Prosím o kontrolu logu celkově pomalý počítač Vyřešeno

[jerabina]

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[deus.one]

Ahoj,

tady to je

log z = FRST.txt (část 1.)

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-10-2016
Ran by RKN (administrator) on RKN-PC (11-10-2016 17:13:32)
Running from C:\Users\RKN\Desktop
Loaded Profiles: RKN (Available Profiles: RKN)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\nsbu.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\nsbu.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Gemfor s.r.o.) C:\Program Files\T-Mobile\T-Mobile Internet Manager\Manager.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\conathst.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11680400 2012-10-26] (Realtek Semiconductor)
HKLM\...\Run: [snpstd3] => C:\WINDOWS\vsnpstd3.exe [339968 2005-09-05] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30879328 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\...\Run: [T-Mobile CManager] => C:\Program Files\T-Mobile\T-Mobile Internet Manager\Manager.exe [2166552 2013-10-31] (Gemfor s.r.o.)
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [795648 2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\buShell.dll [2016-09-23] (Symantec Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
Startup: C:\Users\RKN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 2510 series.lnk [2016-06-11]

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 77.48.254.254 77.48.100.254
Tcpip\..\Interfaces\{b93799b9-2dc1-4a3e-8474-d85f46db5074}: [NameServer] 89.203.151.254,81.19.33.2
Tcpip\..\Interfaces\{ce381c4f-b421-43ab-89fc-19e0a9df4554}: [DhcpNameServer] 77.48.254.254 77.48.100.254

Internet Explorer:
==================
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll => No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-09-15] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll => No File
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-09-15] (Microsoft Corporation.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\coIEPlg.dll [2016-09-23] (Symantec Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\RKN\AppData\Roaming\Mozilla\Firefox\Profiles\ooo4ypix.default [2016-10-11]
FF Homepage: Mozilla\Firefox\Profiles\ooo4ypix.default -> hxxp://www.seznam.cz/
FF Extension: (Firefox Hotfix) - C:\Users\RKN\AppData\Roaming\Mozilla\Firefox\Profiles\ooo4ypix.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.7.0.76\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.7.0.76\coFFAddon [2016-10-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-11-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-11-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-09-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default [2016-10-11]
CHR Extension: (Dokumenty Google) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-12]
CHR Extension: (Disk Google) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-03]
CHR Extension: (YouTube) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-03]
CHR Extension: (Norton Security Toolbar) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-10-06]
CHR Extension: (Vyhledávání Google) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-05-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-29]
CHR Extension: (Norton Identity Safe) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-01-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-29]
CHR Extension: (Gmail) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-12]
CHR Extension: (Chrome Media Router) - C:\Users\RKN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\Exts\Chrome.crx [2016-09-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 MbnExt; C:\Program Files\T-Mobile\T-Mobile Internet Manager\MbnExt.dll [417128 2013-12-02] (Gemfor s.r.o.)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\NSBU.exe [289080 2016-09-24] (Symantec Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athur; C:\WINDOWS\System32\drivers\athur.sys [1570304 2012-10-18] (Atheros Communications, Inc.)
R1 BHDrvx86; C:\Program Files\Norton Security with Backup\NortonData\22.7.0.76\Definitions\BASHDefs\20161005.001\BHDrvx86.sys [1334008 2016-08-18] (Symantec Corporation)
R1 ccSet_NSBU; C:\WINDOWS\system32\drivers\NSBU\1608000.032\ccSetx86.sys [137456 2016-06-02] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [388824 2016-10-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [124632 2016-10-04] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton Security with Backup\NortonData\22.7.0.76\Definitions\IPSDefs\20161010.001\IDSvix86.sys [768728 2016-09-27] (Symantec Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
U0 pemaxpm; C:\WINDOWS\System32\drivers\vknrabv.sys [52440 2016-10-08] (Malwarebytes)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
R3 SNPSTD3; C:\WINDOWS\system32\DRIVERS\snpstd3.sys [8701824 2005-10-13] ()
R1 SRTSP; C:\WINDOWS\System32\Drivers\NSBU\1608000.032\SRTSP.SYS [634096 2016-09-23] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\system32\drivers\NSBU\1608000.032\SRTSPX.SYS [43248 2016-09-23] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NSBU\1608000.032\SYMEFASI.SYS [1291992 2016-09-23] (Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NSBU\1608000.032\SYMELAM.SYS [22144 2016-06-02] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [88312 2016-06-27] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\system32\drivers\NSBU\1608000.032\Ironx86.SYS [229616 2016-09-23] (Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\Drivers\NSBU\1608000.032\SYMNETS.SYS [423640 2016-09-23] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-11 17:13 - 2016-10-11 17:14 - 00015232 _____ C:\Users\RKN\Desktop\FRST.txt
2016-10-11 17:13 - 2016-10-11 17:13 - 00000000 ____D C:\FRST
2016-10-11 17:08 - 2016-10-11 17:12 - 01757184 _____ (Farbar) C:\Users\RKN\Desktop\FRST.exe
2016-10-08 19:54 - 2016-10-08 19:54 - 00001135 _____ C:\Users\RKN\Desktop\malware.txt
2016-10-08 19:08 - 2016-10-08 19:08 - 00001201 _____ C:\malware.txt
2016-10-08 19:07 - 2016-10-08 19:07 - 00052440 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\vknrabv.sys
2016-10-08 18:40 - 2016-10-08 19:18 - 00000551 _____ C:\Users\RKN\Desktop\JRT.txt
2016-10-08 08:32 - 2016-10-08 09:44 - 00000000 ____D C:\AdwCleaner
2016-10-08 08:29 - 2016-10-08 08:31 - 03874368 _____ C:\Users\RKN\Downloads\AdwCleaner.exe
2016-10-07 18:56 - 2016-10-09 14:18 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-10-07 18:54 - 2016-10-08 20:48 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-10-07 18:54 - 2016-10-07 18:54 - 00001133 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-10-07 18:54 - 2016-10-07 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-10-07 18:54 - 2016-10-07 18:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-07 18:54 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-10-07 18:54 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-10-07 18:54 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-10-07 18:45 - 2016-10-07 18:53 - 22851472 _____ (Malwarebytes ) C:\Users\RKN\Downloads\mbam-setup-2.2.1.1043.exe
2016-10-07 18:29 - 2016-10-07 18:30 - 00448512 _____ (OldTimer Tools) C:\Users\RKN\Downloads\TFC.exe
2016-10-07 16:00 - 2016-10-07 16:00 - 00000000 ____D C:\Users\RKN\AppData\Local\TeamViewer
2016-10-07 15:56 - 2016-10-07 15:57 - 00050688 _____ (Atribune.org) C:\Users\RKN\Downloads\ATF-Cleaner.exe
2016-10-07 15:28 - 2016-10-07 15:28 - 00000000 ____D C:\WINDOWS\Panther
2016-10-06 21:00 - 2016-09-15 20:14 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-06 21:00 - 2016-09-15 19:42 - 01144600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-06 21:00 - 2016-09-15 19:37 - 00892008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-06 21:00 - 2016-09-15 19:37 - 00784576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-06 21:00 - 2016-09-15 19:37 - 00496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-10-06 21:00 - 2016-09-15 19:35 - 06015840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-06 21:00 - 2016-09-15 19:35 - 01724592 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-06 21:00 - 2016-09-15 19:35 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-06 21:00 - 2016-09-15 19:35 - 00356704 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-10-06 21:00 - 2016-09-15 19:35 - 00356704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-10-06 21:00 - 2016-09-15 19:32 - 00279416 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeunlock.exe
2016-10-06 21:00 - 2016-09-15 19:31 - 00583648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-10-06 21:00 - 2016-09-15 19:28 - 01015648 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-06 21:00 - 2016-09-15 19:27 - 00868704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-10-06 21:00 - 2016-09-15 19:23 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-06 21:00 - 2016-09-15 19:23 - 01503032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-10-06 21:00 - 2016-09-15 19:23 - 00550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-06 21:00 - 2016-09-15 19:23 - 00170448 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-10-06 21:00 - 2016-09-15 19:22 - 02256080 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-06 21:00 - 2016-09-15 19:22 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2016-10-06 21:00 - 2016-09-15 19:21 - 00557920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-10-06 21:00 - 2016-09-15 19:21 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-06 21:00 - 2016-09-15 19:18 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-06 21:00 - 2016-09-15 19:18 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-10-06 21:00 - 2016-09-15 19:18 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-06 21:00 - 2016-09-15 19:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-06 21:00 - 2016-09-15 19:18 - 00955528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-06 21:00 - 2016-09-15 19:17 - 20965248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-06 21:00 - 2016-09-15 19:14 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-10-06 21:00 - 2016-09-15 19:13 - 01276608 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-06 21:00 - 2016-09-15 19:13 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-06 21:00 - 2016-09-15 19:13 - 00484544 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-06 21:00 - 2016-09-15 19:13 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2016-10-06 21:00 - 2016-09-15 19:00 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-06 21:00 - 2016-09-15 19:00 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-10-06 21:00 - 2016-09-15 19:00 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-06 21:00 - 2016-09-15 19:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-10-06 21:00 - 2016-09-15 18:59 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovslegacy.dll
2016-10-06 21:00 - 2016-09-15 18:58 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-10-06 21:00 - 2016-09-15 18:58 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-10-06 21:00 - 2016-09-15 18:57 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-10-06 21:00 - 2016-09-15 18:57 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-10-06 21:00 - 2016-09-15 18:57 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2016-10-06 21:00 - 2016-09-15 18:57 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2016-10-06 21:00 - 2016-09-15 18:57 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-10-06 21:00 - 2016-09-15 18:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-06 21:00 - 2016-09-15 18:56 - 00823808 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-10-06 21:00 - 2016-09-15 18:56 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-06 21:00 - 2016-09-15 18:56 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2016-10-06 21:00 - 2016-09-15 18:55 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-10-06 21:00 - 2016-09-15 18:55 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-10-06 21:00 - 2016-09-15 18:54 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2016-10-06 21:00 - 2016-09-15 18:54 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-10-06 21:00 - 2016-09-15 18:54 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-10-06 21:00 - 2016-09-15 18:54 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-06 21:00 - 2016-09-15 18:53 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-10-06 21:00 - 2016-09-15 18:53 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-10-06 21:00 - 2016-09-15 18:52 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-06 21:00 - 2016-09-15 18:52 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-10-06 21:00 - 2016-09-15 18:52 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2016-10-06 21:00 - 2016-09-15 18:52 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-10-06 21:00 - 2016-09-15 18:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-06 21:00 - 2016-09-15 18:49 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-06 21:00 - 2016-09-15 18:49 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-10-06 21:00 - 2016-09-15 18:49 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-06 21:00 - 2016-09-15 18:49 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-10-06 21:00 - 2016-09-15 18:49 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-10-06 21:00 - 2016-09-15 18:48 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-10-06 21:00 - 2016-09-15 18:48 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-10-06 21:00 - 2016-09-15 18:47 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-06 21:00 - 2016-09-15 18:47 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2016-10-06 21:00 - 2016-09-15 18:46 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-10-06 21:00 - 2016-09-15 18:45 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-06 21:00 - 2016-09-15 18:45 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\manage-bde.exe
2016-10-06 21:00 - 2016-09-15 18:44 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-10-06 21:00 - 2016-09-15 18:44 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-06 21:00 - 2016-09-15 18:44 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2016-10-06 21:00 - 2016-09-15 18:43 - 07467520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-06 21:00 - 2016-09-15 18:43 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
2016-10-06 21:00 - 2016-09-15 18:42 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2016-10-06 21:00 - 2016-09-15 18:41 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-06 21:00 - 2016-09-15 18:41 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-06 21:00 - 2016-09-15 18:40 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-06 21:00 - 2016-09-15 18:40 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-06 21:00 - 2016-09-15 18:40 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2016-10-06 21:00 - 2016-09-15 18:39 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-10-06 21:00 - 2016-09-15 18:39 - 02254848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-06 21:00 - 2016-09-15 18:39 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-06 21:00 - 2016-09-15 18:39 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-06 21:00 - 2016-09-15 18:38 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-06 21:00 - 2016-09-15 18:38 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-06 21:00 - 2016-09-15 18:38 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-06 21:00 - 2016-09-15 18:38 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-10-06 21:00 - 2016-09-15 18:38 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-10-06 21:00 - 2016-09-15 18:36 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-06 21:00 - 2016-09-15 18:36 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-10-06 21:00 - 2016-09-15 18:35 - 01438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-10-06 21:00 - 2016-09-15 18:35 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-10-06 21:00 - 2016-09-15 18:35 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2016-10-06 20:59 - 2016-09-15 19:40 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2016-10-06 20:59 - 2016-09-15 19:37 - 00320152 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-10-06 20:59 - 2016-09-15 19:35 - 00470368 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-06 20:59 - 2016-09-15 19:32 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-06 20:59 - 2016-09-15 19:23 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-06 20:59 - 2016-09-15 19:23 - 00342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-06 20:59 - 2016-09-15 19:22 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-10-06 20:59 - 2016-09-15 19:22 - 00860512 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-10-06 20:59 - 2016-09-15 19:22 - 00433832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2016-10-06 20:59 - 2016-09-15 19:21 - 01980776 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-06 20:59 - 2016-09-15 19:19 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-10-06 20:59 - 2016-09-15 19:18 - 06654616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-10-06 20:59 - 2016-09-15 19:18 - 00856872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2016-10-06 20:59 - 2016-09-15 19:12 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-06 20:59 - 2016-09-15 19:08 - 05683712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-06 20:59 - 2016-09-15 19:03 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-10-06 20:59 - 2016-09-15 19:00 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-10-06 20:59 - 2016-09-15 19:00 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2016-10-06 20:59 - 2016-09-15 19:00 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NfcRadioMedia.dll
2016-10-06 20:59 - 2016-09-15 18:59 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-10-06 20:59 - 2016-09-15 18:59 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-06 20:59 - 2016-09-15 18:58 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-10-06 20:59 - 2016-09-15 18:58 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-10-06 20:59 - 2016-09-15 18:58 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-06 20:59 - 2016-09-15 18:58 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-10-06 20:59 - 2016-09-15 18:58 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-10-06 20:59 - 2016-09-15 18:57 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-06 20:59 - 2016-09-15 18:56 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2016-10-06 20:59 - 2016-09-15 18:56 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-10-06 20:59 - 2016-09-15 18:55 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-10-06 20:59 - 2016-09-15 18:55 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-06 20:59 - 2016-09-15 18:55 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2016-10-06 20:59 - 2016-09-15 18:55 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-10-06 20:59 - 2016-09-15 18:55 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-10-06 20:59 - 2016-09-15 18:55 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-10-06 20:59 - 2016-09-15 18:54 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-10-06 20:59 - 2016-09-15 18:54 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2016-10-06 20:59 - 2016-09-15 18:52 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-10-06 20:59 - 2016-09-15 18:52 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-10-06 20:59 - 2016-09-15 18:52 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2016-10-06 20:59 - 2016-09-15 18:52 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2016-10-06 20:59 - 2016-09-15 18:51 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-06 20:59 - 2016-09-15 18:51 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-10-06 20:59 - 2016-09-15 18:51 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2016-10-06 20:59 - 2016-09-15 18:50 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-10-06 20:59 - 2016-09-15 18:48 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-10-06 20:59 - 2016-09-15 18:47 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-10-06 20:59 - 2016-09-15 18:47 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2016-10-06 20:59 - 2016-09-15 18:47 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2016-10-06 20:59 - 2016-09-15 18:46 - 03305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-06 20:59 - 2016-09-15 18:46 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-10-06 20:59 - 2016-09-15 18:46 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-10-06 20:59 - 2016-09-15 18:46 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-10-06 20:59 - 2016-09-15 18:46 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-10-06 20:59 - 2016-09-15 18:45 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-06 20:59 - 2016-09-15 18:44 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2016-10-06 20:59 - 2016-09-15 18:44 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-06 20:59 - 2016-09-15 18:44 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-10-06 20:59 - 2016-09-15 18:44 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2016-10-06 20:59 - 2016-09-15 18:44 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvenotify.exe
2016-10-06 20:59 - 2016-09-15 18:44 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Sens.dll
2016-10-06 20:59 - 2016-09-15 18:43 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-10-06 20:59 - 2016-09-15 18:43 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdeui.dll
2016-10-06 20:59 - 2016-09-15 18:42 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-10-06 20:59 - 2016-09-15 18:42 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-10-06 20:59 - 2016-09-15 18:41 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-10-06 20:59 - 2016-09-15 18:40 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-10-06 20:59 - 2016-09-15 18:40 - 01488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-06 20:59 - 2016-09-15 18:40 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-06 20:59 - 2016-09-15 18:39 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-06 20:59 - 2016-09-15 18:39 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-06 20:59 - 2016-09-15 18:38 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-10-06 20:59 - 2016-09-15 18:36 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-10-06 20:59 - 2016-08-06 05:33 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-10-06 20:58 - 2016-09-15 19:22 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-10-06 20:58 - 2016-09-15 18:56 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-10-06 20:58 - 2016-09-15 18:53 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-10-06 20:58 - 2016-09-15 18:52 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-10-06 20:57 - 2016-09-15 19:21 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-10-06 20:57 - 2016-09-15 19:02 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-06 20:57 - 2016-09-15 18:58 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-06 20:57 - 2016-09-15 18:56 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-10-06 20:57 - 2016-09-15 18:55 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-06 20:57 - 2016-09-15 18:52 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-06 20:57 - 2016-09-15 18:52 - 00500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-06 20:57 - 2016-09-15 18:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-06 20:57 - 2016-09-15 18:45 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-06 20:56 - 2016-09-15 19:33 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-10-06 20:56 - 2016-09-15 19:25 - 00262960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-10-06 20:56 - 2016-09-15 19:21 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-10-06 20:56 - 2016-09-15 19:21 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-10-06 20:56 - 2016-09-15 19:20 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2016-10-06 20:56 - 2016-09-15 18:59 - 00229888 _____ C:\WINDOWS\system32\wc_storage.dll
2016-10-06 20:56 - 2016-09-15 18:55 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-06 20:56 - 2016-09-15 18:55 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2016-10-06 20:56 - 2016-09-15 18:53 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-06 20:56 - 2016-09-15 18:49 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-10-06 20:56 - 2016-09-15 18:39 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-10-06 20:56 - 2016-09-15 18:39 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-06 20:55 - 2016-09-15 19:42 - 00231776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-06 20:55 - 2016-09-15 19:19 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-10-06 20:55 - 2016-09-15 19:12 - 00781664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-06 20:55 - 2016-09-15 19:03 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-10-06 20:55 - 2016-09-15 18:58 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-10-06 20:55 - 2016-09-15 18:57 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-10-06 20:55 - 2016-09-15 18:56 - 00257536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataExchange.dll
2016-10-06 20:55 - 2016-09-15 18:40 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-10-06 20:55 - 2016-09-15 18:36 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2016-10-06 20:54 - 2016-09-15 19:00 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-06 20:54 - 2016-09-15 18:57 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-06 20:54 - 2016-09-15 18:57 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-10-06 20:54 - 2016-09-15 18:56 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-06 20:54 - 2016-09-15 18:55 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-06 20:54 - 2016-09-15 18:49 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-06 20:54 - 2016-09-15 18:42 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\BackgroundMediaPolicy.dll
2016-10-06 20:54 - 2016-09-15 18:38 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-06 20:53 - 2016-09-15 19:06 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ffbroker.dll
2016-10-06 20:53 - 2016-09-15 19:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2016-10-06 20:53 - 2016-09-15 19:00 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-10-06 20:53 - 2016-09-15 19:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-10-06 20:53 - 2016-09-15 18:58 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-06 20:53 - 2016-09-15 18:58 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-06 20:53 - 2016-09-15 18:58 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2016-10-06 20:53 - 2016-09-15 18:57 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2016-10-06 20:53 - 2016-09-15 18:57 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-06 20:53 - 2016-09-15 18:56 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2016-10-06 20:53 - 2016-09-15 18:56 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-06 20:53 - 2016-09-15 18:55 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-06 20:53 - 2016-09-15 18:54 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2016-10-06 20:53 - 2016-09-15 18:53 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2016-10-06 20:53 - 2016-09-15 18:47 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-06 20:53 - 2016-09-15 18:43 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-10-06 20:53 - 2016-09-15 18:35 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2016-10-06 20:52 - 2016-10-06 20:53 - 00388608 _____ (Trend Micro Inc.) C:\Users\RKN\Downloads\hijackthis.exe
2016-10-06 20:52 - 2016-09-15 19:38 - 04970224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-06 20:51 - 2016-09-24 07:18 - 01375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-06 20:51 - 2016-09-24 07:07 - 01938432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-06 20:51 - 2016-09-15 19:42 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-10-06 20:51 - 2016-09-15 19:37 - 00402352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-10-06 20:51 - 2016-09-15 19:36 - 00021344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cmimcext.sys
2016-10-06 20:51 - 2016-09-15 19:35 - 01583112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-06 20:51 - 2016-09-15 19:35 - 01072280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-06 20:51 - 2016-09-15 19:35 - 00946272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-06 20:51 - 2016-09-15 19:34 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-10-06 20:51 - 2016-09-15 19:30 - 00950112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-06 20:51 - 2016-09-15 19:26 - 00581672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-10-06 20:51 - 2016-09-15 19:25 - 00340320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-10-06 20:51 - 2016-09-15 19:23 - 00290272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-06 20:51 - 2016-09-15 19:22 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-06 20:51 - 2016-09-15 19:21 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-06 20:51 - 2016-09-15 19:21 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-06 20:51 - 2016-09-15 19:20 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-06 20:51 - 2016-09-15 19:17 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-06 20:51 - 2016-09-15 19:17 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-06 20:51 - 2016-09-15 19:17 - 00834128 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-06 20:51 - 2016-09-15 19:17 - 00702416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-06 20:51 - 2016-09-15 19:17 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-06 20:51 - 2016-09-15 19:17 - 00125792 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2016-10-06 20:51 - 2016-09-15 19:16 - 00093984 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-10-06 20:51 - 2016-09-15 19:03 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2016-10-06 20:51 - 2016-09-15 19:02 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-10-06 20:51 - 2016-09-15 19:01 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-06 20:51 - 2016-09-15 19:01 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll
2016-10-06 20:51 - 2016-09-15 18:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
2016-10-06 20:51 - 2016-09-15 18:58 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-10-06 20:51 - 2016-09-15 18:58 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-06 20:51 - 2016-09-15 18:58 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-10-06 20:51 - 2016-09-15 18:58 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
2016-10-06 20:51 - 2016-09-15 18:57 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2016-10-06 20:51 - 2016-09-15 18:57 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-10-06 20:51 - 2016-09-15 18:57 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-10-06 20:51 - 2016-09-15 18:57 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-06 20:51 - 2016-09-15 18:57 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-10-06 20:51 - 2016-09-15 18:56 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-06 20:51 - 2016-09-15 18:56 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-10-06 20:51 - 2016-09-15 18:55 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkCollectionAgent.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrGidsHandler.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll

[deus.one]

log z = FRST.txt (část 2.)

2016-10-06 20:51 - 2016-09-15 18:55 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-10-06 20:51 - 2016-09-15 18:55 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-06 20:51 - 2016-09-15 18:54 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-10-06 20:51 - 2016-09-15 18:54 - 00493568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregcmd.exe
2016-10-06 20:51 - 2016-09-15 18:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-10-06 20:51 - 2016-09-15 18:54 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2016-10-06 20:51 - 2016-09-15 18:54 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-10-06 20:51 - 2016-09-15 18:53 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-10-06 20:51 - 2016-09-15 18:53 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2016-10-06 20:51 - 2016-09-15 18:52 - 01110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-10-06 20:51 - 2016-09-15 18:52 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-10-06 20:51 - 2016-09-15 18:52 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2016-10-06 20:51 - 2016-09-15 18:52 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-10-06 20:51 - 2016-09-15 18:51 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-10-06 20:51 - 2016-09-15 18:50 - 07625728 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-06 20:51 - 2016-09-15 18:50 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-06 20:51 - 2016-09-15 18:50 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwrshplugin.dll
2016-10-06 20:51 - 2016-09-15 18:49 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-06 20:51 - 2016-09-15 18:49 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-06 20:51 - 2016-09-15 18:49 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-06 20:51 - 2016-09-15 18:49 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-10-06 20:51 - 2016-09-15 18:48 - 01321472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-06 20:51 - 2016-09-15 18:48 - 01112576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-06 20:51 - 2016-09-15 18:47 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-10-06 20:51 - 2016-09-15 18:45 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-06 20:51 - 2016-09-15 18:45 - 02642944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-10-06 20:51 - 2016-09-15 18:45 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-10-06 20:51 - 2016-09-15 18:45 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-10-06 20:51 - 2016-09-15 18:44 - 12345856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-06 20:51 - 2016-09-15 18:44 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-06 20:51 - 2016-09-15 18:44 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-10-06 20:51 - 2016-09-15 18:44 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2016-10-06 20:51 - 2016-09-15 18:43 - 03520512 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-10-06 20:51 - 2016-09-15 18:43 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-10-06 20:51 - 2016-09-15 18:43 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-10-06 20:51 - 2016-09-15 18:42 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-06 20:51 - 2016-09-15 18:42 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
2016-10-06 20:51 - 2016-09-15 18:41 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-06 20:51 - 2016-09-15 18:41 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-06 20:51 - 2016-09-15 18:40 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-10-06 20:51 - 2016-09-15 18:40 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-10-06 20:51 - 2016-09-15 18:40 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2016-10-06 20:51 - 2016-09-15 18:40 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-06 20:51 - 2016-09-15 18:39 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 01122304 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 00711168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-06 20:51 - 2016-09-15 18:39 - 00240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-10-06 20:51 - 2016-09-15 18:38 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-10-06 20:51 - 2016-09-15 18:38 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-06 20:51 - 2016-09-15 18:38 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-10-06 20:51 - 2016-09-15 18:38 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-06 20:51 - 2016-09-15 16:05 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-06 20:50 - 2016-09-15 19:06 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-10-06 20:50 - 2016-09-15 19:01 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-10-06 20:50 - 2016-09-15 19:00 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2016-10-06 20:50 - 2016-09-15 18:59 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-06 20:50 - 2016-09-15 18:58 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2016-10-06 20:50 - 2016-09-15 18:57 - 03716096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2016-10-06 20:50 - 2016-09-15 18:56 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2016-10-06 20:50 - 2016-09-15 18:56 - 00265728 _____ C:\WINDOWS\system32\Windows.Perception.Stub.dll
2016-10-06 20:50 - 2016-09-15 18:55 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-06 20:50 - 2016-09-15 18:52 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-10-06 20:50 - 2016-09-15 18:46 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2016-10-06 20:50 - 2016-09-15 18:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-10-06 16:47 - 2016-10-06 16:47 - 00001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-10-06 16:47 - 2016-10-06 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-10-06 16:47 - 2016-10-06 16:47 - 00000000 ____D C:\Program Files\CCleaner
2016-10-06 16:43 - 2016-10-06 16:45 - 08244656 _____ (Piriform Ltd) C:\Users\RKN\Downloads\ccsetup522.exe
2016-10-06 15:55 - 2016-10-06 15:55 - 00000000 _____ C:\Users\RKN\Desktop\Nový textový dokument.txt
2016-10-06 05:54 - 2016-10-06 05:54 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-10-06 05:43 - 2016-10-06 05:43 - 00000000 ____D C:\ProgramData\USOShared
2016-10-06 05:42 - 2016-10-06 16:23 - 00000000 ____D C:\Users\RKN\AppData\Local\ConnectedDevicesPlatform
2016-10-06 05:42 - 2016-10-06 05:42 - 00000020 ___SH C:\Users\RKN\ntuser.ini
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Šablony
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Poslední
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-06 05:41 - 2016-10-06 05:41 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-10-06 05:39 - 2016-10-06 05:40 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-10-06 05:39 - 2016-10-06 05:40 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-10-06 05:30 - 2016-10-08 09:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-10-06 05:12 - 2016-10-06 05:12 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-10-06 05:12 - 2016-10-06 05:12 - 06534656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 04557824 _____ (Microsoft) C:\WINDOWS\system32\dbgeng.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 03595264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-10-06 05:12 - 2016-10-06 05:12 - 02423296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 02360832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 02318336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 02107392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01968480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 01966288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01957216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 01885696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01853232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01842688 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01774080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01362504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01293312 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00959104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00798504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00601200 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00589144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00570720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00564488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00461312 _____ (Microsoft) C:\WINDOWS\system32\DbgModel.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00432328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00399712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00321792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00315736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00292184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-10-06 05:12 - 2016-10-06 05:12 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\NmaDirect.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00260448 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-10-06 05:12 - 2016-10-06 05:12 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-10-06 05:12 - 2016-10-06 05:12 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00145248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00127168 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorTcgDrv.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00094528 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00092000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AddressParser.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00054624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactActivation.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00043944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00036704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-10-06 05:12 - 2016-10-06 05:12 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-10-06 05:12 - 2016-10-06 05:12 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-10-06 05:12 - 2016-10-06 05:12 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-10-06 05:12 - 2016-10-06 05:12 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccessRes.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-10-06 05:12 - 2016-10-06 05:12 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneutilRes.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneServiceRes.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2016-10-06 05:07 - 2016-07-15 19:45 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-10-06 05:07 - 2016-07-15 19:45 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-10-06 05:07 - 2016-07-15 19:29 - 05489664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-10-06 05:05 - 2016-10-06 05:05 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\WINDOWS\system32\msmq
2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-10-06 05:02 - 2016-10-06 05:02 - 00000000 ____D C:\inetpub
2016-10-06 05:02 - 2016-10-06 04:52 - 00000000 ____D C:\Program Files\MSBuild
2016-10-06 05:01 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-10-06 05:01 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-10-06 05:01 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-10-06 05:00 - 2016-10-06 05:00 - 00173408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-10-06 04:51 - 2016-10-06 04:51 - 00001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-06 04:51 - 2016-10-06 04:51 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2016-10-06 04:51 - 2016-10-06 04:51 - 00000000 ____D C:\Users\Default\AppData\Roaming\AVAST Software
2016-10-06 04:51 - 2016-10-06 04:51 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-10-06 04:51 - 2016-10-06 04:51 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2016-10-06 04:51 - 2016-10-06 04:51 - 00000000 ____D C:\Users\Default User\AppData\Roaming\AVAST Software
2016-10-06 04:51 - 2016-10-06 04:51 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-10-06 04:41 - 2016-10-06 04:41 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2016-10-06 04:37 - 2016-10-06 04:52 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-10-06 04:34 - 2016-10-11 16:03 - 00000000 ____D C:\Users\RKN
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Šablony
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Soubory cookie
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Poslední
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Okolní tiskárny
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Okolní síť
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Nabídka Start
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Dokumenty
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Documents\Obrázky
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Documents\Hudba
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Documents\Filmy
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\Data aplikací
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-10-06 04:34 - 2016-10-06 04:34 - 00000000 _SHDL C:\Users\RKN\AppData\Local\Data aplikací
2016-10-06 04:30 - 2016-10-08 09:55 - 01601702 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-10-06 04:26 - 2016-10-06 04:26 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2016-10-06 04:26 - 2016-10-06 04:26 - 00000000 ____D C:\Program Files\Realtek
2016-10-06 04:25 - 2016-10-06 04:25 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-10-06 04:25 - 2016-10-06 04:25 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-10-06 04:22 - 2016-10-06 04:22 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-10-06 04:22 - 2016-10-06 04:22 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-10-05 16:53 - 2016-10-05 16:53 - 00087792 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SY1
2016-10-05 16:49 - 2016-10-09 15:05 - 00000000 ____D C:\Program Files\TeamViewer
2016-10-05 16:49 - 2016-10-05 16:49 - 00001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-10-05 16:47 - 2016-10-05 16:48 - 10893616 _____ (TeamViewer GmbH) C:\Users\RKN\Downloads\TeamViewer_Setup_cs-lnr.exe
2016-10-05 16:10 - 2016-10-05 16:10 - 00000000 ____D C:\Users\RKN\AppData\Roaming\TeamViewer
2016-09-21 06:13 - 2016-09-21 15:31 - 320599922 _____ C:\Users\RKN\Downloads\Ulice---3087-(20.9.2016).avi
2016-09-16 19:36 - 2016-09-16 20:06 - 368619942 _____ C:\Users\RKN\Downloads\Ulice---3085-(16.9.2016).avi

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-10-11 14:37 - 2016-07-16 10:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-11 14:37 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-10 09:33 - 2013-11-10 18:02 - 00000000 ____D C:\Users\RKN\AppData\Roaming\Skype
2016-10-09 15:47 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\rescache
2016-10-09 15:02 - 2016-07-16 10:28 - 00000000 ____D C:\WINDOWS\INF
2016-10-08 19:07 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\tracing
2016-10-08 09:55 - 2016-07-16 19:01 - 00487146 _____ C:\WINDOWS\system32\perfh005.dat
2016-10-08 09:55 - 2016-07-16 19:01 - 00106022 _____ C:\WINDOWS\system32\perfc005.dat
2016-10-08 09:45 - 2016-07-16 04:22 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2016-10-07 15:39 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\appcompat
2016-10-07 15:32 - 2016-02-13 14:10 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-10-06 21:43 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-06 21:43 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-06 21:43 - 2016-07-16 04:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-06 21:31 - 2016-07-16 10:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-06 20:55 - 2013-08-10 09:29 - 00000000 ____D C:\Users\RKN\AppData\Local\VirtualStore
2016-10-06 20:36 - 2013-11-10 18:02 - 00000000 ___RD C:\Program Files\Skype
2016-10-06 20:35 - 2013-11-10 12:33 - 00000000 ____D C:\Users\RKN\AppData\Roaming\Opera Software
2016-10-06 20:35 - 2013-11-10 12:33 - 00000000 ____D C:\Users\RKN\AppData\Local\Opera Software
2016-10-06 20:35 - 2013-11-10 12:33 - 00000000 ____D C:\Program Files\Opera
2016-10-06 17:29 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-10-06 16:02 - 2013-11-10 11:27 - 00000000 ____D C:\Users\RKN\Desktop\instalace
2016-10-06 06:12 - 2016-05-19 13:09 - 00000000 ____D C:\Users\RKN\AppData\Local\Packages
2016-10-06 06:06 - 2016-05-19 13:36 - 00002421 _____ C:\Users\RKN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-10-06 06:06 - 2016-05-19 13:36 - 00000000 ___RD C:\Users\RKN\OneDrive
2016-10-06 05:43 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\USOPrivate
2016-10-06 05:43 - 2016-07-16 04:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-10-06 05:41 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Windows NT
2016-10-06 05:38 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-10-06 05:38 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Registration
2016-10-06 05:38 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-10-06 05:30 - 2016-05-19 08:46 - 00021592 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-10-06 05:28 - 2016-07-16 10:29 - 00000000 __RHD C:\Users\Public\Libraries
2016-10-06 05:28 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Media
2016-10-06 05:21 - 2016-07-16 10:30 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ___RD C:\Program Files\Windows Defender
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-10-06 05:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-10-06 05:08 - 2016-07-16 19:01 - 00000000 ____D C:\WINDOWS\OCR
2016-10-06 05:02 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-10-06 05:02 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-10-06 05:02 - 2016-07-16 10:26 - 01003008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2016-10-06 05:02 - 2016-07-16 10:26 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2016-10-06 05:02 - 2016-07-16 10:26 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2016-10-06 05:02 - 2016-07-16 10:26 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2016-10-06 05:02 - 2016-07-16 10:26 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2016-10-06 05:02 - 2016-07-16 10:26 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2016-10-06 05:02 - 2016-07-16 10:26 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2016-10-06 05:02 - 2016-07-16 10:26 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2016-10-06 05:02 - 2016-07-16 10:26 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2016-10-06 05:02 - 2016-07-16 10:26 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2016-10-06 05:02 - 2016-07-16 10:26 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2016-10-06 05:01 - 2016-07-16 10:26 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2016-10-06 05:01 - 2016-07-16 10:26 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2016-10-06 05:01 - 2016-07-16 10:26 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2016-10-06 05:01 - 2016-07-16 10:26 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2016-10-06 04:58 - 2016-07-16 10:29 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-10-06 04:58 - 2015-08-18 17:40 - 00000000 ____D C:\WINDOWS\system32\Drivers\NSBU
2016-10-06 04:57 - 2016-06-28 06:00 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security with Backup
2016-10-06 04:52 - 2016-02-13 14:00 - 00000000 ____D C:\WINDOWS\ShellNew
2016-10-06 04:52 - 2015-09-14 15:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HappyFoto-Designer
2016-10-06 04:52 - 2014-03-19 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK
2016-10-06 04:52 - 2013-11-20 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-10-06 04:52 - 2013-11-10 18:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-10-06 04:52 - 2013-11-10 18:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-10-06 04:52 - 2013-11-10 17:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2016-10-06 04:52 - 2013-11-10 16:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-06 04:52 - 2013-11-10 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-10-06 04:52 - 2013-11-10 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-10-06 04:52 - 2013-11-10 16:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-10-06 04:52 - 2013-11-10 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free DWG Viewer
2016-10-06 04:52 - 2013-11-10 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF
2016-10-06 04:51 - 2016-07-16 10:29 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-10-06 04:51 - 2015-10-30 07:13 - 00000000 ____D C:\Users\Default.migrated
2016-10-06 04:42 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\spool
2016-10-06 04:42 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-10-06 04:42 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-10-06 04:42 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\IME
2016-10-06 04:42 - 2013-11-10 13:42 - 00000000 ____D C:\WINDOWS\system32\SPReview
2016-10-06 04:42 - 2013-11-10 13:42 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2016-10-06 04:42 - 2013-11-10 11:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-10-06 04:41 - 2016-07-16 10:29 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-10-06 04:41 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\schemas
2016-10-06 04:41 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\Cursors
2016-10-06 04:41 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\System
2016-10-06 04:41 - 2016-07-16 10:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-06 04:41 - 2015-04-15 05:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-10-06 04:41 - 2013-11-10 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
2016-10-06 04:41 - 2013-11-10 16:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-10-06 04:41 - 2013-11-10 16:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-10-06 04:41 - 2013-11-10 16:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESTsoft
2016-10-06 04:41 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\Microsoft Games
2016-10-06 04:27 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-10-06 04:27 - 2016-07-16 10:29 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-10-06 03:20 - 2013-11-10 17:51 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-10-05 21:13 - 2013-11-10 12:26 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-05 16:53 - 2015-08-18 17:42 - 00008234 _____ C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2016-10-05 15:44 - 2013-11-10 12:26 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-04 16:27 - 2013-11-10 12:27 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-04 16:27 - 2013-11-10 12:27 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-16 06:58 - 2013-11-10 16:38 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-09-15 16:11 - 2013-11-10 11:24 - 141747376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2013-11-20 18:57 - 2013-11-20 18:57 - 0000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-10-06 04:22

==================== End of FRST.txt ============================

[deus.one]

Log z Addition

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-10-2016
Ran by RKN (11-10-2016 17:16:51)
Running from C:\Users\RKN\Desktop
Microsoft Windows 10 Home Version 1607 (X86) (2016-10-06 03:42:03)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1386407028-3668555779-2497805603-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1386407028-3668555779-2497805603-503 - Limited - Disabled)
Guest (S-1-5-21-1386407028-3668555779-2497805603-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1386407028-3668555779-2497805603-1003 - Limited - Enabled)
RKN (S-1-5-21-1386407028-3668555779-2497805603-1000 - Administrator - Enabled) => C:\Users\RKN

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Security (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
HappyFoto-Designer 5.4 (HKLM\...\HappyFoto-Designer_is1) (Version: - )
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 48.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 48.0.2 (x86 cs)) (Version: 48.0.2 - Mozilla)
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
Norton Security (HKLM\...\NSBU) (Version: 22.8.0.50 - Symantec Corporation)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6767 - Realtek Semiconductor Corp.)
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
TeamViewer 11 (HKLM\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{adb880a6-d8ff-11cf-9377-00aa003b7a11}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {026E08F2-A918-4170-8DB9-444A7E9755B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0A70D81D-CD8E-41BC-9E2E-92A559362471} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0AC10700-5767-4FB1-8E97-98471578F7FA} - System32\Tasks\Norton Security with Backup\Norton Error Processor => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)
Task: {16E5674E-056C-4880-8155-039955D379AA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1AC2ED44-AA7F-446E-B99A-180D7852D21D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C27F006-DE33-4AE1-90E5-0FC21A2A744E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1E8ED980-E8B7-4063-9D5D-BF544E4D9A7B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {28341B59-49A9-488B-BCE8-0DE7CEBD0360} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {293B341E-1FB4-4EEA-9A48-51C9D3B20A4A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {2AAEEDE7-175A-4D0A-91DB-0EEC4D6E3EC4} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {3043370D-0D7E-4442-AFBD-77B46CF4FF3A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {35567AD7-5B80-43F7-9E2A-E6C0A6244025} - System32\Tasks\HPCustParticipation HP Deskjet 2510 series => C:\Program Files\HP\HP Deskjet 2510 series\Bin\HPCustPartic.exe [2012-01-31] (Hewlett-Packard Co.)
Task: {39ADC1DF-94B9-4D2C-9F10-E6F7755FE303} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {3D858360-B85F-4887-AD5A-85527E923698} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\RKN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-23] (Microsoft Corporation)
Task: {4002BB73-DA94-4012-B109-C5EA3DB93E30} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {43934246-6423-4527-8F2B-A0D51EB6554C} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {44CE3DBF-68CD-49F7-A756-70D7F43B2BA7} - System32\Tasks\Norton Security with Backup\Norton Autofix => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)
Task: {4AB29319-0A0B-4551-86C7-F57B55D76A84} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4CDF8FFA-4BE8-49AA-8CC0-A2A2193A36DB} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4E06CF79-C12E-4810-9D5E-7128829CD985} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {526305B2-9C42-4AF5-919B-7D6DAACF2A78} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {57162A37-F486-4F0C-8ACB-CB4F4723684E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {57CEA591-F329-432D-92BE-3B6EF9329E8B} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\WSCStub.exe [2016-09-23] (Symantec Corporation)
Task: {5A810AA3-959F-43FC-9384-0799E72432BE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {5E82F887-2562-442C-A1E2-0B7C64A91173} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5EAE2C15-F988-4AE4-9C49-5062D98E22E8} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {60AC0AA5-E4A1-4242-85C3-49AD88BDE443} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6D77A071-FB75-4332-BD23-1F00E3D18559} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {72457FB9-398C-4DCE-91CC-16DA902AFD7E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7B6F7A36-9B56-43AA-859F-0B63B29B5F6B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7C2876CB-F6DE-4B69-A1C7-F67B1CF4EEDF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {7F6E1552-32E0-4BB2-BC3C-8C1FA1AE7338} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2016-09-23] (Symantec Corporation)
Task: {8BC490EF-15BF-4AAB-978D-F9430FCBEAA7} - System32\Tasks\Norton Security with Backup\Norton Error Analyzer => C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\SymErr.exe [2016-09-23] (Symantec Corporation)
Task: {8F841559-1AE7-4FDA-82B4-79BE513500C6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {96995F3E-7C2B-41C5-87D2-B1AFD3799489} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {9DB336CC-23D7-4CAB-9A4C-F6214F0A4C20} - System32\Tasks\{28D43A18-D141-463E-BBD4-83284301F62F} => Firefox.exe hxxp://ui.skype.com/ui/0/6.9.59.106/cs/ ... Error=1618
Task: {9DD87A78-0094-49D0-A548-B637422C92D0} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A60E2CEF-B02F-4381-9FB7-44429BA108A5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A6B0CFAB-5A49-40C1-A2D9-C32A18995373} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6FBEFA4-7DE6-4D3F-BAFE-2FF7F9F5E104} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {A8BF47A7-0AF6-4838-87CC-2B57E7A88BAA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {C8B0609C-B656-4C99-B152-4FEB0B7E3C65} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {D5E2E8D5-252E-4D33-BA97-F38F0D145582} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DAB8E496-746C-40E3-AF12-60F0495B16A0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {E1CF072E-A1DD-435D-B4D9-E1D911158A0B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5BD9ECE-061F-431E-9AC7-19F5DFADDBAE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E5BE8AB7-001F-48D0-9501-B1997499BD32} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E79C0A8C-C255-4154-BC2F-1C1A74B260CB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F410372F-6A90-4B32-8FFC-85533CAEC59E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F609C720-2C8E-4C44-8527-4D8E5B32B958} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2013-11-10 16:11 - 2009-07-31 03:44 - 00176235 _____ () C:\WINDOWS\System32\Primomonnt.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-06 20:59 - 2016-09-15 19:32 - 02048496 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-10-06 20:59 - 2016-09-15 19:32 - 02048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-06 20:59 - 2016-09-15 19:32 - 02048496 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-06 05:55 - 2016-10-06 05:55 - 01383616 _____ () C:\Users\RKN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00109056 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2016-07-16 10:25 - 2016-07-16 10:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-06 20:51 - 2016-09-15 18:44 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-06 20:51 - 2016-09-15 18:36 - 01149440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-06 05:12 - 2016-10-06 05:12 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-06 20:51 - 2016-09-15 18:36 - 01725440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-06 20:51 - 2016-09-15 18:38 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-10-06 05:56 - 2016-10-06 05:56 - 00118976 _____ () C:\Users\RKN\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2016-10-06 06:41 - 2016-10-06 06:42 - 00062464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2016-10-06 06:41 - 2016-10-06 06:42 - 00151040 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-06 06:41 - 2016-10-06 06:42 - 27109376 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkyWrap.dll
2016-06-30 13:55 - 2016-06-30 13:55 - 46476472 _____ () C:\Program Files\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll
2016-10-04 16:27 - 2016-09-25 05:47 - 01805416 _____ () C:\Program Files\Google\Chrome\Application\53.0.2785.143\libglesv2.dll
2016-10-04 16:27 - 2016-09-25 05:47 - 00093288 _____ () C:\Program Files\Google\Chrome\Application\53.0.2785.143\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.exe: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.scr: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.bat: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.com: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.cmd: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.reg: => <===== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2015-08-18 17:34 - 00000826 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 77.48.254.254 - 77.48.100.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{688FD9AE-5FB7-4E97-8D99-FEDC061A0151}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{AE6FA82E-1119-4BB0-8466-9D4F79235BD4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8332955F-AC75-4D30-996F-DC03B7147EFE}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{677CF90B-B2A9-47A9-9FC8-ADEE3298CFF1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe
FirewallRules: [{43C1B8A2-CCE0-4183-9D11-5E6BC20D4084}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{B465E685-3181-4B1B-B20B-9755DAFD4A94}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{F504313D-023A-4FEE-9C56-9003481F42DE}] => (Allow) C:\Program Files\HP\HP Deskjet 2510 series\Bin\USBSetup.exe
FirewallRules: [{92B5B450-9DC5-475E-BA22-7F43F421B37A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{DB3E47E6-4B00-4420-84F9-0FB5E9B00427}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{27E10B30-64DE-4BDE-B7A0-2640B4BB3C81}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{6A04830D-5286-426A-B4E1-88A8CCDF54F9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{5DC15275-3855-4460-882E-DD888C17D49E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/11/2016 05:06:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RKN-PC)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (10/11/2016 05:06:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: RKN-PC)
Description: Balíček windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (10/08/2016 10:02:40 AM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1920.Service Nero Update (NAUpdate) failed to start. Verify that you have sufficient privileges to start system services.

Error: (10/08/2016 09:58:30 AM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1920.Service Nero Update (NAUpdate) failed to start. Verify that you have sufficient privileges to start system services.

Error: (10/08/2016 09:54:12 AM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1920.Service Nero Update (NAUpdate) failed to start. Verify that you have sufficient privileges to start system services.

Error: (10/08/2016 01:36:39 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RKN-PC)
Description: Aplikaci Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (10/07/2016 03:47:55 PM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1920.Service Nero Update (NAUpdate) failed to start. Verify that you have sufficient privileges to start system services.

Error: (10/07/2016 03:43:03 PM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1920.Service Nero Update (NAUpdate) failed to start. Verify that you have sufficient privileges to start system services.

Error: (10/07/2016 03:38:42 PM) (Source: MsiInstaller) (EventID: 11920) (User: NT AUTHORITY)
Description: Product: Nero Update -- Error 1920.Service Nero Update (NAUpdate) failed to start. Verify that you have sufficient privileges to start system services.

Error: (10/06/2016 06:52:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: RKN-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (10/10/2016 12:10:33 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:33 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:32 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:32 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:31 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:31 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:31 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:30 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:30 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/10/2016 12:10:30 PM) (Source: DCOM) (EventID: 10010) (User: RKN-PC)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================
Date: 2016-10-08 06:50:11.956
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:11.790
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:11.607
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:11.107
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:10.828
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:10.530
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:06.156
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-08 06:50:03.945
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.

Date: 2016-10-06 05:58:51.329
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-10-06 05:58:51.324
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD Sempron(tm) Processor LE-1150
Percentage of memory in use: 73%
Total physical RAM: 1790.49 MB
Available physical RAM: 473.96 MB
Total Virtual: 3582.49 MB
Available Virtual: 1424.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:124.92 GB) (Free:82.44 GB) NTFS
Drive d: (DATA) (Fixed) (Total:107.42 GB) (Free:74.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 232.9 GB) (Disk ID: DD2DF3DC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=124.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=107.4 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

[jerabina]

Odinstaluj Bing

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll => No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-09-15] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll => No File
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-09-15] (Microsoft Corporation.)

FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)

C:\Program Files\Microsoft\BingBar

U3 idsvc; no ImagePath

CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{adb880a6-d8ff-11cf-9377-00aa003b7a11}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath

Task: {026E08F2-A918-4170-8DB9-444A7E9755B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {1C27F006-DE33-4AE1-90E5-0FC21A2A744E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1E8ED980-E8B7-4063-9D5D-BF544E4D9A7B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {293B341E-1FB4-4EEA-9A48-51C9D3B20A4A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3043370D-0D7E-4442-AFBD-77B46CF4FF3A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {39ADC1DF-94B9-4D2C-9F10-E6F7755FE303} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4E06CF79-C12E-4810-9D5E-7128829CD985} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {526305B2-9C42-4AF5-919B-7D6DAACF2A78} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {5E82F887-2562-442C-A1E2-0B7C64A91173} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6D77A071-FB75-4332-BD23-1F00E3D18559} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {72457FB9-398C-4DCE-91CC-16DA902AFD7E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7C2876CB-F6DE-4B69-A1C7-F67B1CF4EEDF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {A6B0CFAB-5A49-40C1-A2D9-C32A18995373} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6FBEFA4-7DE6-4D3F-BAFE-2FF7F9F5E104} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C8B0609C-B656-4C99-B152-4FEB0B7E3C65} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {D5E2E8D5-252E-4D33-BA97-F38F0D145582} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DAB8E496-746C-40E3-AF12-60F0495B16A0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F609C720-2C8E-4C44-8527-4D8E5B32B958} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.exe: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.scr: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.bat: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.com: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.cmd: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.reg: => <===== ATTENTION

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[deus.one]

Ahoj,

a ten Bing mám kde na jít? V odinstalaci programů nic nevidím.

[jerabina]

Pokud se nezobrazuje v "odinstalaci programů" tak to přeskoč a udělej rovnou ten fixlist, mělo by to Bing odstranit.

[deus.one]

Ahoj,

tady to je (a musím podotknout ten počítač je fakt pořád děsně pomalý, možná to trochu dělá TeamViewer, ale i tak je to hrozné)

Fix result of Farbar Recovery Scan Tool (x86) Version: 10-10-2016
Ran by RKN (13-10-2016 19:24:55) Run:1
Running from C:\Users\RKN\Desktop
Loaded Profiles: RKN (Available Profiles: RKN)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll => No File
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-09-15] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll => No File
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-09-15] (Microsoft Corporation.)

FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)

C:\Program Files\Microsoft\BingBar

U3 idsvc; no ImagePath

CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{adb880a6-d8ff-11cf-9377-00aa003b7a11}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath

Task: {026E08F2-A918-4170-8DB9-444A7E9755B1} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {1C27F006-DE33-4AE1-90E5-0FC21A2A744E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {1E8ED980-E8B7-4063-9D5D-BF544E4D9A7B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {293B341E-1FB4-4EEA-9A48-51C9D3B20A4A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3043370D-0D7E-4442-AFBD-77B46CF4FF3A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {39ADC1DF-94B9-4D2C-9F10-E6F7755FE303} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {4E06CF79-C12E-4810-9D5E-7128829CD985} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {526305B2-9C42-4AF5-919B-7D6DAACF2A78} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {5E82F887-2562-442C-A1E2-0B7C64A91173} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {6D77A071-FB75-4332-BD23-1F00E3D18559} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {72457FB9-398C-4DCE-91CC-16DA902AFD7E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {7C2876CB-F6DE-4B69-A1C7-F67B1CF4EEDF} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {A6B0CFAB-5A49-40C1-A2D9-C32A18995373} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A6FBEFA4-7DE6-4D3F-BAFE-2FF7F9F5E104} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C8B0609C-B656-4C99-B152-4FEB0B7E3C65} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {D5E2E8D5-252E-4D33-BA97-F38F0D145582} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {DAB8E496-746C-40E3-AF12-60F0495B16A0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F609C720-2C8E-4C44-8527-4D8E5B32B958} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.exe: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.scr: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.bat: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.com: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.cmd: => <===== ATTENTION
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.reg: => <===== ATTENTION

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => key removed successfully.
"HKCR\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}" => key removed successfully.
"HKCR\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => key removed successfully.
"HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => key removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} => value removed successfully.
"HKCR\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}" => key removed successfully.
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully.
C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully.
"C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll" => not found.
C:\Program Files\Microsoft\BingBar => moved successfully
idsvc => service removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{adb880a6-d8ff-11cf-9377-00aa003b7a11}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{026E08F2-A918-4170-8DB9-444A7E9755B1}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{026E08F2-A918-4170-8DB9-444A7E9755B1}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1C27F006-DE33-4AE1-90E5-0FC21A2A744E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C27F006-DE33-4AE1-90E5-0FC21A2A744E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E8ED980-E8B7-4063-9D5D-BF544E4D9A7B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E8ED980-E8B7-4063-9D5D-BF544E4D9A7B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{293B341E-1FB4-4EEA-9A48-51C9D3B20A4A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{293B341E-1FB4-4EEA-9A48-51C9D3B20A4A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3043370D-0D7E-4442-AFBD-77B46CF4FF3A}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3043370D-0D7E-4442-AFBD-77B46CF4FF3A}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{39ADC1DF-94B9-4D2C-9F10-E6F7755FE303}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{39ADC1DF-94B9-4D2C-9F10-E6F7755FE303}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4E06CF79-C12E-4810-9D5E-7128829CD985}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E06CF79-C12E-4810-9D5E-7128829CD985}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{526305B2-9C42-4AF5-919B-7D6DAACF2A78}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{526305B2-9C42-4AF5-919B-7D6DAACF2A78}" => key removed successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E82F887-2562-442C-A1E2-0B7C64A91173}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E82F887-2562-442C-A1E2-0B7C64A91173}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D77A071-FB75-4332-BD23-1F00E3D18559}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D77A071-FB75-4332-BD23-1F00E3D18559}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{72457FB9-398C-4DCE-91CC-16DA902AFD7E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72457FB9-398C-4DCE-91CC-16DA902AFD7E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7C2876CB-F6DE-4B69-A1C7-F67B1CF4EEDF}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C2876CB-F6DE-4B69-A1C7-F67B1CF4EEDF}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A6B0CFAB-5A49-40C1-A2D9-C32A18995373}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6B0CFAB-5A49-40C1-A2D9-C32A18995373}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A6FBEFA4-7DE6-4D3F-BAFE-2FF7F9F5E104}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6FBEFA4-7DE6-4D3F-BAFE-2FF7F9F5E104}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C8B0609C-B656-4C99-B152-4FEB0B7E3C65}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C8B0609C-B656-4C99-B152-4FEB0B7E3C65}" => key removed successfully.
C:\Windows\System32\Tasks\Adobe Flash Player Updater => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D5E2E8D5-252E-4D33-BA97-F38F0D145582}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D5E2E8D5-252E-4D33-BA97-F38F0D145582}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DAB8E496-746C-40E3-AF12-60F0495B16A0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DAB8E496-746C-40E3-AF12-60F0495B16A0}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F609C720-2C8E-4C44-8527-4D8E5B32B958}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F609C720-2C8E-4C44-8527-4D8E5B32B958}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => key removed successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.exe" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.scr" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.bat" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.com" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.cmd" => key removed successfully.
"HKU\S-1-5-21-1386407028-3668555779-2497805603-1000\Software\Classes\.reg" => key removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 1671333 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9628923 B
Java, Flash, Steam htmlcache => 695 B
Windows/system/drivers => 2918216 B
Edge => 89 B
Chrome => 24830957 B
Firefox => 22798965 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 10525 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 1634 B
NetworkService => 640 B
RKN => 2079376 B

RecycleBin => 0 B
EmptyTemp: => 61 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:25:40 ====

[Orcus]

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde: C: \ DelFix.txt

Co problémy? + nový log z HJT

[deus.one]

Ahoj,

tady je log z DelFix

# DelFix v1.013 - Logfile created 14/10/2016 at 18:42:14
# Updated 17/04/2016 by Xplode
# Username : RKN - RKN-PC
# Operating System : Windows 10 Home (32 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\RKN\Desktop\FRST-OlderVersion
Deleted : C:\Users\RKN\Desktop\Addition.txt
Deleted : C:\Users\RKN\Desktop\Fixlog.txt
Deleted : C:\Users\RKN\Desktop\FRST.exe
Deleted : C:\Users\RKN\Desktop\FRST.txt
Deleted : C:\Users\RKN\Desktop\JRT.txt
Deleted : C:\Users\RKN\Downloads\AdwCleaner.exe
Deleted : C:\Users\RKN\Downloads\hijackthis.exe
Deleted : C:\Users\RKN\Downloads\hijackthis.log
Deleted : C:\Users\RKN\Downloads\TFC.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools

~ Cleaning system restore ...


New restore point created !

########## - EOF - ##########


Přijde mi to možná trochu lepší, v přiloze posílám screen z procesů


Zde log z HJT

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:01:05, on 14.10.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Program Files\TeamViewer\TeamViewer.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\NSBU.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\T-Mobile\T-Mobile Internet Manager\Manager.exe
C:\Users\RKN\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\Windows\System32\InstallAgent.exe
C:\Windows\System32\InstallAgentUserBroker.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Windows\System32\smartscreen.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\conathst.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Users\RKN\Desktop\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\coIEPlg.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\coIEPlg.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [T-Mobile CManager] "C:\Program Files\T-Mobile\T-Mobile Internet Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\RKN\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 2510 series.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{b93799b9-2dc1-4a3e-8474-d85f46db5074}: NameServer = 89.203.151.254,81.19.33.2
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: Bing Bar Update Service (BBSvc) - Unknown owner - C:\Program Files\Microsoft\BingBar\BBSvc.EXE (file missing)
O23 - Service: BBUpdate - Unknown owner - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: Norton Security with Backup (NSBU) - Symantec Corporation - C:\Program Files\Norton Security with Backup\Engine\22.8.0.50\NSBU.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe

--
End of file - 7023 bytes

[jerabina]

Vypadá to dobře ne? Nevypadá to, že by nějaký proces nějak extrémně zatěžoval počítač.

Zavři ostatní programy/prohlížeče, odpoj se od internetu a v HJT fixni:
NÁVOD

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"

[deus.one]

ok, děkuji:)