-EEB2-4DA5-8090-0FCF54576854}) (Version: 1.01.3002 - Acer Incorporated)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5830 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 6.0.6000.20113 - Realtek Semiconductor Corp.)
RogueKiller verze 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
Software Bluetooth WIDCOMM (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9700 - Broadcom)
Software602 Form Filler (HKLM\...\{1320CACA-1955-4E9E-84A1-B75F064221BB}) (Version: 4.02 - Software602 a.s.)
Software602 Print2PDF (HKLM\...\{32C74893-0243-4235-A6F3-201F0E5D2C03}) (Version: 9.1.11.0421 - Software602 a.s.)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 12.2.2.0 - Synaptics Incorporated)
SyncFileSetup (x86) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
Upgrade Kit (HKLM\...\{1D0FDD6D-3C5E-4588-8ED0-02DC88014BF2}) (Version: 1.00.3002 - Acer Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WD Access (HKLM\...\{046643f7-6206-46bb-8968-92c37fee39e0}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc.)
WD Access (Version: 1.4.5949.29996 - Western Digital Technologies, Inc) Hidden
WD My Cloud (HKLM\...\{9B9E257A-70E9-4AC7-99E0-C7145D2E51CF}) (Version: 1.0.4.34 - Western Digital Technologies, Inc.)
WD Sync (HKLM\...\{0d591303-bbc5-4645-a03b-1c3f75f1a762}) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc.)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{4B4451CE-D1E6-4BDE-B4B2-59F03BB83B7C}) (Version: 14.0.8050.1202 - Microsoft Corporation)
Wise Registry Cleaner 9.18 (HKLM\...\Wise Registry Cleaner_is1) (Version: 9.18 - WiseCleaner.com, Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {068A5C87-1113-430E-84D3-23B137B0E5E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {0AC49E5E-A337-4697-8A9E-39E6D935A2FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {1FBCE449-CE36-41B8-B5FB-670D64CC92BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {27028996-E414-4DA9-8D66-8FCA8AE4C62B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {295C756D-20CD-462B-B5F1-2771BC2CD9AF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {29FF420B-F841-4B69-BD64-99E452C8F690} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {2BBD5224-CEF5-44A1-9E3B-3DCA3F6C8669} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-15] (Adobe Systems Incorporated)
Task: {35C66DF1-2233-4080-8351-94419E274D8B} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C069CB4-98F8-46DE-B3E8-0C590AF96CB5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C3E0CF0-4DC9-4FA5-B31F-00F7C9110216} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {3E4CCF96-DFD7-46B2-AA73-61E3111ACA7F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-04-02] (AVAST Software)
Task: {442FF8B3-7205-42DE-9501-CEC2BB5E1B08} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {53DD61AB-8F71-4CFB-B875-D672755ACE94} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {55469FFB-872E-4731-832A-A27DBFF08BC0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {561375CB-FF5A-417B-B297-BA73DE149581} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\WINDOWS\system32\gatherWiredInfo.vbs
Task: {5AE168DF-EF4A-4BC4-B83B-AF164A295E23} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {619480C5-700B-46C8-8ED6-67F30BA9A61E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6B14221D-5D95-4C41-A154-C6A7C4029636} - \avast! Windows 10 Start Menu helper -> No File <==== ATTENTION
Task: {71C116B0-60C3-4FB0-ABCC-0B108D93C1B2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {74B17A38-FA23-4936-BFE1-7D81EDFE182F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {755BE579-541C-475B-B7AE-D4E153A8E574} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7AD46F12-EA94-4326-B9EC-6B37FA658027} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C3B951C-6C80-48AB-83D8-3219E7E67B42} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe
Task: {7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {818C6E5C-08FB-448A-9421-45B58155570F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8BB9CB7C-7ED6-40B7-AE8A-5AAD42BC1255} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd)
Task: {8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {91306273-1C92-4CEF-BBE1-85BE12FB5521} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {951E71C1-04BC-4642-9774-989487E4AC06} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {9564F382-1C86-40BF-8593-FC8517A0A1E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9CD4BF80-C6E7-4685-99EE-F134CD61C1C5} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9F930B50-02EF-41E0-B7EF-65CBFC2F1028} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A04A59A6-63DB-46EE-BD41-717CE0D6EBF4} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A77C12E4-BCD5-4E4B-A230-943B1F93E609} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A7DED8F4-E76C-4920-A33E-461A913D1112} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C2CF12CC-618C-46DA-8161-B7FB1AEF3D7A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C58D43F4-F61A-4240-9CC7-CE1F7094FDF8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {CA3C91EA-4E80-44A2-A7E2-F0DA4B505C53} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CEB8030C-7A79-4056-B5F3-9F637102203F} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Domov\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {CF7E51A2-934C-4C60-9A90-1804A726D011} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D5429F95-C37D-4253-BD31-95DC2583C615} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\WINDOWS\system32\gatherWirelessInfo.vbs
Task: {EC57A44B-AED8-4B0F-9289-345FFAD8D4C0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {ED3128E7-1477-4AE5-9659-F69B77CC4764} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F8732C1A-B6B5-467F-899D-0382093A060A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FE49C178-32AC-4E4E-95DD-D80DB18A5476} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-04-02 23:31 - 2016-04-02 23:31 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-04-02 23:31 - 2016-04-02 23:31 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-06 21:24 - 2016-10-06 21:24 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16100602\algo.dll
2016-04-18 23:31 - 2016-04-18 23:31 - 00509344 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-10-09 20:40 - 2016-10-09 20:40 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16100900\algo.dll
2015-12-19 12:48 - 2013-04-15 12:49 - 00176128 _____ () C:\WINDOWS\System32\HP1006LM.DLL
2015-12-19 12:49 - 2013-04-15 12:49 - 00059904 _____ () C:\WINDOWS\system32\spool\PRTPROCS\W32X86\HP1006PP.dll
2015-11-29 23:13 - 2010-12-02 03:13 - 00214528 _____ () C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\Software602.dll
2009-02-02 18:33 - 2009-02-02 18:33 - 00460199 _____ () C:\Program Files\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-28 18:55 - 2008-09-28 18:55 - 01076224 _____ () C:\Program Files\NewTech Infosystems\Acer Backup Manager\ACE.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-23 20:15 - 2016-08-23 20:15 - 01383616 _____ () C:\Users\Domov\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00109056 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01149440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01725440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-29 13:29 - 2008-07-29 20:29 - 00200704 _____ () C:\Windows\PLFSetI.exe
2016-01-09 20:28 - 2016-01-09 20:28 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-08-23 20:16 - 2016-08-23 20:16 - 00118976 _____ () C:\Users\Domov\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-04-15 20:07 - 2016-04-15 20:07 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-01 20:09 - 2016-10-01 20:13 - 00062464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2016-10-01 20:09 - 2016-10-01 20:13 - 00151040 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-01 20:09 - 2016-10-01 20:13 - 27109376 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkyWrap.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 12:23 - 2016-10-05 21:36 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Domov\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{c944ff64-eb09-4722-8a55-e9533483e234}.ORF
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Domov\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{c944ff64-eb09-4722-8a55-e9533483e234}.ORF
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{11F61E67-1C51-4EDE-BC5A-27D6B714F969}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [UDP Query User{9B89F8D8-8907-4F5A-9DD0-7BC3F560C9C0}C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe] => (Block) C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe
FirewallRules: [TCP Query User{1579C539-3F54-48D2-BB89-9D3F4A55FB8A}C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe] => (Block) C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe
FirewallRules: [{9FECB9CF-8288-4C21-BB43-9684EFE39AD5}] => (Allow) C:\Program Files\Acer\Acer VCM\RS_Service.exe
FirewallRules: [{E3C1F6D3-405A-4D4B-A359-5BCAD88DF351}] => (Allow) C:\Program Files\Acer\Acer VCM\VC.exe
FirewallRules: [{3A7C90E2-61AA-43DD-B3FF-22029D9E9038}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{36036DA0-31C7-4039-8C35-E814772E7B2C}] => (Allow) svchost.exe
FirewallRules: [{0EBFEB64-0A00-4391-989A-5FEBF5C8AEFF}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DBBDA72F-25EF-4534-B2E4-37008ECE26D1}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{8ABE7228-9EFA-4FBB-865C-DD2DADACD962}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{7838BA2D-119B-4DC8-AFEB-C3896BC5585A}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{A8E81D33-24DD-4C1F-8FD6-00A7BC05E47D}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{04986B00-725B-4608-9FD0-C28B8C70E0C3}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{8C68E8CC-5D3D-44DE-9F8D-3938E291DDDE}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{352BCE75-3A41-4D41-8102-57694F07381E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4DC4EB7D-DBBA-42CD-8A18-D022E02196B6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FBFD2687-B510-4D67-8189-65BD0D194545}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C42EDEE1-93A2-48FC-8755-735C8573AB10}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A7D0169-D366-45E5-930F-3F6A1C6023A1}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AAD4BB4B-5C24-4799-B975-3B398622A2DB}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5AEE3A20-E475-4A81-BF4D-E4C704117EFD}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4A81ABFA-331A-4327-8C60-BDCD93CA8DC4}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D34B4001-5379-4F5B-962D-5FE0D29588AE}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [UDP Query User{7386F674-8707-4B47-868C-1C3FC21E8433}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [{7AE20C2D-8E09-4DDF-B3C9-2836747BB57F}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{0B6949B0-0249-4C7C-A452-A37F14C1F050}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{E69287B9-53BF-4588-9951-3C4ACFCDA1FA}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{A99E8AC3-D469-4CC4-97F7-581FF81DE62F}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{35AEC55E-533A-446E-858A-2EE415231A90}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [{C173ED5C-AE5C-40A8-9AF5-3663F71D2DCF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{28C844B1-8861-4825-AA87-6333220B7744}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{85714D6D-BF6A-4EE0-BE78-1ABF1FC463D8}C:\program files\totalcmd\totalcmd.exe] => (Allow) C:\program files\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{3230EA34-0ED7-4C4D-B645-3F6CED522992}C:\program files\totalcmd\totalcmd.exe] => (Allow) C:\program files\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{F3E400A2-EF9D-43F0-A267-8BC7CA9EBC88}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Block) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [UDP Query User{0B5C5CC2-2574-418A-A473-16170F82A887}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Block) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [{3DF374FC-1720-4A4E-BBA8-013047996990}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0414DD23-BBFC-4A36-8C29-2C872A086492}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Restore Points =========================
05-10-2016 21:35:47 zoek.exe restore point
08-10-2016 21:02:57 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/09/2016 08:41:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Domov-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (10/09/2016 03:30:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 64806672
Error: (10/09/2016 03:30:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 64806672
Error: (10/09/2016 03:30:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/08/2016 09:30:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3172
Error: (10/08/2016 09:30:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3172
Error: (10/08/2016 09:30:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/08/2016 09:30:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1672
Error: (10/08/2016 09:30:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1672
Error: (10/08/2016 09:30:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
System errors:
=============
Error: (10/09/2016 08:42:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Ochrana softwaru neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/09/2016 08:42:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Ochrana softwaru bylo dosaženo časového limitu (30000 ms).
Error: (10/09/2016 08:41:36 PM) (Source: DCOM) (EventID: 10010) (User: Domov-PC)
Description: Server App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/09/2016 03:31:31 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (10/08/2016 09:30:31 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (10/08/2016 09:01:02 PM) (Source: DCOM) (EventID: 10010) (User: Domov-PC)
Description: Server WindowsDefaultLockScreen se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2016 06:14:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (10/08/2016 10:56:08 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (10/08/2016 10:11:59 AM) (Source: DCOM) (EventID: 10010) (User: Domov-PC)
Description: Server microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2016 10:09:47 AM) (Source: DCOM) (EventID: 10001) (User: Domov-PC)
Description: Nelze spustit server DCOM: CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
31
při provádění příkazu:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
CodeIntegrity:
===================================
Date: 2016-10-04 21:48:51.966
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.922
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.824
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.544
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.443
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.247
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:48.475
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:47.122
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Solo CPU U3500 @ 1.40GHz
Percentage of memory in use: 50%
Total physical RAM: 3001.79 MB
Available physical RAM: 1471.7 MB
Total Virtual: 6073.79 MB
Available Virtual: 3807.8 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:117.58 GB) (Free:75.35 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:337.97 GB) (Free:337.32 GB) NTFS
Drive e: (RPZ-LP-2W1.1_DES) (CDROM) (Total:5.94 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: 08D91DC0)
Partition 1: (Not Active) - (Size=9.8 GB) - (Type=27)
Partition 2: (Active) - (Size=117.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=449 MB) - (Type=27)
Partition 4: (Not Active) - (Size=338 GB) - (Type=OF Extended)
==================== End of Addition.txt ============================
Ran by Domov (09-10-2016 20:56:18)
Running from C:\Users\Domov\Desktop
Microsoft Windows 10 Home Version 1607 (X86) (2016-10-01 17:09:43)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-446455070-1593252463-3502011289-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-446455070-1593252463-3502011289-503 - Limited - Disabled)
Domov (S-1-5-21-446455070-1593252463-3502011289-1000 - Administrator - Enabled) => C:\Users\Domov
Guest (S-1-5-21-446455070-1593252463-3502011289-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-446455070-1593252463-3502011289-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.)
Acer Backup Manager (HKLM\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 1.0.0.53 - NewTech Infosystems)
Acer Crystal Eye Webcam (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 5.2.3.1 - Suyin Optronics Corp)
Acer GridVista (HKLM\...\GridVista) (Version: 2.75.825 - Acer Inc.)
Acer PowerSmart Manager (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.07.3006 - Acer Incorporated)
Acer Product Registration (HKLM\...\{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}) (Version: 3.0.0.10 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\Acer Screensaver) (Version: - Acer)
Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.00.3006 - Acer Incorporated)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM\...\{315BE77E-D725-477D-9C71-63F78844363C}) (Version: 12.2.2.172 - Adobe Systems, Inc)
Any Video Converter 5.9.0 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Asistent pro přihlášení ke službě Windows Live (HKLM\...\{1E779810-ACCA-4483-BC76-12DFE055B452}) (Version: 5.000.817.1 - Microsoft Corporation)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.10 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM\...\Avast) (Version: 11.1.2253 - AVAST Software)
Backup Manager Basic (Version: 1.0.0.53 - NewTech Infosystems) Hidden
Bonjour (HKLM\...\{0CB9668D-F979-4F31-B8B8-67FE90F929F8}) (Version: 2.0.2.0 - Apple Inc.)
Bonjour Print Services (HKLM\...\{9D210D79-AEC5-453B-960C-4DD2C73931E1}) (Version: 2.0.2.0 - Apple Inc.)
Bontia Studio (HKLM\...\{2d6806e5-f4af-476d-82eb-643a529e57ba}) (Version: 5.1.4279.16652 - Bontia a.s.)
Bontia Studio 5.1 (Version: 5.1.4279.1 - Bontia, a.s.) Hidden
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Junk Mail filter update (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
Launch Manager (HKLM\...\LManager) (Version: 3.0.02 - Acer Inc.)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM\...\{99D7DE4C-2775-4B16-B155-7F09AE939E8E}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 49.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 49.0.1 (x86 cs)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nástroj pro odesílání služby Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
NETGEAR Genie (HKLM\...\NETGEAR Genie) (Version: 2.4.16.00 - NETGEAR Inc.)
NTI Backup Now 5 (HKLM\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.616 - NewTech Infosystems)
NTI Backup Now Standard (Version: 5.1.2.616 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.2.6509 - Název společnosti:)
NTI Media Maker 8 (Version: 8.0.2.6509 - Název společnosti:) Hidden
Optical Drive Power Management (HKLM\...\{AE09C972-EEB2-4DA5-8090-0FCF54576854}) (Version: 1.01.3002 - Acer Incorporated)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5830 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 6.0.6000.20113 - Realtek Semiconductor Corp.)
RogueKiller verze 12 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12 - Adlice Software)
Software Bluetooth WIDCOMM (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9700 - Broadcom)
Software602 Form Filler (HKLM\...\{1320CACA-1955-4E9E-84A1-B75F064221BB}) (Version: 4.02 - Software602 a.s.)
Software602 Print2PDF (HKLM\...\{32C74893-0243-4235-A6F3-201F0E5D2C03}) (Version: 9.1.11.0421 - Software602 a.s.)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 12.2.2.0 - Synaptics Incorporated)
SyncFileSetup (x86) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc) Hidden
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
Upgrade Kit (HKLM\...\{1D0FDD6D-3C5E-4588-8ED0-02DC88014BF2}) (Version: 1.00.3002 - Acer Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WD Access (HKLM\...\{046643f7-6206-46bb-8968-92c37fee39e0}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc.)
WD Access (Version: 1.4.5949.29996 - Western Digital Technologies, Inc) Hidden
WD My Cloud (HKLM\...\{9B9E257A-70E9-4AC7-99E0-C7145D2E51CF}) (Version: 1.0.4.34 - Western Digital Technologies, Inc.)
WD Sync (HKLM\...\{0d591303-bbc5-4645-a03b-1c3f75f1a762}) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc.)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{4B4451CE-D1E6-4BDE-B4B2-59F03BB83B7C}) (Version: 14.0.8050.1202 - Microsoft Corporation)
Wise Registry Cleaner 9.18 (HKLM\...\Wise Registry Cleaner_is1) (Version: 9.18 - WiseCleaner.com, Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {068A5C87-1113-430E-84D3-23B137B0E5E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {0AC49E5E-A337-4697-8A9E-39E6D935A2FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {1FBCE449-CE36-41B8-B5FB-670D64CC92BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {27028996-E414-4DA9-8D66-8FCA8AE4C62B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {295C756D-20CD-462B-B5F1-2771BC2CD9AF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {29FF420B-F841-4B69-BD64-99E452C8F690} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {2BBD5224-CEF5-44A1-9E3B-3DCA3F6C8669} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-15] (Adobe Systems Incorporated)
Task: {35C66DF1-2233-4080-8351-94419E274D8B} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C069CB4-98F8-46DE-B3E8-0C590AF96CB5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C3E0CF0-4DC9-4FA5-B31F-00F7C9110216} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {3E4CCF96-DFD7-46B2-AA73-61E3111ACA7F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-04-02] (AVAST Software)
Task: {442FF8B3-7205-42DE-9501-CEC2BB5E1B08} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {53DD61AB-8F71-4CFB-B875-D672755ACE94} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {55469FFB-872E-4731-832A-A27DBFF08BC0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {561375CB-FF5A-417B-B297-BA73DE149581} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\WINDOWS\system32\gatherWiredInfo.vbs
Task: {5AE168DF-EF4A-4BC4-B83B-AF164A295E23} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {619480C5-700B-46C8-8ED6-67F30BA9A61E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6B14221D-5D95-4C41-A154-C6A7C4029636} - \avast! Windows 10 Start Menu helper -> No File <==== ATTENTION
Task: {71C116B0-60C3-4FB0-ABCC-0B108D93C1B2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {74B17A38-FA23-4936-BFE1-7D81EDFE182F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {755BE579-541C-475B-B7AE-D4E153A8E574} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7AD46F12-EA94-4326-B9EC-6B37FA658027} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C3B951C-6C80-48AB-83D8-3219E7E67B42} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe
Task: {7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {818C6E5C-08FB-448A-9421-45B58155570F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {8BB9CB7C-7ED6-40B7-AE8A-5AAD42BC1255} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd)
Task: {8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {91306273-1C92-4CEF-BBE1-85BE12FB5521} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {951E71C1-04BC-4642-9774-989487E4AC06} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {9564F382-1C86-40BF-8593-FC8517A0A1E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9CD4BF80-C6E7-4685-99EE-F134CD61C1C5} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9F930B50-02EF-41E0-B7EF-65CBFC2F1028} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A04A59A6-63DB-46EE-BD41-717CE0D6EBF4} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A77C12E4-BCD5-4E4B-A230-943B1F93E609} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {A7DED8F4-E76C-4920-A33E-461A913D1112} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C2CF12CC-618C-46DA-8161-B7FB1AEF3D7A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C58D43F4-F61A-4240-9CC7-CE1F7094FDF8} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-02] (AVAST Software)
Task: {CA3C91EA-4E80-44A2-A7E2-F0DA4B505C53} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CEB8030C-7A79-4056-B5F3-9F637102203F} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Domov\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {CF7E51A2-934C-4C60-9A90-1804A726D011} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D5429F95-C37D-4253-BD31-95DC2583C615} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\WINDOWS\system32\gatherWirelessInfo.vbs
Task: {EC57A44B-AED8-4B0F-9289-345FFAD8D4C0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {ED3128E7-1477-4AE5-9659-F69B77CC4764} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F8732C1A-B6B5-467F-899D-0382093A060A} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FE49C178-32AC-4E4E-95DD-D80DB18A5476} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-04-02 23:31 - 2016-04-02 23:31 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-04-02 23:31 - 2016-04-02 23:31 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-06 21:24 - 2016-10-06 21:24 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16100602\algo.dll
2016-04-18 23:31 - 2016-04-18 23:31 - 00509344 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-10-09 20:40 - 2016-10-09 20:40 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16100900\algo.dll
2015-12-19 12:48 - 2013-04-15 12:49 - 00176128 _____ () C:\WINDOWS\System32\HP1006LM.DLL
2015-12-19 12:49 - 2013-04-15 12:49 - 00059904 _____ () C:\WINDOWS\system32\spool\PRTPROCS\W32X86\HP1006PP.dll
2015-11-29 23:13 - 2010-12-02 03:13 - 00214528 _____ () C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\Software602.dll
2009-02-02 18:33 - 2009-02-02 18:33 - 00460199 _____ () C:\Program Files\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-28 18:55 - 2008-09-28 18:55 - 01076224 _____ () C:\Program Files\NewTech Infosystems\Acer Backup Manager\ACE.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-01 19:28 - 2016-10-01 19:28 - 02048496 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-23 20:15 - 2016-08-23 20:15 - 01383616 _____ () C:\Users\Domov\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00109056 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01149440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 01725440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-11-29 13:29 - 2008-07-29 20:29 - 00200704 _____ () C:\Windows\PLFSetI.exe
2016-01-09 20:28 - 2016-01-09 20:28 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-08-23 20:16 - 2016-08-23 20:16 - 00118976 _____ () C:\Users\Domov\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-04-15 20:07 - 2016-04-15 20:07 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-01 19:29 - 2016-10-01 19:29 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-01 20:09 - 2016-10-01 20:13 - 00062464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2016-10-01 20:09 - 2016-10-01 20:13 - 00151040 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-01 20:09 - 2016-10-01 20:13 - 27109376 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkyWrap.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 12:23 - 2016-10-05 21:36 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Domov\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{c944ff64-eb09-4722-8a55-e9533483e234}.ORF
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Domov\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{c944ff64-eb09-4722-8a55-e9533483e234}.ORF
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{11F61E67-1C51-4EDE-BC5A-27D6B714F969}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [UDP Query User{9B89F8D8-8907-4F5A-9DD0-7BC3F560C9C0}C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe] => (Block) C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe
FirewallRules: [TCP Query User{1579C539-3F54-48D2-BB89-9D3F4A55FB8A}C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe] => (Block) C:\users\domov\appdata\roaming\utorrent\updates\3.4.7_42330.exe
FirewallRules: [{9FECB9CF-8288-4C21-BB43-9684EFE39AD5}] => (Allow) C:\Program Files\Acer\Acer VCM\RS_Service.exe
FirewallRules: [{E3C1F6D3-405A-4D4B-A359-5BCAD88DF351}] => (Allow) C:\Program Files\Acer\Acer VCM\VC.exe
FirewallRules: [{3A7C90E2-61AA-43DD-B3FF-22029D9E9038}] => (Allow) C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{36036DA0-31C7-4039-8C35-E814772E7B2C}] => (Allow) svchost.exe
FirewallRules: [{0EBFEB64-0A00-4391-989A-5FEBF5C8AEFF}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{DBBDA72F-25EF-4534-B2E4-37008ECE26D1}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{8ABE7228-9EFA-4FBB-865C-DD2DADACD962}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{7838BA2D-119B-4DC8-AFEB-C3896BC5585A}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{A8E81D33-24DD-4C1F-8FD6-00A7BC05E47D}] => (Allow) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{04986B00-725B-4608-9FD0-C28B8C70E0C3}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{8C68E8CC-5D3D-44DE-9F8D-3938E291DDDE}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{352BCE75-3A41-4D41-8102-57694F07381E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4DC4EB7D-DBBA-42CD-8A18-D022E02196B6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FBFD2687-B510-4D67-8189-65BD0D194545}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C42EDEE1-93A2-48FC-8755-735C8573AB10}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5A7D0169-D366-45E5-930F-3F6A1C6023A1}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AAD4BB4B-5C24-4799-B975-3B398622A2DB}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5AEE3A20-E475-4A81-BF4D-E4C704117EFD}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4A81ABFA-331A-4327-8C60-BDCD93CA8DC4}] => (Allow) C:\Users\Domov\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{D34B4001-5379-4F5B-962D-5FE0D29588AE}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [UDP Query User{7386F674-8707-4B47-868C-1C3FC21E8433}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [{7AE20C2D-8E09-4DDF-B3C9-2836747BB57F}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{0B6949B0-0249-4C7C-A452-A37F14C1F050}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{E69287B9-53BF-4588-9951-3C4ACFCDA1FA}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [TCP Query User{A99E8AC3-D469-4CC4-97F7-581FF81DE62F}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [UDP Query User{35AEC55E-533A-446E-858A-2EE415231A90}C:\program files\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files\netgear genie\bin\netgeargenie.exe
FirewallRules: [{C173ED5C-AE5C-40A8-9AF5-3663F71D2DCF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{28C844B1-8861-4825-AA87-6333220B7744}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{85714D6D-BF6A-4EE0-BE78-1ABF1FC463D8}C:\program files\totalcmd\totalcmd.exe] => (Allow) C:\program files\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{3230EA34-0ED7-4C4D-B645-3F6CED522992}C:\program files\totalcmd\totalcmd.exe] => (Allow) C:\program files\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{F3E400A2-EF9D-43F0-A267-8BC7CA9EBC88}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Block) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [UDP Query User{0B5C5CC2-2574-418A-A473-16170F82A887}C:\program files\western digital\wd app manager\wdappmanager.exe] => (Block) C:\program files\western digital\wd app manager\wdappmanager.exe
FirewallRules: [{3DF374FC-1720-4A4E-BBA8-013047996990}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0414DD23-BBFC-4A36-8C29-2C872A086492}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Restore Points =========================
05-10-2016 21:35:47 zoek.exe restore point
08-10-2016 21:02:57 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/09/2016 08:41:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Domov-PC)
Description: Aplikaci Microsoft.Windows.Photos_8wekyb3d8bbwe!App se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (10/09/2016 03:30:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 64806672
Error: (10/09/2016 03:30:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 64806672
Error: (10/09/2016 03:30:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/08/2016 09:30:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3172
Error: (10/08/2016 09:30:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3172
Error: (10/08/2016 09:30:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (10/08/2016 09:30:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1672
Error: (10/08/2016 09:30:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1672
Error: (10/08/2016 09:30:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
System errors:
=============
Error: (10/09/2016 08:42:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Ochrana softwaru neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/09/2016 08:42:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Ochrana softwaru bylo dosaženo časového limitu (30000 ms).
Error: (10/09/2016 08:41:36 PM) (Source: DCOM) (EventID: 10010) (User: Domov-PC)
Description: Server App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/09/2016 03:31:31 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 5
Error: (10/08/2016 09:30:31 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (10/08/2016 09:01:02 PM) (Source: DCOM) (EventID: 10010) (User: Domov-PC)
Description: Server WindowsDefaultLockScreen se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2016 06:14:46 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (10/08/2016 10:56:08 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (10/08/2016 10:11:59 AM) (Source: DCOM) (EventID: 10010) (User: Domov-PC)
Description: Server microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/08/2016 10:09:47 AM) (Source: DCOM) (EventID: 10001) (User: Domov-PC)
Description: Nelze spustit server DCOM: CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca jako Není k dispozici/Není k dispozici. Došlo k chybě:
31
při provádění příkazu:
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
CodeIntegrity:
===================================
Date: 2016-10-04 21:48:51.966
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.922
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.824
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.544
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.443
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:51.247
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:48.475
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2016-10-04 21:48:47.122
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Solo CPU U3500 @ 1.40GHz
Percentage of memory in use: 50%
Total physical RAM: 3001.79 MB
Available physical RAM: 1471.7 MB
Total Virtual: 6073.79 MB
Available Virtual: 3807.8 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:117.58 GB) (Free:75.35 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:337.97 GB) (Free:337.32 GB) NTFS
Drive e: (RPZ-LP-2W1.1_DES) (CDROM) (Total:5.94 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 465.8 GB) (Disk ID: 08D91DC0)Partition 1: (Not Active) - (Size=9.8 GB) - (Type=27)
Partition 2: (Active) - (Size=117.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=449 MB) - (Type=27)
Partition 4: (Not Active) - (Size=338 GB) - (Type=OF Extended)
==================== End of Addition.txt ============================
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu: info.zip
Odinstaluj Wise Registry Cleaner 9.18
V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému.
Toto otestuj na Virustotal
C:\Users\Domov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\system32\gatherWirelessInfo.vbs
Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému.
Toto otestuj na Virustotal
C:\Users\Domov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\WINDOWS\system32\gatherWirelessInfo.vbs
Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
U3 idsvc; no ImagePath
C:\ProgramData\RogueKiller
Task: {068A5C87-1113-430E-84D3-23B137B0E5E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {0AC49E5E-A337-4697-8A9E-39E6D935A2FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {27028996-E414-4DA9-8D66-8FCA8AE4C62B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {295C756D-20CD-462B-B5F1-2771BC2CD9AF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {5AE168DF-EF4A-4BC4-B83B-AF164A295E23} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6B14221D-5D95-4C41-A154-C6A7C4029636} - \avast! Windows 10 Start Menu helper -> No File <==== ATTENTION
Task: {71C116B0-60C3-4FB0-ABCC-0B108D93C1B2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7C3B951C-6C80-48AB-83D8-3219E7E67B42} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe
Task: {7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {951E71C1-04BC-4642-9774-989487E4AC06} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {9564F382-1C86-40BF-8593-FC8517A0A1E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9F930B50-02EF-41E0-B7EF-65CBFC2F1028} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A77C12E4-BCD5-4E4B-A230-943B1F93E609} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {CF7E51A2-934C-4C60-9A90-1804A726D011} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D5429F95-C37D-4253-BD31-95DC2583C615} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {EC57A44B-AED8-4B0F-9289-345FFAD8D4C0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
C:\Program Files\Wise
EmptyTemp:
End(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu: info.zip
Ten Wise registry cleaner nešel odinstalovat, asi proto, že složka c:\Program Files\Wise\ je zcela prázdná… ?
Virustotal:
https://www.virustotal.com/cs/file/f985 ... 476123670/
https://www.virustotal.com/cs/file/9265 ... 476123931/
Virustotal:
https://www.virustotal.com/cs/file/f985 ... 476123670/
https://www.virustotal.com/cs/file/9265 ... 476123931/
Re: Kontrola logu: info.zip
Fix result of Farbar Recovery Scan Tool (x86) Version: 09-10-2016
Ran by Domov (10-10-2016 20:33:42) Run:2
Running from C:\Users\Domov\Desktop
Loaded Profiles: Domov (Available Profiles: Domov & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
U3 idsvc; no ImagePath
C:\ProgramData\RogueKiller
Task: {068A5C87-1113-430E-84D3-23B137B0E5E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {0AC49E5E-A337-4697-8A9E-39E6D935A2FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {27028996-E414-4DA9-8D66-8FCA8AE4C62B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {295C756D-20CD-462B-B5F1-2771BC2CD9AF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {5AE168DF-EF4A-4BC4-B83B-AF164A295E23} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6B14221D-5D95-4C41-A154-C6A7C4029636} - \avast! Windows 10 Start Menu helper -> No File <==== ATTENTION
Task: {71C116B0-60C3-4FB0-ABCC-0B108D93C1B2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7C3B951C-6C80-48AB-83D8-3219E7E67B42} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe
Task: {7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {951E71C1-04BC-4642-9774-989487E4AC06} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {9564F382-1C86-40BF-8593-FC8517A0A1E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9F930B50-02EF-41E0-B7EF-65CBFC2F1028} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A77C12E4-BCD5-4E4B-A230-943B1F93E609} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {CF7E51A2-934C-4C60-9A90-1804A726D011} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D5429F95-C37D-4253-BD31-95DC2583C615} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {EC57A44B-AED8-4B0F-9289-345FFAD8D4C0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
C:\Program Files\Wise
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab => not found
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home => not found
HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3 => key not found.
"C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll" => not found.
HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9 => key not found.
"C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll" => not found.
idsvc => service not found.
"C:\ProgramData\RogueKiller" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{068A5C87-1113-430E-84D3-23B137B0E5E9} => key not found.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0AC49E5E-A337-4697-8A9E-39E6D935A2FB} => key not found.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27028996-E414-4DA9-8D66-8FCA8AE4C62B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27028996-E414-4DA9-8D66-8FCA8AE4C62B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{295C756D-20CD-462B-B5F1-2771BC2CD9AF}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{295C756D-20CD-462B-B5F1-2771BC2CD9AF}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5AE168DF-EF4A-4BC4-B83B-AF164A295E23}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5AE168DF-EF4A-4BC4-B83B-AF164A295E23}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6B14221D-5D95-4C41-A154-C6A7C4029636}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B14221D-5D95-4C41-A154-C6A7C4029636}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! Windows 10 Start Menu helper" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{71C116B0-60C3-4FB0-ABCC-0B108D93C1B2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71C116B0-60C3-4FB0-ABCC-0B108D93C1B2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C3B951C-6C80-48AB-83D8-3219E7E67B42}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C3B951C-6C80-48AB-83D8-3219E7E67B42}" => key removed successfully.
C:\Windows\System32\Tasks\WiseCleaner\WRCSkipUAC => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WiseCleaner\WRCSkipUAC" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{951E71C1-04BC-4642-9774-989487E4AC06}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{951E71C1-04BC-4642-9774-989487E4AC06}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9564F382-1C86-40BF-8593-FC8517A0A1E4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9564F382-1C86-40BF-8593-FC8517A0A1E4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9F930B50-02EF-41E0-B7EF-65CBFC2F1028}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F930B50-02EF-41E0-B7EF-65CBFC2F1028}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A77C12E4-BCD5-4E4B-A230-943B1F93E609}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A77C12E4-BCD5-4E4B-A230-943B1F93E609}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF7E51A2-934C-4C60-9A90-1804A726D011}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF7E51A2-934C-4C60-9A90-1804A726D011}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5429F95-C37D-4253-BD31-95DC2583C615}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5429F95-C37D-4253-BD31-95DC2583C615}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC57A44B-AED8-4B0F-9289-345FFAD8D4C0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC57A44B-AED8-4B0F-9289-345FFAD8D4C0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully.
C:\Program Files\Wise => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1401171 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22336488 B
Java, Flash, Steam htmlcache => 734 B
Windows/system/drivers => 320498 B
Edge => 0 B
Chrome => 881276 B
Firefox => 216501217 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 16674 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 52619 B
NetworkService => 5412 B
Domov => 44057068 B
DefaultAppPool => 16674 B
RecycleBin => 5693363 B
EmptyTemp: => 277.8 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:35:06 ====
Ran by Domov (10-10-2016 20:33:42) Run:2
Running from C:\Users\Domov\Desktop
Loaded Profiles: Domov (Available Profiles: Domov & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6675672 2016-04-15] (Piriform Ltd)
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
U3 idsvc; no ImagePath
C:\ProgramData\RogueKiller
Task: {068A5C87-1113-430E-84D3-23B137B0E5E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {0AC49E5E-A337-4697-8A9E-39E6D935A2FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {27028996-E414-4DA9-8D66-8FCA8AE4C62B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {295C756D-20CD-462B-B5F1-2771BC2CD9AF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {5AE168DF-EF4A-4BC4-B83B-AF164A295E23} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {6B14221D-5D95-4C41-A154-C6A7C4029636} - \avast! Windows 10 Start Menu helper -> No File <==== ATTENTION
Task: {71C116B0-60C3-4FB0-ABCC-0B108D93C1B2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7C3B951C-6C80-48AB-83D8-3219E7E67B42} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe
Task: {7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {951E71C1-04BC-4642-9774-989487E4AC06} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {9564F382-1C86-40BF-8593-FC8517A0A1E4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {9F930B50-02EF-41E0-B7EF-65CBFC2F1028} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A77C12E4-BCD5-4E4B-A230-943B1F93E609} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {CF7E51A2-934C-4C60-9A90-1804A726D011} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {D5429F95-C37D-4253-BD31-95DC2583C615} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {EC57A44B-AED8-4B0F-9289-345FFAD8D4C0} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
C:\Program Files\Wise
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-446455070-1593252463-3502011289-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
HKU\S-1-5-21-446455070-1593252463-3502011289-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value not found.
FF NewTab: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:newtab => not found
FF Homepage: Mozilla\Firefox\Profiles\7pvkinw7.default -> about:home => not found
HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3 => key not found.
"C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll" => not found.
HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9 => key not found.
"C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll" => not found.
idsvc => service not found.
"C:\ProgramData\RogueKiller" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{068A5C87-1113-430E-84D3-23B137B0E5E9} => key not found.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0AC49E5E-A337-4697-8A9E-39E6D935A2FB} => key not found.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27028996-E414-4DA9-8D66-8FCA8AE4C62B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27028996-E414-4DA9-8D66-8FCA8AE4C62B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{295C756D-20CD-462B-B5F1-2771BC2CD9AF}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{295C756D-20CD-462B-B5F1-2771BC2CD9AF}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5AE168DF-EF4A-4BC4-B83B-AF164A295E23}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5AE168DF-EF4A-4BC4-B83B-AF164A295E23}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6B14221D-5D95-4C41-A154-C6A7C4029636}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6B14221D-5D95-4C41-A154-C6A7C4029636}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! Windows 10 Start Menu helper" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{71C116B0-60C3-4FB0-ABCC-0B108D93C1B2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71C116B0-60C3-4FB0-ABCC-0B108D93C1B2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C3B951C-6C80-48AB-83D8-3219E7E67B42}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C3B951C-6C80-48AB-83D8-3219E7E67B42}" => key removed successfully.
C:\Windows\System32\Tasks\WiseCleaner\WRCSkipUAC => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WiseCleaner\WRCSkipUAC" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7DA1FBC6-7BAC-4DB5-BBE6-A3C987F7783C}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8E9C3FBD-0866-4D69-8E85-5DA4D1BA8B02}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{951E71C1-04BC-4642-9774-989487E4AC06}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{951E71C1-04BC-4642-9774-989487E4AC06}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9564F382-1C86-40BF-8593-FC8517A0A1E4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9564F382-1C86-40BF-8593-FC8517A0A1E4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9F930B50-02EF-41E0-B7EF-65CBFC2F1028}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9F930B50-02EF-41E0-B7EF-65CBFC2F1028}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A77C12E4-BCD5-4E4B-A230-943B1F93E609}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A77C12E4-BCD5-4E4B-A230-943B1F93E609}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF7E51A2-934C-4C60-9A90-1804A726D011}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF7E51A2-934C-4C60-9A90-1804A726D011}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5429F95-C37D-4253-BD31-95DC2583C615}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5429F95-C37D-4253-BD31-95DC2583C615}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC57A44B-AED8-4B0F-9289-345FFAD8D4C0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC57A44B-AED8-4B0F-9289-345FFAD8D4C0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully.
C:\Program Files\Wise => moved successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1401171 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22336488 B
Java, Flash, Steam htmlcache => 734 B
Windows/system/drivers => 320498 B
Edge => 0 B
Chrome => 881276 B
Firefox => 216501217 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 16674 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 52619 B
NetworkService => 5412 B
Domov => 44057068 B
DefaultAppPool => 16674 B
RecycleBin => 5693363 B
EmptyTemp: => 277.8 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:35:06 ====
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu: info.zip
co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: Kontrola logu: info.zip
V tuto chvíli se zdá být notebook trochu pomalejší, ale to už spíš bude jeho stářím, resp. výkonem, takže asi OK
-
jerabina
- člen Security týmu
-
Level 6
- Příspěvky: 3647
- Registrován: březen 13
- Bydliště: Litoměřice
- Pohlaví:
- Stav:
Offline
Re: Kontrola logu: info.zip
Ono je možné, že je počítač o trochu pomalejší po vyčištění vzhledem k tomu, že se vyprázdní dočasné složky a mezisoubory, ale to by se mělo během chvíle obnovit a mělo by to být rychlejší než předtím.
Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"
Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/
ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.
Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt
Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
Re: Kontrola logu: info.zip Vyřešeno
Notebook je stále ještě pomalejší, ale jinak snad OK.
# DelFix v1.013 - Logfile created 16/10/2016 at 18:23:23
# Updated 17/04/2016 by Xplode
# Username : Domov - DOMOV-PC
# Operating System : Windows 10 Home (32 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : HKLM\SOFTWARE\OldTimer Tools
~ Cleaning system restore ...
Deleted : RP #1 [zoek.exe restore point | 10/05/2016 19:35:47]
Deleted : RP #2 [Instalační služba modulů systému Windows | 10/08/2016 19:02:57]
Deleted : RP #3 [Windows Update | 10/14/2016 09:40:10]
New restore point created !
########## - EOF - ##########
# DelFix v1.013 - Logfile created 16/10/2016 at 18:23:23
# Updated 17/04/2016 by Xplode
# Username : Domov - DOMOV-PC
# Operating System : Windows 10 Home (32 bits)
~ Removing disinfection tools ...
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : HKLM\SOFTWARE\OldTimer Tools
~ Cleaning system restore ...
Deleted : RP #1 [zoek.exe restore point | 10/05/2016 19:35:47]
Deleted : RP #2 [Instalační služba modulů systému Windows | 10/08/2016 19:02:57]
Deleted : RP #3 [Windows Update | 10/14/2016 09:40:10]
New restore point created !
########## - EOF - ##########
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 25 hostů