﻿Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-12-2015
Ran by Adam (administrator) on ADAM-PC (03-12-2015 18:50:53)
Running from C:\Users\Adam\Desktop
Loaded Profiles: Adam (Available Profiles: Adam & DefaultAppPool)
Platform: Microsoft Windows 10 Home Version 1511 (X86) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-10-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6602152 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\Run: [uTorrent] => C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-11-29] (BitTorrent Inc.)
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [204800 2015-10-30] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2015-04-28]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Universal Media Server.lnk [2015-06-19]
ShortcutTarget: Universal Media Server.lnk -> C:\Program Files\Universal Media Server\UMS.exe (Universal Media Server)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.16.1
Tcpip\..\Interfaces\{9faf7755-338d-4d05-bd3d-89ae930c6797}: [DhcpNameServer] 192.168.16.1
Tcpip\..\Interfaces\{e2bde535-7fba-4946-a97d-1fc50b9be709}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-19] (Oracle Corporation)
BHO: Discover Treasure -> {bfa55139-82af-4663-a19b-e135dac8d043} -> C:\Program Files\Discover Treasure\Extensions\bfa55139-82af-4663-a19b-e135dac8d043.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-19] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\luh6bl93.default-1443711275127
FF Homepage: www.google.sk
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-11] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-19] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-19] (Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll [2012-12-19] (Verimatrix, Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3409903947-2537725115-4003705135-1000: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll [2012-12-19] (Verimatrix, Inc.)
FF Extension: Adblock Plus - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\luh6bl93.default-1443711275127\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-11-29]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\!740FB3CCD0155454F1241322ADACFDCE740F.js [2015-11-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1971968 2015-10-09] (ESET)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2015-10-13] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-10-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632 2015-10-13] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athur; C:\WINDOWS\System32\drivers\athur.sys [1570304 2013-06-28] (Atheros Communications, Inc.)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1.sys [24424 2012-12-13] (Windows (R) Win 7 DDK provider)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [205800 2015-09-23] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [199608 2015-07-14] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14464 2015-09-23] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [145512 2015-09-23] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [111040 2015-10-07] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [161992 2015-09-23] (ESET)
R1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [44608 2015-09-23] (ESET)
R0 epfwwfp; C:\WINDOWS\System32\DRIVERS\epfwwfp.sys [56944 2015-09-23] (ESET)
S3 jrvad_service; C:\WINDOWS\System32\drivers\JRiverWDMDriver.sys [30168 2015-01-26] (JRiver, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-10-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [32912 2015-08-18] (NVIDIA Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek                                            )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 avchv; \SystemRoot\system32\DRIVERS\avchv.sys [X]
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-03 18:50 - 2015-12-03 18:51 - 00009975 _____ C:\Users\Adam\Desktop\FRST.txt
2015-12-03 18:50 - 2015-12-03 18:50 - 00000000 ____D C:\FRST
2015-12-03 18:46 - 2015-12-03 18:46 - 01721344 _____ (Farbar) C:\Users\Adam\Desktop\FRST.exe
2015-12-03 17:27 - 2015-12-03 17:29 - 00000000 ____D C:\AdwCleaner
2015-12-03 17:11 - 2015-11-22 11:41 - 05797728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-03 17:11 - 2015-11-22 11:41 - 01859448 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 17:11 - 2015-11-22 11:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-03 17:11 - 2015-11-22 11:34 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-03 17:11 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-03 17:11 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-03 17:11 - 2015-11-22 11:24 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-03 17:11 - 2015-11-22 11:24 - 00043376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-03 17:11 - 2015-11-22 11:23 - 00076128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-03 17:11 - 2015-11-22 11:20 - 00504624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-03 17:11 - 2015-11-22 11:20 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-03 17:11 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-03 17:11 - 2015-11-22 11:09 - 00641728 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-03 17:11 - 2015-11-22 11:08 - 00364176 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-03 17:11 - 2015-11-22 10:45 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-03 17:11 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-03 17:11 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-03 17:11 - 2015-11-22 10:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-03 17:11 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-03 17:11 - 2015-11-22 10:42 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-03 17:11 - 2015-11-22 10:42 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-03 17:11 - 2015-11-22 10:42 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-03 17:11 - 2015-11-22 10:42 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-03 17:11 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-03 17:11 - 2015-11-22 10:39 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-03 17:11 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-03 17:11 - 2015-11-22 10:39 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-03 17:11 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-03 17:11 - 2015-11-22 10:37 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-03 17:11 - 2015-11-22 10:37 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-03 17:11 - 2015-11-22 10:37 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-03 17:11 - 2015-11-22 10:35 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-03 17:11 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-03 17:11 - 2015-11-22 10:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-03 17:11 - 2015-11-22 10:33 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-03 17:11 - 2015-11-22 10:33 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-03 17:11 - 2015-11-22 10:33 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-03 17:11 - 2015-11-22 10:33 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-03 17:11 - 2015-11-22 10:33 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-03 17:11 - 2015-11-22 10:32 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-03 17:11 - 2015-11-22 10:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-03 17:11 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-03 17:11 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-03 17:11 - 2015-11-22 10:32 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-03 17:11 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-03 17:11 - 2015-11-22 10:31 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-03 17:11 - 2015-11-22 10:30 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-03 17:11 - 2015-11-22 10:30 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-03 17:11 - 2015-11-22 10:30 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-03 17:11 - 2015-11-22 10:30 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-03 17:11 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-03 17:11 - 2015-11-22 10:29 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-03 17:11 - 2015-11-22 10:29 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-03 17:11 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-03 17:11 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-03 17:11 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-03 17:11 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-03 17:11 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-03 17:11 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-03 17:11 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-03 17:11 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-03 17:11 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-03 17:11 - 2015-11-22 10:27 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-03 17:11 - 2015-11-22 10:27 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-03 17:11 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-03 17:11 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-03 17:11 - 2015-11-22 10:26 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-03 17:11 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-03 17:11 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-03 17:11 - 2015-11-22 10:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-03 17:11 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-03 17:11 - 2015-11-22 10:24 - 12124672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-03 17:11 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-03 17:11 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-03 17:11 - 2015-11-22 10:23 - 03197440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-03 17:11 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-03 17:11 - 2015-11-22 10:20 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-03 17:11 - 2015-11-22 10:20 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-03 17:11 - 2015-11-22 10:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-03 17:11 - 2015-11-22 10:19 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-03 17:11 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-03 17:11 - 2015-11-22 10:18 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-03 17:11 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-03 17:11 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-03 17:11 - 2015-11-22 10:17 - 01925120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-03 17:11 - 2015-11-22 10:17 - 01086464 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-03 17:11 - 2015-11-22 10:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-03 17:11 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-03 17:10 - 2015-11-22 10:48 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-03 17:10 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-03 17:10 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-03 17:10 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-03 17:10 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-03 17:10 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-03 17:10 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-03 17:10 - 2015-11-22 10:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-03 17:10 - 2015-11-22 10:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-03 17:10 - 2015-11-22 10:43 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-03 17:10 - 2015-11-22 10:42 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-03 17:10 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-03 17:10 - 2015-11-22 10:42 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-03 17:10 - 2015-11-22 10:42 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-03 17:10 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-03 17:10 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-03 17:10 - 2015-11-22 10:40 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-03 17:10 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-03 17:10 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-03 17:10 - 2015-11-22 10:38 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-03 17:10 - 2015-11-22 10:37 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-03 17:10 - 2015-11-22 10:34 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-03 17:10 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-03 17:10 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-03 17:10 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-12-02 18:38 - 2015-12-02 21:06 - 2214400344 _____ C:\Users\Adam\Desktop\min2.avi
2015-12-02 18:28 - 2015-12-02 18:29 - 00000000 ____D C:\rsit
2015-11-29 23:09 - 2015-12-01 21:25 - 00000000 ____D C:\Users\Adam\AppData\Roaming\uTorrent
2015-11-29 23:09 - 2015-11-29 23:09 - 00002716 _____ C:\Users\Adam\Desktop\µTorrent.lnk
2015-11-29 23:08 - 2015-11-29 23:08 - 00000000 ____D C:\Users\Adam\AppData\Roaming\Geek Uninstaller
2015-11-29 22:54 - 2015-11-29 22:55 - 00000000 ____D C:\Users\Adam\AppData\Local\Follow Virtual
2015-11-25 21:58 - 2015-11-25 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-25 21:58 - 2015-11-25 21:58 - 00000000 ____D C:\Program Files\CCleaner
2015-11-25 21:45 - 2015-11-25 21:45 - 00031832 _____ (Phoenix Technologies) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
2015-11-25 21:43 - 2015-11-25 21:43 - 00001210 _____ C:\Users\Adam\Desktop\AIDA64 Extreme.lnk
2015-11-25 21:43 - 2015-11-25 21:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
2015-11-25 21:42 - 2015-11-25 21:42 - 00000000 ____D C:\Program Files\FinalWire
2015-11-25 20:13 - 2015-11-25 20:13 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-11-25 20:06 - 2015-11-25 20:09 - 00001141 _____ C:\WINDOWS\wininit.ini
2015-11-25 18:25 - 2015-11-25 18:25 - 00000000 ____D C:\Program Files\Common Files\AV
2015-11-25 18:18 - 2015-11-25 20:09 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-11-25 18:16 - 2015-11-25 18:16 - 00000000 ____D C:\Programᡄ
2015-11-25 16:10 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-25 16:10 - 2015-11-21 06:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-25 16:10 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-21 12:57 - 2015-11-21 12:57 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-11-20 00:24 - 2015-11-20 00:24 - 00000000 ____D C:\Users\Adam\AppData\Local\ActiveSync
2015-11-20 00:21 - 2015-11-20 00:21 - 00000020 ___SH C:\Users\Adam\ntuser.ini
2015-11-20 00:10 - 2015-12-03 17:46 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-19 23:57 - 2015-11-19 23:57 - 00001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-19 23:57 - 2015-11-19 23:57 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-11-19 23:57 - 2015-11-19 23:57 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-11-19 23:53 - 2015-11-19 23:58 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-11-19 23:53 - 2015-11-19 23:53 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-11-19 23:50 - 2015-11-30 00:10 - 00000000 ____D C:\Users\Adam
2015-11-19 23:50 - 2015-11-20 00:04 - 00000000 ____D C:\Users\DefaultAppPool
2015-11-19 23:48 - 2015-11-25 20:49 - 00986768 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-19 23:44 - 2015-12-03 17:46 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-19 23:44 - 2015-11-19 23:44 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2015-11-19 23:44 - 2015-11-19 23:44 - 00000000 ____D C:\Program Files\Realtek
2015-11-19 23:44 - 2015-10-13 17:47 - 04388016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-19 23:44 - 2015-10-13 17:47 - 03060912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2015-11-19 23:44 - 2015-10-13 17:47 - 02553520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-19 23:44 - 2015-10-13 17:47 - 00670512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-19 23:44 - 2015-10-13 17:47 - 00374904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-19 23:44 - 2015-10-13 17:47 - 00061560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-19 23:44 - 2015-10-13 15:55 - 05972783 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-19 23:43 - 2015-11-19 23:53 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-19 23:43 - 2015-11-19 23:53 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-19 23:41 - 2015-11-19 23:59 - 00188200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-19 23:40 - 2015-11-25 21:59 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-19 23:35 - 2015-11-19 23:35 - 00000000 ____D C:\Windows.old
2015-11-19 23:34 - 2015-11-19 23:34 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-19 23:34 - 2015-11-19 23:34 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-19 23:34 - 2015-11-19 23:34 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00471392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-19 23:34 - 2015-11-19 23:34 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00443744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-11-19 23:34 - 2015-11-19 23:34 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00113624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-19 23:34 - 2015-11-19 23:34 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-11-19 23:34 - 2015-11-19 23:34 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-11-19 23:34 - 2015-11-19 23:34 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-11-19 23:34 - 2015-11-19 23:34 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-11-19 23:34 - 2015-11-19 23:34 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-11-19 23:32 - 2015-10-29 19:42 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-19 23:32 - 2015-10-29 19:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-19 23:32 - 2015-10-29 19:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-19 23:31 - 2015-11-19 23:31 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-19 23:27 - 2015-11-19 23:27 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-11-19 23:27 - 2015-11-19 23:27 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-11-19 23:27 - 2015-11-19 23:27 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-19 23:27 - 2015-11-19 23:27 - 00000000 ____D C:\Program Files\MSBuild
2015-11-19 23:27 - 2015-11-19 23:27 - 00000000 ____D C:\inetpub
2015-11-19 23:26 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-19 23:26 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-19 23:26 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-19 22:41 - 2015-11-19 22:41 - 00903984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2015-11-19 22:41 - 2015-11-19 22:41 - 00171312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32v.sys
2015-11-19 22:41 - 2015-11-19 22:41 - 00037168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2015-11-19 21:28 - 2015-11-19 23:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-11-19 21:28 - 2015-11-19 21:28 - 00000000 ____D C:\ProgramData\ESET
2015-11-19 20:57 - 2015-10-13 16:04 - 00608048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvStreaming.exe
2015-11-19 20:54 - 2015-10-13 20:01 - 24199344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 16128576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2um.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 15293104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 14497760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 11272048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 11209376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 10707120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-11-19 20:54 - 2015-10-13 20:01 - 03987760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 02823992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 01060656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3234192.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 00911536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3234192.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 00907440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 00869040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2015-11-19 20:54 - 2015-10-13 20:01 - 00021015 _____ C:\WINDOWS\system32\nvinfo.pb
2015-11-19 20:32 - 2015-11-19 20:32 - 00000000 ____D C:\Program Files\Common Files\Java
2015-11-05 14:37 - 2015-11-29 22:55 - 00000000 ____D C:\Program Files\Mozilla Firefox

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-03 18:50 - 2015-10-30 06:13 - 00000000 ____D C:\Windows
2015-12-03 17:58 - 2014-11-30 19:00 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-03 17:45 - 2015-10-30 06:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-03 17:44 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-03 17:44 - 2015-10-30 06:47 - 00000000 ____D C:\WINDOWS\INF
2015-12-03 17:43 - 2015-10-30 06:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-03 17:29 - 2015-10-01 15:50 - 00001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-12-03 17:29 - 2015-10-01 15:50 - 00001080 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-12-03 15:45 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-03 15:45 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-03 15:40 - 2015-02-26 11:02 - 00000000 ____D C:\ProgramData\UMS
2015-12-02 18:28 - 2015-03-13 16:49 - 00000000 ____D C:\Program Files\trend micro
2015-11-25 21:36 - 2014-11-30 17:33 - 00000000 ____D C:\Program Files\Winamp
2015-11-25 21:33 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\System
2015-11-25 21:33 - 2015-10-30 06:44 - 00534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\winhelp.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00221600 _____ (Microsoft Corporation) C:\WINDOWS\system32\lanman.drv
2015-11-25 21:33 - 2015-10-30 06:44 - 00177856 _____ (Microsoft Corporation) C:\WINDOWS\system32\typelib.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00169520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2disp.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00153008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2nls.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00127213 _____ C:\WINDOWS\system32\ega.cpi
2015-11-25 21:33 - 2015-10-30 06:44 - 00108464 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00092320 _____ (Microsoft Corporation) C:\WINDOWS\system32\krnl386.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecli.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\olecli.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00069886 _____ C:\WINDOWS\system32\edit.com
2015-11-25 21:33 - 2015-10-30 06:44 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMSYSTEM.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\graftabl.com
2015-11-25 21:33 - 2015-10-30 06:44 - 00053600 _____ C:\WINDOWS\system32\dosx.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00050648 _____ C:\WINDOWS\system32\COMMAND.COM
2015-11-25 21:33 - 2015-10-30 06:44 - 00047840 _____ (Microsoft Corporation) C:\WINDOWS\system32\USER.EXE
2015-11-25 21:33 - 2015-10-30 06:44 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmspl.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00042809 _____ C:\WINDOWS\system32\KEY01.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00042592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00042537 _____ C:\WINDOWS\system32\KEYBOARD.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDEML.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00039274 _____ C:\WINDOWS\system32\mem.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00035776 _____ C:\WINDOWS\system32\NTIO411.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00035552 _____ C:\WINDOWS\system32\NTIO412.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00034688 _____ C:\WINDOWS\system32\NTIO804.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00034688 _____ C:\WINDOWS\system32\NTIO404.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00033968 _____ C:\WINDOWS\system32\NTIO.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMMDLG.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00029370 _____ C:\WINDOWS\system32\NTDOS411.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00029274 _____ C:\WINDOWS\system32\NTDOS412.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00029146 _____ C:\WINDOWS\system32\NTDOS804.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00029146 _____ C:\WINDOWS\system32\NTDOS404.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00028420 _____ C:\WINDOWS\system32\bios1.rom
2015-11-25 21:33 - 2015-10-30 06:44 - 00028112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DRWATSON.EXE
2015-11-25 21:33 - 2015-10-30 06:44 - 00027866 _____ C:\WINDOWS\system32\NTDOS.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00027792 _____ (Microsoft Corporation) C:\WINDOWS\system32\compobj.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00027200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctl3dv2.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00027097 _____ C:\WINDOWS\system32\country.sys
2015-11-25 21:33 - 2015-10-30 06:44 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\GDI.EXE
2015-11-25 21:33 - 2015-10-30 06:44 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OLESVR.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdmredir.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00021232 _____ C:\WINDOWS\system32\graphics.pro
2015-11-25 21:33 - 2015-10-30 06:44 - 00020634 _____ C:\WINDOWS\system32\debug.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00019694 _____ C:\WINDOWS\system32\GRAPHICS.COM
2015-11-25 21:33 - 2015-10-30 06:44 - 00018896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysedit.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00018832 _____ C:\WINDOWS\system32\v7vga.rom
2015-11-25 21:33 - 2015-10-30 06:44 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdmd.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00014710 _____ C:\WINDOWS\system32\KB16.COM
2015-11-25 21:33 - 2015-10-30 06:44 - 00013888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TOOLHELP.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00013312 _____ C:\WINDOWS\system32\win87em.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFWNET.DRV
2015-11-25 21:33 - 2015-10-30 06:44 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2015-11-25 21:33 - 2015-10-30 06:44 - 00012642 _____ C:\WINDOWS\system32\edlin.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00012498 _____ C:\WINDOWS\system32\append.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00011753 _____ C:\WINDOWS\system32\setver.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00010790 _____ C:\WINDOWS\system32\EDIT.HLP
2015-11-25 21:33 - 2015-10-30 06:44 - 00010544 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMM.drv
2015-11-25 21:33 - 2015-10-30 06:44 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzexpand.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\lzexpand.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WIFEMAN.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00009029 _____ C:\WINDOWS\system32\ANSI.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ver.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\ver.dll
2015-11-25 21:33 - 2015-10-30 06:44 - 00008424 _____ C:\WINDOWS\system32\exe2bin.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00008191 _____ C:\WINDOWS\system32\bios4.rom
2015-11-25 21:33 - 2015-10-30 06:44 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win.com
2015-11-25 21:33 - 2015-10-30 06:44 - 00007052 _____ C:\WINDOWS\system32\nlsfunc.exe
2015-11-25 21:33 - 2015-10-30 06:44 - 00005532 _____ (Microsoft Corporation) C:\WINDOWS\system\stdole.tlb
2015-11-25 21:33 - 2015-10-30 06:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WINNLS.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHELL.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2015-11-25 21:33 - 2015-10-30 06:44 - 00004768 _____ C:\WINDOWS\system32\HIMEM.SYS
2015-11-25 21:33 - 2015-10-30 06:44 - 00004208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storage.dll
2015-11-25 21:19 - 2014-11-30 15:07 - 00000000 ____D C:\Users\Adam\AppData\Local\VirtualStore
2015-11-25 20:56 - 2015-09-18 17:17 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-25 18:58 - 2015-02-26 11:02 - 00001959 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server.lnk
2015-11-25 18:54 - 2015-10-02 13:07 - 00000000 ____D C:\Program Files\Universal Media Server
2015-11-25 18:53 - 2015-10-17 12:07 - 00001637 _____ C:\Users\Adam\Desktop\Universal Media Server.lnk
2015-11-21 13:02 - 2015-10-02 13:00 - 00000000 ____D C:\Users\Adam\AppData\Roaming\WOW
2015-11-21 11:40 - 2015-08-13 14:06 - 00000000 ____D C:\Users\Adam\AppData\Local\Packages
2015-11-21 11:28 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppCompat
2015-11-21 11:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-20 00:26 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-20 00:26 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-20 00:25 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\rescache
2015-11-20 00:24 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-20 00:23 - 2015-08-13 14:06 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-20 00:18 - 2015-08-13 12:39 - 00023784 _____ C:\WINDOWS\diagerr.xml
2015-11-20 00:18 - 2015-08-13 12:39 - 00022863 _____ C:\WINDOWS\diagwrn.xml
2015-11-20 00:15 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-20 00:15 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\Registration
2015-11-20 00:11 - 2015-08-13 13:59 - 00021412 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-20 00:08 - 2015-10-30 06:48 - 00000000 __RSD C:\WINDOWS\Media
2015-11-20 00:08 - 2015-10-30 06:48 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-19 23:58 - 2015-10-30 06:13 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2015-11-19 23:58 - 2015-10-13 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2015-11-19 23:58 - 2015-10-08 20:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2015-11-19 23:58 - 2015-08-26 13:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-19 23:58 - 2015-06-19 23:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Media Server
2015-11-19 23:58 - 2015-04-28 11:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK
2015-11-19 23:58 - 2015-02-26 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth
2015-11-19 23:58 - 2014-12-01 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-19 23:58 - 2014-12-01 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-19 23:58 - 2014-11-30 17:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-19 23:57 - 2015-07-10 07:59 - 00000000 ____D C:\Users\Default.migrated
2015-11-19 23:55 - 2015-10-30 15:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-11-19 23:55 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-19 23:55 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-19 23:55 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-19 23:55 - 2014-11-30 20:14 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-11-19 23:55 - 2014-11-30 20:14 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-11-19 23:53 - 2015-10-30 15:56 - 00000000 ____D C:\WINDOWS\OCR
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\schemas
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ____D C:\ProgramData\USOPrivate
2015-11-19 23:53 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-19 23:53 - 2009-07-14 08:50 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-11-19 23:53 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\Microsoft Games
2015-11-19 23:47 - 2015-10-30 06:13 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-19 23:44 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\Help
2015-11-19 23:41 - 2015-10-30 16:01 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-11-19 23:40 - 2015-10-30 06:48 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-19 23:35 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-11-19 23:35 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-19 23:35 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-19 23:35 - 2015-10-30 06:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-19 23:27 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-11-19 23:27 - 2015-10-30 06:45 - 01014272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-11-19 23:27 - 2015-10-30 06:45 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-11-19 23:27 - 2015-10-30 06:45 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-11-19 23:27 - 2015-10-30 06:45 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-11-19 23:27 - 2015-10-30 06:45 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-11-19 23:27 - 2015-10-30 06:45 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-11-19 23:27 - 2015-10-30 06:45 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-11-19 23:27 - 2015-10-30 06:45 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-11-19 23:27 - 2015-10-30 06:45 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-11-19 23:27 - 2015-10-30 06:45 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-11-19 23:02 - 2015-10-30 16:15 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-19 20:35 - 2014-11-30 15:17 - 00000000 ____D C:\Users\Adam\AppData\Local\Adobe
2015-11-19 20:34 - 2014-11-30 17:40 - 00000000 ____D C:\ProgramData\Oracle
2015-11-19 20:32 - 2015-09-18 16:36 - 00000000 ____D C:\Users\Adam\.oracle_jre_usage
2015-11-19 20:30 - 2014-11-30 17:42 - 00095840 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-11-19 20:28 - 2014-11-30 17:40 - 00000000 ____D C:\Program Files\Java
2015-11-11 20:16 - 2014-11-30 15:53 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-11-11 20:04 - 2014-11-30 15:38 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-11 19:56 - 2014-11-30 15:38 - 143250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-03 01:12 - 2015-10-30 06:49 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-03 01:12 - 2015-10-30 06:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2015-09-28 20:25 - 2015-09-28 20:30 - 0005632 _____ () C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-18 14:17 - 2015-06-18 14:17 - 0000100 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2015-09-28 20:31 - 2015-09-28 21:09 - 0001540 _____ () C:\ProgramData\__FileUploader.log

Some files in TEMP:
====================
C:\Users\Adam\AppData\Local\Temp\J5USHUpP5c.exe
C:\Users\Adam\AppData\Local\Temp\RALy9VrYkL.exe
C:\Users\Adam\AppData\Local\Temp\sqlite3.dll
C:\Users\Adam\AppData\Local\Temp\VbVIuGDGyb.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-02 09:26

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version:01-12-2015
Ran by Adam (2015-12-03 18:52:37)
Running from C:\Users\Adam\Desktop
Microsoft Windows 10 Home (X86) (2015-11-19 23:20:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Adam (S-1-5-21-3409903947-2537725115-4003705135-1000 - Administrator - Enabled) => C:\Users\Adam
Administrator (S-1-5-21-3409903947-2537725115-4003705135-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3409903947-2537725115-4003705135-503 - Limited - Disabled)
Guest (S-1-5-21-3409903947-2537725115-4003705135-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3409903947-2537725115-4003705135-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Smart Security 9.0.318.22 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 9.0.318.22 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personálny firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Slovak (HKLM\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizácie NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
AviSynth (HKLM\...\AviSynth) (Version: 2.6.0 MT - )
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
ESET Smart Security (HKLM\...\{EDD088BE-E6F8-40A6-9B79-BC40F70B03EB}) (Version: 9.0.318.22 - ESET, spol. s r.o.)
ffdshow v1.3.4530 [2014-02-09] (HKLM\...\ffdshow_is1) (Version: 1.3.4530.0 - )
Follow Virtual (HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\{090FAB46-7C63-7F39-067F-E62AD4A8861B}) (Version: 1.4.6 - Web Kingdom corp)
Java 8 Update 66 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 sk) (HKLM\...\Mozilla Firefox 42.0 (x86 sk)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
NVIDIA 3D Vision radič ovládača 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafický ovládač 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.92 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 341.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.92 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Ovládací panel NVIDIA 341.92 (Version: 341.92 - NVIDIA Corporation) Hidden
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Universal Media Server (HKLM\...\Universal Media Server) (Version: 5.3.1 - Universal Media Server)
ViewRight Web PC (HKLM\...\{B62D5F4C-BEB2-4DCD-A8B4-EE21CCAEC28A}) (Version: 3.3.0.0 - Verimatrix, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinRAR 5.11 (32-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2015-03-02 19:19 - 00000035 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00DD308B-822F-4090-BAFB-EECB4A9FA7A1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0701E2B7-71DB-4AF2-A75E-86BC4D43B485} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {131C06B8-14F3-41A1-8CDD-A43328DB4ABC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {14E3DF6B-1C82-4C76-ADB7-2C9F6DA1C5D4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {15F81952-00C0-4259-BF1F-07E339EE2A72} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {16F6FF15-D99F-442F-8D98-F5C44168A41D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-11] (Microsoft Corporation)
Task: {184A4656-2D65-44E5-8655-BFAFEB12CBBA} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {2223E858-70C4-4445-BB2E-4ADDF3883BA6} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {22F5437E-531D-4E79-9BD7-72E090728C0C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {29F92B93-76C6-479D-8F8B-3E017DE689FA} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2AFA9EDD-124B-4A5F-A034-295FD5B0B793} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2CB4AC1A-B148-401F-BFBF-B54266DF14BE} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {35EC43FF-6459-4B09-8ACB-0E2B7BE5C070} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {39E767CB-5A54-46CC-B2EC-AD8238BFD7C7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {3E1764C9-A583-4DC6-93A0-903FC3F0EB10} - System32\Tasks\{F9103839-0420-4FD9-A678-532B012F9FEF} => pcalua.exe -a "C:\Program Files\SimpleFiles\Uninstall.exe"
Task: {3E9CB745-0B3A-4995-8690-1298281B37F1} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41A1ED0C-C219-46A7-8F98-6C62A258DAD1} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {49B067E8-26A1-4AEC-B9F7-CB856D1A9292} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {56E05C1C-ECEC-4F53-8CA6-D0D7A947B60B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {5BA47FED-C56E-4839-8D00-F76D492C5FB0} - System32\Tasks\Follow Virtual => Rundll32.exe "C:\Users\Adam\AppData\Local\Follow Virtual\{394B791F-EB11-26A8-F68C-E54F6B98AE87}\FollowVirtual.dll",#3
Task: {5E9FD623-05AF-4A7B-9AA7-0D850B65C456} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5FF38D98-5D1A-474E-8AFB-4385B9194315} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {67998E00-F2AA-43E1-81FB-7140B5BD5B23} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {73515558-37D5-4804-BA6F-5FE3D8318C46} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {79AC3F9A-D0F0-4185-8A91-7B2DF2C10EEB} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {86E97DE5-5B3D-44FB-B83D-F2DCE5CDD62E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {87024A1D-AB7B-4309-B7FA-BB9C4F966693} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {8E242192-9B79-4DBF-A6D6-F9A8D4B3645A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A4A4AD4B-F81A-4602-B8DC-F89B25FF2FBC} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {ABD77015-73EE-4578-9912-4B9E9FF0A79E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B08E76CD-48EC-48C4-BECE-D4DACA673DC5} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {B09DFC11-653C-4EDC-8D67-92B6E83586CE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BD07AF13-D52C-4ED1-AE87-75379991585A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {C3F20F7E-25CC-4316-8D42-CE8E224D4235} - System32\Tasks\{6D0A16F6-7172-4C38-88C6-080AFACDA44F} => pcalua.exe -a C:\Users\Adam\Desktop\pms-1.90.1-setup-full-x64.exe -d C:\Users\Adam\Desktop
Task: {D561B8A9-F8ED-4B0A-8B81-A1DE6230467F} - System32\Tasks\SmartShare => C:\Program Files\LG Software\LG Smart Share\SmartShareStart.exe
Task: {D66A180E-674D-46FA-8B9F-7D643198B7D2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D696C286-63CB-4CC2-886B-B51234A395E5} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D7168B37-8944-4887-91A2-BC687DA7A2B8} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {D823D09A-06A3-435B-B09A-AB9E0EF9E1C4} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E0AC3ED3-BD3C-4FD4-A267-385A22279A37} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E5776D4C-A8D0-4C80-B45E-B1AC922240B2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F4C84DBF-9043-4840-BB7F-0523CD9BBE43} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 06:44 - 2015-10-30 06:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-11-19 23:44 - 2015-10-13 17:47 - 00113840 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2015-12-03 17:11 - 2015-11-22 11:41 - 01859448 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 17:11 - 2015-11-22 11:41 - 01859448 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-11-21 12:49 - 2015-11-21 12:49 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2015-11-21 12:49 - 2015-11-21 12:49 - 00152064 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2015-11-21 12:49 - 2015-11-21 12:49 - 18906624 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2015-10-30 06:44 - 2015-10-30 06:44 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-10-30 06:44 - 2015-10-30 06:44 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-03 17:10 - 2015-11-22 10:15 - 05352960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-03 17:10 - 2015-11-22 10:11 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-03 17:11 - 2015-11-22 10:11 - 02366464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-03 17:11 - 2015-11-22 10:14 - 02656768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-04-28 11:02 - 2013-10-21 10:00 - 00847360 _____ () C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2015-04-28 11:02 - 2013-06-28 13:50 - 01411072 _____ () C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2015-04-28 11:02 - 2013-06-28 13:48 - 00193024 _____ () C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2015-04-28 11:02 - 2013-06-28 13:48 - 00138752 _____ () C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJWF\WJWF.dll
2015-04-28 11:02 - 2013-06-28 13:48 - 00115712 _____ () C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJWF\WJWF_WPS_WIN7.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files\CCleaner:Win32App_1
AlternateDataStreams: C:\Program Files\ffdshow:Win32App_1
AlternateDataStreams: C:\Program Files\Mozilla Firefox:Win32App_1
AlternateDataStreams: C:\Program Files\Verimatrix:Win32App_1
AlternateDataStreams: C:\Program Files\WinRAR:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\Adobe:Win32App_1

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
DNS Servers: 192.168.16.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TVMOBiLiArtworkManager.lnk => C:\Windows\pss\TVMOBiLiArtworkManager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Universal Media Server.lnk => C:\Windows\pss\Universal Media Server.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Adam^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ConnectAir.lnk => C:\Windows\pss\ConnectAir.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AirDroid 3 => C:\Program Files\AirDroid\AirDroid.exe /start
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: NvBackend => "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Plex Media Server => "C:\Program Files\Plex\Plex Media Server\Plex Media Server.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
HKLM\...\StartupApproved\StartupFolder: => "Universal Media Server.lnk"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\StartupApproved\Run: => "PC Remote Server"
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-3409903947-2537725115-4003705135-1000\...\StartupApproved\Run: => "uTorrent"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{3AE719DB-6544-4663-95B5-008590C05783}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{4BA65F7C-098F-4D59-B794-9D98EA283623}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{033DF0EC-EB51-48B0-8022-07CB3F956A26}] => (Allow) C:\Program Files\Winamp\winamp.exe
FirewallRules: [{6D5F103E-8F4D-4A54-A427-39DEFD895AD2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{94EA4C3D-ED3A-4081-AB3E-74B8B9E0267E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7F625F99-65FA-4D6A-AEF1-1FAF8DCB6B8C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{3CDEFB05-184F-4228-90F8-D16D5335AC76}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{039D3FC5-8F28-45A8-8F90-7634E6A637AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{A004E952-5923-41EB-9C2E-3EA92E5DD4F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{74A2ABED-9979-4EE0-B23D-EA0F4B4B3A48}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D6700C0A-E2AB-4E46-AF81-19D249C6FCE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0CD65270-4F0C-4F54-AF16-5096D96D5460}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{25686C2F-849A-4741-A569-2618AD30B814}] => (Allow) C:\Program Files\SimpleFiles\SimpleFiles.exe
FirewallRules: [{3B4E7F3B-1C14-4782-8373-3F913F0E346A}] => (Allow) C:\Program Files\SimpleFiles\SimpleFiles.exe
FirewallRules: [{83A0B5A6-46E0-46EE-9196-959CD4318D58}] => (Allow) C:\Program Files\SimpleFiles\downloader.exe
FirewallRules: [{32F79713-6F8D-47CB-B455-790017E1EF60}] => (Allow) C:\Program Files\SimpleFiles\downloader.exe
FirewallRules: [{040CED62-F86E-43EF-96EF-D478E0125583}] => (Allow) C:\Program Files\LuckyBrowse\app\LuckyBrowse.exe
FirewallRules: [{39749ED9-937F-40CA-B92B-BD355914F041}] => (Allow) C:\Program Files\LuckyBrowse\app\LuckyBrowse.exe
FirewallRules: [{2A25736D-369D-4AFC-95DD-48EF2B0C65C1}] => (Allow) C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{32D00DE8-8BF2-4BDA-881F-86D372CDA28F}] => (Allow) C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D57BB156-2483-4231-A511-BD97B06C74A5}] => (Allow) C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D2D4042C-5726-4C8A-AA84-8F2CE9C6D9C4}] => (Allow) C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D960DD99-6767-4B4E-9BC9-C81A57C3062B}] => (Allow) C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3A5B4F2D-C8EB-4991-BFCA-48F046618004}] => (Allow) C:\Users\Adam\AppData\Roaming\uTorrent\uTorrent.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (12/02/2015 06:46:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Adam-PC)
Description: Balík Microsoft.Windows.Photos_15.1120.13270.0_x86__8wekyb3d8bbwe+App sa ukončil, pretože jeho odstavenie trvalo príliš dlho.

Error: (11/25/2015 09:27:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program jp2launcher.exe version 11.66.2.18 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 3ac

Start Time: 01d127bee9743c2c

Termination Time: 52

Application Path: C:\Program Files\Java\jre1.8.0_66\bin\jp2launcher.exe

Report Id: d4463c79-93b2-11e5-93e7-bc5ff4731384

Faulting package full name: 

Faulting package-relative application ID:

Error: (11/25/2015 08:55:18 PM) (Source: MsiInstaller) (EventID: 1024) (User: Adam-PC)
Description: Produkt: Adobe Acrobat Reader DC - Slovak – Aktualizáciu {AC76BA86-7AD7-0000-2550-AC0F094E6F00} sa nepodarilo nainštalovať. Kód chyby je 1625. Inštalátor systému Windows umožňuje vytvárať denníky, ktoré vám môžu pomôcť pri odstraňovaní problémov s inštaláciou softvérových balíkov. Pokyny na zapnutie podpory zapisovania do denníka zobrazíte po kliknutí na nasledovné prepojenie: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (11/25/2015 08:49:39 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/25/2015 08:49:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/25/2015 08:37:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: plugin-container.exe, verzia: 42.0.0.5780, časová značka: 0x5632d0a4
Názov chybujúceho modulu: NPSWF32_19_0_0_245.dll, verzia: 19.0.0.245, časová značka: 0x56311bb0
Kód výnimky: 0x80000003
Odstup chyby: 0x0036408d
Identifikácia chybujúceho procesu: 0x970
Čas spustenia chybujúcej aplikácie: 0xplugin-container.exe0
Cesta chybujúcej aplikácie: plugin-container.exe1
Cesta chybujúceho modulu: plugin-container.exe2
Identifikácia hlásenia: plugin-container.exe3
Celé meno chybujúceho balíka: plugin-container.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: plugin-container.exe5

Error: (11/25/2015 07:11:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Microsoft.Photos.exe version 15.1120.13270.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1324

Start Time: 01d127ac91d998da

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1120.13270.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe

Report Id: f412542e-939f-11e5-93e6-bc5ff4731384

Faulting package full name: Microsoft.Windows.Photos_15.1120.13270.0_x86__8wekyb3d8bbwe

Faulting package-relative application ID: App

Error: (11/25/2015 07:11:45 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Adam-PC)
Description: Aktivácia aplikácie Microsoft.Windows.Photos_8wekyb3d8bbwe!App zlyhala pre chybu: -2144927142 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (11/25/2015 05:30:52 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.

Error: (11/25/2015 05:30:51 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT AUTHORITY)
Description: Unable to read the performance counter strings defined for the 01B language ID. The first DWORD in the Data section contains the Win32 error code.


System errors:
=============
Error: (12/03/2015 05:46:23 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby NetTcpPortSharing, od ktorej závisí služba NetTcpActivator, zlyhalo kvôli nasledujúcej chybe: 
%%1058

Error: (12/03/2015 05:45:58 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (12/03/2015 05:43:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sync Host_1fadd sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 10000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (12/03/2015 05:31:05 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Spustenie služby NetTcpPortSharing, od ktorej závisí služba NetTcpActivator, zlyhalo kvôli nasledujúcej chybe: 
%%1058

Error: (12/03/2015 05:30:34 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.

Error: (12/03/2015 05:29:53 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správca riadenia služieb sa po neočakávanom ukončení služby Windows Search pokúsil vykonať opravnú akciu (Reštartovať službu), ale táto činnosť zlyhala s nasledujúcou chybou: 
%%1056

Error: (12/03/2015 05:29:46 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {7006698D-2974-4091-A424-85DD0B909E23}

Error: (12/03/2015 05:29:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Prístup k používateľským údajom_6434bb sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 10000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (12/03/2015 05:29:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ukladací priestor používateľských údajov_6434bb sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 10000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.

Error: (12/03/2015 05:29:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Kontaktné údaje_6434bb sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 10000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.


CodeIntegrity:
===================================
  Date: 2015-12-03 17:47:04.690
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-29 21:41:42.773
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-25 22:08:45.560
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-25 17:27:08.876
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-21 13:12:44.969
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-20 00:10:17.402
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-20 00:10:13.946
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-11-19 23:43:07.899
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: AMD Athlon(tm) 64 Processor 3200+
Percentage of memory in use: 74%
Total physical RAM: 1023.24 MB
Available physical RAM: 261.55 MB
Total Virtual: 2751.24 MB
Available Virtual: 1457.75 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:49.48 GB) (Free:19.52 GB) NTFS
Drive d: (ARCHIV) (Fixed) (Total:139.89 GB) (Free:83.91 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 189.9 GB) (Disk ID: 19D719D7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=49.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=139.9 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================