V pořádku?

[JHlacik]

Dobrý den,
ESET dnes našel nějaký vir a údajně ho odstranil. Ale jednou se mi již stalo, že také našel, údajně odstranil. Ale nějaký vir sken neodhalil, hlásil "žádné nalezené hrozby". Ovšem vir v počítači byl a nakonec se musel celý přeinstalovat. Tak se raději zeptám, zdali je vše v pořádku?
RSIT
__________
Logfile of random's system information tool 1.16 (written by random/random)
Run by Admin at 2017-06-21 20:48:25
Microsoft Windows 10 Home
System drive C: has 855 GB (90%) free of 953 GB
Total RAM: 3583 MB (45% free)
X86

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:48:34, on 21.06.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0953)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\ESET\ESET Security\egui.exe
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x86__kzf8qxf38zg5c\SkypeHost.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\smartscreen.exe
C:\Users\Admin\Downloads\RSIT.exe
C:\Program Files\trend micro\Admin_RSIT.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [WindowsDefender] "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files\Bloody6\Bloody6\Bloody6.exe" Minimum
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Discord] C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe

--
End of file - 6632 bytes

======Scheduled tasks folder======

C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\Adobe Uninstaller - C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe --sapCode=PHSP --productVersion=18.1 --productPlatform=win32 --appletID=AppsPanel_BL --appletVersion=1.0 --appMode=Uninstall
C:\WINDOWS\system32\tasks\AdobeAAMUpdater-1.0-DESKTOP-S98KBU3-Admin - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe -mode=scheduled
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{25CDC885-CE70-4DAE-B484-8489B8B26CAE} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - %systemroot%\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunCampaignManager - %windir%\System32\UNP\UNPCampaignManager.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\applicationdata\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe

=========Google Chrome=========

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 2 Adobe Acrobat 15.1.0.6
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gighmmpiobklfepjocnamgkkbiglidom 1 AdBlock 3.11.2
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.3
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5917.424.0.6
Homepage:
default_search_provider.search_url:
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=


======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2015-11-05 748744]
"Cm108Sound"=RunDll32 cm108.cpl,CMICtrlWnd []
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2017-05-22 6153128]
"WindowsDefender"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-04-28 483840]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Admin\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2017-06-21 1555664]
"Bloody2"=C:\Program Files\Bloody6\Bloody6\Bloody6.exe [2017-03-24 19407360]
"Steam"=C:\Program Files\Steam\steam.exe [2017-06-08 3042592]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2017-06-07 27742168]
"Spotify Web Helper"=C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-06-07 1560176]
"Discord"=C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe [2017-01-04 64290304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\59.0.3071.109\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2017-06-21 20:48:25 ----D---- C:\rsit
2017-06-21 20:48:25 ----D---- C:\Program Files\trend micro
2017-06-21 19:27:58 ----D---- C:\ProgramData\ESET
2017-06-21 19:27:58 ----D---- C:\Program Files\ESET
2017-06-21 19:23:36 ----SHD---- C:\Config.Msi
2017-06-21 15:18:26 ----D---- C:\Users\Admin\AppData\Roaming\Ubisoft
2017-06-21 15:10:54 ----D---- C:\ProgramData\Ubisoft
2017-06-21 15:01:00 ----D---- C:\Program Files\Ubisoft
2017-06-21 15:00:53 ----D---- C:\Users\Admin\AppData\Roaming\InstallShield
2017-06-17 12:48:02 ----AD---- C:\Program Files\Common Files\Skype
2017-06-16 19:49:17 ----D---- C:\Users\Admin\AppData\Roaming\discord
2017-06-15 00:58:35 ----SD---- C:\WINDOWS\UpdateAssistantV2
2017-06-14 14:06:11 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:06:10 ----A---- C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:06:09 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:06:09 ----A---- C:\WINDOWS\system32\tquery.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\ExSMime.dll
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-06-14 14:06:08 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2017-06-14 14:06:07 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-06-14 14:06:07 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-06-14 14:05:56 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:05:55 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2017-06-14 14:05:54 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:05:54 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2017-06-14 14:05:53 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:05:52 ----A---- C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:05:52 ----A---- C:\WINDOWS\system32\localspl.dll
2017-06-14 14:05:51 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:05:50 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:05:47 ----A---- C:\WINDOWS\system32\shell32.dll
2017-06-14 14:05:47 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-06-14 14:05:46 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:05:44 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:05:43 ----A---- C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:05:42 ----A---- C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:05:41 ----A---- C:\WINDOWS\HelpPane.exe
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\tcpipcfg.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-06-14 14:05:40 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:05:39 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:05:39 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:05:38 ----A---- C:\WINDOWS\system32\aepic.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\tzres.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\efscore.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\edputil.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\certutil.exe
2017-06-14 14:05:37 ----A---- C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\invagent.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\devinv.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:05:35 ----A---- C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:05:34 ----A---- C:\WINDOWS\system32\fdProxy.dll
2017-06-06 16:54:52 ----D---- C:\Users\Admin\AppData\Roaming\Tunngle
2017-06-06 16:54:49 ----A---- C:\WINDOWS\system32\drivers\tap0901t.sys
2017-06-06 16:54:43 ----D---- C:\ProgramData\Tunngle
2017-06-06 16:54:43 ----AD---- C:\Program Files\Tunngle
2017-06-06 16:09:14 ----D---- C:\Mr DJ
2017-06-06 15:26:30 ----D---- C:\Program Files\Mr DJ
2017-06-06 15:25:07 ----HD---- C:\WINDOWS\msdownld.tmp
2017-06-06 15:24:49 ----D---- C:\WINDOWS\system32\directx
2017-06-06 14:04:45 ----AD---- C:\Program Files\LogMeIn Hamachi
2017-06-06 14:01:05 ----D---- C:\ProgramData\LogMeIn
2017-06-06 13:25:15 ----D---- C:\Users\Admin\AppData\Roaming\uTorrent
2017-05-27 22:18:32 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2017-05-27 22:18:32 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2017-05-27 22:18:31 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2017-05-27 22:18:30 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2017-05-27 22:18:30 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2017-05-27 22:18:29 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2017-05-27 22:18:28 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2017-05-27 22:18:28 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2017-05-27 22:18:27 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2017-05-27 22:18:26 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2017-05-27 22:18:25 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2017-05-27 22:18:24 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2017-05-27 22:18:23 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2017-05-27 22:18:22 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2017-05-27 22:18:21 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2017-05-27 22:18:20 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2017-05-27 22:18:19 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2017-05-27 22:18:18 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2017-05-27 22:18:17 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2017-05-27 22:18:16 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2017-05-27 22:18:16 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2017-05-27 22:18:15 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2017-05-27 22:18:15 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2017-05-27 22:18:14 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2017-05-27 22:18:14 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2017-05-27 22:18:13 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2017-05-27 22:18:12 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2017-05-27 22:18:11 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2017-05-27 22:18:11 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2017-05-27 22:18:10 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2017-05-27 22:18:09 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2017-05-27 22:18:08 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2017-05-27 22:18:08 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2017-05-27 22:18:07 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2017-05-27 22:18:07 ----A---- C:\WINDOWS\system32\d3dx10.dll
2017-05-27 22:18:06 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2017-05-27 22:18:06 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2017-05-27 22:18:05 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2017-05-27 22:18:04 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2017-05-27 22:18:04 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2017-05-27 22:18:03 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2017-05-27 22:18:03 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2017-05-27 22:18:02 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2017-05-27 22:17:54 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2017-05-27 22:17:53 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2017-05-27 22:17:52 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2017-05-27 22:17:51 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2017-05-27 22:17:51 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2017-05-27 22:17:50 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2017-05-27 22:17:50 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2017-05-25 15:39:41 ----D---- C:\Users\Admin\AppData\Roaming\BrawlhallaAir
2017-05-22 20:46:48 ----AD---- C:\Program Files\Johanka z Arku
2017-05-22 16:12:40 ----AH---- C:\WINDOWS\system32\drivers\Hamdrv.sys
2017-05-20 21:20:20 ----D---- C:\Users\Admin\AppData\Roaming\Spotify
2017-05-18 14:35:53 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2017-05-12 12:22:13 ----D---- C:\WINDOWS\system32\UNP
2017-05-12 12:22:13 ----AD---- C:\Program Files\UNP
2017-05-11 10:57:04 ----A---- C:\WINDOWS\system32\WinTypes.dll
2017-05-11 10:57:03 ----A---- C:\WINDOWS\system32\mstsc.exe
2017-05-11 10:57:02 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-05-11 10:57:00 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-05-11 10:56:59 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-05-11 10:56:58 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-05-11 10:56:57 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2017-05-11 10:56:55 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-05-11 10:56:54 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-05-11 10:56:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-05-11 10:56:53 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-05-11 10:56:53 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-05-11 10:56:48 ----A---- C:\WINDOWS\system32\msxml6.dll
2017-05-11 10:56:43 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-05-11 10:56:42 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2017-05-11 10:56:41 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-05-11 10:56:34 ----A---- C:\WINDOWS\system32\wininet.dll
2017-05-11 10:56:33 ----A---- C:\WINDOWS\system32\msdtctm.dll
2017-05-11 10:56:31 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-05-11 10:56:30 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-05-11 10:56:28 ----A---- C:\WINDOWS\system32\CertEnroll.dll
2017-05-11 10:56:27 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-05-11 10:56:22 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-05-11 10:56:20 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2017-05-11 10:56:20 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-05-11 10:56:19 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-05-11 10:56:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2017-05-11 10:56:15 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2017-05-11 10:56:13 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-05-11 10:56:12 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-05-11 10:56:11 ----A---- C:\WINDOWS\system32\AudioSes.dll
2017-05-11 10:56:10 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.UI.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2017-05-11 10:56:08 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2017-05-11 10:56:07 ----A---- C:\WINDOWS\system32\CryptoWinRT.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\UserDeviceRegistration.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2017-05-11 10:56:06 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Usb.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Picker.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\Family.SyncEngine.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\efswrt.dll
2017-05-11 10:56:05 ----A---- C:\WINDOWS\system32\dialclient.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\WinRtTracing.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\MiracastReceiver.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2017-05-11 10:56:04 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Media.Ocr.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2017-05-11 10:56:03 ----A---- C:\WINDOWS\system32\Windows.AccountsControl.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\dlnashext.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-05-11 10:56:02 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2017-05-11 10:56:01 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\WebcamUi.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2017-05-11 10:56:00 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2017-05-11 10:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Perception.dll
2017-05-11 10:55:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-05-11 10:55:56 ----A---- C:\WINDOWS\system32\ShareHost.dll
2017-05-11 10:55:55 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2017-05-11 10:55:53 ----A---- C:\WINDOWS\system32\twinui.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\Windows.Media.Audio.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2017-05-11 10:55:51 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2017-05-11 10:55:48 ----A---- C:\WINDOWS\system32\apprepsync.dll
2017-05-11 10:55:48 ----A---- C:\WINDOWS\system32\apprepapi.dll
2017-05-11 10:55:47 ----A---- C:\WINDOWS\system32\smartscreen.exe
2017-05-11 10:55:47 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2017-05-11 10:55:44 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2017-05-11 10:55:40 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-05-11 10:55:40 ----A---- C:\WINDOWS\system32\oleacc.dll
2017-05-11 10:55:39 ----A---- C:\WINDOWS\system32\wmp.dll
2017-05-11 10:55:38 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\olepro32.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\oleaut32.dll
2017-05-11 10:55:36 ----A---- C:\WINDOWS\system32\mispace.dll
2017-05-11 10:55:35 ----A---- C:\WINDOWS\system32\ole32.dll
2017-05-11 10:55:33 ----A---- C:\WINDOWS\explorer.exe
2017-05-11 10:55:32 ----A---- C:\WINDOWS\system32\storagewmi.dll
2017-05-11 10:55:31 ----A---- C:\WINDOWS\system32\combase.dll
2017-05-11 10:55:30 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2017-05-11 10:55:28 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-05-11 10:55:27 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-05-11 10:55:26 ----A---- C:\WINDOWS\system32\dwmcore.dll
2017-05-11 10:55:25 ----A---- C:\WINDOWS\system32\rdpcore.dll
2017-05-11 10:55:22 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\usocore.dll
2017-05-11 10:55:21 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2017-05-11 10:55:20 ----A---- C:\WINDOWS\system32\wsp_health.dll
2017-05-11 10:55:18 ----A---- C:\WINDOWS\system32\wpncore.dll
2017-05-11 10:55:18 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2017-05-11 10:55:17 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\usermgr.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\LogonController.dll
2017-05-11 10:55:16 ----A---- C:\WINDOWS\system32\crypt32.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\wsp_sr.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-05-11 10:55:15 ----A---- C:\WINDOWS\system32\gpsvc.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\UserDataAccountApis.dll
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\services.exe
2017-05-11 10:55:14 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\PrintDialogs3D.dll
2017-05-11 10:55:13 ----A---- C:\WINDOWS\system32\mprddm.dll
2017-05-11 10:55:12 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2017-05-11 10:55:12 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2017-05-11 10:55:11 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2017-05-11 10:55:09 ----A---- C:\WINDOWS\system32\authui.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2017-05-11 10:55:08 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2017-05-11 10:55:07 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-05-11 10:55:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\WinSetupUI.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-05-11 10:55:06 ----A---- C:\WINDOWS\system32\kernel32.dll
2017-05-11 10:55:05 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\winresume.exe
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\thumbcache.dll
2017-05-11 10:55:04 ----A---- C:\WINDOWS\system32\bisrv.dll
2017-05-11 10:55:03 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-05-11 10:55:03 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2017-05-11 10:55:02 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2017-05-11 10:55:01 ----A---- C:\WINDOWS\system32\wiaservc.dll
2017-05-11 10:55:01 ----A---- C:\WINDOWS\system32\usercpl.dll
2017-05-11 10:55:00 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\tsmf.dll
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2017-05-11 10:54:58 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-05-11 10:54:57 ----A---- C:\WINDOWS\system32\EmailApis.dll
2017-05-11 10:54:53 ----A---- C:\WINDOWS\system32\ubpm.dll
2017-05-11 10:54:53 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-05-11 10:54:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-05-11 10:54:51 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys
2017-05-11 10:54:51 ----A---- C:\WINDOWS\system32\browser_broker.exe
2017-05-11 10:54:50 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2017-05-11 10:54:50 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2017-05-11 10:54:49 ----A---- C:\WINDOWS\system32\spaceman.exe
2017-05-11 10:54:49 ----A---- C:\WINDOWS\system32\ReAgent.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\termsrv.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\fvewiz.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\dafBth.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\AppContracts.dll
2017-05-11 10:54:48 ----A---- C:\WINDOWS\system32\adsnt.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2017-05-11 10:54:47 ----A---- C:\WINDOWS\system32\BluetoothApis.dll
2017-05-11 10:54:46 ----A---- C:\WINDOWS\system32\rastls.dll
2017-05-11 10:54:46 ----A---- C:\WINDOWS\system32\bthserv.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\virtdisk.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\RTMediaFrame.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\msi.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\LocationApi.dll
2017-05-11 10:54:39 ----A---- C:\WINDOWS\system32\credprovhost.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\VSSVC.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\setupugc.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2017-05-11 10:54:38 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\WwaApi.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\vbscript.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\umpoext.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2017-05-11 10:54:37 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\puiobj.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\imapi2.dll
2017-05-11 10:54:35 ----A---- C:\WINDOWS\system32\Family.Client.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\Windows.Energy.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\shutdownux.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\ReInfo.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\rastlsext.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\ConsentUX.dll
2017-05-11 10:54:34 ----A---- C:\WINDOWS\system32\CameraCaptureUI.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\PlayToReceiver.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\Dxpserver.exe
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\BthTelemetry.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\appidsvc.dll
2017-05-11 10:54:33 ----A---- C:\WINDOWS\system32\appidcertstorecheck.exe
2017-05-11 10:54:32 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-05-11 10:54:31 ----A---- C:\WINDOWS\system32\vaultcli.dll
2017-05-11 10:54:31 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\epfwwfp.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\epfw.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\ehdrv.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\eelam.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\edevmon.sys
2017-05-04 13:18:04 ----A---- C:\WINDOWS\system32\drivers\eamonm.sys
2017-04-24 17:35:53 ----D---- C:\Users\Admin\AppData\Roaming\Macromedia
2017-04-20 21:17:42 ----D---- C:\Program Files\MWSnap
2017-04-19 09:23:42 ----D---- C:\Users\Admin\AppData\Roaming\PDAppFlex
2017-04-19 08:44:37 ----D---- C:\ProgramData\boost_interprocess
2017-04-19 08:40:11 ----D---- C:\ProgramData\Adobe
2017-04-19 08:39:38 ----AD---- C:\Program Files\Adobe
2017-04-19 08:39:37 ----AD---- C:\Program Files\Common Files\Adobe
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Šablony
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Plocha
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Nabídka Start
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Dokumenty
2017-04-18 22:10:13 ----SHD---- C:\ProgramData\Data aplikací
2017-04-18 22:10:13 ----SHD---- C:\Documents and Settings
2017-04-18 22:10:12 ----SHD---- C:\Recovery
2017-04-18 22:09:39 ----ASH---- C:\hiberfil.sys
2017-04-18 22:05:23 ----AD---- C:\Program Files\ATI Technologies
2017-04-18 22:05:18 ----D---- C:\ProgramData\Package Cache
2017-04-18 22:05:01 ----D---- C:\AMD
2017-04-18 22:04:58 ----D---- C:\Program Files\Common Files\ATI Technologies
2017-04-18 22:04:54 ----D---- C:\Program Files\AMD
2017-04-18 22:04:46 ----D---- C:\ProgramData\USOShared
2017-04-18 22:04:08 ----AS---- C:\WINDOWS\bootstat.dat
2017-04-18 22:03:58 ----HD---- C:\Program Files\Uninstall Information
2017-04-18 22:03:19 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-18 22:03:19 ----D---- C:\WINDOWS\ServiceProfiles
2017-04-18 22:03:18 ----SD---- C:\WINDOWS\system32\Microsoft
2017-04-18 22:03:12 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-18 17:06:48 ----D---- C:\WINDOWS\system32\MRT
2017-04-18 17:06:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-18 15:09:38 ----D---- C:\Program Files\Common Files\Steam
2017-04-18 15:09:35 ----D---- C:\Program Files\Steam
2017-04-18 14:55:10 ----D---- C:\ProgramData\Riot Games
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2017-04-18 14:53:14 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2017-04-18 14:53:09 ----D---- C:\Riot Games
2017-04-18 14:52:19 ----D---- C:\Users\Admin\AppData\Roaming\Riot Games
2017-04-18 14:49:27 ----RD---- C:\Program Files\Skype
2017-04-18 14:49:24 ----D---- C:\ProgramData\Skype
2017-04-18 14:21:15 ----D---- C:\Program Files\Bloody6
2017-04-18 14:19:23 ----D---- C:\Users\Admin\AppData\Roaming\WinRAR
2017-04-18 14:19:20 ----HD---- C:\Program Files\InstallShield Installation Information
2017-04-18 14:18:59 ----N---- C:\WINDOWS\Vmix108.dll
2017-04-18 14:18:59 ----N---- C:\WINDOWS\system32\Cmeau108.exe
2017-04-18 14:18:54 ----N---- C:\WINDOWS\system32\CmiInstallResAll.dll
2017-04-18 14:18:54 ----N---- C:\WINDOWS\cm108.ini
2017-04-18 14:18:54 ----A---- C:\WINDOWS\difxapi.dll
2017-04-18 14:17:49 ----AD---- C:\Program Files\WinRAR
2017-04-18 13:52:35 ----D---- C:\WINDOWS\InfusedApps
2017-04-18 13:52:28 ----DC---- C:\WINDOWS\Panther
2017-04-18 13:52:18 ----D---- C:\Windows.old
2017-04-18 13:51:54 ----D---- C:\WINDOWS\Setup
2017-04-18 13:50:48 ----A---- C:\WINDOWS\system32\msonpmon.dll
2017-04-18 13:50:40 ----D---- C:\WINDOWS\system32\XPSViewer
2017-04-18 13:50:40 ----D---- C:\WINDOWS\OCR
2017-04-18 13:50:40 ----D---- C:\Program Files\Reference Assemblies
2017-04-18 13:50:40 ----D---- C:\Program Files\MSBuild
2017-04-18 13:50:34 ----D---- C:\Program Files\Microsoft Works
2017-04-18 13:50:26 ----AD---- C:\Program Files\Common Files\DESIGNER
2017-04-18 13:50:20 ----D---- C:\WINDOWS\PCHEALTH
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfi005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfh005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfd005.dat
2017-04-18 13:50:14 ----A---- C:\WINDOWS\system32\perfc005.dat
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\winrm
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\WCN
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\slmgr
2017-04-18 13:49:57 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\en
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\drivers\en-US
2017-04-18 13:49:56 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-04-18 13:49:55 ----D---- C:\WINDOWS\system32\cs
2017-04-18 13:49:55 ----D---- C:\WINDOWS\system32\0409
2017-04-18 13:49:55 ----D---- C:\WINDOWS\en-US
2017-04-18 13:49:55 ----D---- C:\WINDOWS\DigitalLocker
2017-04-18 13:49:55 ----D---- C:\WINDOWS\cs-CZ
2017-04-18 13:48:29 ----D---- C:\WINDOWS\SHELLNEW
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfi009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfh009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfd009.dat
2017-04-18 13:48:29 ----A---- C:\WINDOWS\system32\perfc009.dat
2017-04-18 13:48:23 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-18 13:48:15 ----D---- C:\ProgramData\Microsoft Help
2017-04-18 13:48:15 ----AD---- C:\Program Files\Microsoft Office
2017-04-18 13:47:46 ----RHD---- C:\MSOCache
2017-04-18 13:47:02 ----A---- C:\WINDOWS\system32\NOISE.DAT
2017-04-18 13:47:00 ----A---- C:\WINDOWS\system32\msclmd.dll
2017-04-18 13:46:59 ----A---- C:\WINDOWS\system32\dssec.dat
2017-04-18 13:46:58 ----RSH---- C:\WINDOWS\fonts\StaticCache.dat
2017-04-18 13:46:57 ----ASH---- C:\Program Files\desktop.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\win.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\system.ini
2017-04-18 13:46:57 ----A---- C:\WINDOWS\fonts\desktop.ini
2017-04-18 13:46:56 ----SD---- C:\WINDOWS\system32\Nui
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Web
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Vss
2017-04-18 13:46:56 ----D---- C:\WINDOWS\twain_32
2017-04-18 13:46:56 ----D---- C:\WINDOWS\tracing
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Temp
2017-04-18 13:46:56 ----D---- C:\WINDOWS\Tasks
2017-04-18 13:46:56 ----D---- C:\WINDOWS\TAPI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\SystemResources
2017-04-18 13:46:56 ----D---- C:\WINDOWS\SystemApps
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-TW
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-HK
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\zh-CN
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinMetadata
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\winevt
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WindowsPowerShell
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\WDI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\wbem
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\uk-UA
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\tr-TR
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\th-TH
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Tasks
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sv-SE
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sru
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sppui
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\spp
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\spool
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Speech_OneCore
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Speech
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sl-SI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\sk-SK
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\setup
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ru-RU
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ro-RO
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\restore
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\Recovery
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\RasToast
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ras
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pt-PT
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pt-BR
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\ProximityToast
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\PointOfService
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\pl-PL
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\oobe
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\nl-NL
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\networklist
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\NDF
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\nb-NO
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MUI
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MsDtc
2017-04-18 13:46:56 ----D---- C:\WINDOWS\system32\MSDRM
2017-04-18 13:46:55 ----SHD---- C:\WINDOWS\Installer
2017-04-18 13:46:55 ----SHD---- C:\Program Files\Windows Sidebar
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\F12
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\dsc
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\DiagSvcs
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\system32\Configuration
2017-04-18 13:46:55 ----SD---- C:\WINDOWS\Downloaded Program Files
2017-04-18 13:46:55 ----SD---- C:\ProgramData\Microsoft
2017-04-18 13:46:55 ----RSD---- C:\WINDOWS\Fonts
2017-04-18 13:46:55 ----RSD---- C:\WINDOWS\assembly
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\PrintDialog
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\Offline Web Pages
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\MiracastView
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-18 13:46:55 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-18 13:46:55 ----RD---- C:\Program Files\Windows Defender
2017-04-18 13:46:55 ----HD---- C:\WINDOWS\ELAMBKUP
2017-04-18 13:46:55 ----HD---- C:\ProgramData
2017-04-18 13:46:55 ----HD---- C:\Program Files\WindowsApps
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Sysprep
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\migwiz
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\migration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\MailContactsCalendarSync
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Macromed
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\lv-LV
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\lt-LT
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\LogFiles
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Licenses
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ko-KR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ja-JP
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\it-IT
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Ipmi
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\InputMethod
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\inetsrv
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\IME
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\icsxml
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ias
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\hu-HU
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\hr-HR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\he-IL
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\GroupPolicyUsers
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\GroupPolicy
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\FxsTmp
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fr-FR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fr-CA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\fi-FI
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\et-EE
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\es-MX
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\es-ES
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\en-US
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\en-GB
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\el-GR
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\drivers\etc
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\downlevel
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Dism
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\de-DE
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\DDFs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\da-DK
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Com
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\catroot2
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Bthprops
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\Boot
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\bg-BG
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\ar-SA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\appraiser
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\AppLocker
2017-04-18 13:46:55 ----D---- C:\WINDOWS\system32\AdvancedInstallers
2017-04-18 13:46:55 ----D---- C:\WINDOWS\System
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Speech_OneCore
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Speech
2017-04-18 13:46:55 ----D---- C:\WINDOWS\SKB
2017-04-18 13:46:55 ----D---- C:\WINDOWS\schemas
2017-04-18 13:46:55 ----D---- C:\WINDOWS\SchCache
2017-04-18 13:46:55 ----D---- C:\WINDOWS\ShellExperiences
2017-04-18 13:46:55 ----D---- C:\WINDOWS\security
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Resources
2017-04-18 13:46:55 ----D---- C:\WINDOWS\rescache
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Registration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Provisioning
2017-04-18 13:46:55 ----D---- C:\WINDOWS\prefetch
2017-04-18 13:46:55 ----D---- C:\WINDOWS\PolicyDefinitions
2017-04-18 13:46:55 ----D---- C:\WINDOWS\PLA
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Performance
2017-04-18 13:46:55 ----D---- C:\WINDOWS\ModemLogs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Migration
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Media
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Logs
2017-04-18 13:46:55 ----D---- C:\WINDOWS\LiveKernelReports
2017-04-18 13:46:55 ----D---- C:\WINDOWS\L2Schemas
2017-04-18 13:46:55 ----D---- C:\WINDOWS\InputMethod
2017-04-18 13:46:55 ----D---- C:\WINDOWS\IME
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Help
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Globalization
2017-04-18 13:46:55 ----D---- C:\WINDOWS\GameBarPresenceWriter
2017-04-18 13:46:55 ----D---- C:\WINDOWS\diagnostics
2017-04-18 13:46:55 ----D---- C:\WINDOWS\debug
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Cursors
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Branding
2017-04-18 13:46:55 ----D---- C:\WINDOWS\Boot
2017-04-18 13:46:55 ----D---- C:\WINDOWS\bcastdvr
2017-04-18 13:46:55 ----D---- C:\WINDOWS\AppReadiness
2017-04-18 13:46:55 ----D---- C:\WINDOWS\apppatch
2017-04-18 13:46:55 ----D---- C:\WINDOWS\appcompat
2017-04-18 13:46:55 ----D---- C:\WINDOWS\addins
2017-04-18 13:46:55 ----D---- C:\ProgramData\USOPrivate
2017-04-18 13:46:55 ----D---- C:\ProgramData\SoftwareDistribution
2017-04-18 13:46:55 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2017-04-18 13:46:55 ----D---- C:\ProgramData\Comms
2017-04-18 13:46:55 ----D---- C:\Program Files\WindowsPowerShell
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Portable Devices
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Photo Viewer
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows NT
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Multimedia Platform
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Media Player
2017-04-18 13:46:55 ----D---- C:\Program Files\Windows Mail
2017-04-18 13:46:55 ----D---- C:\Program Files\Microsoft.NET
2017-04-18 13:46:55 ----D---- C:\Program Files\Internet Explorer
2017-04-18 13:46:55 ----D---- C:\Program Files\Common Files\System
2017-04-18 13:46:55 ----D---- C:\Program Files\Common Files\Services
2017-04-18 13:46:55 ----D---- C:\PerfLogs
2017-04-18 13:46:55 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2017-04-18 13:46:40 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-04-18 13:46:39 ----D---- C:\WINDOWS\system32\drivers
2017-04-18 13:45:39 ----D---- C:\WINDOWS\INF
2017-04-18 13:40:18 ----D---- C:\WINDOWS\CbsTemp
2017-04-18 13:39:07 ----RD---- C:\Users
2017-04-18 13:39:07 ----RD---- C:\Program Files
2017-04-18 13:39:07 ----D---- C:\WINDOWS\WinSxS
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\SMI
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\config
2017-04-18 13:39:07 ----D---- C:\WINDOWS\system32\CatRoot
2017-04-18 13:39:07 ----D---- C:\WINDOWS\System32
2017-04-18 13:39:07 ----D---- C:\WINDOWS\servicing
2017-04-18 13:39:07 ----D---- C:\Windows
2017-04-18 13:39:07 ----D---- C:\Program Files\Common Files
2017-04-18 13:28:25 ----D---- C:\Program Files\Google
2017-04-18 13:26:28 ----D---- C:\Users\Admin\AppData\Roaming\Skype
2017-04-18 13:25:37 ----D---- C:\Users\Admin\AppData\Roaming\ATI
2017-04-18 13:25:37 ----D---- C:\ProgramData\ATI
2017-04-18 13:25:35 ----D---- C:\ProgramData\Microsoft OneDrive
2017-04-18 13:24:17 ----SHD---- C:\$RECYCLE.BIN
2017-04-18 13:23:51 ----D---- C:\Users\Admin\AppData\Roaming\Adobe
2017-04-18 13:23:40 ----SD---- C:\Users\Admin\AppData\Roaming\Microsoft
2017-04-18 13:14:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-18 13:11:21 ----D---- C:\WINDOWS\SoftwareDistribution
2017-04-18 12:31:10 ----HD---- C:\$SysReset
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.System.UserDeviceAssociation.dll
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-04-12 16:57:55 ----A---- C:\WINDOWS\system32\Windows.Gaming.XboxLive.Storage.dll
2017-04-12 16:57:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2017-04-12 16:57:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2017-04-12 16:57:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-04-12 16:57:16 ----A---- C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-04-12 16:57:14 ----A---- C:\WINDOWS\system32\usoapi.dll
2017-04-12 16:57:10 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-04-12 16:57:09 ----A---- C:\WINDOWS\system32\RdpRelayTransport.dll
2017-04-12 16:57:07 ----A---- C:\WINDOWS\system32\sbe.dll
2017-04-12 16:57:07 ----A---- C:\WINDOWS\system32\RADCUI.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\wscapi.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2017-04-12 16:57:04 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2017-04-12 16:56:55 ----A---- C:\WINDOWS\system32\Family.Authentication.dll
2017-04-12 16:56:46 ----A---- C:\WINDOWS\system32\psmsrv.dll
2017-04-12 16:56:44 ----A---- C:\WINDOWS\system32\wpnapps.dll
2017-04-12 16:56:40 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2017-04-12 16:56:40 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-12 16:56:39 ----A---- C:\WINDOWS\system32\Windows.Networking.HostName.dll
2017-04-12 16:56:39 ----A---- C:\WINDOWS\system32\netshell.dll
2017-04-12 16:56:38 ----A---- C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2017-04-12 16:56:38 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2017-04-12 16:56:37 ----A---- C:\WINDOWS\system32\mspaint.exe
2017-04-12 16:56:34 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2017-04-12 16:56:34 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-12 16:56:33 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2017-04-12 16:56:33 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2017-04-12 16:56:32 ----A---- C:\WINDOWS\system32\mos.dll
2017-04-12 16:56:29 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2017-04-12 16:56:29 ----A---- C:\WINDOWS\system32\mbsmsapi.dll
2017-04-12 16:56:24 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-04-12 16:56:24 ----A---- C:\WINDOWS\system32\InputService.dll
2017-04-12 16:56:04 ----A---- C:\WINDOWS\system32\apds.dll
2017-04-12 16:56:03 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-04-12 16:56:03 ----A---- C:\WINDOWS\system32\Geolocation.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\wer.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\flvprophandler.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2017-04-12 16:56:02 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2017-04-12 16:55:59 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\FontProvider.dll
2017-04-12 16:55:58 ----A---- C:\WINDOWS\system32\dosvc.dll
2017-04-12 16:55:57 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2017-04-12 16:55:56 ----A---- C:\WINDOWS\system32\dafpos.dll
2017-04-12 16:55:55 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2017-04-12 16:55:55 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2017-04-12 16:55:54 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2017-04-12 16:55:54 ----A---- C:\WINDOWS\system32\cdp.dll
2017-04-12 16:55:51 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2017-04-12 16:55:51 ----A---- C:\WINDOWS\system32\CompPkgSup.dll
2017-04-12 16:55:49 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-04-12 16:55:49 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-04-12 16:55:43 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\ErrorDetails.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\CloudExperienceHostUser.dll
2017-04-12 16:55:35 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2017-04-12 16:55:26 ----A---- C:\WINDOWS\system32\drivers\BasicDisplay.sys
2017-04-01 00:53:18 ----A---- C:\WINDOWS\system32\UNPUXWorker.exe

======List of files/folders modified in the last 3 months======

2017-06-21 14:42:53 ----SHD---- C:\System Volume Information
2017-06-07 22:39:24 ----HD---- C:\$WINDOWS.~BT
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5D25.tmp
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5D05.tmp
2017-04-18 13:44:09 ----A---- C:\WINDOWS\system32\drivers\SET5CF4.tmp
2017-04-18 13:43:01 ----A---- C:\WINDOWS\system32\drivers\SET6575.tmp
2017-04-18 13:42:51 ----A---- C:\WINDOWS\system32\drivers\SET65C4.tmp
2017-04-18 13:42:03 ----A---- C:\WINDOWS\system32\drivers\SET64D8.tmp

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-05-04 90656]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 42336]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-05-04 113544]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-05-04 139384]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-05-04 69304]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-05-04 86504]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-05-04 43920]
R2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-12-16 19525104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-12-16 542192]
R3 AtiHDAudioService;@oem1.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT3.sys [2016-04-18 91160]
R3 Hamachi;@oem14.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2017-05-22 38512]
R3 MTsensor;@oem0.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\System32\drivers\ASACPI.sys [2004-08-13 5810]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2016-07-16 494080]
R3 tap0901t;@oem15.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\WINDOWS\System32\drivers\tap0901t.sys [2016-04-26 44216]
R3 USBPNPA;@oem13.inf,%CM108.SvcDesc%;USB PnP Sound Device Interface; C:\WINDOWS\system32\drivers\CM108.sys [2017-04-18 3234816]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-05-04 14368]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]
S3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2016-07-16 92672]
S3 ViaC7;@cpu.inf,%ViaC7.SvcDesc%;VIA C7 Processor Driver; C:\WINDOWS\System32\drivers\viac7.sys [2016-07-16 105984]
S3 vmgid;@wvmgid.inf,%VmGid.SVCDESC%;Microsoft Hyper-V Guest Infrastructure Driver; C:\WINDOWS\System32\drivers\vmgid.sys [2016-07-16 8704]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2017-05-18 2246256]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-12-16 223216]
R2 CDPUserSvc_23af0;CDPUserSvc_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-04-26 2069936]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2017-05-22 2616744]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [2016-05-27 405424]
R2 OneSyncSvc_23af0;Hostitel synchronizace_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2017-06-08 1607968]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_23af0;Služba zasílání zpráv_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc_23af0;Data kontaktů_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2016-12-15 838128]
S3 UnistoreSvc_23af0;Úložiště uživatelských dat_23af0; C:\WINDOWS\System32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 UserDataSvc_23af0;Přístup k uživatelským datům_23af0; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

[JHlacik]

Nic nebylo nalezeno, takže je tedy vše OK?
LOG
______
# AdwCleaner v6.047 - Log vytvořen 21/06/2017 v 21:29:38
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-21.3 [Server]
# Operační systém : Windows 10 Home (X86)
# Uživatelské jméno : Admin - DESKTOP-S98KBU3
# Spuštěno z : C:\Users\Admin\Downloads\adwcleaner_6.047.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.


***** [ Složky ] *****

Nebyly nalezeny žádné škodlivé složky.


***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.


***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL.


***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.


***** [ Zástupci ] *****

Žádný infikovaný zástupce nenalezen.


***** [ Naplánované úlohy ] *****

Žádná nebezpečná úloha nenalezena.


***** [ Registry ] *****

Nebyly nalezeny žádné škodlivé položky registru.


***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1220 Bajty] - [21/06/2017 21:29:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1293 Bajty] ##########

[Rudy]

Toto je OK. Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 . Je to pro jistotu a pomocí něj lze vyházet zbytečnosti.

[JHlacik]

FRST
_______
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-06-2017 01
Ran by Admin (administrator) on DESKTOP-S98KBU3 (21-06-2017 22:51:46)
Running from C:\Users\Admin\Downloads
Loaded Profiles: Admin (Available Profiles: defaultuser0 & Admin)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Spotify Ltd) C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Hammer & Chisel, Inc.) C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
(Hammer & Chisel, Inc.) C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
(Valve Corporation) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Hammer & Chisel, Inc.) C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
(Skype Technologies) C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.12990.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Valve Corporation) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Skype Technologies) C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.82\deploy\LeagueClient.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.82\deploy\LeagueClientUx.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.82\deploy\LeagueClientUxRender.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.82\deploy\LeagueClientUxRender.exe
(Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-11-05] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Cm108Sound] => RunDll32 cm108.cpl,CMICtrlWnd
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [6153128 2017-05-22] (LogMeIn Inc.)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKU\S-1-5-21-3971234677-4143995897-1546688314-1002\...\Run: [Bloody2] => C:\Program Files\Bloody6\Bloody6\Bloody6.exe [19407360 2017-03-24] ()
HKU\S-1-5-21-3971234677-4143995897-1546688314-1002\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-3971234677-4143995897-1546688314-1002\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27742168 2017-06-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3971234677-4143995897-1546688314-1002\...\Run: [Spotify Web Helper] => C:\Users\Admin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1560176 2017-06-07] (Spotify Ltd)
HKU\S-1-5-21-3971234677-4143995897-1546688314-1002\...\Run: [Discord] => C:\Users\Admin\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.10.10.10 10.10.10.1
Tcpip\..\Interfaces\{0c7eb55a-43ee-45c3-9cf7-b0ac28ad0312}: [DhcpNameServer] 10.10.10.10 10.10.10.1

Internet Explorer:
==================

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-17] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3971234677-4143995897-1546688314-1002: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-06-21] (Ubisoft)

Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2017-06-21]
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-18]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-18]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-18]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-18]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-18]
CHR Extension: (AdBlock) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-18]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-06]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2069936 2017-04-26] (ESET)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2616744 2017-05-22] (LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2016-05-27] (LogMeIn, Inc.)
S3 TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [838128 2016-12-15] (Tunngle.net GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84920 2017-04-28] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [113544 2017-05-04] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [90656 2017-05-04] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14368 2017-05-04] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [139384 2017-05-04] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2017-05-04] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69304 2017-05-04] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [86504 2017-05-04] (ESET)
R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [38512 2017-05-22] (LogMeIn Inc.)
R3 MTsensor; C:\WINDOWS\System32\drivers\ASACPI.sys [5810 2004-08-13] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [44216 2016-04-26] (Tunngle.net GmbH)
R3 USBPNPA; C:\WINDOWS\system32\drivers\CM108.sys [3234816 2017-04-18] (C-Media Electronics Inc)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-21 22:51 - 2017-06-21 22:52 - 00011106 _____ C:\Users\Admin\Downloads\FRST.txt
2017-06-21 22:50 - 2017-06-21 22:51 - 00000000 ____D C:\FRST
2017-06-21 22:49 - 2017-06-21 22:50 - 01778688 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2017-06-21 21:27 - 2017-06-21 21:29 - 00000000 ____D C:\AdwCleaner
2017-06-21 21:25 - 2017-06-21 21:27 - 04110280 _____ C:\Users\Admin\Downloads\adwcleaner_6.047.exe
2017-06-21 20:48 - 2017-06-21 20:48 - 00000000 ____D C:\rsit
2017-06-21 20:48 - 2017-06-21 20:48 - 00000000 ____D C:\Program Files\trend micro
2017-06-21 20:47 - 2017-06-21 20:48 - 01206272 _____ C:\Users\Admin\Downloads\RSIT.exe
2017-06-21 20:01 - 2017-06-21 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-06-21 19:36 - 2017-06-21 19:37 - 00000000 ____D C:\Users\Admin\AppData\Local\Ubisoft Game Launcher
2017-06-21 19:27 - 2017-06-21 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-06-21 19:27 - 2017-06-21 19:27 - 00000000 ____D C:\ProgramData\ESET
2017-06-21 19:27 - 2017-06-21 19:27 - 00000000 ____D C:\Program Files\ESET
2017-06-21 19:24 - 2017-06-21 19:24 - 03151488 _____ (ESET) C:\Users\Admin\Downloads\eset_smart_security_premium_live_installer.exe
2017-06-21 15:22 - 2017-06-21 15:22 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\uTorrent
2017-06-21 15:20 - 2017-06-21 15:20 - 00000445 _____ C:\Users\Admin\Desktop\Assassin's creed.lnk
2017-06-21 15:18 - 2017-06-21 19:34 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Ubisoft
2017-06-21 15:10 - 2017-06-21 19:34 - 00000000 ____D C:\ProgramData\Ubisoft
2017-06-21 15:01 - 2017-06-21 20:01 - 00000000 ____D C:\Program Files\Ubisoft
2017-06-20 22:12 - 2017-06-20 22:12 - 00419778 _____ C:\Users\Admin\Desktop\memories.bmp
2017-06-17 12:48 - 2017-06-17 12:48 - 00000000 ____D C:\Program Files\Common Files\Skype
2017-06-16 19:49 - 2017-06-16 22:28 - 00000000 ____D C:\Users\Admin\AppData\Roaming\discord
2017-06-16 19:49 - 2017-06-16 19:49 - 00002237 _____ C:\Users\Admin\Desktop\Discord.lnk
2017-06-16 19:49 - 2017-06-16 19:49 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-06-16 19:49 - 2017-06-16 19:49 - 00000000 ____D C:\Users\Admin\AppData\Local\Discord
2017-06-16 19:48 - 2017-06-16 19:49 - 00000000 ____D C:\Users\Admin\AppData\Local\SquirrelTemp
2017-06-16 19:47 - 2017-06-16 19:48 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\Admin\Downloads\DiscordSetup.exe
2017-06-15 00:58 - 2017-06-15 00:58 - 00000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-06-14 14:06 - 2017-06-03 12:22 - 00231776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-14 14:06 - 2017-06-03 12:03 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-14 14:06 - 2017-06-03 11:58 - 00154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-14 14:06 - 2017-06-03 11:55 - 00780640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-06-14 14:06 - 2017-06-03 11:54 - 00290656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-14 14:06 - 2017-06-03 11:43 - 01964384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-06-14 14:06 - 2017-06-03 11:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-14 14:06 - 2017-06-03 11:32 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-14 14:06 - 2017-06-03 11:31 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2017-06-14 14:06 - 2017-06-03 11:30 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-14 14:06 - 2017-06-03 11:29 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-14 14:06 - 2017-06-03 11:25 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-14 14:06 - 2017-06-03 11:08 - 02643968 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-14 14:06 - 2017-06-03 11:06 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-06-14 14:06 - 2017-06-03 11:04 - 01889792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:06 - 2017-06-03 11:04 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:06 - 2017-06-03 11:03 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-14 14:06 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 01336160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00996192 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00514400 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00455000 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00284000 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00254816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00192856 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00113504 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2017-06-14 14:05 - 2017-06-03 12:50 - 00083296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-06-14 14:05 - 2017-06-03 12:50 - 00030560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-06-14 14:05 - 2017-06-03 12:15 - 00099672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-14 14:05 - 2017-06-03 12:13 - 05996384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-14 14:05 - 2017-06-03 12:13 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-06-14 14:05 - 2017-06-03 12:03 - 00950112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-06-14 14:05 - 2017-06-03 11:58 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-14 14:05 - 2017-06-03 11:55 - 01896288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-14 14:05 - 2017-06-03 11:55 - 00342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-14 14:05 - 2017-06-03 11:53 - 00454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-14 14:05 - 2017-06-03 11:52 - 01021784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2017-06-14 14:05 - 2017-06-03 11:52 - 00607072 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2017-06-14 14:05 - 2017-06-03 11:52 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2017-06-14 14:05 - 2017-06-03 11:49 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-14 14:05 - 2017-06-03 11:48 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-06-14 14:05 - 2017-06-03 11:44 - 01409536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-14 14:05 - 2017-06-03 11:44 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-14 14:05 - 2017-06-03 11:39 - 05686272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-14 14:05 - 2017-06-03 11:32 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-14 14:05 - 2017-06-03 11:31 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-14 14:05 - 2017-06-03 11:31 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:05 - 2017-06-03 11:28 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-06-14 14:05 - 2017-06-03 11:26 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBrokerUI.dll
2017-06-14 14:05 - 2017-06-03 11:25 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2017-06-14 14:05 - 2017-06-03 11:25 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2017-06-14 14:05 - 2017-06-03 11:25 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-06-14 14:05 - 2017-06-03 11:23 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-14 14:05 - 2017-06-03 11:22 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2017-06-14 14:05 - 2017-06-03 11:22 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcorehc.dll
2017-06-14 14:05 - 2017-06-03 11:22 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\HNetCfgClient.dll
2017-06-14 14:05 - 2017-06-03 11:22 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2017-06-14 14:05 - 2017-06-03 11:20 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-06-14 14:05 - 2017-06-03 11:20 - 00668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-14 14:05 - 2017-06-03 11:19 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-06-14 14:05 - 2017-06-03 11:16 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-14 14:05 - 2017-06-03 11:16 - 00608768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:05 - 2017-06-03 11:15 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-14 14:05 - 2017-06-03 11:15 - 18364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-14 14:05 - 2017-06-03 11:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll
2017-06-14 14:05 - 2017-06-03 11:08 - 12187648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-14 14:05 - 2017-06-03 11:06 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-14 14:05 - 2017-06-03 11:05 - 01236480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-14 14:05 - 2017-06-03 11:05 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:05 - 2017-06-03 11:05 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll
2017-06-14 14:05 - 2017-06-03 11:05 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2017-06-14 14:05 - 2017-06-03 11:04 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-14 14:05 - 2017-06-03 11:04 - 02006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:05 - 2017-06-03 11:04 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:05 - 2017-06-03 11:04 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-14 14:05 - 2017-06-03 11:02 - 02997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-14 14:05 - 2017-06-02 09:35 - 00080078 _____ C:\WINDOWS\system32\normidna.nls
2017-06-14 14:05 - 2017-05-25 08:56 - 00034144 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-06-14 14:05 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-06-14 14:05 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-06-06 16:54 - 2017-06-15 21:18 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Tunngle
2017-06-06 16:54 - 2017-06-15 19:56 - 00000000 ____D C:\ProgramData\Tunngle
2017-06-06 16:54 - 2017-06-06 16:55 - 00000000 ____D C:\Program Files\Tunngle
2017-06-06 16:54 - 2017-06-06 16:54 - 00001022 _____ C:\Users\Public\Desktop\Tunngle.lnk
2017-06-06 16:54 - 2017-06-06 16:54 - 00000000 ____D C:\Users\Public\Documents\Tunngle
2017-06-06 16:54 - 2017-06-06 16:54 - 00000000 ____D C:\Users\Admin\Documents\Tunngle
2017-06-06 16:54 - 2017-06-06 16:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2017-06-06 16:54 - 2016-04-26 15:10 - 00044216 _____ (Tunngle.net GmbH) C:\WINDOWS\system32\Drivers\tap0901t.sys
2017-06-06 16:51 - 2017-06-06 16:52 - 04843904 _____ (Tunngle.net GmbH ) C:\Users\Admin\Downloads\Tunngle_Setup_v5.8.8.exe
2017-06-06 16:32 - 2017-06-06 16:32 - 00000000 ____D C:\Users\Admin\Documents\My Games
2017-06-06 16:32 - 2017-06-06 16:32 - 00000000 ____D C:\Users\Admin\AppData\Local\SKIDROW
2017-06-06 16:09 - 2017-06-06 16:09 - 00000000 ____D C:\Mr DJ
2017-06-06 15:51 - 2017-06-06 15:52 - 00000000 ____D C:\Users\Admin\Downloads\Borderlands 2 Crack Only Fixed-3DM
2017-06-06 15:42 - 2017-06-06 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ
2017-06-06 15:26 - 2017-06-06 15:26 - 00000000 ____D C:\Program Files\Mr DJ
2017-06-06 15:25 - 2017-06-06 16:08 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2017-06-06 15:24 - 2017-06-06 16:08 - 00000000 ____D C:\WINDOWS\system32\directx
2017-06-06 15:19 - 2015-06-26 00:45 - 00000000 ____D C:\Users\Admin\Borderlands 2 GOTY repack Mr DJ
2017-06-06 14:05 - 2017-06-21 20:09 - 00000170 _____ C:\Users\Admin\BullseyeCoverageError.txt
2017-06-06 14:05 - 2017-06-06 16:56 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2017-06-06 14:05 - 2017-06-06 16:56 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2017-06-06 14:04 - 2017-06-06 14:05 - 00000170 _____ C:\Users\Default\BullseyeCoverageError.txt
2017-06-06 14:04 - 2017-06-06 14:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2017-06-06 14:04 - 2017-06-06 14:04 - 00000000 ____D C:\Program Files\LogMeIn Hamachi
2017-06-06 14:01 - 2017-06-21 20:10 - 00000000 ____D C:\Users\Admin\AppData\Local\LogMeIn Hamachi
2017-06-06 14:01 - 2017-06-06 14:01 - 00000000 ____D C:\Users\Admin\AppData\Local\LogMeIn
2017-06-06 14:01 - 2017-06-06 14:01 - 00000000 ____D C:\ProgramData\LogMeIn
2017-06-06 13:55 - 2017-06-06 13:57 - 05877760 _____ C:\Users\Admin\Downloads\hamachi-2-2-0-105.msi
2017-06-06 13:42 - 2017-06-06 13:44 - 04121760 _____ (Husdawg, LLC) C:\Users\Admin\Downloads\Detection.exe
2017-06-06 13:28 - 2017-06-06 13:28 - 00000000 ____D C:\Users\Admin\Downloads\Borderlands 2 GOTY repack Mr DJ
2017-06-06 13:25 - 2017-06-21 20:06 - 00000000 ____D C:\Users\Admin\AppData\Roaming\uTorrent
2017-06-06 13:25 - 2017-06-06 13:25 - 00002684 _____ C:\Users\Admin\Desktop\µTorrent.lnk
2017-06-06 13:24 - 2017-06-06 13:25 - 02240192 _____ (BitTorrent Inc.) C:\Users\Admin\Downloads\uTorrent.exe
2017-06-05 14:40 - 2017-06-05 14:40 - 00011977 _____ C:\Users\Admin\Desktop\Kalendář turnajů k 5.6.2017.xlsx
2017-06-05 14:35 - 2017-06-05 14:35 - 00011945 _____ C:\Users\Admin\Downloads\Kalendář turnajů k 22.5.2017 (1).xlsx
2017-05-29 16:51 - 2017-05-29 16:51 - 00000216 _____ C:\Users\Admin\Desktop\Worms Clan Wars.url
2017-05-27 22:18 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2017-05-27 22:18 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2017-05-27 22:18 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2017-05-27 22:18 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2017-05-27 22:18 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2017-05-27 22:18 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2017-05-27 22:18 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2017-05-27 22:18 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2017-05-27 22:18 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2017-05-27 22:18 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2017-05-27 22:18 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2017-05-27 22:18 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2017-05-27 22:18 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2017-05-27 22:18 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2017-05-27 22:18 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2017-05-27 22:18 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2017-05-27 22:18 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2017-05-27 22:18 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2017-05-27 22:18 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2017-05-27 22:18 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2017-05-27 22:18 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2017-05-27 22:18 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2017-05-27 22:18 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2017-05-27 22:18 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2017-05-27 22:18 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2017-05-27 22:18 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2017-05-27 22:18 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2017-05-27 22:18 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2017-05-27 22:18 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2017-05-27 22:18 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2017-05-27 22:18 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2017-05-27 22:18 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2017-05-27 22:18 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2017-05-27 22:18 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2017-05-27 22:18 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2017-05-27 22:18 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2017-05-27 22:18 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2017-05-27 22:18 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2017-05-27 22:18 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2017-05-27 22:18 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2017-05-27 22:18 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2017-05-27 22:18 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2017-05-27 22:18 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2017-05-27 22:18 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2017-05-27 22:18 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2017-05-27 22:18 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2017-05-27 22:18 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2017-05-27 22:18 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2017-05-27 22:18 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2017-05-27 22:18 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2017-05-27 22:18 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2017-05-27 22:18 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2017-05-27 22:18 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2017-05-27 22:18 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2017-05-27 22:18 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2017-05-27 22:18 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2017-05-27 22:18 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2017-05-27 22:18 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2017-05-27 22:18 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2017-05-27 22:18 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2017-05-27 22:18 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2017-05-27 22:18 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2017-05-27 22:18 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2017-05-27 22:18 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2017-05-27 22:18 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2017-05-27 22:18 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2017-05-27 22:18 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2017-05-27 22:18 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2017-05-27 22:18 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2017-05-27 22:18 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2017-05-27 22:18 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2017-05-27 22:18 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2017-05-27 22:18 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2017-05-27 22:18 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2017-05-27 22:18 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2017-05-27 22:18 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2017-05-27 22:18 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2017-05-27 22:17 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2017-05-27 22:17 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2017-05-27 22:17 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2017-05-27 22:17 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2017-05-27 22:17 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2017-05-27 22:17 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2017-05-27 22:17 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2017-05-27 22:17 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2017-05-27 22:17 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2017-05-25 16:06 - 2017-05-25 16:06 - 00000216 _____ C:\Users\Admin\Desktop\Age of Empires II HD Edition.url
2017-05-25 15:57 - 2017-05-30 00:49 - 00000000 ____D C:\Users\Admin\BrawlhallaReplays
2017-05-25 15:39 - 2017-05-25 15:39 - 00000000 ____D C:\Users\Admin\AppData\Roaming\BrawlhallaAir
2017-05-25 15:35 - 2017-05-25 15:35 - 00000216 _____ C:\Users\Admin\Desktop\Brawlhalla.url
2017-05-25 14:54 - 2017-05-25 14:54 - 00018375 _____ C:\Users\Admin\Downloads\Kalendář turnajů k 22.5.2017.xlsx
2017-05-22 20:49 - 2017-05-22 20:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Počítač pro každého
2017-05-22 20:46 - 2017-05-22 20:49 - 00000000 ____D C:\Program Files\Johanka z Arku
2017-05-22 20:13 - 2017-05-22 20:44 - 536674849 _____ C:\Users\Admin\Downloads\Wars-&-Warriors-Joan-of-Ark-CZ.rar
2017-05-22 18:24 - 2017-05-22 18:24 - 00113143 _____ C:\Users\Admin\Downloads\CZVV_Kriteria hodnoceni_2017 (6).pdf
2017-05-22 18:21 - 2017-05-22 18:21 - 00045578 _____ C:\Users\Admin\Downloads\za_pp_zak1.pdf
2017-05-22 16:29 - 2017-05-22 16:29 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-22 16:12 - 2017-05-22 16:12 - 00038512 ____H (LogMeIn Inc.) C:\WINDOWS\system32\Drivers\Hamdrv.sys

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-21 22:43 - 2017-04-18 13:26 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2017-06-21 20:14 - 2017-04-18 13:50 - 00872104 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-21 20:14 - 2017-04-18 13:50 - 00187962 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-21 20:14 - 2017-04-18 13:14 - 02012024 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-21 20:09 - 2017-04-18 15:09 - 00000000 ____D C:\Program Files\Steam
2017-06-21 20:08 - 2017-04-18 22:03 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-21 20:08 - 2017-04-18 13:39 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2017-06-21 20:08 - 2017-04-18 13:23 - 00000000 ____D C:\Users\Admin
2017-06-21 20:01 - 2017-04-18 14:19 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2017-06-21 19:48 - 2017-04-18 13:59 - 00000000 ____D C:\Users\Admin\Desktop\Složka na jiné složky
2017-06-21 19:29 - 2017-04-18 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-21 19:28 - 2017-04-18 13:46 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-06-21 17:28 - 2017-04-18 13:26 - 00002391 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-21 17:28 - 2017-04-18 13:26 - 00000000 ___RD C:\Users\Admin\OneDrive
2017-06-21 17:26 - 2017-04-18 13:46 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-21 11:54 - 2017-04-18 13:46 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-21 11:51 - 2017-04-18 13:29 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-21 11:51 - 2017-04-18 13:29 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-20 16:50 - 2017-05-20 21:22 - 00000000 ____D C:\Users\Admin\AppData\Local\Spotify
2017-06-20 16:46 - 2017-05-20 21:20 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Spotify
2017-06-18 00:12 - 2017-04-18 13:46 - 00000000 ____D C:\WINDOWS\rescache
2017-06-17 16:31 - 2017-04-18 15:18 - 00000000 ____D C:\Users\Admin\Documents\League of Legends
2017-06-17 12:49 - 2017-04-18 13:46 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-17 12:48 - 2017-04-18 14:49 - 00000000 ___RD C:\Program Files\Skype
2017-06-17 12:48 - 2017-04-18 14:49 - 00000000 ____D C:\ProgramData\Skype
2017-06-16 12:44 - 2017-04-19 08:34 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2017-06-15 13:51 - 2017-04-18 22:03 - 00230080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-15 13:51 - 2017-04-18 13:23 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-15 00:58 - 2017-04-18 13:46 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-15 00:58 - 2017-04-18 13:46 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-14 14:23 - 2017-04-18 17:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-14 14:18 - 2017-04-18 17:06 - 130903960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-14 14:18 - 2017-04-18 13:40 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-09 15:06 - 2017-04-18 15:09 - 00000000 ____D C:\Program Files\Common Files\Steam
2017-06-07 22:41 - 2017-04-18 13:52 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-07 22:39 - 2017-03-19 11:15 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-06 18:57 - 2017-04-18 22:03 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-03 08:36 - 2017-04-18 13:48 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-06-03 08:36 - 2017-04-18 13:48 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-05-31 01:03 - 2017-05-18 14:35 - 00456360 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-30 20:03 - 2017-04-19 08:38 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2017-05-30 13:56 - 2017-04-19 08:39 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-22 20:53 - 2017-04-18 13:23 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2017-05-22 16:31 - 2017-04-19 08:40 - 00000000 ____D C:\ProgramData\Adobe
2017-05-22 16:30 - 2017-04-19 09:20 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Adobe
2017-05-22 16:30 - 2017-04-18 13:23 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2017-05-22 16:29 - 2017-04-19 08:39 - 00000000 ____D C:\Program Files\Adobe

Some files in TEMP:
====================
2017-06-06 14:05 - 2017-06-06 14:05 - 0010520 _____ () C:\Users\Admin\AppData\Local\Temp\BullseyeCoverage-x86-3.dll
2017-06-21 19:34 - 2017-06-21 19:34 - 20048496 _____ (Macrovision Corporation) C:\Users\Admin\AppData\Local\Temp\ubiB248.tmp.exe
2017-04-18 14:48 - 2017-04-18 14:48 - 14456872 _____ (Microsoft Corporation) C:\Users\Admin\AppData\Local\Temp\vc_redist.x86.exe
2017-06-21 15:00 - 2008-03-27 01:59 - 0459400 ____R (Macrovision Corporation) C:\Users\Admin\AppData\Local\Temp\_is5B9B.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-14 12:07

==================== End of FRST.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\Users\Admin\AppData\Local\Temp

EmptyTemp:
End

Uložte do C:\Users\Admin\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[JHlacik]

Fixlist
_________
Fix result of Farbar Recovery Scan Tool (x86) Version: 21-06-2017 01
Ran by Admin (22-06-2017 18:56:10) Run:1
Running from C:\Users\Admin\Downloads
Loaded Profiles: Admin (Available Profiles: defaultuser0 & Admin)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
C:\Users\Admin\AppData\Local\Temp

EmptyTemp:
End
*****************

C:\Users\Admin\AppData\Local\Temp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 92048421 B
Java, Flash, Steam htmlcache => 48646116 B
Windows/system/drivers => 1097521518 B
Edge => 412019888 B
Chrome => 774075713 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
LocalService => 19580 B
NetworkService => 232160 B
defaultuser0 => 588289 B
Admin => 78838805 B

RecycleBin => 536675558 B
EmptyTemp: => 2.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:56:50 ====

[Rudy]

Smazáno, log by již měl být OK.