Zamrznutie PC - Modra obrazovka

[JaRon]

ak tam boli opravitelne chyby, padat to nemusi
aj tak skontroluj disk s HDTune http://forum.viry.cz/viewtopic.php?f=46&t=79325 cast 8

[milos736]

Tu su vysledky v nudzovom rezime z HD tune:

Hned ako som prepol pc do normalneho rezimu, otvoril stranku, pc zamrzol a naskocila modra obrazovka.
musel som natvrdo vypnut. Slozka minidum je prazdna. Slozka Windows.old sa automaticky odstranila komplet.

A tento minidump co som posielal dalo sa z neho nieco vycitat, kde je pricina ze system pada?
http://leteckaposta.cz/515927952

[milos736]

hd tune error

[Márty84]

Nejdrive to docistime a pokud budou problemy i dale, zkusime hledat jinou pricinu.

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

[milos736]

Dobry den, za pouziti Launcheru to neslo, aj ked som vypnul avast aj v mozile povolil stiahnutie, stiahlo mi Launcher na plochu o velkosti 110 Kb a pisalo ze nie je na ploche, prikladam log z FRST a do prilohy Addition

Cast 1:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2016
Ran by Ja (administrator) on POCITAC (30-08-2016 12:32:39)
Running from C:\Users\Ja\Desktop
Loaded Profiles: Ja (Available Profiles: Ja & Administrator)
Platform: Windows 8.1 (Update) (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
() C:\Users\Ja\AppData\Roaming\ICQ\bin\icq.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Gmail Notifier\gnotify.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM-x32\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] => C:\Program Files (x86)\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9103976 2016-08-23] (AVAST Software)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-04-24] (Atheros Communications)
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [icq.desktop] => C:\Users\Ja\AppData\Roaming\ICQ\bin\icq.exe [31181448 2016-08-22] ()
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29538432 2016-08-17] (Skype Technologies S.A.)
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-246404532-835643752-1720096512-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-08-23] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 217.75.71.141 217.75.71.142
Tcpip\..\Interfaces\{8162E1E7-9C1E-48F6-9F5D-9E9F2D5AB90B}: [DhcpNameServer] 217.75.71.141 217.75.71.142
Tcpip\..\Interfaces\{8953E640-6B3F-43F0-BF98-91163E948E6D}: [DhcpNameServer] 217.75.71.141 217.75.71.142

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-246404532-835643752-1720096512-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.sk/
HKU\S-1-5-21-246404532-835643752-1720096512-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
SearchScopes: HKU\S-1-5-21-246404532-835643752-1720096512-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-246404532-835643752-1720096512-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-04-24] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-08-23] (AVAST Software)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2014-04-20] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-08-23] (AVAST Software)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311
FF Homepage: www.google.sk/
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-08-23] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-08-23] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2016-08-08] (DivX, LLC)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll [2012-12-19] (Verimatrix, Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2009-10-30] (the VideoLAN Team)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-07-28] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-246404532-835643752-1720096512-1001: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Verimatrix\ViewRight Web\\npViewRight.dll [2012-12-19] (Verimatrix, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-07-28] (Adobe Systems Inc.)
FF Extension: (X-notifier) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2016-08-23]
FF Extension: (Gmail™ Notifier (restartless)) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2016-08-23]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-08-23]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-08-23]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-06-19] (ASUS)
R3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R3 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [310400 2013-04-24] (Windows (R) Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-08-23] (AVAST Software)
R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [71728 2016-08-18] (CyberGhost S.R.L)
R3 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [541184 2016-08-24] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-08-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-08-24] (Microsoft Corporation)
R3 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-04-24] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-08-23] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-08-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-08-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-08-23] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-08-23] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969560 2016-08-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-08-23] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-08-23] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-08-23] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-08-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69392 2013-08-08] (ASUS Corporation)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-24] (Qualcomm Atheros)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2016-08-24] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2016-08-24] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2016-08-24] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-30 12:32 - 2016-08-30 12:33 - 00017911 _____ C:\Users\Ja\Desktop\FRST.txt
2016-08-30 12:32 - 2016-08-30 12:32 - 00000000 ____D C:\FRST
2016-08-30 12:31 - 2016-08-30 12:31 - 02397696 _____ (Farbar) C:\Users\Ja\Desktop\FRST64.exe
2016-08-30 12:28 - 2016-08-30 12:30 - 00029696 _____ C:\Users\Ja\AppData\Local\MSGBOX.EXE
2016-08-29 13:24 - 2016-08-29 13:24 - 00000000 ____D C:\Users\Ja\AppData\Roaming\dvdcss
2016-08-26 19:48 - 2016-08-26 19:55 - 00000655 _____ C:\Users\Ja\Desktop\napravnica.txt
2016-08-26 17:58 - 2016-08-26 17:58 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Verimatrix
2016-08-26 17:50 - 2016-08-26 17:50 - 00000000 ____D C:\ProgramData\Verimatrix
2016-08-26 17:50 - 2016-08-26 17:50 - 00000000 ____D C:\Program Files (x86)\Verimatrix
2016-08-26 17:50 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-08-26 17:40 - 2016-08-26 17:47 - 00003520 _____ C:\Users\Ja\Desktop\olimpic channel.txt
2016-08-26 11:48 - 2016-08-26 11:48 - 00001049 _____ C:\Users\Ja\Desktop\HD Tune Pro.lnk
2016-08-26 11:48 - 2016-08-26 11:48 - 00000000 ____D C:\Users\Ja\AppData\Roaming\HD Tune Pro
2016-08-26 11:48 - 2016-08-26 11:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2016-08-26 11:48 - 2016-08-26 11:48 - 00000000 ____D C:\Program Files (x86)\HD Tune Pro
2016-08-25 23:15 - 2016-08-25 23:15 - 00000000 ____D C:\WINDOWS\pss
2016-08-25 17:31 - 2016-08-26 14:42 - 00000389 _____ C:\Users\Ja\Desktop\vir.txt
2016-08-25 17:19 - 2016-08-26 02:11 - 00000000 ____D C:\WINDOWS\Minidump
2016-08-25 14:17 - 2016-08-25 17:33 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-25 14:16 - 2016-08-25 14:16 - 00001118 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-08-25 14:16 - 2016-08-25 14:16 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-25 14:16 - 2016-08-25 14:16 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-08-25 14:16 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-08-25 14:16 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-08-25 14:16 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-08-25 12:49 - 2016-08-25 12:54 - 00000000 ____D C:\AdwCleaner
2016-08-25 12:45 - 2016-08-25 12:45 - 00001216 _____ C:\Users\Ja\Desktop\CrystalDiskInfo.lnk
2016-08-25 12:45 - 2016-08-25 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2016-08-25 12:45 - 2016-08-25 12:45 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2016-08-25 08:30 - 2016-08-25 08:30 - 00000839 _____ C:\Users\Administrator\Desktop\RAALTRANS Editor 8.520.lnk
2016-08-25 08:30 - 2016-08-25 08:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAALTRANS 8.520
2016-08-24 22:41 - 2016-08-24 22:41 - 00000000 ____D C:\rsit
2016-08-24 22:41 - 2016-08-24 22:41 - 00000000 ____D C:\Program Files\trend micro
2016-08-24 22:40 - 2016-08-24 22:40 - 01222144 _____ C:\Users\Ja\Desktop\RSITx64.exe
2016-08-24 18:40 - 2016-08-24 18:40 - 00000000 ____D C:\Program Files (x86)\DirBuster
2016-08-24 16:48 - 2016-08-24 16:48 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-08-24 16:47 - 2016-08-24 16:47 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-08-24 12:23 - 2016-08-24 12:23 - 00003574 _____ C:\WINDOWS\System32\Tasks\Maxthon Update
2016-08-24 12:23 - 2016-08-24 12:23 - 00001289 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maxthon.lnk
2016-08-24 12:23 - 2016-08-24 12:23 - 00001101 _____ C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2016-08-24 12:23 - 2016-08-24 12:23 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Maxthon3
2016-08-24 12:23 - 2016-08-24 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxthon Cloud Browser
2016-08-24 12:23 - 2016-08-24 12:23 - 00000000 ____D C:\Program Files (x86)\Maxthon
2016-08-24 12:18 - 2016-08-24 12:19 - 00003856 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1472033899
2016-08-24 12:18 - 2016-08-24 12:19 - 00001067 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-08-24 12:18 - 2016-08-24 12:19 - 00000000 ____D C:\Program Files (x86)\Opera
2016-08-24 12:18 - 2016-08-24 12:18 - 00001151 _____ C:\Users\Public\Desktop\Opera.lnk
2016-08-24 12:06 - 2016-08-27 14:19 - 00000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-08-24 12:06 - 2016-08-24 12:06 - 00003848 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-08-24 12:02 - 2016-08-30 09:22 - 00003954 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{53706D09-77A4-4E29-AD4E-83C4814B1C51}
2016-08-24 11:50 - 2016-08-24 12:18 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Opera Software
2016-08-24 11:50 - 2016-08-24 12:18 - 00000000 ____D C:\Users\Ja\AppData\Local\Opera Software
2016-08-24 11:42 - 2016-08-24 11:42 - 00002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2016-08-24 11:42 - 2016-08-24 11:42 - 00002507 _____ C:\Users\Public\Desktop\Safari.lnk
2016-08-24 11:42 - 2016-08-24 11:42 - 00000000 ____D C:\ProgramData\Apple Computer
2016-08-24 11:42 - 2016-08-24 11:42 - 00000000 ____D C:\Program Files (x86)\Safari
2016-08-24 11:41 - 2016-08-24 11:41 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-08-24 11:41 - 2016-08-24 11:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2016-08-24 11:41 - 2016-08-24 11:41 - 00000000 ____D C:\Users\Ja\AppData\Local\Apple
2016-08-24 11:41 - 2016-08-24 11:41 - 00000000 ____D C:\ProgramData\Apple
2016-08-24 11:41 - 2016-08-24 11:41 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-08-24 11:34 - 2016-08-24 11:34 - 00000000 ____D C:\Users\Ja\AppData\Local\Intel_Corporation
2016-08-24 10:56 - 2016-07-02 06:29 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-08-24 10:56 - 2016-07-02 06:29 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-08-24 10:46 - 2016-08-24 10:46 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-24 08:06 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-24 08:06 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-24 07:29 - 2016-08-24 07:29 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-08-24 07:11 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-08-24 07:11 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-08-24 06:34 - 2016-06-25 22:05 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-24 06:34 - 2016-06-22 15:48 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-08-24 06:34 - 2016-06-21 15:48 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-24 06:34 - 2016-06-03 19:11 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-08-24 06:33 - 2016-08-24 06:33 - 00035048 _____ C:\WINDOWS\system32\Start-Orb-(8).bmp
2016-08-24 06:31 - 2016-08-24 06:31 - 00035046 _____ C:\WINDOWS\system32\Start-Orb-(1).bmp
2016-08-24 06:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-24 06:28 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-24 06:27 - 2016-06-18 22:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-08-24 06:27 - 2016-06-18 22:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-08-24 06:27 - 2016-06-11 21:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-24 06:27 - 2016-06-11 21:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-24 06:27 - 2016-06-11 20:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-08-24 06:27 - 2016-06-11 19:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-08-24 06:27 - 2016-06-11 18:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-24 06:27 - 2016-06-11 18:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-08-24 06:27 - 2016-06-11 18:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-08-24 06:27 - 2016-06-11 18:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-08-24 06:27 - 2016-06-11 18:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-24 06:27 - 2016-06-11 18:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-08-24 06:27 - 2016-06-11 18:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-08-24 06:27 - 2016-06-11 05:44 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-08-24 06:27 - 2016-06-11 05:44 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-08-24 06:27 - 2016-06-10 22:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-08-24 06:27 - 2016-06-10 22:03 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-08-24 06:27 - 2016-06-10 21:04 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-24 06:27 - 2016-06-10 20:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-24 06:27 - 2016-06-10 20:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-24 06:27 - 2016-06-10 20:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-24 06:27 - 2016-06-10 20:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-08-24 06:27 - 2016-06-10 20:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-08-24 06:27 - 2016-06-10 20:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-08-24 06:27 - 2016-06-10 20:04 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-08-24 06:27 - 2016-06-09 21:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-08-24 06:27 - 2016-06-09 20:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-08-24 06:27 - 2016-06-07 20:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-08-24 06:27 - 2016-06-07 19:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-08-24 06:27 - 2016-06-04 02:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-08-24 06:27 - 2016-06-04 02:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-08-24 06:27 - 2016-05-29 09:08 - 22361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-24 06:27 - 2016-05-28 20:31 - 19788688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-24 06:27 - 2016-05-18 23:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-08-24 06:27 - 2016-05-18 23:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-08-24 06:27 - 2016-05-18 22:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-08-24 06:27 - 2016-05-18 22:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-08-24 06:27 - 2016-05-18 22:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-24 06:27 - 2016-05-18 22:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-24 06:27 - 2016-05-14 22:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-24 06:27 - 2016-05-14 07:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-24 06:27 - 2016-05-14 01:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-24 06:27 - 2016-05-14 01:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-24 06:27 - 2016-05-14 01:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-24 06:27 - 2016-05-14 00:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-24 06:27 - 2016-05-13 23:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-24 06:27 - 2016-05-13 23:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-08-24 06:27 - 2016-05-13 23:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-08-24 06:27 - 2016-05-13 23:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-08-24 06:27 - 2016-05-13 23:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-08-24 06:27 - 2016-05-13 23:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-08-24 06:27 - 2016-05-13 23:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-24 06:27 - 2016-05-13 23:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-08-24 06:27 - 2016-05-13 23:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-08-24 06:27 - 2016-05-13 23:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-24 06:27 - 2016-05-13 23:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-08-24 06:27 - 2016-05-12 20:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-08-24 06:27 - 2016-05-12 19:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-08-24 06:27 - 2016-05-06 23:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-08-24 06:27 - 2016-05-06 19:13 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-08-24 06:27 - 2016-05-05 20:28 - 01661072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-24 06:27 - 2016-05-05 19:39 - 01212256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-24 06:27 - 2016-05-05 19:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-08-24 06:27 - 2016-05-05 19:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-08-24 06:27 - 2016-05-05 18:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-08-24 06:27 - 2016-05-05 18:34 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-24 06:27 - 2016-05-05 18:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-08-24 06:27 - 2016-05-05 17:28 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-08-24 06:27 - 2016-05-05 17:16 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-08-24 06:27 - 2016-04-16 15:56 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-24 06:27 - 2016-04-12 17:46 - 14467584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-24 06:27 - 2016-04-12 17:30 - 12879872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-24 06:27 - 2016-04-10 07:35 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-08-24 06:27 - 2016-04-10 00:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-08-24 06:27 - 2016-04-10 00:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-08-24 06:27 - 2016-04-10 00:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-08-24 06:27 - 2016-04-10 00:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-08-24 06:27 - 2016-04-10 00:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-08-24 06:27 - 2016-04-09 23:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-08-24 06:27 - 2016-04-09 23:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-08-24 06:27 - 2016-04-09 23:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-08-24 06:27 - 2016-04-09 23:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-08-24 06:27 - 2016-04-09 23:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-08-24 06:27 - 2016-04-07 18:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-08-24 06:27 - 2016-04-06 23:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-08-24 06:27 - 2016-04-06 20:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-24 06:27 - 2016-04-06 20:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-24 06:27 - 2016-04-06 18:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-24 06:27 - 2016-04-06 00:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-08-24 06:27 - 2016-04-02 15:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-08-24 06:27 - 2016-04-01 19:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-08-24 06:27 - 2016-04-01 18:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-08-24 06:27 - 2016-04-01 18:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-24 06:27 - 2016-02-04 18:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-08-24 06:27 - 2016-02-04 18:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-08-24 06:27 - 2016-02-04 18:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-08-24 06:26 - 2016-07-12 16:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-24 06:24 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2016-08-24 06:24 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-08-24 06:17 - 2009-11-02 02:23 - 00035048 _____ C:\WINDOWS\system32\1033_3.bmp
2016-08-24 06:17 - 2009-11-01 18:51 - 00035048 _____ C:\WINDOWS\system32\1033_1.bmp
2016-08-24 05:22 - 2016-08-24 05:22 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-08-24 05:15 - 2016-08-24 05:15 - 00001446 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-08-24 05:12 - 2016-08-24 05:12 - 00000020 ___SH C:\Users\Ja\ntuser.ini
2016-08-24 03:31 - 2016-08-24 03:31 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-24 03:29 - 2016-08-24 05:23 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-24 03:16 - 2016-08-24 03:16 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2016-08-24 03:15 - 2016-08-24 22:52 - 00797960 _____ C:\WINDOWS\system32\perfh015.dat
2016-08-24 03:15 - 2016-08-24 22:52 - 00163344 _____ C:\WINDOWS\system32\perfc015.dat
2016-08-24 03:15 - 2016-08-24 03:15 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-24 03:15 - 2016-08-24 03:15 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-24 03:15 - 2016-08-24 03:15 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-08-24 03:15 - 2016-08-24 03:15 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-08-24 03:15 - 2016-08-24 03:14 - 00342912 _____ C:\WINDOWS\system32\perfi015.dat
2016-08-24 03:15 - 2016-08-24 03:14 - 00041236 _____ C:\WINDOWS\system32\perfd015.dat
2016-08-24 03:14 - 2016-08-24 03:14 - 00000000 ____D C:\WINDOWS\SysWOW64\pl
2016-08-24 03:14 - 2016-08-24 03:14 - 00000000 ____D C:\WINDOWS\system32\pl
2016-08-24 03:10 - 2016-08-24 03:10 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-08-24 03:10 - 2016-08-24 03:10 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-08-24 03:08 - 2016-08-24 03:08 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-24 03:01 - 2016-08-24 03:01 - 04710400 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-08-24 03:01 - 2016-08-24 03:01 - 04068352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-08-24 03:00 - 2016-08-24 03:00 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-08-24 03:00 - 2016-08-24 03:00 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-08-24 03:00 - 2016-08-24 03:00 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-08-24 03:00 - 2016-08-24 03:00 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-08-24 03:00 - 2016-08-24 03:00 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-08-24 03:00 - 2016-08-24 03:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-08-24 03:00 - 2016-08-24 03:00 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-08-24 03:00 - 2016-08-24 03:00 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-08-24 03:00 - 2016-08-24 03:00 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-08-24 03:00 - 2016-08-24 03:00 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-08-24 03:00 - 2016-08-24 03:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-08-24 02:59 - 2016-08-24 02:59 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-24 02:58 - 2016-08-29 21:52 - 00000000 ____D C:\Users\Ja
2016-08-24 02:58 - 2016-08-24 03:21 - 00000000 ____D C:\Users\Administrator
2016-08-24 02:58 - 2016-08-24 02:58 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2016-08-24 02:58 - 2014-11-21 03:47 - 00000369 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-08-24 02:58 - 2014-11-21 03:47 - 00000369 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-08-24 02:58 - 2014-11-21 03:47 - 00000369 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-08-24 02:58 - 2014-11-21 03:47 - 00000369 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-08-24 02:57 - 2016-08-24 03:32 - 00038103 _____ C:\WINDOWS\diagwrn.xml
2016-08-24 02:57 - 2016-08-24 03:32 - 00038103 _____ C:\WINDOWS\diagerr.xml
2016-08-24 02:57 - 2016-08-24 02:57 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-24 02:57 - 2016-08-24 02:57 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-24 02:57 - 2016-08-24 02:57 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2016-08-24 02:57 - 2016-08-24 02:57 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2016-08-24 02:57 - 2016-08-24 02:57 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpsapi.dll
2016-08-24 02:57 - 2016-08-24 02:57 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpsapi.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 02745184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 02528784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 02450240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 02447136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 02334104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 02324744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01798480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01664000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01484888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 01288128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01210200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 01150232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 01115640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 01037680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00914672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00850680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00743936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00736256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00735496 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00700360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVXENCD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00629600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00557856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00498472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00492736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFWMAAEC.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00463776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSENCD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00299080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VIDRESZR.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2016-08-24 02:56 - 2016-08-24 02:56 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00274280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP43DECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPG4DECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00248432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP43DECD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00246856 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2016-08-24 02:56 - 2016-08-24 02:56 - 00244296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00229272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00203016 _____ (Microsoft Corporation) C:\WINDOWS\system32\COLORCNV.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00184912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\COLORCNV.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00183856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00116720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP3DMOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00110544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2016-08-24 02:56 - 2016-08-24 02:56 - 00090904 _____ (Microsoft Corporation) C:\WINDOWS\system32\devenum.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00090392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfvdsp.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00081032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devenum.dll
2016-08-24 02:56 - 2016-08-24 02:56 - 00076936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfvdsp.dll
2016-08-24 02:55 - 2016-08-24 02:55 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2016-08-24 02:55 - 2016-08-24 02:55 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2016-08-24 02:54 - 2016-08-24 02:54 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2016-08-24 02:54 - 2016-08-24 02:54 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-08-24 02:54 - 2016-08-24 02:54 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-08-24 02:54 - 2016-08-24 02:54 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2016-08-24 02:53 - 2016-08-24 02:53 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-08-24 02:53 - 2016-08-24 02:53 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2016-08-24 02:53 - 2016-08-24 02:53 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2016-08-24 02:53 - 2016-08-24 02:53 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2016-08-24 02:52 - 2016-08-24 02:52 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-08-24 02:52 - 2016-08-24 02:52 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-08-24 02:52 - 2016-08-24 02:52 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2016-08-24 02:52 - 2016-08-24 02:52 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\disk.sys
2016-08-24 02:51 - 2016-08-24 02:51 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-08-24 02:41 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-08-24 02:41 - 2016-08-24 03:02 - 00000000 ____D C:\Program Files (x86)\Intel
2016-08-24 02:41 - 2016-08-24 02:41 - 00171084 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2016-08-24 02:41 - 2016-08-24 02:41 - 00002243 _____ C:\Users\Public\Desktop\AudioWizard.lnk
2016-08-24 02:41 - 2016-08-24 02:41 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-08-24 02:41 - 2016-08-24 02:41 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-24 02:41 - 2016-08-24 02:41 - 00000000 ____D C:\Program Files\Realtek
2016-08-24 02:41 - 2013-10-01 13:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-08-24 02:41 - 2013-10-01 13:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-08-24 02:39 - 2016-08-24 02:39 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-08-24 02:39 - 2016-08-24 02:39 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2016-08-24 02:39 - 2016-08-24 02:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2016-08-24 02:37 - 2016-08-24 02:37 - 00066400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00063840 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2016-08-24 02:37 - 2016-08-24 02:37 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2016-08-24 02:37 - 2016-08-24 02:37 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2016-08-24 02:37 - 2016-08-24 02:37 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2016-08-24 02:37 - 2016-08-24 02:37 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2016-08-24 02:37 - 2016-08-24 02:37 - 00022368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00020832 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-math-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00019808 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-string-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00016224 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00015712 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00014176 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-time-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00013664 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-process-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-08-24 02:37 - 2016-08-24 02:37 - 00012128 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-08-24 02:36 - 2016-08-24 02:36 - 02466136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-24 02:36 - 2016-08-24 02:36 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2016-08-24 02:36 - 2016-08-24 02:36 - 00160160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2016-08-24 02:36 - 2016-08-24 02:36 - 00121912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2016-08-24 02:35 - 2016-08-24 02:35 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-08-24 02:35 - 2016-08-24 02:35 - 01018880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-08-24 02:34 - 2016-08-24 02:34 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-08-24 02:34 - 2016-08-24 02:34 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2016-08-24 02:34 - 2016-08-24 02:34 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2016-08-24 02:34 - 2016-08-24 02:34 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll
2016-08-24 02:34 - 2016-08-24 02:34 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2016-08-24 02:34 - 2016-08-24 02:34 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll
2016-08-24 02:33 - 2016-08-24 02:33 - 01574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2016-08-24 02:32 - 2016-08-24 02:32 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-08-24 02:32 - 2016-08-24 02:32 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-08-24 02:32 - 2016-08-24 02:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-08-24 02:32 - 2016-08-24 02:32 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-08-24 02:31 - 2016-08-24 02:31 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-08-24 02:30 - 2016-08-24 02:30 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-08-24 02:29 - 2016-08-24 02:29 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-08-24 02:29 - 2016-08-24 02:29 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-08-24 02:28 - 2016-08-24 02:28 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-08-24 02:28 - 2016-08-24 02:28 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-08-24 02:28 - 2016-08-24 02:28 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-08-24 02:28 - 2016-08-24 02:28 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2016-08-24 02:27 - 2016-08-24 02:27 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-08-24 02:27 - 2016-08-24 02:27 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-08-24 02:27 - 2016-08-24 02:27 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2016-08-24 02:27 - 2016-08-24 02:27 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2016-08-24 02:27 - 2016-08-24 02:27 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-24 02:27 - 2016-08-24 02:27 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-24 02:26 - 2016-08-24 02:26 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-08-24 02:26 - 2016-08-24 02:26 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-08-24 02:26 - 2016-08-24 02:26 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2016-08-24 02:25 - 2016-08-24 02:25 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-08-24 02:25 - 2016-08-24 02:25 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2016-08-24 02:25 - 2016-08-24 02:25 - 00536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2016-08-24 02:25 - 2016-08-24 02:25 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-08-24 02:25 - 2016-08-24 02:25 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-08-24 02:24 - 2016-08-24 02:24 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-08-24 02:24 - 2016-08-24 02:24 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00414559 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-08-24 02:23 - 2016-08-24 02:23 - 00377344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmicres.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00097072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00089392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00061232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmictimeprovider.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00056624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbusres.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00045872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvscres.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsparse.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00027904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsparse.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00021760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2016-08-24 02:23 - 2016-08-24 02:23 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys
2016-08-24 02:23 - 2016-08-24 02:23 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys
2016-08-24 02:22 - 2016-08-24 02:22 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-08-24 02:22 - 2016-08-24 02:22 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2016-08-24 02:22 - 2016-08-24 02:22 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2016-08-24 02:22 - 2016-08-24 02:22 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2016-08-24 02:19 - 2016-08-24 02:19 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-08-24 02:19 - 2016-08-24 02:19 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2016-08-24 02:19 - 2016-08-24 02:19 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-08-24 02:19 - 2016-08-24 02:19 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-08-24 02:18 - 2016-08-24 02:18 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2016-08-24 02:18 - 2016-08-24 02:18 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-08-24 02:18 - 2016-08-24 02:18 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2016-08-24 02:18 - 2016-08-24 02:18 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2016-08-24 02:18 - 2016-08-24 02:18 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2016-08-24 02:18 - 2016-08-24 02:18 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2016-08-24 02:18 - 2016-08-24 02:18 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2016-08-24 02:17 - 2016-08-24 02:17 - 01763376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-08-24 02:17 - 2016-08-24 02:17 - 01489088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-08-24 02:17 - 2016-08-24 02:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2016-08-24 02:16 - 2016-08-24 02:16 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2016-08-24 02:16 - 2016-08-24 02:16 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2016-08-24 02:16 - 2016-08-24 02:16 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-08-24 02:16 - 2016-08-24 02:16 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-08-24 02:15 - 2016-08-24 02:15 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-08-24 02:15 - 2016-08-24 02:15 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2016-08-24 02:15 - 2016-08-24 02:15 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-08-24 02:15 - 2016-08-24 02:15 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-08-24 02:15 - 2016-08-24 02:15 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-08-24 02:14 - 2016-08-24 02:14 - 01549144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-24 02:14 - 2016-08-24 02:14 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-24 02:14 - 2016-08-24 02:14 - 01124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-24 02:14 - 2016-08-24 02:14 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-08-24 02:13 - 2016-08-24 02:13 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-08-24 02:13 - 2016-08-24 02:13 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2016-08-24 02:13 - 2016-08-24 02:13 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-08-24 02:13 - 2016-08-24 02:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-08-24 02:13 - 2016-08-24 02:13 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-08-24 02:13 - 2016-08-24 02:13 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2016-08-24 02:12 - 2016-08-24 02:12 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-08-24 02:12 - 2016-08-24 02:12 - 00987848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-08-24 02:12 - 2016-08-24 02:12 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-08-24 02:12 - 2016-08-24 02:12 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-08-24 02:12 - 2016-08-24 02:12 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2016-08-24 02:11 - 2016-08-24 02:11 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2016-08-24 02:10 - 2016-08-24 02:10 - 25808384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 20343808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 15412224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 13808128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 02894336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 02868224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 02393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 02286592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-24 02:10 - 2016-08-24 02:10 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-24 02:10 - 2016-08-24 02:10 - 01550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-24 02:10 - 2016-08-24 02:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2016-08-24 02:10 - 2016-08-24 02:10 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2016-08-24 02:10 - 2016-08-24 02:10 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2016-08-24 02:10 - 2016-08-24 02:10 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-08-24 02:10 - 2016-08-24 02:10 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2016-08-24 02:10 - 2016-08-24 02:10 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-08-24 02:08 - 2016-08-24 02:08 - 00952928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-08-24 02:08 - 2016-08-24 02:08 - 00786152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2016-08-24 02:08 - 2016-08-24 02:08 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2016-08-24 02:08 - 2016-08-24 02:08 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2016-08-24 02:07 - 2016-08-24 02:07 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2016-08-24 02:06 - 2016-08-24 02:06 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-08-24 02:06 - 2016-08-24 02:06 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-08-24 02:06 - 2016-08-24 02:06 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2016-08-24 02:04 - 2016-08-24 02:04 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-08-24 02:04 - 2016-08-24 02:04 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-24 02:03 - 2016-08-24 02:03 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-24 02:03 - 2016-08-24 02:03 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-08-24 02:03 - 2016-08-24 02:03 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-24 02:02 - 2016-08-24 02:02 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2016-08-24 02:02 - 2016-08-24 02:02 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2016-08-24 02:01 - 2016-08-24 02:01 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-08-24 02:01 - 2016-08-24 02:01 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2016-08-24 02:01 - 2016-08-24 02:01 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-08-24 02:01 - 2016-08-24 02:01 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-08-24 02:00 - 2016-08-24 02:00 - 07445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-24 02:00 - 2016-08-24 02:00 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 03120640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02757616 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-08-24 01:59 - 2016-08-24 01:59 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02609152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02412576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-08-24 01:59 - 2016-08-24 01:59 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-24 01:59 - 2016-08-24 01:59 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hgcpl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-24 01:59 - 2016-08-24 01:59 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00273264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-08-24 01:59 - 2016-08-24 01:59 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-08-24 01:59 - 2016-08-24 01:59 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2016-08-24 01:58 - 2016-08-24 01:58 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-08-24 01:58 - 2016-08-24 01:58 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-08-24 01:57 - 2016-08-24 01:57 - 07793152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-24 01:57 - 2016-08-24 01:57 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-08-24 01:57 - 2016-08-24 01:57 - 05270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-08-24 01:57 - 2016-08-24 01:57 - 05265920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-24 01:57 - 2016-08-24 01:57 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-08-24 01:57 - 2016-08-24 01:57 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-08-24 01:56 - 2016-08-24 01:56 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-24 01:56 - 2016-08-24 01:56 - 01673728 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-08-24 01:56 - 2016-08-24 01:56 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2016-08-24 01:56 - 2016-08-24 01:56 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rgb9rast.dll
2016-08-24 01:55 - 2016-08-24 01:55 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-24 01:55 - 2016-08-24 01:55 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-24 01:55 - 2016-08-24 01:55 - 00685432 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2016-08-24 01:55 - 2016-08-24 01:55 - 00507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2016-08-24 01:55 - 2016-08-24 01:55 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-08-24 01:55 - 2016-08-24 01:55 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-08-24 01:53 - 2016-08-24 01:53 - 01737088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-08-24 01:53 - 2016-08-24 01:53 - 01663184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-08-24 01:53 - 2016-08-24 01:53 - 01523208 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-08-24 01:53 - 2016-08-24 01:53 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-08-24 01:53 - 2016-08-24 01:53 - 01490120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-08-24 01:53 - 2016-08-24 01:53 - 01358952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-08-24 01:53 - 2016-08-24 01:53 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-08-24 01:53 - 2016-08-24 01:53 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2016-08-24 01:53 - 2016-08-24 01:53 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-24 01:52 - 2016-08-24 01:52 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-08-24 01:52 - 2016-08-24 01:52 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2016-08-24 01:52 - 2016-08-24 01:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2016-08-24 01:51 - 2016-08-24 01:51 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-08-24 01:51 - 2016-08-24 01:51 - 00738096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2016-08-24 01:51 - 2016-08-24 01:51 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-08-24 01:51 - 2016-08-24 01:51 - 00613624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2016-08-24 01:51 - 2016-08-24 01:51 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2016-08-24 01:51 - 2016-08-24 01:51 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-08-24 01:51 - 2016-08-24 01:51 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll
2016-08-24 01:51 - 2016-08-24 01:51 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-08-24 01:51 - 2016-08-24 01:51 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2016-08-24 01:50 - 2016-08-24 01:50 - 01307328 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-08-24 01:50 - 2016-08-24 01:50 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-08-24 01:49 - 2016-08-24 01:49 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-08-24 01:49 - 2016-08-24 01:49 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-24 01:49 - 2016-08-24 01:49 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-08-24 01:49 - 2016-08-24 01:49 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-08-24 01:49 - 2016-08-24 01:49 - 00468824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-08-24 01:49 - 2016-08-24 01:49 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-08-24 01:48 - 2016-08-24 01:48 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-08-24 01:48 - 2016-08-24 01:48 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2016-08-24 01:48 - 2016-08-24 01:48 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2016-08-24 01:48 - 2016-08-24 01:48 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2016-08-24 01:48 - 2016-08-24 01:48 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-08-24 01:48 - 2016-08-24 01:48 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-08-24 01:47 - 2016-08-24 01:47 - 01113944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-08-24 01:47 - 2016-08-24 01:47 - 00487256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-08-24 01:47 - 2016-08-24 01:47 - 00393560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2016-08-24 01:47 - 2016-08-24 01:47 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2016-08-24 01:47 - 2016-08-24 01:47 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2016-08-24 01:46 - 2016-08-24 22:52 - 00730734 _____ C:\WINDOWS\system32\perfh005.dat
2016-08-24 01:46 - 2016-08-24 22:52 - 00151480 _____ C:\WINDOWS\system32\perfc005.dat
2016-08-24 01:46 - 2016-08-24 01:46 - 00296666 _____ C:\WINDOWS\system32\perfi005.dat
2016-08-24 01:46 - 2016-08-24 01:46 - 00038682 _____ C:\WINDOWS\system32\perfd005.dat

[milos736]

Cast 2:

2016-08-24 01:46 - 2016-08-24 01:46 - 00000000 ____D C:\WINDOWS\SysWOW64\cs
2016-08-24 01:46 - 2016-08-24 01:46 - 00000000 ____D C:\WINDOWS\system32\cs
2016-08-24 01:34 - 2016-08-24 01:34 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-08-24 01:34 - 2016-08-24 01:34 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-08-24 01:34 - 2016-08-24 01:34 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-08-24 01:34 - 2016-08-24 01:34 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2016-08-24 01:34 - 2016-08-24 01:34 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2016-08-24 01:34 - 2016-08-24 01:34 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2016-08-24 01:34 - 2016-08-24 01:34 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2016-08-24 01:34 - 2016-08-24 01:34 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2016-08-24 01:34 - 2016-08-24 01:34 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2016-08-24 01:34 - 2016-08-24 01:34 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2016-08-24 01:34 - 2016-08-24 01:34 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2016-08-24 01:34 - 2016-08-24 01:34 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2016-08-24 01:33 - 2016-08-24 01:33 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2016-08-24 01:33 - 2016-08-24 01:33 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2016-08-24 01:33 - 2016-08-24 01:33 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2016-08-24 01:32 - 2016-08-24 01:32 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-08-24 01:32 - 2016-08-24 01:32 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2016-08-24 01:32 - 2016-08-24 01:32 - 00183368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-08-24 01:32 - 2016-08-24 01:32 - 00072024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2016-08-24 01:31 - 2016-08-24 01:31 - 00462168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00443224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2016-08-24 01:31 - 2016-08-24 01:31 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2016-08-24 01:31 - 2016-08-24 01:31 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-24 01:31 - 2016-08-24 01:31 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00091992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2016-08-24 01:31 - 2016-08-24 01:31 - 00027992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2016-08-24 01:30 - 2016-08-24 01:30 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-08-24 01:30 - 2016-08-24 01:30 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-08-24 01:30 - 2016-08-24 01:30 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2016-08-24 01:30 - 2016-08-24 01:30 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2016-08-24 01:30 - 2016-08-24 01:30 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-08-24 01:30 - 2016-08-24 01:30 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-08-24 01:29 - 2016-08-24 01:29 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-08-24 01:29 - 2016-08-24 01:29 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2016-08-24 01:27 - 2016-08-24 01:27 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2016-08-24 01:26 - 2016-08-24 01:26 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-08-24 01:26 - 2016-08-24 01:26 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-08-24 01:26 - 2016-08-24 01:26 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-08-24 01:26 - 2016-08-24 01:26 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-08-24 01:26 - 2016-08-24 01:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-08-24 01:26 - 2016-08-24 01:26 - 00137976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2016-08-24 01:26 - 2016-08-24 01:26 - 00120384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2016-08-24 01:26 - 2016-08-24 01:26 - 00074584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2016-08-24 01:25 - 2016-08-24 01:25 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2016-08-24 01:25 - 2016-08-24 01:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2016-08-24 01:25 - 2016-08-24 01:25 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2016-08-24 01:25 - 2016-08-24 01:25 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2016-08-24 01:24 - 2016-08-24 22:52 - 00742562 _____ C:\WINDOWS\system32\perfh00E.dat
2016-08-24 01:24 - 2016-08-24 22:52 - 00177650 _____ C:\WINDOWS\system32\perfc00E.dat
2016-08-24 01:24 - 2016-08-24 01:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-08-24 01:24 - 2016-08-24 01:24 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-08-24 01:24 - 2016-08-24 01:24 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-08-24 01:24 - 2016-08-24 01:24 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-08-24 01:24 - 2016-08-24 01:24 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-08-24 01:24 - 2016-08-24 01:24 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-08-24 01:24 - 2016-08-24 01:24 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-08-24 01:24 - 2016-08-24 01:23 - 00293832 _____ C:\WINDOWS\system32\perfi00E.dat
2016-08-24 01:24 - 2016-08-24 01:23 - 00050224 _____ C:\WINDOWS\system32\perfd00E.dat
2016-08-24 01:23 - 2016-08-24 03:14 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-24 01:23 - 2016-08-24 01:23 - 00000000 ____D C:\WINDOWS\SysWOW64\hu
2016-08-24 01:23 - 2016-08-24 01:23 - 00000000 ____D C:\WINDOWS\system32\hu
2016-08-24 01:10 - 2016-08-24 01:10 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 02551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 01455104 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-08-24 01:10 - 2016-08-24 01:10 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-08-24 01:10 - 2016-08-24 01:10 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-08-24 01:10 - 2016-08-24 01:10 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-08-24 01:10 - 2016-08-24 01:10 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-08-24 01:10 - 2016-08-24 01:10 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-08-24 01:10 - 2016-08-24 01:10 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-08-24 01:07 - 2016-08-24 01:07 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 01540728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 01383936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-08-24 01:07 - 2016-08-24 01:07 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2016-08-24 01:07 - 2016-08-24 01:07 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-08-24 01:07 - 2016-08-24 01:07 - 00316760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2016-08-24 01:07 - 2016-08-24 01:07 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2016-08-24 01:06 - 2016-08-24 01:06 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-08-24 01:06 - 2016-08-24 01:06 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-08-24 01:06 - 2016-08-24 01:06 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2016-08-24 01:05 - 2016-08-24 01:05 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2016-08-24 01:04 - 2016-08-24 01:04 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2016-08-24 01:04 - 2016-08-24 01:04 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2016-08-24 01:04 - 2016-08-24 01:04 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2016-08-24 01:02 - 2016-08-24 03:11 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-24 01:02 - 2016-08-24 01:02 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-24 01:02 - 2016-08-24 01:02 - 00000000 ____D C:\Program Files\MSBuild
2016-08-24 01:02 - 2016-08-24 01:02 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-24 01:01 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-24 01:01 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-24 01:00 - 2016-08-24 01:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2016-08-24 01:00 - 2016-08-24 01:00 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2016-08-23 18:11 - 2016-08-28 15:12 - 00000000 ____D C:\Users\Ja\AppData\LocalLow\boost_interprocess
2016-08-23 18:11 - 2016-08-23 18:11 - 00000000 ____D C:\Users\Ja\AppData\Local\DDMSettings
2016-08-23 17:20 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-08-23 17:20 - 2016-08-23 17:20 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-08-23 17:20 - 2016-08-23 17:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-08-23 16:58 - 2016-08-24 03:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trans
2016-08-23 16:58 - 2016-08-23 16:58 - 00000841 _____ C:\Users\Ja\Desktop\Trans.lnk
2016-08-23 16:58 - 2016-08-23 16:58 - 00000000 ____D C:\WINDOWS\Trans
2016-08-23 16:58 - 2016-06-23 15:04 - 00700856 _____ (RST) C:\WINDOWS\SysWOW64\TransX.ocx
2016-08-23 16:55 - 2016-08-23 16:55 - 00000000 ____D C:\Users\Ja\AppData\Local\RealVNC
2016-08-23 16:48 - 2016-08-23 16:48 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-08-23 15:16 - 2016-08-23 15:16 - 00000000 ____D C:\Users\Ja\AppData\Local\Macromedia
2016-08-23 12:22 - 2016-08-23 12:22 - 00003922 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1471947737
2016-08-23 12:22 - 2016-08-23 12:22 - 00001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-08-23 12:20 - 2016-08-23 12:20 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-08-23 12:18 - 2016-08-23 12:18 - 00000000 ____D C:\Users\Ja\AppData\Local\CEF
2016-08-23 12:17 - 2016-08-23 12:17 - 00000000 ____D C:\Users\Ja\AppData\Roaming\AVAST Software
2016-08-23 12:14 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-08-23 12:14 - 2016-08-23 12:14 - 00001926 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-08-23 12:13 - 2016-08-23 12:13 - 00003922 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-08-23 12:13 - 2016-08-23 12:13 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2016-08-23 12:13 - 2016-08-23 12:13 - 00000000 ____D C:\Program Files\Common Files\AV
2016-08-23 12:12 - 2016-08-23 12:11 - 00969560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00513496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-08-23 12:12 - 2016-08-23 12:11 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-08-23 12:11 - 2016-08-23 12:11 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-08-23 12:11 - 2016-08-23 12:11 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-08-23 12:10 - 2016-08-23 12:19 - 00000000 ____D C:\Program Files\AVAST Software
2016-08-23 12:09 - 2016-08-23 12:20 - 00000000 ____D C:\ProgramData\AVAST Software
2016-08-23 07:20 - 2016-08-23 07:20 - 00002006 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberGhost 6.lnk
2016-08-23 07:20 - 2016-08-23 07:20 - 00000000 ____D C:\Users\Ja\AppData\Local\CyberGhost
2016-08-23 07:17 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberGhost 6
2016-08-23 07:17 - 2016-08-23 12:26 - 00001776 _____ C:\Users\Ja\Desktop\CyberGhost 6.lnk
2016-08-23 07:17 - 2016-08-23 07:20 - 00000000 ____D C:\Program Files\CyberGhost 6
2016-08-23 04:16 - 2016-08-23 04:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-23 04:16 - 2016-08-23 04:16 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-23 03:59 - 2016-07-27 21:25 - 00504488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-08-23 03:05 - 2016-08-23 03:05 - 00001817 _____ C:\Users\Ja\Desktop\URLHelper.lnk
2016-08-23 02:54 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\URL Helper
2016-08-23 02:54 - 2016-08-23 02:55 - 00000000 ____D C:\Program Files (x86)\URLHelper
2016-08-23 02:52 - 2016-08-23 02:52 - 00000046 _____ C:\WINDOWS\SysWOW64\DonationCoder_urlsnooper_InstallInfo.dat
2016-08-23 02:52 - 2016-08-23 02:52 - 00000000 ____D C:\Users\Ja\AppData\Roaming\DonationCoder
2016-08-23 02:51 - 2016-08-23 02:52 - 00001002 _____ C:\Users\Ja\Desktop\URLSnooper 2.lnk
2016-08-23 02:51 - 2016-08-23 02:52 - 00000000 ____D C:\Program Files (x86)\URLSnooper2
2016-08-23 02:51 - 2016-08-23 02:51 - 00000000 ____D C:\ProgramData\DonationCoder
2016-08-23 02:46 - 2016-08-23 02:49 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Zoner
2016-08-23 02:45 - 2016-08-23 02:45 - 00002021 _____ C:\Users\Public\Desktop\Zoner Photo Studio 11.lnk
2016-08-23 02:45 - 2016-08-23 02:45 - 00000000 ____D C:\Program Files (x86)\Zoner
2016-08-23 02:43 - 2016-08-24 20:48 - 00000600 _____ C:\Users\Ja\AppData\Roaming\winscp.rnd
2016-08-23 02:41 - 2016-08-23 02:41 - 00001033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP.lnk
2016-08-23 02:41 - 2016-08-23 02:41 - 00001021 _____ C:\Users\Public\Desktop\WinSCP.lnk
2016-08-23 02:41 - 2016-08-23 02:41 - 00000000 ____D C:\Program Files (x86)\WinSCP
2016-08-23 01:41 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-23 01:41 - 2016-08-23 01:41 - 00002741 _____ C:\Users\Ja\Desktop\Microsoft Office Word 2007.lnk
2016-08-23 01:41 - 2016-08-23 01:41 - 00002659 _____ C:\Users\Ja\Desktop\Microsoft Office Excel 2007.lnk
2016-08-23 01:38 - 2016-08-23 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2016-08-23 01:37 - 2016-08-23 01:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2016-08-23 01:32 - 2016-08-23 01:32 - 00000000 ____D C:\Program Files\Microsoft Office
2016-08-23 01:32 - 2016-08-23 01:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2016-08-23 01:31 - 2016-08-23 01:31 - 00000000 ____D C:\Users\Ja\AppData\Local\Microsoft Help
2016-08-23 01:30 - 2016-08-24 07:35 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-08-23 01:29 - 2016-08-23 01:29 - 00001037 _____ C:\Users\Ja\Desktop\HtmlProtector.lnk
2016-08-23 01:28 - 2016-08-23 01:28 - 00000000 ____D C:\Users\Ja\AppData\Roaming\AntsSoft
2016-08-23 01:27 - 2016-08-24 03:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTMLProtector
2016-08-23 01:27 - 2016-08-23 01:27 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTMLProtector
2016-08-23 01:27 - 2016-08-23 01:27 - 00000000 ____D C:\Program Files (x86)\HTMLProtector
2016-08-23 01:26 - 2016-08-23 01:26 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-23 01:23 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-23 01:23 - 2016-08-23 01:23 - 00002782 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-23 01:23 - 2016-08-23 01:23 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-23 01:23 - 2016-08-23 01:23 - 00000000 ____D C:\Program Files\CCleaner
2016-08-23 01:20 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2016-08-23 01:20 - 2016-08-23 01:20 - 00003640 _____ C:\WINDOWS\System32\Tasks\DivXUpdate
2016-08-23 01:20 - 2016-08-23 01:20 - 00000000 ____D C:\Program Files\DivX
2016-08-23 01:18 - 2016-08-23 18:11 - 00000000 ____D C:\ProgramData\DivX
2016-08-23 01:18 - 2016-08-23 01:20 - 00000000 ____D C:\Program Files (x86)\DivX
2016-08-23 01:14 - 2016-08-30 12:23 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-23 01:14 - 2016-08-24 12:06 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-08-23 01:07 - 2016-08-24 03:11 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DirBuster
2016-08-23 00:55 - 2016-08-23 07:18 - 00000000 ____D C:\Program Files\CyberGhost 5
2016-08-23 00:55 - 2016-08-23 00:56 - 00000000 ____D C:\Program Files\TAP-Windows
2016-08-23 00:35 - 2016-08-29 12:59 - 00000600 _____ C:\Users\Ja\AppData\Local\PUTTY.RND
2016-08-23 00:20 - 2016-08-26 15:19 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-246404532-835643752-1720096512-1001
2016-08-23 00:06 - 2016-08-24 11:42 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Apple Computer
2016-08-23 00:06 - 2016-08-24 11:42 - 00000000 ____D C:\Users\Ja\AppData\Local\Apple Computer
2016-08-23 00:06 - 2016-08-23 00:06 - 00000000 ____D C:\Users\Ja\AppData\Roaming\RST
2016-08-23 00:06 - 2016-08-23 00:06 - 00000000 ____D C:\Users\Ja\AppData\Local\RST
2016-08-23 00:02 - 2016-08-23 07:32 - 00004476 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-08-23 00:01 - 2016-08-23 07:27 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-23 00:01 - 2016-08-23 00:01 - 00002011 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-08-23 00:00 - 2016-08-23 16:55 - 00001032 _____ C:\Users\Ja\AppData\Local\MRDownloader.nast
2016-08-23 00:00 - 2016-08-23 16:55 - 00000059 _____ C:\Users\Ja\AppData\Local\MRDownloader.err
2016-08-23 00:00 - 2016-08-23 00:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-08-22 23:55 - 2016-08-24 12:12 - 00000000 ____D C:\Users\Ja\AppData\Local\Adobe
2016-08-22 23:49 - 2016-08-30 12:23 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Skype
2016-08-22 23:48 - 2016-08-29 21:49 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-22 23:48 - 2016-08-24 03:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-22 23:48 - 2016-08-22 23:48 - 00002713 _____ C:\Users\Public\Desktop\Skype.lnk
2016-08-22 23:47 - 2016-08-29 21:52 - 00000000 ____D C:\ProgramData\Skype
2016-08-22 23:42 - 2013-05-04 06:51 - 00014848 ____N (Microsoft) C:\WINDOWS\system32\rars.rs
2016-08-22 23:42 - 2013-05-04 06:10 - 00014848 ____N (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2016-08-22 23:35 - 2016-08-24 03:11 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2016-08-22 23:35 - 2016-08-22 23:43 - 00000000 ____D C:\Users\Ja\AppData\Roaming\ICQ
2016-08-22 23:35 - 2016-08-22 23:35 - 00001840 _____ C:\Users\Ja\Desktop\ICQ.lnk
2016-08-22 23:35 - 2016-08-22 23:35 - 00001698 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\ICQ.lnk
2016-08-22 23:34 - 2016-08-22 23:34 - 00001138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 6.lnk
2016-08-22 23:34 - 2016-08-22 23:34 - 00001126 _____ C:\Users\Public\Desktop\TeamViewer 6.lnk
2016-08-22 23:34 - 2016-08-22 23:34 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-08-22 23:31 - 2016-08-22 23:31 - 00000518 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disk (C).lnk
2016-08-22 23:31 - 2016-08-22 23:31 - 00000363 _____ C:\Users\Ja\Desktop\Počítač.lnk
2016-08-22 23:30 - 2016-08-22 23:30 - 00000291 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Počítač.lnk
2016-08-22 23:26 - 2016-08-30 00:16 - 00000000 ____D C:\Users\Ja\AppData\Roaming\vlc
2016-08-22 23:26 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-08-22 23:26 - 2016-08-22 23:26 - 00001030 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-08-22 23:26 - 2016-08-22 23:26 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-08-22 23:13 - 2016-08-22 23:13 - 00000000 ____D C:\Users\Ja\AppData\Roaming\WinRAR
2016-08-22 23:11 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2016-08-22 23:11 - 2016-08-22 23:11 - 00000991 _____ C:\Users\Public\Desktop\MozBackup.lnk
2016-08-22 23:11 - 2016-08-22 23:11 - 00000000 ____D C:\Program Files (x86)\MozBackup
2016-08-22 23:08 - 2016-08-29 12:59 - 00000000 ____D C:\Users\Ja\AppData\Roaming\FileZilla
2016-08-22 23:08 - 2016-08-23 00:04 - 00002057 _____ C:\Users\Public\Desktop\FileZilla Client.lnk
2016-08-22 23:08 - 2016-08-23 00:04 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2016-08-22 23:06 - 2016-08-22 23:06 - 00001904 _____ C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applian FLV Player.lnk
2016-08-22 23:06 - 2016-08-22 23:06 - 00001874 _____ C:\Users\Ja\Desktop\Applian FLV Player.lnk
2016-08-22 23:06 - 2016-08-22 23:06 - 00000000 ____D C:\WINDOWS\Applian FLV Player
2016-08-22 23:00 - 2016-08-22 23:00 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-08-22 22:50 - 2016-08-28 15:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-22 22:48 - 2016-08-28 15:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-08-22 22:48 - 2016-08-22 22:48 - 00001123 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-08-22 22:48 - 2016-08-22 22:48 - 00001111 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-08-22 22:48 - 2016-08-22 22:48 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Mozilla
2016-08-22 22:48 - 2016-08-22 22:48 - 00000000 ____D C:\Users\Ja\AppData\Local\Mozilla
2016-08-22 22:46 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2016-08-22 22:46 - 2016-08-23 02:52 - 00000000 ____D C:\Program Files (x86)\WinPcap
2016-08-22 22:43 - 2016-08-22 22:43 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-08-22 22:43 - 2008-10-03 14:30 - 00000414 _____ C:\WINDOWS\SysWOW64\lame_acm.xml
2016-08-22 22:43 - 2008-09-24 20:41 - 00839680 _____ (hxxp://www.mp3dev.org/) C:\WINDOWS\SysWOW64\lameACM.acm
2016-08-22 22:43 - 2008-09-16 02:14 - 03596288 _____ C:\WINDOWS\SysWOW64\qt-dx331.dll
2016-08-22 22:43 - 2008-09-16 02:12 - 00081920 _____ (DivX, Inc.) C:\WINDOWS\SysWOW64\dpl100.dll
2016-08-22 22:43 - 2008-09-16 02:11 - 00683520 _____ (DivX, Inc.) C:\WINDOWS\SysWOW64\divx.dll
2016-08-22 22:43 - 2008-07-30 21:09 - 00000038 _____ C:\WINDOWS\avisplitter.ini
2016-08-22 22:43 - 2008-06-12 20:36 - 00007680 _____ C:\WINDOWS\SysWOW64\ff_vfw.dll
2016-08-22 22:43 - 2008-01-10 14:16 - 00159839 _____ C:\WINDOWS\SysWOW64\xvidvfw.dll
2016-08-22 22:43 - 2008-01-10 14:15 - 00755027 _____ C:\WINDOWS\SysWOW64\xvidcore.dll
2016-08-22 22:43 - 2007-09-21 02:52 - 00118784 _____ (fccHandler) C:\WINDOWS\SysWOW64\ac3acm.acm
2016-08-22 22:43 - 2007-09-04 18:56 - 00164352 _____ C:\WINDOWS\SysWOW64\unrar.dll
2016-08-22 22:43 - 2007-07-10 18:10 - 00000547 _____ C:\WINDOWS\SysWOW64\ff_vfw.dll.manifest
2016-08-22 22:43 - 2004-01-25 18:18 - 00217088 _____ (www.helixcommunity.org) C:\WINDOWS\SysWOW64\yv12vfw.dll
2016-08-22 22:33 - 2016-08-22 22:33 - 00000000 ____D C:\ProgramData\ClassicShell
2016-08-22 22:32 - 2016-08-29 21:49 - 00000000 ____D C:\Users\Ja\AppData\Roaming\ClassicShell
2016-08-22 22:31 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2016-08-22 22:31 - 2016-08-22 22:31 - 00000000 ____D C:\Program Files\Classic Shell
2016-08-22 22:27 - 2016-08-24 03:11 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-22 22:27 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-22 22:27 - 2016-08-22 22:27 - 00000000 ____D C:\Program Files (x86)\WinRAR
2016-08-22 22:21 - 2016-08-22 22:21 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Macromedia
2016-08-22 22:18 - 2016-08-29 22:26 - 00000062 _____ C:\Users\Ja\AppData\Roaming\sp_data.sys
2016-08-22 22:18 - 2016-08-22 22:18 - 00000000 ____D C:\Users\Ja\AppData\Local\ASUS
2016-08-22 22:17 - 2016-08-24 03:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 2008
2016-08-22 22:17 - 2016-08-22 22:18 - 00000000 ____D C:\Program Files (x86)\Your Uninstaller 2008
2016-08-22 22:17 - 2016-08-22 22:17 - 00001127 _____ C:\Users\Ja\Desktop\Your Uninstaller! 2008.lnk
2016-08-22 22:17 - 2016-08-22 22:17 - 00000000 ____D C:\Windows\Profiles\Ja
2016-08-22 22:17 - 2016-08-22 22:17 - 00000000 ____D C:\Users\Ja\AppData\Roaming\URSoft
2016-08-22 22:13 - 2016-08-22 22:13 - 00000000 ____D C:\Users\Ja\AppData\Roaming\ASUS WebStorage
2016-08-22 22:12 - 2016-08-22 22:12 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Atheros
2016-08-22 22:12 - 2016-08-22 22:12 - 00000000 ____D C:\Users\Ja\AppData\Local\BMExplorer
2016-08-22 22:11 - 2016-08-23 00:53 - 00000000 ____D C:\Users\Ja\AppData\Roaming\Adobe
2016-08-22 22:00 - 2016-08-24 18:09 - 00000000 ____D C:\Users\Ja\AppData\Local\Packages
2016-08-22 22:00 - 2016-08-23 16:54 - 00000000 ____D C:\Users\Ja\AppData\Local\VirtualStore
2016-08-22 21:06 - 2016-08-24 10:37 - 00000000 ___HD C:\$SysReset
2016-08-19 03:06 - 2016-08-19 03:06 - 00015274 _____ C:\Users\Ja\Desktop\HU_CZ UDP.txt
2016-08-18 18:19 - 2016-08-19 20:57 - 00064499 _____ C:\Users\Ja\Desktop\getcc.m3u
2016-08-18 02:07 - 2016-08-18 02:07 - 00000162 ____H C:\Users\Ja\Desktop\~$guide.xml
2016-08-14 22:27 - 2016-08-14 22:27 - 00010756 _____ C:\Users\Ja\Desktop\skylink-komplet.m3u
2016-08-13 01:51 - 2016-08-13 04:16 - 00000000 ____D C:\Users\Ja\Desktop\dash-player
2016-08-13 00:35 - 2016-08-13 00:41 - 00000251 _____ C:\Users\Ja\Desktop\4funtv.txt
2016-08-12 23:33 - 2016-08-12 23:33 - 00060772 _____ C:\Users\Ja\Desktop\radio-world.m3u
2016-08-12 15:59 - 2016-08-12 18:14 - 00039486 _____ C:\Users\Ja\Desktop\aa-novotelecom+cdsua-povod.txt
2016-08-11 02:22 - 2016-08-15 03:04 - 00004812 _____ C:\Users\Ja\Desktop\najnovsie tv.txt
2016-08-08 22:43 - 2016-08-09 04:07 - 00001339 _____ C:\Users\Ja\Desktop\rio2016-stv.txt
2016-08-05 03:53 - 2016-08-12 18:08 - 00002201 _____ C:\Users\Ja\Desktop\new cz-sk.txt
2016-08-05 01:24 - 2016-08-05 01:24 - 00017902 _____ C:\Users\Ja\Desktop\moldava+CZTV.txt
2016-08-03 03:12 - 2016-08-03 03:12 - 00000000 ____D C:\Users\Ja\Desktop\network-ip-scanner
2016-08-01 06:18 - 2016-08-01 06:18 - 00365536 _____ (DivX, LLC) C:\WINDOWS\SysWOW64\DivXControlPanelApplet.cpl

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-08-30 12:24 - 2013-10-31 02:55 - 00003474 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-08-30 12:24 - 2013-10-31 02:55 - 00003464 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-08-29 22:25 - 2013-10-31 02:59 - 00003268 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2016-08-29 22:25 - 2013-10-31 02:55 - 00003028 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-08-29 22:25 - 2013-10-31 02:55 - 00003004 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ColorU
2016-08-29 22:25 - 2013-10-31 02:55 - 00002988 _____ C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON
2016-08-29 22:25 - 2013-10-31 02:54 - 00003056 _____ C:\WINDOWS\System32\Tasks\ASUS P4G
2016-08-29 22:25 - 2013-10-31 02:54 - 00002956 _____ C:\WINDOWS\System32\Tasks\ASUS InstantOn Config
2016-08-29 22:25 - 2013-10-31 02:44 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-08-28 16:26 - 2014-12-03 00:36 - 05602816 ___SH C:\Users\Ja\Desktop\Thumbs.db
2016-08-28 15:47 - 2015-04-01 22:46 - 00013035 _____ C:\Users\Ja\Desktop\moje-mobil-token.m3u
2016-08-27 10:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-08-27 10:43 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-27 10:00 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-26 11:48 - 2013-10-31 02:57 - 00000000 ____D C:\ProgramData\Temp
2016-08-26 02:11 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-08-25 16:29 - 2014-12-03 02:45 - 00001533 _____ C:\Users\Ja\Desktop\TcpScanner.lnk
2016-08-25 08:30 - 2016-02-04 16:58 - 00000839 _____ C:\Users\Ja\Desktop\RAALTRANS Editor 8.520.lnk
2016-08-25 08:23 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-25 01:15 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppCompat
2016-08-24 22:52 - 2014-11-21 03:39 - 03627856 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-24 21:57 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-24 10:59 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-08-24 10:46 - 2014-11-21 11:22 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2016-08-24 10:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-08-24 10:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-24 10:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-24 10:45 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-08-24 07:05 - 2012-07-26 07:26 - 00000199 _____ C:\WINDOWS\win.ini
2016-08-24 05:22 - 2013-10-31 02:47 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2016-08-24 03:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2016-08-24 03:29 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2016-08-24 03:27 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-24 03:27 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-24 03:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-24 03:14 - 2014-11-21 03:15 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-24 03:14 - 2014-11-21 02:46 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-08-24 03:14 - 2014-11-21 02:46 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-08-24 03:14 - 2014-11-21 02:46 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-08-24 03:14 - 2014-11-21 02:45 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-08-24 03:14 - 2014-11-21 02:45 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-08-24 03:14 - 2014-11-21 02:45 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Com
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\FileManager
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-08-24 03:14 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-24 03:14 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-24 03:14 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-08-24 03:14 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-08-24 03:14 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\servicing
2016-08-24 03:13 - 2013-08-22 16:44 - 00482256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-24 03:11 - 2014-11-21 03:15 - 00000000 ____D C:\WINDOWS\ShellNew
2016-08-24 03:11 - 2013-10-31 02:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-08-24 03:11 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-08-24 03:11 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2016-08-24 03:11 - 2013-05-01 13:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-08-24 03:11 - 2013-05-01 13:18 - 00000000 ____D C:\WINDOWS\sk
2016-08-24 03:11 - 2013-05-01 13:17 - 00000000 ____D C:\WINDOWS\pl
2016-08-24 03:11 - 2013-05-01 13:17 - 00000000 ____D C:\WINDOWS\hu
2016-08-24 03:11 - 2013-05-01 13:17 - 00000000 ____D C:\WINDOWS\cs
2016-08-24 03:05 - 2014-11-21 02:46 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-08-24 03:05 - 2014-11-21 02:46 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-08-24 03:05 - 2014-11-21 02:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-08-24 03:05 - 2013-10-31 02:43 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-08-24 03:05 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\IME
2016-08-24 03:05 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-08-24 03:05 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-24 03:03 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-08-24 03:03 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2016-08-24 03:03 - 2012-08-02 15:28 - 00000000 ____D C:\ProgramData\PRICache
2016-08-24 03:02 - 2013-10-31 02:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUSDVD
2016-08-24 03:02 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-08-24 03:02 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-08-24 03:02 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-24 03:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-08-24 03:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-08-24 02:58 - 2012-08-02 15:28 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2016-08-24 01:05 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-08-23 16:48 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2016-08-23 07:17 - 2013-05-01 13:15 - 00000000 ____D C:\ProgramData\Adobe
2016-08-23 04:33 - 2013-05-01 13:18 - 00000000 ____D C:\ProgramData\McAfee
2016-08-22 22:29 - 2013-05-01 13:20 - 00000000 ____D C:\ProgramData\WildTangent
2016-08-22 22:29 - 2013-05-01 13:20 - 00000000 ____D C:\Program Files (x86)\WildGames
2016-08-22 22:26 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-08-22 22:15 - 2012-08-02 15:33 - 00000000 ____D C:\WINDOWS\Log
2016-08-22 22:12 - 2013-10-31 02:52 - 00000000 ____D C:\ProgramData\Atheros
2016-08-19 18:53 - 2015-10-12 20:38 - 00000000 ____D C:\Users\Ja\.oracle_jre_usage
2016-08-18 00:18 - 2015-05-10 21:35 - 00004813 _____ C:\Users\Ja\Desktop\dvbt.txt
2016-08-14 13:48 - 2016-04-05 11:36 - 00000000 _____ C:\Users\Ja\Desktop\poznamkovy blok.txt

==================== Files in the root of some directories =======

2016-08-22 22:18 - 2016-08-29 22:26 - 0000062 _____ () C:\Users\Ja\AppData\Roaming\sp_data.sys
2016-08-23 02:43 - 2016-08-24 20:48 - 0000600 _____ () C:\Users\Ja\AppData\Roaming\winscp.rnd
2016-08-23 00:00 - 2016-08-23 16:55 - 0000059 _____ () C:\Users\Ja\AppData\Local\MRDownloader.err
2016-08-23 00:00 - 2016-08-23 16:55 - 0001032 _____ () C:\Users\Ja\AppData\Local\MRDownloader.nast
2016-08-30 12:28 - 2016-08-30 12:30 - 0029696 _____ () C:\Users\Ja\AppData\Local\MSGBOX.EXE
2016-08-23 00:35 - 2016-08-29 12:59 - 0000600 _____ () C:\Users\Ja\AppData\Local\PUTTY.RND
2016-08-24 02:41 - 2016-08-24 02:41 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-05-01 13:15 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Some files in TEMP:
====================
C:\Users\Ja\AppData\Local\Temp\libeay32.dll
C:\Users\Ja\AppData\Local\Temp\msvcr120.dll
C:\Users\Ja\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-08-24 02:34

==================== End of FRST.txt ============================

[Márty84]

Napiste mi velikost adresare plochy (C:\Users\Ja\Plocha)



Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] => C:\Program Files (x86)\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [icq.desktop] => C:\Users\Ja\AppData\Roaming\ICQ\bin\icq.exe [31181448 2016-08-22] ()
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29538432 2016-08-17] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION

FF Extension: (X-notifier) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2016-08-23]
FF Extension: (Gmail™ Notifier (restartless)) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2016-08-23]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found

Task: {69D256AF-8EAC-445F-AE80-CB356E6AC0F1} - \Microsoft\Windows\Setup\EOSNotify -> No File <==== ATTENTION
Task: {A2FCEE01-00EB-40A4-A8D2-A1F3BA35AF66} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2014-11-21] (Microsoft Corporation) <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

AlternateDataStreams: C:\ProgramData\Temp:2C267DB7 [322]
AlternateDataStreams: C:\ProgramData\Temp:B3D74A13 [150]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10

Hosts:
EmptyTemp:
Reboot:
End

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

[milos736]

Zdravim, velkost plochy 62,9 MB

Modra obrazovka po fixnuti nenabehla, ale predtym po prvom pouzity FRST ano, musel som vtedy natvrdo vypnu, PC robil update,
potom konfiguracia nastavenia asi 40 minut, aktualizacia win cez win update to nebola to som pozrel, odvtedy modra obrazovka nie. slozka minidump prazdna.

Log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-08-2016
Ran by Ja (30-08-2016 19:38:21) Run:1
Running from C:\Users\Ja\Desktop
Loaded Profiles: Ja (Available Profiles: Ja & Administrator)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] => C:\Program Files (x86)\Google\Gmail Notifier\gnotify.exe [479232 2005-07-15] (Google Inc.)
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [icq.desktop] => C:\Users\Ja\AppData\Roaming\ICQ\bin\icq.exe [31181448 2016-08-22] ()
HKU\S-1-5-21-246404532-835643752-1720096512-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29538432 2016-08-17] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION

FF Extension: (X-notifier) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2016-08-23]
FF Extension: (Gmail™ Notifier (restartless)) - C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2016-08-23]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found

Task: {69D256AF-8EAC-445F-AE80-CB356E6AC0F1} - \Microsoft\Windows\Setup\EOSNotify -> No File <==== ATTENTION
Task: {A2FCEE01-00EB-40A4-A8D2-A1F3BA35AF66} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2014-11-21] (Microsoft Corporation) <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

AlternateDataStreams: C:\ProgramData\Temp:2C267DB7 [322]
AlternateDataStreams: C:\ProgramData\Temp:B3D74A13 [150]

S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-05-23 324224]

DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe
DeleteKey: HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\{0228e555-4f9c-4e35-a3ec-b109a192b4c2} => value removed successfully
HKU\S-1-5-21-246404532-835643752-1720096512-1001\Software\Microsoft\Windows\CurrentVersion\Run\\icq.desktop => value removed successfully
HKU\S-1-5-21-246404532-835643752-1720096512-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => key removed successfully
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => key removed successfully
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi => moved successfully
C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi => path removed successfully
C:\Users\Ja\AppData\Roaming\Mozilla\Firefox\Profiles\wrqc7eju.default-1471900876311\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi => moved successfully
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{69D256AF-8EAC-445F-AE80-CB356E6AC0F1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69D256AF-8EAC-445F-AE80-CB356E6AC0F1}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOSNotify" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{A2FCEE01-00EB-40A4-A8D2-A1F3BA35AF66}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2FCEE01-00EB-40A4-A8D2-A1F3BA35AF66}" => key removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SetupSQMTask => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SetupSQMTask" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => moved successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\ProgramData\Temp => ":2C267DB7" ADS removed successfully.
C:\ProgramData\Temp => ":B3D74A13" ADS removed successfully.
SkypeUpdate => service removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisableS3S4 => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcpltui_exe => key removed successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl10 => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11820148 B
Java, Flash, Steam htmlcache => 692 B
Windows/system/drivers => 41958502 B
Edge => 0 B
Chrome => 0 B
Firefox => 94047910 B
Opera => 110592 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Ja => 21782432 B
Administrator => 13952 B

RecycleBin => 0 B
EmptyTemp: => 169.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:39:39 ====

[milos736]

Opat modra obrazovka pri beznom surfovani v mozile, prikladam do prilohy subor so slozky minidump. A prosim Vas FRST mi zrusil g mail notifier a x notifier , boli zavirene? ci mozem si ich dat naspat?

[Márty84]

mozem si ich dat naspat?

Pokud jste to mel zamerne, muzete to dat zpatky


Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak to s pc vypada. Pri dalsim padu opet poslete dump soubor, at je to s cim porovnat.

[milos736]

Zdravim, tak som vsetko urobil ako ste pisali, aj CCleaner ten pouzivam pravidelne, aj defragmentoval disk C a D, modra obrazovka zatim
nebola ale PC dost casto mrzne, nejdu okna otavrat, proste cele pc zamrznute na cca minutu potom sa vse rozbehne.
Stalo sami aj, ze ma so skype odhlasilo a napisalo neda sa prihlasit pre vstupno-vystupnu chybu disku, rstartnite skype.
Chvilu PC zamrzlo a po minute PC OK, aj skype ked som restartol fungovalo. Mozno to pomoze k niecomu. Vdaka

[Márty84]

Zkuste, zda to mrzne v nouzovem rezimu.

[milos736]

Zdravim, tak od vcera sa PC drzi, snazil som sa na nom co najviac robit, vytazit ho, pootvaral vela okien , aj v prehliadaci, zatim
nezamrzol ani modra obrazovka. v nudzovom rezime som to skusal uz predtym tam to nemrzlo. Chcem sa Vas prosim opitat ako odbornika
ak by som pc vratil uplne do vyrobnych nastaveni, predtym som dal naspat win so zachovanim vlastnych suborov, ak bych ho teda vratil do vyrobnych nastaveni pridem aj o disk D ? a co ovladace? predpokladam ze hardwerova chyba tu nie je. vdaka.

[Márty84]

ak bych ho teda vratil do vyrobnych nastaveni pridem aj o disk D ?

Disk D tam puvodne uz byl, nebo jste ho rozdeloval az dodatecne? Ja bych rozhodne zalohoval radeji vsechno.

a co ovladace?

Ovladace by tam mely byt, stejne jako u te predesle preinstalace.

[milos736]

Disk D som vytvaral ja. Dnes som PC hodne vytazil, ani raz nezamrzlo ani modra obrazovka. Co myslite co mu pomohlo, ze by ta defragmentacia? Po vysledku defragmentacie disk D defragmentovalo uplne podla analizy, disk C ked analizovalo a potom boli vysledky tak vsetko nebolo defragmentovane, je to bezne tak ci malo ho defragmentovat presne ako zanalizovalo ? Alebo este mate nejake postupy na zlepsenie, alebo ak by to zacalo opat padat odporucate uz len tu uplnu preinstalaciu? velka vdaka za Vasu pomoc.