Moc prosím o preventivní kontrolu. Předem děkuji.

[radka68]

V počítači je možné podezření na přítomnost Adweru nebo trojských koní (vyskakovaly okna s reklamami se štítkem SourceApp). Po odinstalování aplikace z počítače okna již nevyskakují, nicméně program na vyčištění (Malwarebytes Anti-Malware) našel 6 infikovaných souborů (nejspíš ale asi bude více) --> teď v karanténě.
Původní antivirus Norton není schopný virus detekovat =(

Předem mockrát děkuji =)
_______________________________________________________________________

Log z RSITu:



cLogfile of random's system information tool 1.10 (written by random/random)
Run by Radka at 2015-02-11 20:23:35
Microsoft Windows 8.1 s aplikací Bing
System drive C: has 891 GB (96%) free of 927 GB
Total RAM: 3989 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:23:48, on 11. 2. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exea
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Users\Radka\AppData\Local\Pokki\Engine\HostAppService.exe
C:\Windows\jmesoft\hotkey.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Users\Radka\AppData\Local\Pokki\Engine\HostAppService.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Radka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll" (file missing)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [jmekey] C:\windows\jmesoft\hotkey.exe
O4 - HKLM\..\Run: [jmesoft] C:\Windows\jmesoft\ServiceLoader.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Pokki] "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
O23 - Service: JME Keyboard Driver (JME Keyboard) - Unknown owner - C:\Windows\jmesoft\Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8668 bytes

======Listing Processes======





wininit.exe

C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\windows\SysWOW64\svchost.exe -k hpdevmgmt
dashost.exe {33978e0f-4114-4682-a0d40eb73e094ccc}
"C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe"
C:\Windows\jmesoft\Service.exe
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\diMaster.dll" /prefetch:1
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\svchost.exe -k HPService
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe"

C:\windows\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
C:\Windows\System32\skydrive.exe -Embedding
C:\windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
taskhostex.exe
"C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe" /c /a /s UserSession2
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Program Files\Zune\ZuneLauncher.exe"
"C:\Users\Radka\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Users\Radka\AppData\Local\Pokki\Engine\HostAppService.exe"
"C:\Windows\jmesoft\hotkey.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Windows\jmesoft\JME_LOAD.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\Radka\AppData\Local\Pokki\Engine\HostAppService.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/6/OneClickSignIn/BlueOnWhite/Prefetch/ContentPrefetchPrefetchOn/Prerender/Prerender15minTTL/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-1-Percent/group_65/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="5864.1.530616535\1357003350" /prefetch:3
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP psc 1400 series#1423165958" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe" -Embedding
"C:\Users\Radka\AppData\Local\Pokki\Engine\StartMenuIndexer.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\windows\system32\wbem\wmiprvse.exe

"C:\Users\Radka\Downloads\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Radka\AppData\Roaming\Mozilla\Firefox\Profiles\64giq1bn.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll [2014-09-20 917856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Norton Identity Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll [2014-09-20 655200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Norton Vulnerability Protection - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL [2014-07-23 392336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25 1253144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll [2014-09-20 917856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25 1253144]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll [2014-09-20 655200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24 13662936]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-11-13 1368792]
"Zune Launcher"=C:\Program Files\Zune\ZuneLauncher.exe [2011-08-05 163552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pokki"=C:\Users\Radka\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe [2015-01-31 10355528]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-06-16 833024]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-06-22 767200]
"jmekey"=C:\windows\jmesoft\hotkey.exe [2013-07-24 118784]
"jmesoft"=C:\Windows\jmesoft\ServiceLoader.exe [2011-08-17 28672]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-02-11 20:23:36 ----D---- C:\Program Files\trend micro
2015-02-11 20:23:35 ----D---- C:\rsit
2015-02-10 21:03:50 ----A---- C:\windows\system32\drivers\MBAMSwissArmy.sys
2015-02-10 21:03:33 ----D---- C:\ProgramData\Malwarebytes
2015-02-10 21:03:33 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-10 21:03:33 ----A---- C:\windows\system32\drivers\mwac.sys
2015-02-10 21:03:33 ----A---- C:\windows\system32\drivers\mbamchameleon.sys
2015-02-10 21:03:33 ----A---- C:\windows\system32\drivers\mbam.sys
2015-02-10 19:55:02 ----A---- C:\autoexec.bat
2015-02-10 19:04:38 ----D---- C:\Users\Radka\AppData\Roaming\Zoner
2015-02-10 19:04:27 ----D---- C:\ProgramData\Zoner
2015-02-10 19:04:02 ----D---- C:\Program Files\Zoner
2015-02-10 18:01:19 ----A---- C:\windows\system32\drivers\SYMEVENT64x86.SYS
2015-02-10 18:01:18 ----D---- C:\Program Files\Common Files\Symantec Shared
2015-02-10 18:00:23 ----D---- C:\windows\system32\drivers\NISx64
2015-02-10 18:00:20 ----D---- C:\Program Files (x86)\Norton Internet Security
2015-02-10 18:00:19 ----D---- C:\ProgramData\Norton
2015-02-10 17:48:25 ----D---- C:\ProgramData\NortonInstaller
2015-02-10 17:48:25 ----D---- C:\Program Files (x86)\NortonInstaller
2015-02-07 18:17:26 ----D---- C:\Users\Radka\AppData\Roaming\vlc
2015-02-07 17:59:25 ----D---- C:\Program Files\Zune
2015-02-06 19:14:39 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-02-06 19:14:39 ----A---- C:\windows\system32\wuaueng.dll
2015-02-06 19:14:39 ----A---- C:\windows\system32\wuapi.dll
2015-02-06 19:14:38 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-02-06 19:14:38 ----A---- C:\windows\SYSWOW64\wups.dll
2015-02-06 19:14:38 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-02-06 19:14:38 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-02-06 19:14:38 ----A---- C:\windows\system32\wuwebv.dll
2015-02-06 19:14:38 ----A---- C:\windows\system32\WUSettingsProvider.dll
2015-02-06 19:14:38 ----A---- C:\windows\system32\wups2.dll
2015-02-06 19:14:38 ----A---- C:\windows\system32\wups.dll
2015-02-06 19:14:38 ----A---- C:\windows\system32\wudriver.dll
2015-02-06 19:14:38 ----A---- C:\windows\system32\wucltux.dll
2015-02-06 19:14:38 ----A---- C:\windows\system32\wuauclt.exe
2015-02-06 19:14:38 ----A---- C:\windows\system32\wuapp.exe
2015-02-06 19:14:38 ----A---- C:\windows\system32\wuaext.dll
2015-02-06 18:41:46 ----A---- C:\windows\system32\Windows.UI.Xaml.dll
2015-02-06 18:41:43 ----A---- C:\windows\SYSWOW64\Windows.UI.Xaml.dll
2015-02-06 18:41:38 ----A---- C:\windows\system32\d3d10warp.dll
2015-02-06 18:41:34 ----A---- C:\windows\system32\mfcore.dll
2015-02-06 18:41:33 ----A---- C:\windows\SYSWOW64\mfcore.dll
2015-02-06 18:41:33 ----A---- C:\windows\SYSWOW64\d3d10warp.dll
2015-02-06 18:41:33 ----A---- C:\windows\system32\gpsvc.dll
2015-02-06 18:41:32 ----A---- C:\windows\system32\workfolderssvc.dll
2015-02-06 18:41:32 ----A---- C:\windows\system32\wlansvc.dll
2015-02-06 18:41:31 ----A---- C:\windows\system32\Windows.Media.dll
2015-02-06 18:41:29 ----A---- C:\windows\SYSWOW64\Windows.Media.dll
2015-02-06 18:41:29 ----A---- C:\windows\system32\drivers\srv.sys
2015-02-06 18:41:28 ----A---- C:\windows\system32\WMVDECOD.DLL
2015-02-06 18:41:28 ----A---- C:\windows\system32\SRH.dll
2015-02-06 18:41:28 ----A---- C:\windows\system32\printui.dll
2015-02-06 18:41:28 ----A---- C:\windows\system32\drivers\ntfs.sys
2015-02-06 18:41:27 ----A---- C:\windows\SYSWOW64\WMVDECOD.DLL
2015-02-06 18:41:27 ----A---- C:\windows\system32\XpsPrint.dll
2015-02-06 18:41:27 ----A---- C:\windows\system32\netcfgx.dll
2015-02-06 18:41:27 ----A---- C:\windows\system32\drivers\srv2.sys
2015-02-06 18:41:26 ----A---- C:\windows\SYSWOW64\SRH.dll
2015-02-06 18:41:26 ----A---- C:\windows\SYSWOW64\printui.dll
2015-02-06 18:41:26 ----A---- C:\windows\SYSWOW64\netcfgx.dll
2015-02-06 18:41:26 ----A---- C:\windows\system32\WorkfoldersControl.dll
2015-02-06 18:41:26 ----A---- C:\windows\system32\wlanmsm.dll
2015-02-06 18:41:26 ----A---- C:\windows\system32\AppxPackaging.dll
2015-02-06 18:41:25 ----A---- C:\windows\SYSWOW64\wlanmsm.dll
2015-02-06 18:41:25 ----A---- C:\windows\SYSWOW64\AppxPackaging.dll
2015-02-06 18:41:25 ----A---- C:\windows\system32\srvsvc.dll
2015-02-06 18:41:25 ----A---- C:\windows\system32\spoolsv.exe
2015-02-06 18:41:25 ----A---- C:\windows\system32\SHCore.dll
2015-02-06 18:41:25 ----A---- C:\windows\system32\drivers\usbccgp.sys
2015-02-06 18:41:24 ----A---- C:\windows\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-02-06 18:41:23 ----A---- C:\windows\SYSWOW64\SHCore.dll
2015-02-06 18:41:23 ----A---- C:\windows\SYSWOW64\mftranscode.dll
2015-02-06 18:41:23 ----A---- C:\windows\SYSWOW64\mfplat.dll
2015-02-06 18:41:23 ----A---- C:\windows\system32\storagewmi.dll
2015-02-06 18:41:23 ----A---- C:\windows\system32\mftranscode.dll
2015-02-06 18:41:23 ----A---- C:\windows\system32\mfplat.dll
2015-02-06 18:41:23 ----A---- C:\windows\system32\comdlg32.dll
2015-02-06 18:41:22 ----A---- C:\windows\system32\winload.exe
2015-02-06 18:41:22 ----A---- C:\windows\system32\usbmon.dll
2015-02-06 18:41:22 ----A---- C:\windows\system32\drivers\spaceport.sys
2015-02-06 18:41:21 ----A---- C:\windows\SYSWOW64\comdlg32.dll
2015-02-06 18:41:21 ----A---- C:\windows\system32\wisp.dll
2015-02-06 18:41:21 ----A---- C:\windows\system32\drivers\volsnap.sys
2015-02-06 18:41:21 ----A---- C:\windows\system32\defragsvc.dll
2015-02-06 18:41:21 ----A---- C:\windows\system32\aclui.dll
2015-02-06 18:41:20 ----A---- C:\windows\system32\wsecedit.dll
2015-02-06 18:41:20 ----A---- C:\windows\system32\winresume.exe
2015-02-06 18:41:20 ----A---- C:\windows\system32\drivers\srvnet.sys
2015-02-06 18:41:20 ----A---- C:\windows\system32\drivers\nwifi.sys
2015-02-06 18:41:19 ----A---- C:\windows\SYSWOW64\mfreadwrite.dll
2015-02-06 18:41:19 ----A---- C:\windows\system32\wpdbusenum.dll
2015-02-06 18:41:19 ----A---- C:\windows\system32\winmmbase.dll
2015-02-06 18:41:19 ----A---- C:\windows\system32\WiFiDisplay.dll
2015-02-06 18:41:19 ----A---- C:\windows\system32\mfreadwrite.dll
2015-02-06 18:41:19 ----A---- C:\windows\system32\drivers\usbhub.sys
2015-02-06 18:41:19 ----A---- C:\windows\system32\drivers\ks.sys
2015-02-06 18:41:18 ----A---- C:\windows\SYSWOW64\wlanapi.dll
2015-02-06 18:41:18 ----A---- C:\windows\SYSWOW64\storagewmi.dll
2015-02-06 18:41:18 ----A---- C:\windows\SYSWOW64\Display.dll
2015-02-06 18:41:18 ----A---- C:\windows\system32\VAN.dll
2015-02-06 18:41:18 ----A---- C:\windows\system32\SettingSync.dll
2015-02-06 18:41:18 ----A---- C:\windows\system32\Display.dll
2015-02-06 18:41:18 ----A---- C:\windows\system32\conhost.exe
2015-02-06 18:41:18 ----A---- C:\windows\system32\AppxSip.dll
2015-02-06 18:41:17 ----A---- C:\windows\SYSWOW64\wisp.dll
2015-02-06 18:41:17 ----A---- C:\windows\SYSWOW64\winmmbase.dll
2015-02-06 18:41:17 ----A---- C:\windows\SYSWOW64\aclui.dll
2015-02-06 18:41:17 ----A---- C:\windows\system32\WorkFoldersGPExt.dll
2015-02-06 18:41:17 ----A---- C:\windows\system32\SndVol.exe
2015-02-06 18:41:17 ----A---- C:\windows\system32\osk.exe
2015-02-06 18:41:17 ----A---- C:\windows\system32\clusapi.dll
2015-02-06 18:41:16 ----A---- C:\windows\SYSWOW64\bcryptprimitives.dll
2015-02-06 18:41:16 ----A---- C:\windows\system32\mfps.dll
2015-02-06 18:41:16 ----A---- C:\windows\system32\drivers\NdisImPlatform.sys
2015-02-06 18:41:16 ----A---- C:\windows\system32\drivers\ndis.sys
2015-02-06 18:41:16 ----A---- C:\windows\system32\bcryptprimitives.dll
2015-02-06 18:41:15 ----A---- C:\windows\SYSWOW64\AppxSip.dll
2015-02-06 18:41:15 ----A---- C:\windows\system32\winmm.dll
2015-02-06 18:41:15 ----A---- C:\windows\system32\Windows.Networking.dll
2015-02-06 18:41:15 ----A---- C:\windows\system32\twinapi.dll
2015-02-06 18:41:15 ----A---- C:\windows\system32\dwmapi.dll
2015-02-06 18:41:15 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-02-06 18:41:15 ----A---- C:\windows\system32\drivers\hdaudbus.sys
2015-02-06 18:41:14 ----A---- C:\windows\SYSWOW64\XpsPrint.dll
2015-02-06 18:41:14 ----A---- C:\windows\SYSWOW64\wsecedit.dll
2015-02-06 18:41:14 ----A---- C:\windows\system32\WorkFoldersShell.dll
2015-02-06 18:41:14 ----A---- C:\windows\system32\gpedit.dll
2015-02-06 18:41:14 ----A---- C:\windows\system32\GdiPlus.dll
2015-02-06 18:41:13 ----A---- C:\windows\SYSWOW64\winmm.dll
2015-02-06 18:41:13 ----A---- C:\windows\SYSWOW64\SndVol.exe
2015-02-06 18:41:13 ----A---- C:\windows\system32\WebClnt.dll
2015-02-06 18:41:13 ----A---- C:\windows\system32\iasnap.dll
2015-02-06 18:41:12 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2015-02-06 18:41:12 ----A---- C:\windows\SYSWOW64\VAN.dll
2015-02-06 18:41:12 ----A---- C:\windows\SYSWOW64\dwmapi.dll
2015-02-06 18:41:12 ----A---- C:\windows\system32\mispace.dll
2015-02-06 18:41:12 ----A---- C:\windows\system32\drivers\pci.sys
2015-02-06 18:41:11 ----A---- C:\windows\SYSWOW64\clusapi.dll
2015-02-06 18:41:11 ----A---- C:\windows\system32\wwanconn.dll
2015-02-06 18:41:11 ----A---- C:\windows\system32\wcmcsp.dll
2015-02-06 18:41:11 ----A---- C:\windows\system32\SystemSettingsAdminFlows.exe
2015-02-06 18:41:11 ----A---- C:\windows\system32\stobject.dll
2015-02-06 18:41:11 ----A---- C:\windows\system32\drivers\IPMIDrv.sys
2015-02-06 18:41:11 ----A---- C:\windows\system32\dab.dll
2015-02-06 18:41:11 ----A---- C:\windows\system32\AppxSysprep.dll
2015-02-06 18:41:10 ----A---- C:\windows\SYSWOW64\rsaenh.dll
2015-02-06 18:41:10 ----A---- C:\windows\SYSWOW64\iasnap.dll
2015-02-06 18:41:10 ----A---- C:\windows\SYSWOW64\gpedit.dll
2015-02-06 18:41:10 ----A---- C:\windows\system32\wlanapi.dll
2015-02-06 18:41:10 ----A---- C:\windows\system32\rsaenh.dll
2015-02-06 18:41:10 ----A---- C:\windows\system32\ActionCenter.dll
2015-02-06 18:41:09 ----A---- C:\windows\SYSWOW64\osk.exe
2015-02-06 18:41:09 ----A---- C:\windows\SYSWOW64\mispace.dll
2015-02-06 18:41:09 ----A---- C:\windows\system32\wshbth.dll
2015-02-06 18:41:08 ----A---- C:\windows\SYSWOW64\Windows.Networking.dll
2015-02-06 18:41:08 ----A---- C:\windows\SYSWOW64\SettingSync.dll
2015-02-06 18:41:08 ----A---- C:\windows\system32\wlansvcpal.dll
2015-02-06 18:41:08 ----A---- C:\windows\system32\Windows.Devices.Bluetooth.dll
2015-02-06 18:41:08 ----A---- C:\windows\system32\PrintDialogs.dll
2015-02-06 18:41:08 ----A---- C:\windows\system32\browser.dll
2015-02-06 18:41:07 ----A---- C:\windows\SYSWOW64\wshbth.dll
2015-02-06 18:41:05 ----A---- C:\windows\SYSWOW64\stobject.dll
2015-02-06 18:41:04 ----A---- C:\windows\SYSWOW64\KBDRUM.DLL
2015-02-06 18:41:04 ----A---- C:\windows\SYSWOW64\GdiPlus.dll
2015-02-06 18:41:04 ----A---- C:\windows\SYSWOW64\ActionCenter.dll
2015-02-06 18:41:04 ----A---- C:\windows\system32\KBDRUM.DLL
2015-02-06 18:41:04 ----A---- C:\windows\system32\Defrag.exe
2015-02-06 18:41:03 ----A---- C:\windows\system32\KBDYAK.DLL
2015-02-06 18:41:03 ----A---- C:\windows\system32\KBDRU1.DLL
2015-02-06 18:41:03 ----A---- C:\windows\system32\KBDRU.DLL
2015-02-06 18:41:03 ----A---- C:\windows\system32\KBDBASH.DLL
2015-02-06 18:41:03 ----A---- C:\windows\system32\BluetoothApis.dll
2015-02-06 18:41:02 ----A---- C:\windows\SYSWOW64\KBDYAK.DLL
2015-02-06 18:41:02 ----A---- C:\windows\SYSWOW64\KBDRU1.DLL
2015-02-06 18:41:02 ----A---- C:\windows\SYSWOW64\KBDRU.DLL
2015-02-06 18:41:02 ----A---- C:\windows\SYSWOW64\KBDBASH.DLL
2015-02-06 18:41:00 ----A---- C:\windows\SYSWOW64\PrintDialogs.dll
2015-02-06 18:41:00 ----A---- C:\windows\SYSWOW64\KBDTAT.DLL
2015-02-06 18:41:00 ----A---- C:\windows\system32\wwanmm.dll
2015-02-06 18:41:00 ----A---- C:\windows\system32\SndVolSSO.dll
2015-02-06 18:41:00 ----A---- C:\windows\system32\KBDTAT.DLL
2015-02-06 18:40:59 ----A---- C:\windows\SYSWOW64\BluetoothApis.dll
2015-02-06 18:40:59 ----A---- C:\windows\system32\wlansec.dll
2015-02-06 18:40:58 ----A---- C:\windows\system32\SystemSettingsAdminFlowUI.dll
2015-02-06 18:40:57 ----A---- C:\windows\SYSWOW64\KBDTT102.DLL
2015-02-06 18:40:57 ----A---- C:\windows\system32\KBDTT102.DLL
2015-02-05 21:16:42 ----D---- C:\ProgramData\Canneverbe Limited
2015-02-05 21:16:37 ----D---- C:\Users\Radka\AppData\Roaming\Canneverbe Limited
2015-02-05 21:16:32 ----D---- C:\Program Files (x86)\CDBurnerXP
2015-02-05 21:11:31 ----D---- C:\Program Files (x86)\Microsoft Works
2015-02-05 21:11:19 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2015-02-05 21:10:58 ----D---- C:\windows\PCHEALTH
2015-02-05 21:08:52 ----D---- C:\Program Files\Microsoft Office
2015-02-05 21:08:49 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2015-02-05 21:08:23 ----D---- C:\ProgramData\Microsoft Help
2015-02-05 21:08:23 ----D---- C:\Program Files (x86)\Microsoft Office
2015-02-05 21:08:11 ----RHD---- C:\MSOCache
2015-02-05 20:58:37 ----D---- C:\Users\Radka\AppData\Roaming\HP
2015-02-05 20:58:37 ----D---- C:\ProgramData\WEBREG
2015-02-05 20:48:12 ----D---- C:\Program Files (x86)\Microsoft
2015-02-05 20:48:07 ----D---- C:\ProgramData\HP Photo Creations
2015-02-05 20:48:07 ----D---- C:\Program Files (x86)\HP Photo Creations
2015-02-05 20:47:58 ----D---- C:\windows\SYSWOW64\spool
2015-02-05 20:47:15 ----D---- C:\Users\Radka\AppData\Roaming\HpUpdate
2015-02-05 20:46:42 ----D---- C:\ProgramData\HP Product Assistant
2015-02-05 20:44:02 ----D---- C:\Program Files (x86)\HP
2015-02-05 20:43:15 ----N---- C:\windows\hpomdl19.dat
2015-02-05 20:43:15 ----A---- C:\windows\hpoins19.dat
2015-02-05 20:43:08 ----D---- C:\ProgramData\HP
2015-02-05 20:43:07 ----A---- C:\windows\system32\drivers\Dot4usb.sys
2015-02-05 20:43:07 ----A---- C:\windows\system32\drivers\Dot4Prt.sys
2015-02-05 20:43:07 ----A---- C:\windows\system32\drivers\Dot4.sys
2015-02-05 20:43:04 ----A---- C:\windows\system32\hppldcoi.dll
2015-02-05 20:43:04 ----A---- C:\windows\system32\hpowiav1.dll
2015-02-05 20:43:04 ----A---- C:\windows\system32\hpovst01.dll
2015-02-05 20:43:04 ----A---- C:\windows\system32\hpotscl1.dll
2015-02-05 20:43:00 ----A---- C:\windows\system32\PortChanger.exe
2015-02-05 20:37:16 ----D---- C:\Users\Radka\AppData\Roaming\Mozilla
2015-02-05 20:37:08 ----D---- C:\ProgramData\Mozilla
2015-02-05 20:37:08 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-02-05 20:37:04 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-02-05 20:32:26 ----D---- C:\Program Files (x86)\VideoLAN
2015-02-05 20:31:17 ----D---- C:\Program Files\CCleaner
2015-02-05 20:30:28 ----D---- C:\Users\Radka\AppData\Roaming\WinRAR
2015-02-05 20:30:05 ----D---- C:\Program Files (x86)\WinRAR
2015-02-05 20:24:10 ----D---- C:\Program Files (x86)\Seznam.cz
2015-02-05 20:24:08 ----A---- C:\windows\system32\rdpcorets.dll
2015-02-05 20:24:07 ----A---- C:\windows\SYSWOW64\certcli.dll
2015-02-05 20:24:07 ----A---- C:\windows\system32\lsasrv.dll
2015-02-05 20:24:07 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-02-05 20:24:07 ----A---- C:\windows\system32\drivers\cng.sys
2015-02-05 20:24:07 ----A---- C:\windows\system32\certcli.dll
2015-02-05 20:24:07 ----A---- C:\windows\system32\adtschema.dll
2015-02-05 20:24:06 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-02-05 20:24:06 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-02-05 20:24:06 ----A---- C:\windows\system32\rfxvmt.dll
2015-02-05 20:24:06 ----A---- C:\windows\system32\rdpudd.dll
2015-02-05 20:24:06 ----A---- C:\windows\system32\msaudite.dll
2015-02-05 20:24:06 ----A---- C:\windows\system32\drivers\rdpvideominiport.sys
2015-02-05 20:23:31 ----D---- C:\Users\Radka\AppData\Roaming\Seznam.cz
2015-02-05 20:23:06 ----A---- C:\windows\system32\drivers\dtsoftbus01.sys
2015-02-05 20:23:00 ----D---- C:\Users\Radka\AppData\Roaming\DAEMON Tools Lite
2015-02-05 20:22:57 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2015-02-05 20:22:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2015-02-05 20:17:58 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-02-05 20:15:11 ----SD---- C:\windows\system32\CompatTel
2015-02-05 20:15:11 ----D---- C:\windows\system32\appraiser
2015-02-05 19:50:04 ----A---- C:\windows\system32\termsrv.dll
2015-02-05 19:41:48 ----A---- C:\windows\SYSWOW64\msftedit.dll
2015-02-05 19:41:47 ----A---- C:\windows\SYSWOW64\ReInfo.dll
2015-02-05 19:41:47 ----A---- C:\windows\SYSWOW64\AppxAllUserStore.dll
2015-02-05 19:41:46 ----A---- C:\windows\SYSWOW64\spp.dll
2015-02-05 19:41:46 ----A---- C:\windows\SYSWOW64\ReAgent.dll
2015-02-05 19:41:46 ----A---- C:\windows\SYSWOW64\AppXDeploymentClient.dll
2015-02-05 19:41:46 ----A---- C:\windows\system32\ReInfo.dll
2015-02-05 19:41:46 ----A---- C:\windows\system32\dafWfdProvider.dll
2015-02-05 19:41:46 ----A---- C:\windows\system32\AppXDeploymentExtensions.dll
2015-02-05 19:41:46 ----A---- C:\windows\system32\AppxAllUserStore.dll
2015-02-05 19:41:45 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-02-05 19:41:45 ----A---- C:\windows\SYSWOW64\dcomp.dll
2015-02-05 19:41:43 ----A---- C:\windows\system32\spp.dll
2015-02-05 19:41:43 ----A---- C:\windows\system32\ReAgent.dll
2015-02-05 19:41:41 ----A---- C:\windows\SYSWOW64\ole32.dll
2015-02-05 19:41:41 ----A---- C:\windows\system32\AppXDeploymentServer.dll
2015-02-05 19:41:41 ----A---- C:\windows\system32\AppXDeploymentClient.dll
2015-02-05 19:41:40 ----A---- C:\windows\system32\kernel32.dll
2015-02-05 19:41:40 ----A---- C:\windows\system32\drivers\dfsc.sys
2015-02-05 19:41:38 ----A---- C:\windows\system32\msftedit.dll
2015-02-05 19:41:38 ----A---- C:\windows\system32\dcomp.dll
2015-02-05 19:41:35 ----A---- C:\windows\system32\ole32.dll
2015-02-05 19:41:32 ----A---- C:\windows\SYSWOW64\wlidprov.dll
2015-02-05 19:41:31 ----A---- C:\windows\system32\wlidprov.dll
2015-02-05 19:41:28 ----A---- C:\windows\system32\msxml6.dll
2015-02-05 19:41:27 ----A---- C:\windows\SYSWOW64\msxml6.dll
2015-02-05 19:41:26 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2015-02-05 19:41:26 ----A---- C:\windows\system32\Windows.Devices.Sensors.dll
2015-02-05 19:41:26 ----A---- C:\windows\system32\rasapi32.dll
2015-02-05 19:41:26 ----A---- C:\windows\system32\netlogon.dll
2015-02-05 19:41:26 ----A---- C:\windows\system32\drivers\wof.sys
2015-02-05 19:41:26 ----A---- C:\windows\system32\dnsapi.dll
2015-02-05 19:41:25 ----A---- C:\windows\SYSWOW64\Windows.Devices.Sensors.dll
2015-02-05 19:41:25 ----A---- C:\windows\SYSWOW64\SessEnv.dll
2015-02-05 19:41:25 ----A---- C:\windows\SYSWOW64\SensorsApi.dll
2015-02-05 19:41:25 ----A---- C:\windows\SYSWOW64\rasapi32.dll
2015-02-05 19:41:25 ----A---- C:\windows\SYSWOW64\netlogon.dll
2015-02-05 19:41:25 ----A---- C:\windows\system32\SessEnv.dll
2015-02-05 19:41:25 ----A---- C:\windows\system32\SensorsApi.dll
2015-02-05 19:41:25 ----A---- C:\windows\system32\drivers\clfs.sys
2015-02-05 19:41:25 ----A---- C:\windows\system32\dnsrslvr.dll
2015-02-05 19:41:24 ----A---- C:\windows\SYSWOW64\userenv.dll
2015-02-05 19:41:24 ----A---- C:\windows\SYSWOW64\sxproxy.dll
2015-02-05 19:41:24 ----A---- C:\windows\SYSWOW64\pdh.dll
2015-02-05 19:41:24 ----A---- C:\windows\SYSWOW64\davclnt.dll
2015-02-05 19:41:24 ----A---- C:\windows\system32\wlangpui.dll
2015-02-05 19:41:24 ----A---- C:\windows\system32\Windows.Graphics.Printing.dll
2015-02-05 19:41:24 ----A---- C:\windows\system32\w32tm.exe
2015-02-05 19:41:24 ----A---- C:\windows\system32\userenv.dll
2015-02-05 19:41:24 ----A---- C:\windows\system32\sxproxy.dll
2015-02-05 19:41:24 ----A---- C:\windows\system32\pdh.dll
2015-02-05 19:41:24 ----A---- C:\windows\system32\drivers\tcpipreg.sys
2015-02-05 19:41:24 ----A---- C:\windows\system32\drivers\hidusb.sys
2015-02-05 19:41:24 ----A---- C:\windows\system32\davclnt.dll
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\wlangpui.dll
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\Windows.Graphics.Printing.dll
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\Windows.Devices.Scanners.dll
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\w32tm.exe
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\LocationApi.dll
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\l2gpstore.dll
2015-02-05 19:41:23 ----A---- C:\windows\SYSWOW64\CredentialMigrationHandler.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\Windows.Devices.Scanners.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\SetNetworkLocation.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\RMapi.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\LocationApi.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\l2gpstore.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-02-05 19:41:23 ----A---- C:\windows\system32\drivers\hidclass.sys
2015-02-05 19:41:23 ----A---- C:\windows\system32\DevPropMgr.dll
2015-02-05 19:41:23 ----A---- C:\windows\system32\CredentialMigrationHandler.dll
2015-02-05 19:41:09 ----A---- C:\windows\system32\WSDMon.dll
2015-02-05 19:41:09 ----A---- C:\windows\system32\tcpmon.dll
2015-02-05 19:41:08 ----A---- C:\windows\system32\drivers\msgpioclx.sys
2015-02-05 19:39:48 ----A---- C:\windows\system32\drivers\afd.sys
2015-02-05 19:39:39 ----A---- C:\windows\SYSWOW64\DeviceSetupStatusProvider.dll
2015-02-05 19:39:39 ----A---- C:\windows\system32\DeviceSetupStatusProvider.dll
2015-02-05 19:39:36 ----A---- C:\windows\SYSWOW64\user32.dll
2015-02-05 19:39:36 ----A---- C:\windows\system32\user32.dll
2015-02-05 19:39:36 ----A---- C:\windows\system32\drivers\WdNisDrv.sys
2015-02-05 19:39:36 ----A---- C:\windows\system32\drivers\WdFilter.sys
2015-02-05 19:39:36 ----A---- C:\windows\system32\drivers\WdBoot.sys
2015-02-05 19:39:35 ----A---- C:\windows\SYSWOW64\winshfhc.dll
2015-02-05 19:39:35 ----A---- C:\windows\system32\winshfhc.dll
2015-02-05 19:39:30 ----A---- C:\windows\SYSWOW64\crypt32.dll
2015-02-05 19:39:30 ----A---- C:\windows\system32\crypt32.dll
2015-02-05 19:34:11 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-02-05 19:34:11 ----A---- C:\windows\SYSWOW64\ncryptsslp.dll
2015-02-05 19:34:11 ----A---- C:\windows\system32\schannel.dll
2015-02-05 19:34:11 ----A---- C:\windows\system32\ncryptsslp.dll
2015-02-05 19:34:11 ----A---- C:\windows\system32\dpapisrv.dll
2015-02-05 19:34:09 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-02-05 19:34:09 ----A---- C:\windows\system32\rpcrt4.dll
2015-02-05 19:34:00 ----A---- C:\windows\SYSWOW64\dxgi.dll
2015-02-05 19:34:00 ----A---- C:\windows\SYSWOW64\dwmcore.dll
2015-02-05 19:34:00 ----A---- C:\windows\SYSWOW64\d3d11.dll
2015-02-05 19:34:00 ----A---- C:\windows\system32\dxgi.dll
2015-02-05 19:34:00 ----A---- C:\windows\system32\dwmcore.dll
2015-02-05 19:34:00 ----A---- C:\windows\system32\drivers\dxgmms1.sys
2015-02-05 19:34:00 ----A---- C:\windows\system32\drivers\dxgkrnl.sys
2015-02-05 19:34:00 ----A---- C:\windows\system32\d3d11.dll
2015-02-05 19:33:59 ----A---- C:\windows\system32\cdd.dll
2015-02-05 19:33:56 ----A---- C:\windows\system32\profsvc.dll
2015-02-05 19:33:47 ----A---- C:\windows\SYSWOW64\gdi32.dll
2015-02-05 19:33:47 ----A---- C:\windows\system32\gdi32.dll
2015-02-05 19:33:46 ----A---- C:\windows\SYSWOW64\wusa.exe
2015-02-05 19:33:46 ----A---- C:\windows\SYSWOW64\authui.dll
2015-02-05 19:33:46 ----A---- C:\windows\system32\wusa.exe
2015-02-05 19:33:46 ----A---- C:\windows\system32\msi.dll
2015-02-05 19:33:46 ----A---- C:\windows\system32\authui.dll
2015-02-05 19:33:43 ----A---- C:\windows\SYSWOW64\msi.dll
2015-02-05 19:33:40 ----A---- C:\windows\SYSWOW64\msihnd.dll
2015-02-05 19:33:40 ----A---- C:\windows\system32\msihnd.dll
2015-02-05 19:33:40 ----A---- C:\windows\system32\consent.exe
2015-02-05 19:33:40 ----A---- C:\windows\system32\appinfo.dll
2015-02-05 19:26:53 ----D---- C:\windows\system32\MRT
2015-02-05 19:26:49 ----A---- C:\windows\system32\MRT.exe
2015-02-05 19:05:22 ----A---- C:\windows\system32\ubpm.dll
2015-02-05 19:05:20 ----A---- C:\windows\system32\storewuauth.dll
2015-02-05 19:00:45 ----A---- C:\windows\system32\schedsvc.dll
2015-02-05 19:00:35 ----A---- C:\windows\system32\generaltel.dll
2015-02-05 19:00:33 ----A---- C:\windows\system32\devinv.dll
2015-02-05 19:00:33 ----A---- C:\windows\system32\appraiser.dll
2015-02-05 19:00:33 ----A---- C:\windows\system32\aepdu.dll
2015-02-05 19:00:32 ----A---- C:\windows\system32\invagent.dll
2015-02-05 19:00:32 ----A---- C:\windows\system32\aepic.dll
2015-02-05 19:00:32 ----A---- C:\windows\system32\aeinv.dll
2015-02-05 19:00:22 ----A---- C:\windows\system32\drivers\ahcache.sys
2015-02-05 18:58:42 ----A---- C:\windows\system32\WpcMon.exe
2015-02-05 18:58:42 ----A---- C:\windows\system32\Wpc.dll
2015-02-05 18:58:41 ----A---- C:\windows\SYSWOW64\Wpc.dll
2015-02-05 18:58:41 ----A---- C:\windows\system32\WpcWebSync.dll
2015-02-05 18:24:09 ----A---- C:\windows\system32\TSWbPrxy.exe
2015-02-05 18:24:02 ----A---- C:\windows\system32\uDWM.dll
2015-02-05 18:24:01 ----A---- C:\windows\SYSWOW64\UXInit.dll
2015-02-05 18:24:01 ----A---- C:\windows\SYSWOW64\explorer.exe
2015-02-05 18:24:01 ----A---- C:\windows\system32\UXInit.dll
2015-02-05 18:24:01 ----A---- C:\windows\explorer.exe
2015-02-05 18:23:47 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2015-02-05 18:23:47 ----A---- C:\windows\system32\oleaut32.dll
2015-02-05 18:23:34 ----A---- C:\windows\SYSWOW64\rastls.dll
2015-02-05 18:23:34 ----A---- C:\windows\system32\rastls.dll
2015-02-05 18:23:34 ----A---- C:\windows\system32\drivers\mrxdav.sys
2015-02-05 18:23:24 ----A---- C:\windows\SYSWOW64\WSShared.dll
2015-02-05 18:23:24 ----A---- C:\windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-05 18:23:24 ----A---- C:\windows\SYSWOW64\mstscax.dll
2015-02-05 18:23:24 ----A---- C:\windows\system32\WSShared.dll
2015-02-05 18:23:23 ----A---- C:\windows\SYSWOW64\Windows.UI.Search.dll
2015-02-05 18:23:22 ----A---- C:\windows\SYSWOW64\SkyDriveShell.dll
2015-02-05 18:23:22 ----A---- C:\windows\SYSWOW64\propsys.dll
2015-02-05 18:23:21 ----A---- C:\windows\system32\Windows.UI.Search.dll
2015-02-05 18:23:21 ----A---- C:\windows\system32\mstscax.dll
2015-02-05 18:23:20 ----A---- C:\windows\system32\SearchFolder.dll
2015-02-05 18:23:20 ----A---- C:\windows\system32\propsys.dll
2015-02-05 18:23:19 ----A---- C:\windows\SYSWOW64\SearchFolder.dll
2015-02-05 18:23:19 ----A---- C:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-05 18:23:19 ----A---- C:\windows\system32\SkyDriveShell.dll
2015-02-05 18:23:19 ----A---- C:\windows\system32\drivers\USBHUB3.SYS
2015-02-05 18:23:16 ----A---- C:\windows\SYSWOW64\rdvidcrl.dll
2015-02-05 18:23:16 ----A---- C:\windows\system32\rdvidcrl.dll
2015-02-05 18:23:15 ----A---- C:\windows\system32\SyncEngine.dll
2015-02-05 18:23:15 ----A---- C:\windows\system32\SkyDriveTelemetry.dll
2015-02-05 18:23:15 ----A---- C:\windows\system32\SkyDrive.exe
2015-02-05 18:23:14 ----A---- C:\windows\system32\KernelBase.dll
2015-02-05 18:23:13 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-02-05 18:23:13 ----A---- C:\windows\system32\ntdll.dll
2015-02-05 18:23:13 ----A---- C:\windows\system32\iphlpsvc.dll
2015-02-05 18:23:12 ----A---- C:\windows\SYSWOW64\Wldap32.dll
2015-02-05 18:23:12 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-02-05 18:23:12 ----A---- C:\windows\system32\Wldap32.dll
2015-02-05 18:23:12 ----A---- C:\windows\system32\SystemEventsBrokerServer.dll
2015-02-05 18:23:12 ----A---- C:\windows\system32\pcsvDevice.dll
2015-02-05 18:23:12 ----A---- C:\windows\system32\bisrv.dll
2015-02-05 18:23:11 ----A---- C:\windows\system32\ProximityService.dll
2015-02-05 18:23:11 ----A---- C:\windows\system32\httpprxm.dll
2015-02-05 18:23:11 ----A---- C:\windows\system32\drivers\bridge.sys
2015-02-05 18:23:11 ----A---- C:\windows\system32\adhsvc.dll
2015-02-05 18:23:02 ----A---- C:\windows\SYSWOW64\msxml3.dll
2015-02-05 18:23:02 ----A---- C:\windows\system32\msxml3.dll
2015-02-05 18:22:56 ----A---- C:\windows\SYSWOW64\TsWpfWrp.exe
2015-02-05 18:22:56 ----A---- C:\windows\system32\TsWpfWrp.exe
2015-02-05 18:22:28 ----A---- C:\windows\system32\IKEEXT.DLL
2015-02-05 18:22:28 ----A---- C:\windows\system32\d3d9.dll
2015-02-05 18:22:27 ----A---- C:\windows\SYSWOW64\d3d9.dll
2015-02-05 18:22:27 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-02-05 18:22:26 ----A---- C:\windows\system32\BFE.DLL
2015-02-05 18:22:25 ----A---- C:\windows\SYSWOW64\nshwfp.dll
2015-02-05 18:22:25 ----A---- C:\windows\SYSWOW64\dhcpcore.dll
2015-02-05 18:22:25 ----A---- C:\windows\system32\vpnike.dll
2015-02-05 18:22:25 ----A---- C:\windows\system32\FWPUCLNT.DLL
2015-02-05 18:22:25 ----A---- C:\windows\system32\fveapi.dll
2015-02-05 18:22:25 ----A---- C:\windows\system32\dhcpcore.dll
2015-02-05 18:22:24 ----A---- C:\windows\SYSWOW64\FWPUCLNT.DLL
2015-02-05 18:22:24 ----A---- C:\windows\system32\nshwfp.dll
2015-02-05 18:22:24 ----A---- C:\windows\system32\framedynos.dll
2015-02-05 18:22:24 ----A---- C:\windows\system32\dhcpcore6.dll
2015-02-05 18:22:23 ----A---- C:\windows\SYSWOW64\framedynos.dll
2015-02-05 18:22:23 ----A---- C:\windows\SYSWOW64\dhcpcore6.dll
2015-02-05 18:22:23 ----A---- C:\windows\system32\ncobjapi.dll
2015-02-05 18:22:23 ----A---- C:\windows\system32\drivers\wfplwfs.sys
2015-02-05 18:22:23 ----A---- C:\windows\system32\drivers\agilevpn.sys
2015-02-05 18:22:23 ----A---- C:\windows\system32\bdesvc.dll
2015-02-05 18:22:22 ----A---- C:\windows\SYSWOW64\Robocopy.exe
2015-02-05 18:22:22 ----A---- C:\windows\SYSWOW64\ncobjapi.dll
2015-02-05 18:22:22 ----A---- C:\windows\system32\Robocopy.exe
2015-02-05 18:22:22 ----A---- C:\windows\system32\framedyn.dll
2015-02-05 18:22:22 ----A---- C:\windows\system32\drivers\vwifimp.sys
2015-02-05 18:22:22 ----A---- C:\windows\system32\dhcpcsvc.dll
2015-02-05 18:22:21 ----A---- C:\windows\SYSWOW64\framedyn.dll
2015-02-05 18:22:21 ----A---- C:\windows\SYSWOW64\dhcpcsvc6.dll
2015-02-05 18:22:21 ----A---- C:\windows\SYSWOW64\dhcpcsvc.dll
2015-02-05 18:22:21 ----A---- C:\windows\SYSWOW64\d3d8thk.dll
2015-02-05 18:22:21 ----A---- C:\windows\system32\srms.dat
2015-02-05 18:22:21 ----A---- C:\windows\system32\reseteng.dll
2015-02-05 18:22:21 ----A---- C:\windows\system32\drivers\vwififlt.sys
2015-02-05 18:22:21 ----A---- C:\windows\system32\dhcpcsvc6.dll
2015-02-05 18:22:12 ----A---- C:\windows\SYSWOW64\packager.dll
2015-02-05 18:22:12 ----A---- C:\windows\SYSWOW64\mrt100.dll
2015-02-05 18:22:12 ----A---- C:\windows\SYSWOW64\mrt_map.dll
2015-02-05 18:22:12 ----A---- C:\windows\system32\packager.dll
2015-02-05 18:22:12 ----A---- C:\windows\system32\mrt100.dll
2015-02-05 18:22:12 ----A---- C:\windows\system32\mrt_map.dll
2015-02-05 18:22:09 ----A---- C:\windows\system32\drivers\sdbus.sys
2015-02-05 18:22:09 ----A---- C:\windows\system32\drivers\pdc.sys
2015-02-05 18:22:09 ----A---- C:\windows\system32\drivers\intelpep.sys
2015-02-05 18:22:09 ----A---- C:\windows\system32\drivers\dumpsd.sys
2015-02-05 18:21:51 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2015-02-05 18:21:47 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2015-02-05 18:21:35 ----A---- C:\windows\system32\mfmpeg2srcsnk.dll
2015-02-05 18:21:34 ----A---- C:\windows\SYSWOW64\mfmpeg2srcsnk.dll
2015-02-05 18:21:33 ----A---- C:\windows\system32\XpsGdiConverter.dll
2015-02-05 18:21:33 ----A---- C:\windows\system32\wmpmde.dll
2015-02-05 18:21:33 ----A---- C:\windows\system32\winmde.dll
2015-02-05 18:21:33 ----A---- C:\windows\system32\Windows.Media.Streaming.dll
2015-02-05 18:21:33 ----A---- C:\windows\system32\services.exe
2015-02-05 18:21:33 ----A---- C:\windows\system32\GeofenceMonitorService.dll
2015-02-05 18:21:32 ----A---- C:\windows\SYSWOW64\XpsGdiConverter.dll
2015-02-05 18:21:32 ----A---- C:\windows\SYSWOW64\GeofenceMonitorService.dll
2015-02-05 18:21:32 ----A---- C:\windows\system32\MDEServer.exe
2015-02-05 18:21:32 ----A---- C:\windows\system32\drivers\Classpnp.sys
2015-02-05 18:21:31 ----A---- C:\windows\SYSWOW64\winmde.dll
2015-02-05 18:21:31 ----A---- C:\windows\SYSWOW64\Windows.Media.Streaming.dll
2015-02-05 18:21:31 ----A---- C:\windows\system32\mfsvr.dll
2015-02-05 18:21:30 ----A---- C:\windows\system32\rdpencom.dll
2015-02-05 18:21:29 ----A---- C:\windows\SYSWOW64\rdpencom.dll
2015-02-05 18:21:29 ----A---- C:\windows\SYSWOW64\mfsvr.dll
2015-02-05 18:21:29 ----A---- C:\windows\system32\ploptin.dll
2015-02-05 18:21:29 ----A---- C:\windows\system32\drivers\fvevol.sys
2015-02-05 18:21:28 ----A---- C:\windows\SYSWOW64\MFCaptureEngine.dll
2015-02-05 18:21:28 ----A---- C:\windows\system32\swprv.dll
2015-02-05 18:21:28 ----A---- C:\windows\system32\resutils.dll
2015-02-05 18:21:28 ----A---- C:\windows\system32\MSVideoDSP.dll
2015-02-05 18:21:28 ----A---- C:\windows\system32\MFCaptureEngine.dll
2015-02-05 18:21:28 ----A---- C:\windows\system32\gpapi.dll
2015-02-05 18:21:28 ----A---- C:\windows\system32\drivers\msiscsi.sys
2015-02-05 18:21:27 ----A---- C:\windows\SYSWOW64\MSVideoDSP.dll
2015-02-05 18:21:27 ----A---- C:\windows\SYSWOW64\gpapi.dll
2015-02-05 18:21:27 ----A---- C:\windows\system32\wscsvc.dll
2015-02-05 18:21:27 ----A---- C:\windows\system32\VSSVC.exe
2015-02-05 18:21:27 ----A---- C:\windows\system32\rpchttp.dll
2015-02-05 18:21:27 ----A---- C:\windows\system32\drivers\storport.sys
2015-02-05 18:21:26 ----A---- C:\windows\SYSWOW64\rpchttp.dll
2015-02-05 18:21:26 ----A---- C:\windows\SYSWOW64\mf.dll
2015-02-05 18:21:26 ----A---- C:\windows\system32\mf.dll
2015-02-05 18:21:26 ----A---- C:\windows\system32\drivers\fltMgr.sys
2015-02-05 18:21:25 ----A---- C:\windows\SYSWOW64\wintrust.dll
2015-02-05 18:21:25 ----A---- C:\windows\system32\wintrust.dll
2015-02-05 18:21:25 ----A---- C:\windows\system32\tsgqec.dll
2015-02-05 18:21:25 ----A---- C:\windows\system32\srcore.dll
2015-02-05 18:21:25 ----A---- C:\windows\system32\mfpmp.exe
2015-02-05 18:21:25 ----A---- C:\windows\system32\energyprov.dll
2015-02-05 18:21:24 ----A---- C:\windows\SYSWOW64\resutils.dll
2015-02-05 18:21:24 ----A---- C:\windows\system32\tlscsp.dll
2015-02-05 18:21:23 ----A---- C:\windows\SYSWOW64\tlscsp.dll
2015-02-05 18:21:23 ----A---- C:\windows\system32\BootMenuUX.dll
2015-02-05 18:21:22 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-02-05 18:21:22 ----A---- C:\windows\system32\Windows.Shell.Search.UriHandler.dll
2015-02-05 18:21:22 ----A---- C:\windows\system32\srclient.dll
2015-02-05 18:21:22 ----A---- C:\windows\system32\rstrui.exe
2015-02-05 18:21:21 ----A---- C:\windows\SYSWOW64\wlanhlp.dll
2015-02-05 18:21:21 ----A---- C:\windows\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2015-02-05 18:21:21 ----A---- C:\windows\SYSWOW64\tsgqec.dll
2015-02-05 18:21:21 ----A---- C:\windows\system32\wlanhlp.dll
2015-02-05 18:20:27 ----A---- C:\windows\SYSWOW64\drvinst.exe
2015-02-05 18:20:27 ----A---- C:\windows\system32\win32k.sys
2015-02-05 18:20:27 ----A---- C:\windows\system32\umpnpmgr.dll
2015-02-05 18:20:27 ----A---- C:\windows\system32\drvinst.exe
2015-02-05 18:20:27 ----A---- C:\windows\system32\drvcfg.exe
2015-02-05 18:20:26 ----A---- C:\windows\SYSWOW64\DWrite.dll
2015-02-05 18:20:26 ----A---- C:\windows\system32\FntCache.dll
2015-02-05 18:20:26 ----A---- C:\windows\system32\DWrite.dll
2015-02-05 18:20:25 ----A---- C:\windows\SYSWOW64\WindowsCodecs.dll
2015-02-05 18:20:25 ----A---- C:\windows\system32\WindowsCodecs.dll
2015-02-05 18:20:21 ----A---- C:\windows\SYSWOW64\MrmCoreR.dll
2015-02-05 18:20:21 ----A---- C:\windows\system32\MrmCoreR.dll
2015-02-05 18:20:06 ----A---- C:\windows\system32\drivers\usbport.sys
2015-02-05 18:20:05 ----A---- C:\windows\system32\WUDFSvc.dll
2015-02-05 18:20:05 ----A---- C:\windows\system32\WUDFPlatform.dll
2015-02-05 18:20:05 ----A---- C:\windows\system32\WUDFHost.exe
2015-02-05 18:20:05 ----A---- C:\windows\system32\drivers\WUDFRd.sys
2015-02-05 18:20:05 ----A---- C:\windows\system32\drivers\WUDFPf.sys
2015-02-05 18:20:04 ----A---- C:\windows\SYSWOW64\DaOtpCredentialProvider.dll
2015-02-05 18:20:04 ----A---- C:\windows\system32\hal.dll
2015-02-05 18:20:04 ----A---- C:\windows\system32\drivers\usbuhci.sys
2015-02-05 18:20:04 ----A---- C:\windows\system32\drivers\usbehci.sys
2015-02-05 18:20:04 ----A---- C:\windows\system32\drivers\usbd.sys
2015-02-05 18:20:04 ----A---- C:\windows\system32\DaOtpCredentialProvider.dll
2015-02-05 18:19:32 ----A---- C:\windows\SYSWOW64\nlaapi.dll
2015-02-05 18:19:32 ----A---- C:\windows\system32\nlasvc.dll
2015-02-05 18:19:32 ----A---- C:\windows\system32\nlaapi.dll
2015-02-05 18:19:32 ----A---- C:\windows\system32\ncsi.dll
2015-02-05 18:19:31 ----A---- C:\windows\SYSWOW64\qedit.dll
2015-02-05 18:19:31 ----A---- C:\windows\system32\qedit.dll
2015-02-05 18:19:23 ----A---- C:\windows\SYSWOW64\poqexec.exe
2015-02-05 18:19:23 ----A---- C:\windows\system32\poqexec.exe
2015-02-05 18:18:34 ----N---- C:\windows\system32\MpSigStub.exe
2015-02-05 18:14:50 ----A---- C:\windows\SYSWOW64\pku2u.dll
2015-02-05 18:14:50 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-02-05 18:14:50 ----A---- C:\windows\system32\pku2u.dll
2015-02-05 18:14:50 ----A---- C:\windows\system32\kerberos.dll
2015-02-05 18:13:22 ----A---- C:\windows\SYSWOW64\twinui.dll
2015-02-05 18:13:22 ----A---- C:\windows\SYSWOW64\MFMediaEngine.dll
2015-02-05 18:13:22 ----A---- C:\windows\system32\MFMediaEngine.dll
2015-02-05 18:13:21 ----A---- C:\windows\SYSWOW64\shell32.dll
2015-02-05 18:13:21 ----A---- C:\windows\system32\twinui.dll
2015-02-05 18:13:20 ----A---- C:\windows\system32\SettingsHandlers.dll
2015-02-05 18:13:20 ----A---- C:\windows\system32\localspl.dll
2015-02-05 18:13:19 ----A---- C:\windows\system32\shell32.dll
2015-02-05 18:13:19 ----A---- C:\windows\system32\ntoskrnl.exe
2015-02-05 18:13:17 ----A---- C:\windows\system32\drivers\tcpip.sys
2015-02-05 18:13:14 ----A---- C:\windows\SYSWOW64\mfmp4srcsnk.dll
2015-02-05 18:13:14 ----A---- C:\windows\system32\mfmp4srcsnk.dll
2015-02-05 18:13:13 ----A---- C:\windows\system32\WsmSvc.dll
2015-02-05 18:13:13 ----A---- C:\windows\system32\win32spl.dll
2015-02-05 18:13:13 ----A---- C:\windows\system32\puiobj.dll
2015-02-05 18:13:13 ----A---- C:\windows\system32\drivers\netio.sys
2015-02-05 18:13:12 ----A---- C:\windows\SYSWOW64\WsmSvc.dll
2015-02-05 18:13:12 ----A---- C:\windows\SYSWOW64\puiobj.dll
2015-02-05 18:13:12 ----A---- C:\windows\SYSWOW64\DafPrintProvider.dll
2015-02-05 18:13:12 ----A---- C:\windows\system32\DafPrintProvider.dll
2015-02-05 18:13:11 ----A---- C:\windows\SYSWOW64\prnntfy.dll
2015-02-05 18:13:11 ----A---- C:\windows\system32\winbici.dll
2015-02-05 18:13:11 ----A---- C:\windows\system32\prnntfy.dll
2015-02-05 18:13:11 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2015-02-05 18:13:11 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
2015-02-05 18:13:11 ----A---- C:\windows\system32\BulkOperationHost.exe
2015-02-05 18:13:10 ----A---- C:\windows\SYSWOW64\puiapi.dll
2015-02-05 18:13:10 ----A---- C:\windows\system32\puiapi.dll
2015-02-05 18:13:09 ----A---- C:\windows\SYSWOW64\untfs.dll
2015-02-05 18:13:09 ----A---- C:\windows\system32\untfs.dll
2015-02-05 18:13:08 ----A---- C:\windows\SYSWOW64\FXSAPI.dll
2015-02-05 18:13:08 ----A---- C:\windows\system32\WsmWmiPl.dll
2015-02-05 18:13:08 ----A---- C:\windows\system32\FXSCOMEX.dll
2015-02-05 18:13:08 ----A---- C:\windows\system32\FXSAPI.dll
2015-02-05 18:13:08 ----A---- C:\windows\system32\compstui.dll
2015-02-05 18:12:23 ----A---- C:\windows\SYSWOW64\msvcr120_clr0400.dll
2015-02-05 18:12:23 ----A---- C:\windows\system32\msvcr120_clr0400.dll
2015-02-05 18:11:37 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-02-05 18:11:37 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-02-05 18:11:37 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-02-05 18:11:37 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-02-05 18:11:37 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-02-05 18:11:37 ----A---- C:\windows\SYSWOW64\actxprxy.dll
2015-02-05 18:11:37 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-02-05 18:11:37 ----A---- C:\windows\system32\ie4uinit.exe
2015-02-05 18:11:37 ----A---- C:\windows\system32\actxprxy.dll
2015-02-05 18:11:36 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-02-05 18:11:35 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-02-05 18:11:35 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-02-05 18:11:35 ----A---- C:\windows\system32\urlmon.dll
2015-02-05 18:11:35 ----A---- C:\windows\system32\iedkcs32.dll
2015-02-05 18:11:34 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-02-05 18:11:34 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-02-05 18:11:34 ----A---- C:\windows\system32\msfeeds.dll
2015-02-05 18:11:34 ----A---- C:\windows\system32\dxtrans.dll
2015-02-05 18:11:33 ----A---- C:\windows\system32\iertutil.dll
2015-02-05 18:11:32 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-02-05 18:11:32 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-02-05 18:11:32 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-02-05 18:11:32 ----A---- C:\windows\system32\jsproxy.dll
2015-02-05 18:11:31 ----A---- C:\windows\system32\mshtmled.dll
2015-02-05 18:11:31 ----A---- C:\windows\system32\ieframe.dll
2015-02-05 18:11:31 ----A---- C:\windows\system32\dxtmsft.dll
2015-02-05 18:11:30 ----A---- C:\windows\system32\wininet.dll
2015-02-05 18:11:30 ----A---- C:\windows\system32\jscript9diag.dll
2015-02-05 18:11:30 ----A---- C:\windows\system32\jscript9.dll
2015-02-05 18:11:30 ----A---- C:\windows\system32\ieapfltr.dll
2015-02-05 18:11:29 ----A---- C:\windows\system32\mshtml.dll
2015-02-05 18:11:28 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2015-02-05 18:11:28 ----A---- C:\windows\system32\inetcomm.dll
2015-02-05 18:11:28 ----A---- C:\windows\system32\ieetwcollector.exe
2015-02-05 18:11:27 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-02-05 18:11:27 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-02-05 18:11:27 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-02-05 18:11:27 ----A---- C:\windows\system32\vbscript.dll
2015-02-05 18:11:27 ----A---- C:\windows\system32\jscript.dll
2015-02-05 18:11:27 ----A---- C:\windows\system32\ieui.dll
2015-02-05 18:11:26 ----A---- C:\windows\SYSWOW64\webcheck.dll
2015-02-05 18:11:26 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-02-05 18:11:26 ----A---- C:\windows\SYSWOW64\hlink.dll
2015-02-05 18:11:26 ----A---- C:\windows\system32\webcheck.dll
2015-02-05 18:11:26 ----A---- C:\windows\system32\hlink.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\occache.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\msfeedsbs.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\inseng.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\imgutil.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\iexpress.exe
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\iesysprep.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\iepeers.dll
2015-02-05 18:11:25 ----A---- C:\windows\SYSWOW64\IEAdvpack.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\occache.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\msrating.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\MshtmlDac.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\msfeedsbs.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\inseng.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\imgutil.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\ieUnatt.exe
2015-02-05 18:11:25 ----A---- C:\windows\system32\iesysprep.dll
2015-02-05 18:11:25 ----A---- C:\windows\system32\iepeers.dll
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\wextract.exe
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\url.dll
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\pngfilt.dll
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\mshta.exe
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\msfeedssync.exe
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\licmgr10.dll
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-02-05 18:11:24 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\wextract.exe
2015-02-05 18:11:24 ----A---- C:\windows\system32\url.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\pngfilt.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\msfeedssync.exe
2015-02-05 18:11:24 ----A---- C:\windows\system32\licmgr10.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\iexpress.exe
2015-02-05 18:11:24 ----A---- C:\windows\system32\iesetup.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\iernonce.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-02-05 18:11:24 ----A---- C:\windows\system32\IEAdvpack.dll
2015-02-05 18:11:23 ----A---- C:\windows\system32\mshta.exe
2015-02-05 18:11:23 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\wermgr.exe
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\WerFaultSecure.exe
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\WerFault.exe
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\werdiagcontroller.dll
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\wer.dll
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\Faultrep.dll
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\AudioSes.dll
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\AUDIOKSE.dll
2015-02-05 18:09:19 ----A---- C:\windows\SYSWOW64\AudioEng.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\wermgr.exe
2015-02-05 18:09:19 ----A---- C:\windows\system32\WerFaultSecure.exe
2015-02-05 18:09:19 ----A---- C:\windows\system32\WerFault.exe
2015-02-05 18:09:19 ----A---- C:\windows\system32\werdiagcontroller.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\wer.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\Faultrep.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\EncDump.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\ci.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\audiosrv.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\AudioSes.dll
2015-02-05 18:09:19 ----A---- C:\windows\system32\AUDIOKSE.dll
2015-02-05 18:09:18 ----A---- C:\windows\system32\AudioEng.dll
2015-02-05 18:09:18 ----A---- C:\windows\system32\AudioEndpointBuilder.dll
2015-02-05 18:09:18 ----A---- C:\windows\system32\audiodg.exe
2015-02-05 18:08:44 ----A---- C:\windows\SYSWOW64\twinui.appcore.dll
2015-02-05 18:08:44 ----A---- C:\windows\SYSWOW64\twinapi.appcore.dll
2015-02-05 18:08:41 ----A---- C:\windows\system32\WSReset.exe
2015-02-05 18:08:41 ----A---- C:\windows\system32\twinui.appcore.dll
2015-02-05 18:08:41 ----A---- C:\windows\system32\twinapi.appcore.dll
2015-02-05 18:08:18 ----A---- C:\windows\system32\wpccpl.dll
2015-02-05 18:08:18 ----A---- C:\windows\system32\drivers\wpcfltr.sys
2015-02-05 18:06:38 ----A---- C:\windows\system32\MDMAgent.exe
2015-02-03 18:55:21 ----D---- C:\Users\Radka\AppData\Roaming\WebApp
2015-02-03 18:52:26 ----D---- C:\Users\Radka\AppData\Roaming\CyberLink
2015-02-02 20:22:37 ----D---- C:\Users\Radka\AppData\Roaming\LSC
2015-02-02 20:21:41 ----D---- C:\Users\Radka\AppData\Roaming\Nitro
2015-02-02 19:28:58 ----D---- C:\Users\Radka\AppData\Roaming\Nitro PDF
2015-02-02 19:21:09 ----D---- C:\Users\Radka\AppData\Roaming\ATI
2015-02-02 19:19:49 ----D---- C:\Users\Radka\AppData\Roaming\Hightail for Lenovo
2015-02-02 19:18:57 ----D---- C:\Users\Radka\AppData\Roaming\Adobe
2015-02-02 19:17:20 ----SD---- C:\Users\Radka\AppData\Roaming\Microsoft
2015-02-02 19:17:20 ----D---- C:\Users\Radka\AppData\Roaming\Macromedia
2015-02-02 18:35:59 ----D---- C:\windows\SoftwareDistribution

======List of files/folders modified in the last 1 month======

2015-02-11 20:23:40 ----D---- C:\windows\Prefetch
2015-02-11 20:23:36 ----RD---- C:\Program Files
2015-02-11 20:00:00 ----D---- C:\windows\system32\sru
2015-02-11 19:56:03 ----D---- C:\windows\Temp
2015-02-11 19:28:54 ----D---- C:\windows\system32\config
2015-02-11 19:26:00 ----D---- C:\windows\CbsTemp
2015-02-11 19:25:34 ----D---- C:\windows\WinSxS
2015-02-11 19:23:30 ----AD---- C:\Windows
2015-02-11 19:20:28 ----HD---- C:\Program Files\WindowsApps
2015-02-11 19:20:09 ----D---- C:\windows\AppReadiness
2015-02-11 19:19:48 ----AD---- C:\windows\System32
2015-02-11 19:19:48 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-02-11 19:19:47 ----D---- C:\windows\Inf
2015-02-10 21:46:56 ----D---- C:\windows\debug
2015-02-10 21:23:50 ----SHD---- C:\System Volume Information
2015-02-10 21:22:17 ----D---- C:\windows\system32\drivers
2015-02-10 21:03:33 ----RD---- C:\Program Files (x86)
2015-02-10 21:03:33 ----HD---- C:\ProgramData
2015-02-10 20:32:03 ----D---- C:\windows\jmesoft
2015-02-10 19:54:04 ----D---- C:\windows\system32\Tasks
2015-02-10 19:46:28 ----A---- C:\windows\win.ini
2015-02-10 19:44:47 ----HD---- C:\windows\ELAMBKUP
2015-02-10 18:24:16 ----D---- C:\Program Files (x86)\Common Files
2015-02-10 18:18:26 ----SHD---- C:\$Recycle.Bin
2015-02-10 18:16:13 ----SHD---- C:\windows\Installer
2015-02-10 18:15:40 ----D---- C:\windows\SysWOW64
2015-02-10 18:13:50 ----D---- C:\windows\Logs
2015-02-10 18:13:34 ----D---- C:\windows\Microsoft.NET
2015-02-10 18:01:18 ----D---- C:\Program Files\Common Files
2015-02-10 17:59:41 ----D---- C:\ProgramData\McAfee
2015-02-10 17:57:51 ----RSD---- C:\windows\assembly
2015-02-08 12:28:57 ----D---- C:\windows\LiveKernelReports
2015-02-08 10:04:29 ----D---- C:\windows\system32\drivers\UMDF
2015-02-07 19:39:54 ----D---- C:\windows\rescache
2015-02-07 19:36:51 ----D---- C:\windows\system32\catroot
2015-02-07 19:09:32 ----RSD---- C:\windows\Fonts
2015-02-07 18:46:34 ----D---- C:\windows\system32\pt-PT
2015-02-07 18:46:34 ----D---- C:\windows\system32\pt-BR
2015-02-07 18:46:34 ----D---- C:\windows\system32\nl-NL
2015-02-07 18:46:34 ----D---- C:\windows\system32\it-IT
2015-02-07 18:46:34 ----D---- C:\windows\system32\fr-FR
2015-02-07 18:46:34 ----D---- C:\windows\system32\es-ES
2015-02-07 18:46:34 ----D---- C:\windows\system32\en-US
2015-02-07 18:46:34 ----D---- C:\windows\system32\de-DE
2015-02-07 18:46:14 ----D---- C:\windows\system32\DriverStore
2015-02-07 18:41:20 ----D---- C:\windows\system32\sv-SE
2015-02-07 18:41:20 ----D---- C:\windows\system32\ru-RU
2015-02-07 18:41:20 ----D---- C:\windows\system32\pl-PL
2015-02-07 18:41:20 ----D---- C:\windows\system32\nb-NO
2015-02-07 18:41:20 ----D---- C:\windows\system32\ms-my
2015-02-07 18:41:20 ----D---- C:\windows\system32\hu-HU
2015-02-07 18:41:20 ----D---- C:\windows\system32\fi-FI
2015-02-07 18:41:20 ----D---- C:\windows\system32\el-GR
2015-02-07 18:41:20 ----D---- C:\windows\system32\da-DK
2015-02-07 18:41:20 ----D---- C:\windows\system32\cs-CZ
2015-02-07 18:41:19 ----D---- C:\windows\system32\zh-TW
2015-02-07 18:41:19 ----D---- C:\windows\system32\zh-CN
2015-02-07 18:41:19 ----D---- C:\windows\system32\ko-KR
2015-02-07 18:41:19 ----D---- C:\windows\system32\ja-JP
2015-02-07 17:59:25 ----SD---- C:\ProgramData\Microsoft
2015-02-07 17:59:20 ----D---- C:\Program Files\Common Files\microsoft shared
2015-02-06 21:46:53 ----RD---- C:\windows\ToastData
2015-02-06 21:46:53 ----D---- C:\windows\system32\wbem
2015-02-06 21:46:52 ----D---- C:\windows\SYSWOW64\wbem
2015-02-06 21:46:52 ----D---- C:\windows\SYSWOW64\setup
2015-02-06 21:46:52 ----D---- C:\windows\SYSWOW64\en-US
2015-02-06 21:46:52 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-02-06 21:46:52 ----D---- C:\Program Files\Windows Journal
2015-02-06 21:46:51 ----RD---- C:\windows\ImmersiveControlPanel
2015-02-06 21:46:51 ----D---- C:\windows\system32\setup
2015-02-06 21:46:51 ----D---- C:\windows\system32\drivers\en-US
2015-02-06 21:46:51 ----D---- C:\windows\system32\drivers\cs-CZ
2015-02-06 21:46:51 ----D---- C:\windows\system32\Boot
2015-02-06 21:46:51 ----AD---- C:\windows\system32\oobe
2015-02-06 21:46:50 ----D---- C:\windows\apppatch
2015-02-06 21:46:49 ----D---- C:\windows\SYSWOW64\InputMethod
2015-02-06 20:09:41 ----D---- C:\ProgramData\Adobe
2015-02-06 20:07:59 ----D---- C:\Program Files (x86)\Adobe
2015-02-06 19:46:43 ----D---- C:\windows\Panther
2015-02-06 18:59:19 ----D---- C:\windows\system32\sr-Latn-RS
2015-02-06 18:59:19 ----D---- C:\windows\system32\sr-Latn-CS
2015-02-06 18:58:35 ----D---- C:\windows\system32\SecureBootUpdates
2015-02-06 18:32:40 ----D---- C:\windows\system32\catroot2
2015-02-06 18:07:38 ----AD---- C:\Users
2015-02-06 18:02:35 ----D---- C:\windows\system32\LogFiles
2015-02-06 17:58:53 ----D---- C:\windows\system32\GroupPolicy
2015-02-05 21:35:15 ----D---- C:\Program Files\Windows Defender
2015-02-05 21:35:15 ----D---- C:\Program Files (x86)\Windows Defender
2015-02-05 21:11:27 ----D---- C:\Program Files (x86)\MSBuild
2015-02-05 21:11:17 ----D---- C:\windows\ShellNew
2015-02-05 21:10:58 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-02-05 20:51:01 ----D---- C:\Program Files\Internet Explorer
2015-02-05 20:51:01 ----D---- C:\Program Files (x86)\Internet Explorer
2015-02-05 20:49:37 ----D---- C:\windows\twain_32
2015-02-05 20:21:47 ----D---- C:\windows\system32\wdi
2015-02-05 20:15:11 ----D---- C:\windows\system32\migration
2015-02-05 20:15:07 ----D---- C:\windows\WinStore
2015-02-05 20:15:06 ----D---- C:\windows\SYSWOW64\migration
2015-02-05 20:14:58 ----D---- C:\windows\PolicyDefinitions
2015-02-05 20:14:57 ----D---- C:\windows\system32\CodeIntegrity
2015-02-05 20:14:56 ----D---- C:\windows\MediaViewer
2015-02-05 20:14:56 ----D---- C:\windows\FileManager
2015-02-05 20:14:56 ----D---- C:\windows\Camera
2015-02-05 18:53:11 ----D---- C:\Program Files\Lenovo
2015-02-05 18:52:54 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-02-05 18:52:36 ----D---- C:\ProgramData\CyberLink
2015-02-05 18:52:36 ----D---- C:\Program Files (x86)\Lenovo
2015-02-05 18:37:49 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-02-05 18:33:25 ----D---- C:\Program Files\CyberLink
2015-02-05 18:32:55 ----D---- C:\ProgramData\Lenovo
2015-02-05 18:16:32 ----D---- C:\Program Files (x86)\Amazon
2015-02-05 18:03:23 ----D---- C:\Program Files (x86)\Realtek
2015-02-05 18:03:15 ----HD---- C:\Program Files (x86)\Temp
2015-02-05 18:03:01 ----D---- C:\windows\SYSWOW64\RTCOM
2015-02-05 18:01:35 ----D---- C:\windows\SYSWOW64\sda
2015-02-05 17:59:00 ----D---- C:\ProgramData\Package Cache
2015-02-05 17:57:40 ----D---- C:\windows\system32\restore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1506000.020\SYMDS64.SYS [2014-07-23 493656]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1506000.020\SYMEFA64.SYS [2014-07-23 1148120]
R1 BHDrvx64;BHDrvx64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\BASHDefs\20150203.001\BHDrvx64.sys [2015-02-03 1622744]
R1 ccSet_NIS;NIS Settings Manager; C:\windows\system32\drivers\NISx64\1506000.020\ccSetx64.sys [2014-02-21 162392]
R1 dtsoftbus01;@oem12.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\windows\System32\drivers\dtsoftbus01.sys [2015-02-05 283064]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2015-02-10 487216]
R1 IDSVia64;IDSVia64; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\IPSDefs\20150210.001\IDSvia64.sys [2015-02-07 669400]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [2014-08-26 37592]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1506000.020\Ironx64.SYS [2014-08-06 266968]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1506000.020\SYMNETS.SYS [2014-07-23 593112]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2014-06-21 13955584]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2014-06-21 630784]
R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdWB6.sys [2014-03-11 222720]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2015-02-10 142640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2013-12-03 3760344]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2014-11-21 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2015-02-11 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2014-11-21 64216]
R3 NAVENG;NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20150210.038\ENG64.SYS [2015-02-10 129752]
R3 NAVEX15;NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20150210.038\EX64.SYS [2015-02-10 2137304]
R3 RSUSBVSTOR;@oem9.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2013-11-01 330456]
R3 RTL8168;@oem3.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\windows\system32\DRIVERS\Rt630x64.sys [2013-06-21 816344]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1506000.020\SRTSP64.SYS [2014-08-26 876248]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2015-02-10 177752]
R3 TXEIx64;@oem8.inf,%TEE_SvcDesc%;Intel(R) Trusted Execution Engine Interface ; C:\windows\System32\drivers\TXEIx64.sys [2013-07-02 87568]
S0 SymELAM;Symantec ELAM Driver; C:\windows\system32\drivers\NISx64\1506000.020\SymELAM.sys [2014-07-23 23568]
S3 dg_ssudbus;@oem20.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 dot4;@oem13.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\windows\system32\DRIVERS\Dot4.sys [2012-09-25 151968]
S3 Dot4Print;@oem14.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\windows\System32\drivers\Dot4Prt.sys [2012-09-25 27040]
S3 dot4usb;@oem13.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\windows\system32\DRIVERS\dot4usb.sys [2012-09-25 49056]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 ssudmdm;@oem21.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2013-08-22 212224]
S3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\windows\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 WinUsb;@winusb.inf,%WINUSB_SvcDesc%;WinUsb Driver; C:\windows\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2014-06-21 240128]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\windows\system32\svchost.exe [2013-08-22 37768]
R2 HPSLPSVC;HP Network Devices Support; C:\windows\system32\svchost.exe [2013-08-22 37768]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [2013-07-02 733696]
R2 JME Keyboard;JME Keyboard Driver; C:\Windows\jmesoft\Service.exe [2011-08-17 32768]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-11-21 969016]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-11-21 1871160]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [2014-09-21 276376]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [2012-01-25 240408]
R3 hpqcxs08;hpqcxs08; C:\windows\system32\svchost.exe [2013-08-22 37768]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [2012-01-25 192792]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2013-08-22 37768]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2013-08-22 37768]
S2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe []
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [2013-07-02 822232]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-23 114800]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

[altrok]

Zdravim

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Clean
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

[radka68]

# AdwCleaner v4.110 - Logfile created 11/02/2015 at 22:14:20
# Updated 05/02/2015 by Xplode
# Database : 2015-02-09.1 [Server]
# Operating system : Windows 8.1 Connected (x64)
# Username : Radka - KOMPIK
# Running from : C:\Users\Radka\Desktop\adwcleaner_4.110.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\Amazon\ABB
File Deleted : C:\Users\Radka\AppData\Roaming\Mozilla\Firefox\Profiles\64giq1bn.default\user.js

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Classes\pokki
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{8DCB7100-DF86-4384-8842-8FA844297B3F}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki

***** [ Web browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v35.0.1 (x86 cs)


*************************

AdwCleaner[R0].txt - [2212 bytes] - [11/02/2015 22:04:32]
AdwCleaner[S0].txt - [2124 bytes] - [11/02/2015 22:14:20]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2183 bytes] ##########

[altrok]

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

[radka68]

Píše mi to upozornění, že zpráva má více jak 100 000 znaků. Posílám tedy první část (pardon =) ).

FRST log: 1/2



aScan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-02-2015 02
Ran by Radka (administrator) on KOMPIK on 12-02-2015 14:54:39
Running from C:\Users\Radka\Desktop
Loaded Profiles: Radka (Available profiles: Radka & Danča & Guest)
Platform: Windows 8.1 Connected (X64) OS Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
() C:\Windows\jmesoft\Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\nis.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Lenovo) C:\Windows\jmesoft\hotkey.exe
() C:\Windows\jmesoft\JME_LOAD.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\nis.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(forum.viry.cz) C:\Users\Radka\Desktop\frstlauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2013-11-13] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-06-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [jmekey] => C:\windows\jmesoft\hotkey.exe [118784 2013-07-24] (Lenovo)
HKLM-x32\...\Run: [jmesoft] => C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-08-17] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833024 2014-06-16] (ZONER software)
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [Zoner Photo Studio Service 16] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe [27648 2014-06-16] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-616210761-3564209405-3471508708-1001 -> {2188637B-475D-4A69-BF55-6B8F939364DE} URL =
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\coIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 78.157.167.7 78.157.167.57

FireFox:
========
FF ProfilePath: C:\Users\Radka\AppData\Roaming\Mozilla\Firefox\Profiles\64giq1bn.default
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.5.0.19\coFFPlgn [2015-02-11]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\Exts\Chrome.crx [2015-02-10]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\Exts\Chrome.crx [2015-02-10]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-08-17] () [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\NIS.exe [276376 2014-09-21] (Symantec Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
S2 RichVideo64; "C:\Program Files\CyberLink\Shared files\RichVideo64.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2014-03-11] (Advanced Micro Devices)
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\BASHDefs\20150203.001\BHDrvx64.sys [1622744 2015-02-03] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1506000.020\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-09-25] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-05] (Disc Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2015-02-10] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2015-02-10] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\IPSDefs\20150210.001\IDSvia64.sys [669400 2015-02-07] (Symantec Corporation)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-12] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20150210.038\ENG64.SYS [129752 2015-02-10] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.5.0.19\Definitions\VirusDefs\20150210.038\EX64.SYS [2137304 2015-02-10] (Symantec Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1506000.020\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1506000.020\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1506000.020\SYMDS64.SYS [493656 2014-07-23] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1506000.020\SYMEFA64.SYS [1148120 2014-07-23] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NISx64\1506000.020\SymELAM.sys [23568 2014-07-23] (Symantec Corporation)
R3 SymEvent; C:\windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2015-02-10] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1506000.020\SYMNETS.SYS [593112 2014-07-23] (Symantec Corporation)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-02] (Intel Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-12 14:54 - 2015-02-12 14:55 - 00014513 _____ () C:\Users\Radka\Desktop\FRST.txt
2015-02-12 14:53 - 2015-02-12 14:54 - 00000000 ____D () C:\FRST
2015-02-12 14:53 - 2015-02-12 14:53 - 00112640 _____ (forum.viry.cz) C:\Users\Radka\Desktop\frstlauncher.exe
2015-02-12 14:53 - 2015-02-12 14:53 - 00015327 _____ () C:\Users\Radka\Desktop\LM.bat
2015-02-12 14:48 - 2015-02-12 14:48 - 02134016 _____ (Farbar) C:\Users\Radka\Desktop\frst64.exe
2015-02-11 22:04 - 2015-02-11 22:14 - 00000000 ____D () C:\AdwCleaner
2015-02-11 22:01 - 2015-02-11 22:01 - 02112512 _____ () C:\Users\Radka\Desktop\adwcleaner_4.110.exe
2015-02-11 20:23 - 2015-02-11 20:23 - 00000000 ____D () C:\rsit
2015-02-11 20:23 - 2015-02-11 20:23 - 00000000 ____D () C:\Program Files\trend micro
2015-02-11 20:21 - 2015-02-11 20:22 - 01222144 _____ () C:\Users\Radka\Desktop\RSITx64.exe
2015-02-11 19:36 - 2015-02-11 19:36 - 00015360 ___SH () C:\Users\Danča\Downloads\Thumbs.db
2015-02-11 19:22 - 2015-02-11 19:24 - 00000000 ____D () C:\Users\Danča\AppData\Roaming\vlc
2015-02-11 19:18 - 2015-02-12 14:54 - 00769311 _____ () C:\windows\WindowsUpdate.log
2015-02-11 19:14 - 2015-02-11 22:17 - 00001028 _____ () C:\windows\setupact.log
2015-02-11 19:14 - 2015-02-11 19:14 - 00000000 _____ () C:\windows\setuperr.log
2015-02-11 19:13 - 2015-02-11 22:16 - 00001948 _____ () C:\windows\PFRO.log
2015-02-10 21:51 - 2015-02-10 21:51 - 00000809 _____ () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stažené soubory.lnk
2015-02-10 21:44 - 2015-02-10 21:44 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Zoner
2015-02-10 21:44 - 2015-02-10 21:44 - 00000000 ____D () C:\Users\Guest\AppData\Local\Zoner
2015-02-10 21:03 - 2015-02-12 14:52 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-10 21:03 - 2015-02-12 14:44 - 00129752 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-10 21:03 - 2015-02-10 21:05 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-10 21:03 - 2015-02-10 21:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-10 21:03 - 2015-02-10 21:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-10 21:03 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-02-10 21:03 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-02-10 21:03 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-02-10 21:01 - 2015-02-10 21:02 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Radka\Downloads\mbam-setup-2.0.2.1012.exe
2015-02-10 19:55 - 2015-02-10 19:55 - 00000000 _____ () C:\autoexec.bat
2015-02-10 19:34 - 2015-02-10 20:35 - 00000000 ____D () C:\Users\Radka\AppData\Local\NPE
2015-02-10 19:04 - 2015-02-10 19:04 - 00001909 _____ () C:\Users\Public\Desktop\Zoner Photo Studio 16.lnk
2015-02-10 19:04 - 2015-02-10 19:04 - 00001909 _____ () C:\Users\Public\Desktop\Zoner Photo Studio 16 x64.lnk
2015-02-10 19:04 - 2015-02-10 19:04 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Zoner
2015-02-10 19:04 - 2015-02-10 19:04 - 00000000 ____D () C:\Users\Radka\AppData\Local\Zoner
2015-02-10 19:04 - 2015-02-10 19:04 - 00000000 ____D () C:\ProgramData\Zoner
2015-02-10 19:04 - 2015-02-10 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoner Photo Studio 16
2015-02-10 19:04 - 2015-02-10 19:04 - 00000000 ____D () C:\Program Files\Zoner
2015-02-10 19:02 - 2015-02-10 19:03 - 60243680 _____ (ZONER software ) C:\Users\Radka\Downloads\zps16_cz.exe
2015-02-10 18:23 - 2015-02-10 18:23 - 00000000 ____D () C:\windows\System32\Tasks\Norton Internet Security
2015-02-10 18:04 - 2015-02-10 18:04 - 00000000 ____D () C:\Users\Radka\Documents\Symantec
2015-02-10 18:01 - 2015-02-10 18:18 - 00003234 _____ () C:\windows\System32\Tasks\Norton WSC Integration
2015-02-10 18:01 - 2015-02-10 18:18 - 00002532 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2015-02-10 18:01 - 2015-02-10 18:01 - 00177752 _____ (Symantec Corporation) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
2015-02-10 18:01 - 2015-02-10 18:01 - 00008222 _____ () C:\windows\system32\Drivers\SYMEVENT64x86.CAT
2015-02-10 18:01 - 2015-02-10 18:01 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2015-02-10 18:00 - 2015-02-10 18:18 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2015-02-10 18:00 - 2015-02-10 18:18 - 00000000 ____D () C:\windows\system32\Drivers\NISx64
2015-02-10 18:00 - 2015-02-10 18:02 - 00000000 ____D () C:\ProgramData\Norton
2015-02-10 18:00 - 2015-02-10 18:00 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2015-02-10 17:47 - 2015-02-10 17:47 - 60489896 ____N (Symantec Corporation) C:\Users\Radka\Downloads\NIS-ESDND-21.5.0.19-CZ.exe
2015-02-08 17:16 - 2015-02-08 17:16 - 00000000 ____D () C:\Users\Danča\AppData\Local\Lenovo
2015-02-08 17:15 - 2015-02-08 17:15 - 00000000 ____D () C:\Users\Danča\AppData\Roaming\Mozilla
2015-02-08 17:15 - 2015-02-08 17:15 - 00000000 ____D () C:\Users\Danča\AppData\Local\Mozilla
2015-02-08 08:44 - 2015-02-08 08:44 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Mozilla
2015-02-08 08:44 - 2015-02-08 08:44 - 00000000 ____D () C:\Users\Guest\AppData\Local\Mozilla
2015-02-07 20:06 - 2015-02-07 20:06 - 00011264 ___SH () C:\Users\Radka\Downloads\Thumbs.db
2015-02-07 19:08 - 2015-02-07 19:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2015-02-07 19:08 - 2015-02-07 19:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2015-02-07 18:41 - 2015-02-07 18:41 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_ZuneDriver_01_09_00.Wdf
2015-02-07 18:41 - 2015-02-07 18:41 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2015-02-07 18:17 - 2015-02-07 20:07 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\vlc
2015-02-07 18:01 - 2015-02-07 18:01 - 00000000 ___RD () C:\Users\Radka\Podcasts
2015-02-07 17:59 - 2015-02-07 18:00 - 00000000 ____D () C:\Program Files\Zune
2015-02-07 17:59 - 2015-02-07 17:59 - 00000950 _____ () C:\Users\Public\Desktop\Zune.lnk
2015-02-07 17:59 - 2015-02-07 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zune
2015-02-07 17:51 - 2015-02-07 17:51 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2015-02-06 20:08 - 2015-02-06 20:13 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-02-06 20:08 - 2015-02-06 20:08 - 00002050 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-02-06 19:29 - 2015-02-06 19:29 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\WinRAR
2015-02-06 19:14 - 2014-10-18 10:55 - 00055776 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2015-02-06 19:14 - 2014-10-18 09:09 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2015-02-06 19:14 - 2014-10-18 09:09 - 00051712 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2015-02-06 19:14 - 2014-10-18 08:25 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2015-02-06 19:14 - 2014-10-18 07:50 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\wuaext.dll
2015-02-06 19:14 - 2014-10-18 07:38 - 03557376 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2015-02-06 19:14 - 2014-10-18 07:27 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2015-02-06 19:14 - 2014-10-18 07:26 - 00140288 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2015-02-06 19:14 - 2014-10-18 07:23 - 00407552 _____ (Microsoft Corporation) C:\windows\system32\WUSettingsProvider.dll
2015-02-06 19:14 - 2014-10-18 07:23 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2015-02-06 19:14 - 2014-10-18 07:21 - 00894976 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2015-02-06 19:14 - 2014-10-18 07:20 - 01714176 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2015-02-06 19:14 - 2014-10-18 07:14 - 00124928 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2015-02-06 19:14 - 2014-10-18 07:14 - 00029696 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2015-02-06 19:14 - 2014-10-18 07:12 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2015-02-06 19:14 - 2014-10-18 07:11 - 00723968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2015-02-06 18:43 - 2015-02-06 18:43 - 00000000 ____D () C:\Users\Danča\AppData\Roaming\WinRAR
2015-02-06 18:41 - 2014-07-24 16:28 - 00419648 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2015-02-06 18:41 - 2014-07-24 16:28 - 00412992 _____ (Microsoft Corporation) C:\windows\system32\Drivers\spaceport.sys
2015-02-06 18:41 - 2014-07-24 16:28 - 00280384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2015-02-06 18:41 - 2014-07-24 16:28 - 00143680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2015-02-06 18:41 - 2014-07-24 16:23 - 00125472 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2015-02-06 18:41 - 2014-07-24 16:20 - 00645592 _____ (Microsoft Corporation) C:\windows\system32\SHCore.dll
2015-02-06 18:41 - 2014-07-24 16:20 - 00263400 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlows.exe
2015-02-06 18:41 - 2014-07-24 16:16 - 02574208 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2015-02-06 18:41 - 2014-07-24 16:16 - 00211216 _____ (Microsoft Corporation) C:\windows\system32\SndVol.exe
2015-02-06 18:41 - 2014-07-24 16:07 - 02009920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2015-02-06 18:41 - 2014-07-24 16:05 - 01660048 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2015-02-06 18:41 - 2014-07-24 16:05 - 01519560 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2015-02-06 18:41 - 2014-07-24 16:05 - 01488008 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2015-02-06 18:41 - 2014-07-24 16:05 - 01356840 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2015-02-06 18:41 - 2014-07-24 16:03 - 02141920 _____ (Microsoft Corporation) C:\windows\system32\mfcore.dll
2015-02-06 18:41 - 2014-07-24 16:03 - 00882136 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2015-02-06 18:41 - 2014-07-24 16:03 - 00360480 _____ (Microsoft Corporation) C:\windows\system32\mfreadwrite.dll
2015-02-06 18:41 - 2014-07-24 16:03 - 00233888 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2015-02-06 18:41 - 2014-07-24 16:03 - 00205512 _____ (Microsoft Corporation) C:\windows\system32\mftranscode.dll
2015-02-06 18:41 - 2014-07-24 14:50 - 00098048 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2015-02-06 18:41 - 2014-07-24 14:48 - 02410976 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2015-02-06 18:41 - 2014-07-24 14:48 - 00180208 _____ (Microsoft Corporation) C:\windows\SysWOW64\SndVol.exe
2015-02-06 18:41 - 2014-07-24 14:46 - 00477200 _____ (Microsoft Corporation) C:\windows\SysWOW64\SHCore.dll
2015-02-06 18:41 - 2014-07-24 14:36 - 02145472 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfcore.dll
2015-02-06 18:41 - 2014-07-24 14:36 - 00707536 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2015-02-06 18:41 - 2014-07-24 14:36 - 00355800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfreadwrite.dll
2015-02-06 18:41 - 2014-07-24 14:36 - 00180720 _____ (Microsoft Corporation) C:\windows\SysWOW64\mftranscode.dll
2015-02-06 18:41 - 2014-07-24 12:51 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\KBDRUM.DLL
2015-02-06 18:41 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDYAK.DLL
2015-02-06 18:41 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTAT.DLL
2015-02-06 18:41 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDRU1.DLL
2015-02-06 18:41 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDBASH.DLL
2015-02-06 18:41 - 2014-07-24 12:51 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\KBDRU.DLL
2015-02-06 18:41 - 2014-07-24 12:46 - 00079872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\IPMIDrv.sys
2015-02-06 18:41 - 2014-07-24 12:45 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hdaudbus.sys
2015-02-06 18:41 - 2014-07-24 12:44 - 00674816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2015-02-06 18:41 - 2014-07-24 12:43 - 00412160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2015-02-06 18:41 - 2014-07-24 12:42 - 00446976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\nwifi.sys
2015-02-06 18:41 - 2014-07-24 12:42 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\NdisImPlatform.sys
2015-02-06 18:41 - 2014-07-24 12:06 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\iasnap.dll
2015-02-06 18:41 - 2014-07-24 12:05 - 00287232 _____ (Microsoft Corporation) C:\windows\system32\usbmon.dll
2015-02-06 18:41 - 2014-07-24 12:05 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2015-02-06 18:41 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDYAK.DLL
2015-02-06 18:41 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTAT.DLL
2015-02-06 18:41 - 2014-07-24 11:51 - 00008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRUM.DLL
2015-02-06 18:41 - 2014-07-24 11:51 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU1.DLL
2015-02-06 18:41 - 2014-07-24 11:51 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDBASH.DLL
2015-02-06 18:41 - 2014-07-24 11:51 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDRU.DLL
2015-02-06 18:41 - 2014-07-24 11:49 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersGPExt.dll
2015-02-06 18:41 - 2014-07-24 11:32 - 00207360 _____ (Microsoft Corporation) C:\windows\system32\powercfg.cpl
2015-02-06 18:41 - 2014-07-24 11:20 - 02050560 _____ (Microsoft Corporation) C:\windows\system32\SRH.dll
2015-02-06 18:41 - 2014-07-24 11:18 - 01089024 _____ (Microsoft Corporation) C:\windows\system32\gpedit.dll
2015-02-06 18:41 - 2014-07-24 11:12 - 00878592 _____ (Microsoft Corporation) C:\windows\system32\ActionCenter.dll
2015-02-06 18:41 - 2014-07-24 11:10 - 01844224 _____ (Microsoft Corporation) C:\windows\system32\Display.dll
2015-02-06 18:41 - 2014-07-24 11:10 - 00834560 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2015-02-06 18:41 - 2014-07-24 11:10 - 00198656 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2015-02-06 18:41 - 2014-07-24 11:10 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\iasnap.dll
2015-02-06 18:41 - 2014-07-24 11:05 - 00187392 _____ (Microsoft Corporation) C:\windows\system32\WorkFoldersShell.dll
2015-02-06 18:41 - 2014-07-24 10:52 - 00621056 _____ (Microsoft Corporation) C:\windows\system32\comdlg32.dll
2015-02-06 18:41 - 2014-07-24 10:44 - 16874496 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Xaml.dll
2015-02-06 18:41 - 2014-07-24 10:42 - 00206336 _____ (Microsoft Corporation) C:\windows\SysWOW64\powercfg.cpl
2015-02-06 18:41 - 2014-07-24 10:40 - 00557056 _____ (Microsoft Corporation) C:\windows\system32\PrintDialogs.dll
2015-02-06 18:41 - 2014-07-24 10:39 - 00770048 _____ (Microsoft Corporation) C:\windows\system32\WorkfoldersControl.dll
2015-02-06 18:41 - 2014-07-24 10:33 - 01741824 _____ (Microsoft Corporation) C:\windows\SysWOW64\SRH.dll
2015-02-06 18:41 - 2014-07-24 10:32 - 01048064 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpedit.dll
2015-02-06 18:41 - 2014-07-24 10:27 - 00779264 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2015-02-06 18:41 - 2014-07-24 10:25 - 00832512 _____ (Microsoft Corporation) C:\windows\SysWOW64\ActionCenter.dll
2015-02-06 18:41 - 2014-07-24 10:24 - 01817088 _____ (Microsoft Corporation) C:\windows\SysWOW64\Display.dll
2015-02-06 18:41 - 2014-07-24 10:21 - 00134144 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2015-02-06 18:41 - 2014-07-24 10:18 - 00018432 _____ (Microsoft Corporation) C:\windows\system32\wlansvcpal.dll
2015-02-06 18:41 - 2014-07-24 10:16 - 12730880 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Xaml.dll
2015-02-06 18:41 - 2014-07-24 10:12 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\WiFiDisplay.dll
2015-02-06 18:41 - 2014-07-24 10:11 - 00356864 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-02-06 18:41 - 2014-07-24 10:11 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\wshbth.dll
2015-02-06 18:41 - 2014-07-24 10:10 - 00540672 _____ (Microsoft Corporation) C:\windows\SysWOW64\comdlg32.dll
2015-02-06 18:41 - 2014-07-24 10:04 - 00492032 _____ (Microsoft Corporation) C:\windows\SysWOW64\PrintDialogs.dll
2015-02-06 18:41 - 2014-07-24 10:04 - 00183808 _____ (Microsoft Corp.) C:\windows\system32\Defrag.exe
2015-02-06 18:41 - 2014-07-24 10:03 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2015-02-06 18:41 - 2014-07-24 09:58 - 00105472 _____ (Microsoft Corporation) C:\windows\system32\BluetoothApis.dll
2015-02-06 18:41 - 2014-07-24 09:53 - 01261056 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2015-02-06 18:41 - 2014-07-24 09:53 - 00449536 _____ (Microsoft Corporation) C:\windows\system32\defragsvc.dll
2015-02-06 18:41 - 2014-07-24 09:49 - 01287680 _____ (Microsoft Corporation) C:\windows\system32\mispace.dll
2015-02-06 18:41 - 2014-07-24 09:49 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\wlanapi.dll
2015-02-06 18:41 - 2014-07-24 09:48 - 00659968 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Bluetooth.dll
2015-02-06 18:41 - 2014-07-24 09:47 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\wcmcsp.dll
2015-02-06 18:41 - 2014-07-24 09:43 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshbth.dll
2015-02-06 18:41 - 2014-07-24 09:39 - 02397184 _____ (Microsoft Corporation) C:\windows\system32\storagewmi.dll
2015-02-06 18:41 - 2014-07-24 09:38 - 00371200 _____ (Microsoft Corporation) C:\windows\system32\wlanmsm.dll
2015-02-06 18:41 - 2014-07-24 09:32 - 01532416 _____ (Microsoft Corporation) C:\windows\system32\wlansvc.dll
2015-02-06 18:41 - 2014-07-24 09:30 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanapi.dll
2015-02-06 18:41 - 2014-07-24 09:29 - 00439296 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-02-06 18:41 - 2014-07-24 09:28 - 00595456 _____ (Microsoft Corporation) C:\windows\system32\Windows.Networking.dll
2015-02-06 18:41 - 2014-07-24 09:23 - 01404416 _____ (Microsoft Corporation) C:\windows\SysWOW64\storagewmi.dll
2015-02-06 18:41 - 2014-07-24 09:22 - 00487936 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2015-02-06 18:41 - 2014-07-24 09:21 - 01231872 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.dll
2015-02-06 18:41 - 2014-07-24 09:21 - 00302080 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanmsm.dll
2015-02-06 18:41 - 2014-07-24 09:18 - 01144320 _____ (Microsoft Corporation) C:\windows\system32\wwanmm.dll
2015-02-06 18:41 - 2014-07-24 09:18 - 00795136 _____ (Microsoft Corporation) C:\windows\system32\spoolsv.exe
2015-02-06 18:41 - 2014-07-24 09:16 - 00505344 _____ (Microsoft Corporation) C:\windows\system32\VAN.dll
2015-02-06 18:41 - 2014-07-24 09:16 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\wpdbusenum.dll
2015-02-06 18:41 - 2014-07-24 09:15 - 00721408 _____ (Microsoft Corporation) C:\windows\system32\twinapi.dll
2015-02-06 18:41 - 2014-07-24 09:15 - 00432128 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Networking.dll
2015-02-06 18:41 - 2014-07-24 09:13 - 00226304 _____ (Microsoft Corporation) C:\windows\system32\SndVolSSO.dll
2015-02-06 18:41 - 2014-07-24 09:10 - 00889344 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.dll
2015-02-06 18:41 - 2014-07-24 09:10 - 00371712 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2015-02-06 18:41 - 2014-07-24 09:08 - 00321536 _____ (Microsoft Corporation) C:\windows\system32\stobject.dll
2015-02-06 18:41 - 2014-07-24 09:05 - 00448000 _____ (Microsoft Corporation) C:\windows\SysWOW64\VAN.dll
2015-02-06 18:41 - 2014-07-24 09:01 - 01992192 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2015-02-06 18:41 - 2014-07-24 08:58 - 00432640 _____ (Microsoft Corporation) C:\windows\system32\wwanconn.dll
2015-02-06 18:41 - 2014-07-24 08:58 - 00288768 _____ (Microsoft Corporation) C:\windows\SysWOW64\stobject.dll
2015-02-06 18:41 - 2014-07-24 08:54 - 01290752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2015-02-06 18:41 - 2014-07-24 08:50 - 01182208 _____ (Microsoft Corporation) C:\windows\system32\printui.dll
2015-02-06 18:41 - 2014-07-24 08:47 - 00576512 _____ (Microsoft Corporation) C:\windows\system32\SettingSync.dll
2015-02-06 18:41 - 2014-07-24 08:44 - 01057792 _____ (Microsoft Corporation) C:\windows\SysWOW64\printui.dll
2015-02-06 18:41 - 2014-07-24 08:41 - 00459264 _____ (Microsoft Corporation) C:\windows\SysWOW64\SettingSync.dll
2015-02-06 18:41 - 2014-07-24 08:28 - 01600000 _____ (Microsoft Corporation) C:\windows\system32\workfolderssvc.dll
2015-02-06 18:41 - 2014-07-24 05:11 - 00513544 _____ () C:\windows\SysWOW64\locale.nls
2015-02-06 18:41 - 2014-07-24 05:11 - 00513544 _____ () C:\windows\system32\locale.nls
2015-02-06 18:41 - 2014-07-12 06:55 - 00268288 _____ (Microsoft Corporation) C:\windows\system32\wisp.dll
2015-02-06 18:41 - 2014-07-12 05:58 - 00210944 _____ (Microsoft Corporation) C:\windows\SysWOW64\wisp.dll
2015-02-06 18:41 - 2014-07-04 13:59 - 00295424 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ks.sys
2015-02-06 18:41 - 2014-07-04 11:29 - 00117248 _____ (Microsoft Corporation) C:\windows\system32\AppxSip.dll
2015-02-06 18:41 - 2014-07-04 11:20 - 01656832 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2015-02-06 18:41 - 2014-07-04 11:06 - 00095232 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxSip.dll
2015-02-06 18:41 - 2014-07-04 11:00 - 01351168 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2015-02-06 18:41 - 2014-07-04 10:30 - 00544768 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2015-02-06 18:41 - 2014-07-04 10:27 - 00474112 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2015-02-06 18:41 - 2014-06-27 07:22 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2015-02-06 18:41 - 2014-06-26 01:32 - 01029632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mispace.dll
2015-02-06 18:41 - 2014-06-26 01:29 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\dab.dll
2015-02-06 18:41 - 2014-06-20 00:37 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2015-02-06 18:41 - 2014-06-19 03:13 - 00310080 _____ (Microsoft Corporation) C:\windows\system32\Drivers\volsnap.sys
2015-02-06 18:41 - 2014-06-14 07:03 - 02389504 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2015-02-06 18:41 - 2014-06-14 06:46 - 02071552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2015-02-06 18:41 - 2014-06-07 13:46 - 00216368 _____ (Microsoft Corporation) C:\windows\system32\rsaenh.dll
2015-02-06 18:41 - 2014-06-07 11:20 - 00189016 _____ (Microsoft Corporation) C:\windows\SysWOW64\rsaenh.dll
2015-02-06 18:41 - 2014-06-05 15:00 - 01118040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2015-02-06 18:41 - 2014-06-05 11:18 - 01018368 _____ (Microsoft Corporation) C:\windows\system32\aclui.dll
2015-02-06 18:41 - 2014-06-05 10:42 - 00889856 _____ (Microsoft Corporation) C:\windows\SysWOW64\aclui.dll
2015-02-06 18:41 - 2014-05-31 06:00 - 01463808 _____ (Microsoft Corporation) C:\windows\system32\wsecedit.dll
2015-02-06 18:41 - 2014-05-31 05:18 - 01319936 _____ (Microsoft Corporation) C:\windows\SysWOW64\wsecedit.dll
2015-02-06 18:41 - 2014-05-29 07:23 - 00427008 _____ (Microsoft Corporation) C:\windows\system32\clusapi.dll
2015-02-06 18:41 - 2014-05-29 06:25 - 00313856 _____ (Microsoft Corporation) C:\windows\SysWOW64\clusapi.dll
2015-02-06 18:41 - 2014-05-26 08:26 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\AppxSysprep.dll
2015-02-06 18:41 - 2014-05-10 11:12 - 00387896 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2015-02-06 18:41 - 2014-05-10 09:46 - 00335680 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2015-02-06 18:41 - 2014-05-06 05:41 - 00486744 _____ (Microsoft Corporation) C:\windows\system32\netcfgx.dll
2015-02-06 18:41 - 2014-05-06 01:55 - 00391000 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcfgx.dll
2015-02-06 18:41 - 2014-03-25 03:27 - 00160600 _____ (Microsoft Corporation) C:\windows\system32\winmmbase.dll
2015-02-06 18:41 - 2014-03-25 03:27 - 00123920 _____ (Microsoft Corporation) C:\windows\system32\winmm.dll
2015-02-06 18:41 - 2014-03-25 02:20 - 00128568 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmm.dll
2015-02-06 18:41 - 2014-03-25 02:20 - 00127544 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmmbase.dll
2015-02-06 18:40 - 2014-07-24 12:51 - 00007168 _____ (Microsoft Corporation) C:\windows\system32\KBDTT102.DLL
2015-02-06 18:40 - 2014-07-24 11:52 - 00007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\KBDTT102.DLL
2015-02-06 18:40 - 2014-07-24 10:14 - 00443904 _____ (Microsoft Corporation) C:\windows\system32\wlansec.dll
2015-02-06 18:40 - 2014-07-24 09:36 - 00079872 _____ (Microsoft Corporation) C:\windows\SysWOW64\BluetoothApis.dll
2015-02-06 18:40 - 2014-07-24 09:00 - 02100736 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlowUI.dll
2015-02-06 18:14 - 2015-02-11 19:20 - 00003596 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-616210761-3564209405-3471508708-1004
2015-02-06 18:11 - 2015-02-06 18:24 - 00002471 _____ () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2015-02-06 18:11 - 2015-02-06 18:11 - 00002531 _____ () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo Web Start.lnk
2015-02-06 18:11 - 2015-02-06 18:11 - 00002300 _____ () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk
2015-02-06 18:09 - 2015-02-06 18:09 - 00000000 ____D () C:\Users\Danča\AppData\Roaming\ATI
2015-02-06 18:09 - 2015-02-06 18:09 - 00000000 ____D () C:\Users\Danča\AppData\Local\ATI
2015-02-06 18:08 - 2015-02-08 17:25 - 00000000 ____D () C:\Users\Danča\AppData\Local\Packages
2015-02-06 18:07 - 2015-02-11 19:16 - 00000000 ____D () C:\Users\Danča\AppData\Local\Pokki
2015-02-06 18:07 - 2015-02-06 18:08 - 00000000 ____D () C:\Users\Danča
2015-02-06 18:07 - 2015-02-06 18:07 - 00000020 ___SH () C:\Users\Danča\ntuser.ini
2015-02-06 18:07 - 2015-02-06 18:07 - 00000000 ____D () C:\Users\Danča\AppData\Local\VirtualStore
2015-02-06 18:07 - 2015-02-05 21:35 - 00000000 ___RD () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-06 18:07 - 2015-02-05 21:35 - 00000000 ___RD () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-06 18:07 - 2014-09-09 19:06 - 00000000 ____D () C:\Users\Danča\AppData\Roaming\Macromedia
2015-02-06 18:07 - 2014-03-18 10:54 - 00000369 _____ () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-02-06 18:07 - 2014-03-18 10:54 - 00000369 _____ () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-02-06 18:07 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-06 18:07 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Danča\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-05 21:16 - 2015-02-05 21:16 - 00001176 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2015-02-05 21:16 - 2015-02-05 21:16 - 00001128 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2015-02-05 21:16 - 2015-02-05 21:16 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Canneverbe Limited
2015-02-05 21:16 - 2015-02-05 21:16 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2015-02-05 21:16 - 2015-02-05 21:16 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2015-02-05 21:12 - 2015-02-05 21:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-02-05 21:11 - 2015-02-07 19:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2015-02-05 21:11 - 2015-02-05 21:11 - 05641056 _____ (Canneverbe Limited ) C:\Users\Radka\Downloads\cdbxp_setup_4.5.4.5306.exe
2015-02-05 21:11 - 2015-02-05 21:11 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio
2015-02-05 21:10 - 2015-02-05 21:10 - 00000000 ____D () C:\windows\PCHEALTH
2015-02-05 21:08 - 2015-02-10 18:15 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-05 21:08 - 2015-02-05 21:11 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-02-05 21:08 - 2015-02-05 21:08 - 00000000 __RHD () C:\MSOCache
2015-02-05 21:08 - 2015-02-05 21:08 - 00000000 ____D () C:\Users\Radka\AppData\Local\Microsoft Help
2015-02-05 21:08 - 2015-02-05 21:08 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-02-05 21:08 - 2015-02-05 21:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2015-02-05 20:58 - 2015-02-05 21:00 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\HP
2015-02-05 20:58 - 2015-02-05 20:58 - 00000000 ____D () C:\ProgramData\WEBREG
2015-02-05 20:48 - 2015-02-05 20:48 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2015-02-05 20:48 - 2015-02-05 20:48 - 00000000 ____D () C:\Program Files (x86)\HP Photo Creations
2015-02-05 20:47 - 2015-02-05 20:47 - 00001056 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace I.R.I.S. OCR.lnk
2015-02-05 20:47 - 2015-02-05 20:47 - 00000000 ____D () C:\windows\SysWOW64\spool
2015-02-05 20:47 - 2015-02-05 20:47 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\HpUpdate
2015-02-05 20:46 - 2015-02-05 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-02-05 20:46 - 2015-02-05 20:46 - 00001352 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\HP Solution Center.lnk
2015-02-05 20:46 - 2015-02-05 20:46 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2015-02-05 20:44 - 2015-02-05 20:47 - 00000000 ____D () C:\Program Files (x86)\HP
2015-02-05 20:43 - 2015-02-05 20:58 - 00203598 _____ () C:\windows\hpoins19.dat
2015-02-05 20:43 - 2015-02-05 20:58 - 00001234 _____ () C:\ProgramData\hpzinstall.log
2015-02-05 20:43 - 2015-02-05 20:54 - 00000000 ____D () C:\ProgramData\HP
2015-02-05 20:43 - 2012-10-14 13:03 - 00015561 ____N () C:\windows\hpomdl19.dat
2015-02-05 20:43 - 2012-09-25 08:52 - 03867040 _____ () C:\windows\system32\PortChanger.exe
2015-02-05 20:43 - 2012-09-25 08:52 - 02398112 _____ (Hewlett Packard) C:\windows\system32\hppldcoi.dll
2015-02-05 20:43 - 2012-09-25 08:52 - 00151968 _____ (Windows (R) Win 7 DDK provider) C:\windows\system32\Drivers\Dot4.sys
2015-02-05 20:43 - 2012-09-25 08:52 - 00049056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Dot4usb.sys
2015-02-05 20:43 - 2012-09-25 08:52 - 00027040 _____ (Windows (R) Win 7 DDK provider) C:\windows\system32\Drivers\Dot4Prt.sys
2015-02-05 20:43 - 2009-07-08 11:51 - 00861184 _____ (Hewlett-Packard) C:\windows\system32\hpowiav1.dll
2015-02-05 20:43 - 2009-07-08 11:51 - 00730624 _____ (Hewlett-Packard Co.) C:\windows\system32\hpotscl1.dll
2015-02-05 20:43 - 2009-07-08 11:51 - 00498176 _____ (Hewlett-Packard Co.) C:\windows\system32\hpovst01.dll
2015-02-05 20:37 - 2015-02-05 20:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-02-05 20:37 - 2015-02-05 20:41 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-02-05 20:37 - 2015-02-05 20:41 - 00001170 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-02-05 20:37 - 2015-02-05 20:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-05 20:37 - 2015-02-05 20:37 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Mozilla
2015-02-05 20:37 - 2015-02-05 20:37 - 00000000 ____D () C:\Users\Radka\AppData\Local\Mozilla
2015-02-05 20:37 - 2015-02-05 20:37 - 00000000 ____D () C:\ProgramData\Mozilla
2015-02-05 20:32 - 2015-02-05 20:32 - 00001093 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-02-05 20:32 - 2015-02-05 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-02-05 20:32 - 2015-02-05 20:32 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2015-02-05 20:31 - 2015-02-05 20:31 - 00002772 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2015-02-05 20:31 - 2015-02-05 20:31 - 00000845 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-05 20:31 - 2015-02-05 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-05 20:31 - 2015-02-05 20:31 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-05 20:30 - 2015-02-05 20:30 - 00001026 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-02-05 20:30 - 2015-02-05 20:30 - 00001020 _____ () C:\Users\Public\Desktop\WinRAR.lnk
2015-02-05 20:30 - 2015-02-05 20:30 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\WinRAR
2015-02-05 20:30 - 2015-02-05 20:30 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2015-02-05 20:24 - 2015-02-05 20:26 - 00000000 ____D () C:\Program Files (x86)\Seznam.cz
2015-02-05 20:24 - 2014-10-10 02:58 - 00177472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-02-05 20:24 - 2014-10-10 02:58 - 00027456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2015-02-05 20:24 - 2014-10-10 02:44 - 00563976 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-02-05 20:24 - 2014-10-08 08:37 - 00736768 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-02-05 20:24 - 2014-10-08 08:37 - 00154112 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-02-05 20:24 - 2014-10-08 08:34 - 00131584 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2015-02-05 20:24 - 2014-10-08 08:24 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\rfxvmt.dll
2015-02-05 20:24 - 2014-10-08 07:56 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2015-02-05 20:24 - 2014-10-08 07:51 - 00736768 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2015-02-05 20:24 - 2014-10-08 07:51 - 00154112 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2015-02-05 20:24 - 2014-10-08 07:18 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2015-02-05 20:24 - 2014-10-08 07:17 - 01441792 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-02-05 20:24 - 2014-10-08 06:23 - 03547648 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2015-02-05 20:23 - 2015-02-05 20:26 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Seznam.cz
2015-02-05 20:23 - 2015-02-05 20:24 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\DAEMON Tools Lite
2015-02-05 20:23 - 2015-02-05 20:23 - 00283064 _____ (Disc Soft Ltd) C:\windows\system32\Drivers\dtsoftbus01.sys
2015-02-05 20:23 - 2015-02-05 20:23 - 00001973 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2015-02-05 20:23 - 2015-02-05 20:23 - 00000000 __SHD () C:\Users\Radka\AppData\Local\EmieBrowserModeList
2015-02-05 20:23 - 2015-02-05 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2015-02-05 20:22 - 2015-02-05 20:23 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2015-02-05 20:22 - 2015-02-05 20:22 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2015-02-05 20:17 - 2015-02-03 20:31 - 00714720 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 20:17 - 2015-02-03 20:31 - 00106976 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-05 20:15 - 2015-02-05 20:15 - 00000000 ___SD () C:\windows\system32\CompatTel
2015-02-05 20:15 - 2015-02-05 20:15 - 00000000 ____D () C:\windows\system32\appraiser
2015-02-05 19:50 - 2014-04-14 04:29 - 01018880 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2015-02-05 19:41 - 2014-08-15 01:36 - 00146752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msgpioclx.sys
2015-02-05 19:41 - 2014-07-30 02:56 - 00299520 _____ (Microsoft Corporation) C:\windows\system32\WSDMon.dll
2015-02-05 19:41 - 2014-07-29 06:22 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\tcpmon.dll
2015-02-05 19:41 - 2014-03-20 05:19 - 01291200 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2015-02-05 19:41 - 2014-03-20 04:41 - 00376152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\clfs.sys
2015-02-05 19:41 - 2014-03-20 01:53 - 00950784 _____ (Microsoft Corporation) C:\windows\system32\ReAgent.dll
2015-02-05 19:41 - 2014-03-20 01:48 - 00201216 _____ (Microsoft Corporation) C:\windows\system32\ReInfo.dll
2015-02-05 19:41 - 2014-03-20 00:55 - 01036288 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2015-02-05 19:41 - 2014-03-20 00:39 - 00800256 _____ (Microsoft Corporation) C:\windows\SysWOW64\ReAgent.dll
2015-02-05 19:41 - 2014-03-20 00:36 - 00172544 _____ (Microsoft Corporation) C:\windows\SysWOW64\ReInfo.dll
2015-02-05 19:41 - 2014-03-19 06:50 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\w32tm.exe
2015-02-05 19:41 - 2014-03-19 06:20 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\w32tm.exe
2015-02-05 19:41 - 2014-03-13 13:35 - 00157016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wof.sys
2015-02-05 19:41 - 2014-03-08 21:38 - 01542768 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2015-02-05 19:41 - 2014-03-08 16:29 - 00356848 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2015-02-05 19:41 - 2014-03-08 12:34 - 01095488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2015-02-05 19:41 - 2014-03-08 10:02 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\sxproxy.dll
2015-02-05 19:41 - 2014-03-08 09:33 - 00271872 _____ (Microsoft Corporation) C:\windows\system32\spp.dll
2015-02-05 19:41 - 2014-03-08 09:25 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\SetNetworkLocation.dll
2015-02-05 19:41 - 2014-03-08 09:12 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\sxproxy.dll
2015-02-05 19:41 - 2014-03-08 08:47 - 00222720 _____ (Microsoft Corporation) C:\windows\SysWOW64\spp.dll
2015-02-05 19:41 - 2014-03-08 08:04 - 00160768 _____ (Microsoft Corporation) C:\windows\system32\AppxAllUserStore.dll
2015-02-05 19:41 - 2014-03-08 07:48 - 00252928 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentClient.dll
2015-02-05 19:41 - 2014-03-08 07:40 - 00139776 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxAllUserStore.dll
2015-02-05 19:41 - 2014-03-08 07:31 - 00222720 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2015-02-05 19:41 - 2014-03-08 07:30 - 00197632 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppXDeploymentClient.dll
2015-02-05 19:41 - 2014-03-08 06:41 - 01306624 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2015-02-05 19:41 - 2014-03-08 06:11 - 00924160 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.dll
2015-02-05 19:41 - 2014-03-06 15:34 - 02331000 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2015-02-05 19:41 - 2014-03-06 15:34 - 00113648 _____ (Microsoft Corporation) C:\windows\system32\userenv.dll
2015-02-05 19:41 - 2014-03-06 12:19 - 00094016 _____ (Microsoft Corporation) C:\windows\SysWOW64\userenv.dll
2015-02-05 19:41 - 2014-03-06 11:46 - 01679128 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2015-02-05 19:41 - 2014-03-06 10:24 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2015-02-05 19:41 - 2014-03-06 10:24 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidusb.sys
2015-02-05 19:41 - 2014-03-06 10:22 - 00134144 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2015-02-05 19:41 - 2014-03-06 10:19 - 00283648 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2015-02-05 19:41 - 2014-03-06 10:19 - 00049152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2015-02-05 19:41 - 2014-03-06 10:08 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\l2gpstore.dll
2015-02-05 19:41 - 2014-03-06 09:41 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\DevPropMgr.dll
2015-02-05 19:41 - 2014-03-06 09:38 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2015-02-05 19:41 - 2014-03-06 09:10 - 00058368 _____ (Microsoft Corporation) C:\windows\SysWOW64\l2gpstore.dll
2015-02-05 19:41 - 2014-03-06 09:00 - 00247296 _____ (Microsoft Corporation) C:\windows\system32\SensorsApi.dll
2015-02-05 19:41 - 2014-03-06 08:46 - 00085504 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2015-02-05 19:41 - 2014-03-06 08:16 - 00171008 _____ (Microsoft Corporation) C:\windows\SysWOW64\SensorsApi.dll
2015-02-05 19:41 - 2014-03-06 08:02 - 00834560 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2015-02-05 19:41 - 2014-03-06 07:51 - 02900992 _____ (Microsoft Corporation) C:\windows\system32\msftedit.dll
2015-02-05 19:41 - 2014-03-06 07:29 - 00688640 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2015-02-05 19:41 - 2014-03-06 07:24 - 00462336 _____ (Microsoft Corporation) C:\windows\system32\wlangpui.dll
2015-02-05 19:41 - 2014-03-06 07:23 - 02270208 _____ (Microsoft Corporation) C:\windows\SysWOW64\msftedit.dll
2015-02-05 19:41 - 2014-03-06 07:23 - 00186368 _____ (Microsoft Corporation) C:\windows\system32\dafWfdProvider.dll
2015-02-05 19:41 - 2014-03-06 07:21 - 00291840 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Sensors.dll
2015-02-05 19:41 - 2014-03-06 07:06 - 00386560 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlangpui.dll
2015-02-05 19:41 - 2014-03-06 07:04 - 00226304 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Sensors.dll
2015-02-05 19:41 - 2014-03-06 07:01 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\Windows.Devices.Scanners.dll
2015-02-05 19:41 - 2014-03-06 06:51 - 00151040 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Devices.Scanners.dll
2015-02-05 19:41 - 2014-03-06 06:47 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\SessEnv.dll
2015-02-05 19:41 - 2014-03-06 06:42 - 00280576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SessEnv.dll
2015-02-05 19:41 - 2014-03-04 08:16 - 00655360 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2015-02-05 19:41 - 2014-03-04 08:13 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2015-02-05 19:41 - 2014-03-04 08:08 - 00299008 _____ (Microsoft Corporation) C:\windows\system32\pdh.dll
2015-02-05 19:41 - 2014-03-04 08:00 - 00512000 _____ (Microsoft Corporation) C:\windows\system32\wlidprov.dll
2015-02-05 19:41 - 2014-03-04 07:56 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RMapi.dll
2015-02-05 19:41 - 2014-03-04 07:42 - 00494592 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2015-02-05 19:41 - 2014-03-04 07:39 - 00254976 _____ (Microsoft Corporation) C:\windows\SysWOW64\pdh.dll
2015-02-05 19:41 - 2014-03-04 07:32 - 00356864 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlidprov.dll
2015-02-05 19:41 - 2014-03-04 07:15 - 00542208 _____ (Microsoft Corporation) C:\windows\system32\Windows.Graphics.Printing.dll
2015-02-05 19:41 - 2014-03-04 07:05 - 00402432 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Graphics.Printing.dll
2015-02-05 19:41 - 2014-03-04 07:03 - 00669696 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2015-02-05 19:41 - 2014-03-04 07:03 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\CredentialMigrationHandler.dll
2015-02-05 19:41 - 2014-03-04 06:54 - 00027136 _____ (Microsoft Corporation) C:\windows\SysWOW64\CredentialMigrationHandler.dll
2015-02-05 19:41 - 2014-03-04 06:52 - 00605184 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2015-02-05 19:41 - 2013-12-24 00:28 - 00262656 _____ (Microsoft Corporation) C:\windows\SysWOW64\LocationApi.dll
2015-02-05 19:41 - 2013-12-24 00:26 - 00325632 _____ (Microsoft Corporation) C:\windows\system32\LocationApi.dll
2015-02-05 19:39 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\DeviceSetupStatusProvider.dll
2015-02-05 19:39 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-02-05 19:39 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-02-05 19:39 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2015-02-05 19:39 - 2014-09-22 05:38 - 01519488 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2015-02-05 19:39 - 2014-09-22 04:06 - 00258368 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdFilter.sys
2015-02-05 19:39 - 2014-09-22 04:06 - 00114496 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdNisDrv.sys
2015-02-05 19:39 - 2014-09-22 03:49 - 00035320 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdBoot.sys
2015-02-05 19:39 - 2014-09-19 01:16 - 01346048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2015-02-05 19:39 - 2014-09-02 23:08 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\winshfhc.dll
2015-02-05 19:39 - 2014-09-02 23:08 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\winshfhc.dll
2015-02-05 19:39 - 2014-05-30 04:03 - 00563200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2015-02-05 19:34 - 2014-09-27 08:13 - 00104336 _____ (Microsoft Corporation) C:\windows\system32\ncryptsslp.dll
2015-02-05 19:34 - 2014-09-27 06:24 - 00088800 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptsslp.dll
2015-02-05 19:34 - 2014-09-27 04:38 - 00426496 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-02-05 19:34 - 2014-09-27 04:30 - 00185856 _____ (Microsoft Corporation) C:\windows\system32\dpapisrv.dll
2015-02-05 19:34 - 2014-09-27 04:17 - 00357376 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2015-02-05 19:34 - 2014-06-20 02:48 - 01273184 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2015-02-05 19:34 - 2014-06-20 00:52 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2015-02-05 19:34 - 2014-06-13 02:15 - 00517528 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2015-02-05 19:34 - 2014-06-13 02:14 - 01557848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2015-02-05 19:34 - 2014-06-13 01:10 - 00406400 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2015-02-05 19:34 - 2014-06-06 12:34 - 02133504 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2015-02-05 19:34 - 2014-03-06 13:53 - 02141912 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2015-02-05 19:34 - 2014-03-06 13:51 - 00379224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2015-02-05 19:34 - 2014-03-06 12:13 - 01779800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2015-02-05 19:34 - 2014-03-06 07:09 - 01764864 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2015-02-05 19:33 - 2014-12-09 02:50 - 00225280 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2015-02-05 19:33 - 2014-10-13 03:33 - 00116032 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2015-02-05 19:33 - 2014-10-11 01:58 - 03320320 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2015-02-05 19:33 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2015-02-05 19:33 - 2014-10-08 08:30 - 00110080 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2015-02-05 19:33 - 2014-10-08 08:09 - 00428032 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2015-02-05 19:33 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2015-02-05 19:33 - 2014-10-08 06:32 - 02773504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2015-02-05 19:33 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2015-02-05 19:33 - 2014-08-07 03:12 - 01336624 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2015-02-05 19:33 - 2014-08-02 04:56 - 01064448 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2015-02-05 19:33 - 2014-03-13 08:42 - 00308224 _____ (Microsoft Corporation) C:\windows\system32\wusa.exe
2015-02-05 19:33 - 2014-03-13 07:51 - 00305152 _____ (Microsoft Corporation) C:\windows\SysWOW64\wusa.exe
2015-02-05 19:33 - 2014-03-06 13:39 - 00212992 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2015-02-05 19:26 - 2015-02-05 19:29 - 00000000 ____D () C:\windows\system32\MRT
2015-02-05 19:26 - 2014-12-31 13:12 - 113365784 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-02-05 19:05 - 2014-04-11 04:54 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\ubpm.dll
2015-02-05 19:05 - 2014-04-11 03:57 - 00190976 _____ (Microsoft Corporation) C:\windows\system32\storewuauth.dll
2015-02-05 19:00 - 2014-12-12 01:51 - 00075776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ahcache.sys
2015-02-05 19:00 - 2014-12-04 00:37 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-02-05 19:00 - 2014-12-04 00:09 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-02-05 19:00 - 2014-12-03 00:09 - 01083392 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-02-05 19:00 - 2014-12-03 00:09 - 00740864 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-02-05 19:00 - 2014-12-03 00:09 - 00412672 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-02-05 19:00 - 2014-12-03 00:09 - 00396288 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-02-05 19:00 - 2014-12-03 00:09 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2015-02-05 19:00 - 2014-08-02 01:18 - 01212928 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2015-02-05 18:58 - 2014-07-15 19:16 - 03048880 _____ (Microsoft Corporation) C:\windows\system32\WpcMon.exe
2015-02-05 18:58 - 2014-07-15 09:29 - 03118080 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2015-02-05 18:58 - 2014-07-15 09:22 - 02861056 _____ (Microsoft Corporation) C:\windows\system32\WpcWebSync.dll
2015-02-05 18:58 - 2014-07-15 09:03 - 02344448 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2015-02-05 18:53 - 2015-02-05 18:53 - 00000436 _____ () C:\Users\Radka\Desktop\Tento počítač.lnk
2015-02-05 18:51 - 2015-02-05 18:51 - 00000000 ____D () C:\Users\Public\CyberLink
2015-02-05 18:46 - 2015-02-05 18:46 - 00000000 ____D () C:\Users\Radka\AppData\Local\Cyberlink
2015-02-05 18:30 - 2015-02-05 18:31 - 00000000 ____D () C:\Users\Radka\Hightail for Lenovo
2015-02-05 18:30 - 2015-02-05 18:30 - 00000000 ____D () C:\Users\Radka\AppData\Local\Hightail for Lenovo

[radka68]

FRST log 2/2: Druhá polovina




2015-02-05 18:24 - 2014-12-12 03:04 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2015-02-05 18:24 - 2014-08-23 08:48 - 02374784 _____ (Microsoft Corporation) C:\windows\explorer.exe
2015-02-05 18:24 - 2014-08-23 08:13 - 02084520 _____ (Microsoft Corporation) C:\windows\SysWOW64\explorer.exe
2015-02-05 18:24 - 2014-08-23 07:10 - 00068096 _____ (Microsoft Corporation) C:\windows\system32\UXInit.dll
2015-02-05 18:24 - 2014-08-23 06:32 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\UXInit.dll
2015-02-05 18:24 - 2014-08-23 05:33 - 00796672 _____ (Microsoft Corporation) C:\windows\system32\uDWM.dll
2015-02-05 18:23 - 2014-12-19 07:26 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2015-02-05 18:23 - 2014-10-17 08:01 - 00789184 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2015-02-05 18:23 - 2014-10-17 07:58 - 00602768 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2015-02-05 18:23 - 2014-09-04 01:12 - 00590336 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2015-02-05 18:23 - 2014-09-04 01:01 - 00514048 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastls.dll
2015-02-05 18:23 - 2014-08-23 06:18 - 02149376 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2015-02-05 18:23 - 2014-08-23 06:03 - 01346048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2015-02-05 18:23 - 2014-08-16 05:08 - 01507648 _____ (Microsoft Corporation) C:\windows\system32\propsys.dll
2015-02-05 18:23 - 2014-08-16 05:01 - 01710184 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-02-05 18:23 - 2014-08-16 04:58 - 01112512 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-02-05 18:23 - 2014-08-16 04:16 - 01205976 _____ (Microsoft Corporation) C:\windows\SysWOW64\propsys.dll
2015-02-05 18:23 - 2014-08-16 04:03 - 01467384 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2015-02-05 18:23 - 2014-08-16 02:31 - 00838144 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2015-02-05 18:23 - 2014-08-16 02:04 - 00359424 _____ (Microsoft Corporation) C:\windows\system32\Wldap32.dll
2015-02-05 18:23 - 2014-08-16 01:58 - 00287744 _____ (Microsoft Corporation) C:\windows\system32\SystemEventsBrokerServer.dll
2015-02-05 18:23 - 2014-08-16 01:53 - 00118272 _____ (Microsoft Corporation) C:\windows\system32\httpprxm.dll
2015-02-05 18:23 - 2014-08-16 01:46 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\ProximityService.dll
2015-02-05 18:23 - 2014-08-16 01:45 - 00267776 _____ (Microsoft Corporation) C:\windows\system32\bisrv.dll
2015-02-05 18:23 - 2014-08-16 01:43 - 00321024 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wldap32.dll
2015-02-05 18:23 - 2014-08-16 01:43 - 00075776 _____ (Microsoft Corporation) C:\windows\system32\adhsvc.dll
2015-02-05 18:23 - 2014-08-16 01:31 - 00914432 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2015-02-05 18:23 - 2014-08-16 01:31 - 00286208 _____ (Microsoft Corporation) C:\windows\system32\pcsvDevice.dll
2015-02-05 18:23 - 2014-08-16 01:29 - 00249344 _____ (Microsoft Corporation) C:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-05 18:23 - 2014-08-16 01:23 - 01106432 _____ (Microsoft Corporation) C:\windows\system32\SearchFolder.dll
2015-02-05 18:23 - 2014-08-16 01:22 - 00717824 _____ (Microsoft Corporation) C:\windows\system32\SkyDriveTelemetry.dll
2015-02-05 18:23 - 2014-08-16 01:22 - 00286208 _____ (Microsoft Corporation) C:\windows\system32\SkyDriveShell.dll
2015-02-05 18:23 - 2014-08-16 01:19 - 00189952 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-02-05 18:23 - 2014-08-16 01:18 - 04758528 _____ (Microsoft Corporation) C:\windows\system32\SyncEngine.dll
2015-02-05 18:23 - 2014-08-16 01:17 - 08757760 _____ (Microsoft Corporation) C:\windows\system32\Windows.UI.Search.dll
2015-02-05 18:23 - 2014-08-16 01:14 - 00265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\SkyDriveShell.dll
2015-02-05 18:23 - 2014-08-16 01:13 - 06649344 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2015-02-05 18:23 - 2014-08-16 01:13 - 05902848 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.UI.Search.dll
2015-02-05 18:23 - 2014-08-16 01:13 - 00840192 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchFolder.dll
2015-02-05 18:23 - 2014-08-16 01:11 - 00920064 _____ (Microsoft Corporation) C:\windows\system32\WSShared.dll
2015-02-05 18:23 - 2014-08-16 01:10 - 01120768 _____ (Microsoft Corporation) C:\windows\system32\SkyDrive.exe
2015-02-05 18:23 - 2014-08-16 01:08 - 05777408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2015-02-05 18:23 - 2014-08-16 01:07 - 00756224 _____ (Microsoft Corporation) C:\windows\SysWOW64\WSShared.dll
2015-02-05 18:23 - 2014-07-24 16:28 - 00468288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBHUB3.SYS
2015-02-05 18:23 - 2014-07-24 12:41 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bridge.sys
2015-02-05 18:23 - 2014-07-24 11:09 - 01057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2015-02-05 18:23 - 2014-07-24 10:27 - 00855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2015-02-05 18:22 - 2014-10-23 06:48 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2015-02-05 18:22 - 2014-10-23 06:05 - 00072192 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
2015-02-05 18:22 - 2014-10-13 03:43 - 00238912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\sdbus.sys
2015-02-05 18:22 - 2014-10-13 03:43 - 00153920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpsd.sys
2015-02-05 18:22 - 2014-10-13 03:43 - 00086336 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pdc.sys
2015-02-05 18:22 - 2014-10-13 03:43 - 00039744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelpep.sys
2015-02-05 18:22 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2015-02-05 18:22 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2015-02-05 18:22 - 2014-05-03 06:36 - 00997888 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2015-02-05 18:22 - 2014-05-03 06:19 - 00071168 _____ (Microsoft Corporation) C:\windows\system32\ncobjapi.dll
2015-02-05 18:22 - 2014-05-03 06:08 - 00301056 _____ (Microsoft Corporation) C:\windows\system32\framedynos.dll
2015-02-05 18:22 - 2014-05-03 06:07 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\framedyn.dll
2015-02-05 18:22 - 2014-05-03 05:46 - 00052736 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncobjapi.dll
2015-02-05 18:22 - 2014-05-03 05:37 - 00235008 _____ (Microsoft Corporation) C:\windows\SysWOW64\framedynos.dll
2015-02-05 18:22 - 2014-05-03 05:37 - 00207360 _____ (Microsoft Corporation) C:\windows\SysWOW64\framedyn.dll
2015-02-05 18:22 - 2014-05-03 00:26 - 00050745 _____ () C:\windows\system32\srms.dat
2015-02-05 18:22 - 2014-04-30 07:43 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vwififlt.sys
2015-02-05 18:22 - 2014-04-30 07:41 - 00402432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2015-02-05 18:22 - 2014-04-30 07:41 - 00096768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\agilevpn.sys
2015-02-05 18:22 - 2014-04-30 07:41 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\vwifimp.sys
2015-02-05 18:22 - 2014-04-30 06:45 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\Robocopy.exe
2015-02-05 18:22 - 2014-04-30 05:48 - 00106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\Robocopy.exe
2015-02-05 18:22 - 2014-04-30 05:24 - 00065024 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2015-02-05 18:22 - 2014-04-30 05:23 - 00353280 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2015-02-05 18:22 - 2014-04-30 05:23 - 00271872 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2015-02-05 18:22 - 2014-04-30 05:23 - 00087552 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc.dll
2015-02-05 18:22 - 2014-04-30 05:14 - 00827392 _____ (Microsoft Corporation) C:\windows\system32\BFE.DLL
2015-02-05 18:22 - 2014-04-30 04:59 - 01063424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2015-02-05 18:22 - 2014-04-30 04:46 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2015-02-05 18:22 - 2014-04-30 04:46 - 00229888 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2015-02-05 18:22 - 2014-04-30 04:46 - 00056320 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2015-02-05 18:22 - 2014-04-30 04:45 - 00062976 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc.dll
2015-02-05 18:22 - 2014-04-30 04:42 - 00403968 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2015-02-05 18:22 - 2014-04-28 23:40 - 00721408 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2015-02-05 18:22 - 2014-04-26 17:39 - 00339456 _____ (Microsoft Corporation) C:\windows\system32\bdesvc.dll
2015-02-05 18:22 - 2014-04-14 10:37 - 02125344 _____ (Microsoft Corporation) C:\windows\system32\d3d9.dll
2015-02-05 18:22 - 2014-04-14 09:08 - 01797896 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d9.dll
2015-02-05 18:22 - 2014-04-14 06:18 - 00011776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d8thk.dll
2015-02-05 18:22 - 2014-04-08 23:46 - 00086688 _____ (Microsoft Corporation) C:\windows\system32\mrt_map.dll
2015-02-05 18:22 - 2014-04-08 23:46 - 00028320 _____ (Microsoft Corporation) C:\windows\system32\mrt100.dll
2015-02-05 18:22 - 2014-04-08 19:54 - 00080032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mrt_map.dll
2015-02-05 18:22 - 2014-04-08 19:54 - 00026784 _____ (Microsoft Corporation) C:\windows\SysWOW64\mrt100.dll
2015-02-05 18:22 - 2014-03-08 21:40 - 00136024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wfplwfs.sys
2015-02-05 18:22 - 2014-03-08 07:41 - 00412672 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2015-02-05 18:22 - 2014-03-08 07:25 - 00264192 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2015-02-05 18:22 - 2014-03-08 07:04 - 00717312 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2015-02-05 18:22 - 2014-03-08 06:58 - 00567296 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2015-02-05 18:21 - 2014-04-18 15:57 - 00032600 _____ (Microsoft Corporation) C:\windows\system32\ploptin.dll
2015-02-05 18:21 - 2014-04-18 10:44 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\energyprov.dll
2015-02-05 18:21 - 2014-04-14 10:20 - 00324888 _____ (Microsoft Corporation) C:\windows\system32\MFCaptureEngine.dll
2015-02-05 18:21 - 2014-04-14 09:01 - 00285144 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFCaptureEngine.dll
2015-02-05 18:21 - 2014-04-11 05:51 - 00250368 _____ (Microsoft Corporation) C:\windows\system32\rdpencom.dll
2015-02-05 18:21 - 2014-04-11 05:23 - 00209920 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpencom.dll
2015-02-05 18:21 - 2014-04-09 12:53 - 00337240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Classpnp.sys
2015-02-05 18:21 - 2014-04-09 07:39 - 00191488 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2015-02-05 18:21 - 2014-04-09 06:44 - 00144384 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2015-02-05 18:21 - 2014-04-09 04:33 - 00135168 _____ (Microsoft Corporation) C:\windows\system32\wscsvc.dll
2015-02-05 18:21 - 2014-04-08 03:01 - 00589656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2015-02-05 18:21 - 2014-04-06 17:34 - 00372568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2015-02-05 18:21 - 2014-04-06 17:34 - 00275800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2015-02-05 18:21 - 2014-04-06 17:30 - 00201920 _____ (Microsoft Corporation) C:\windows\system32\MSVideoDSP.dll
2015-02-05 18:21 - 2014-04-06 17:24 - 00360792 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fltMgr.sys
2015-02-05 18:21 - 2014-04-06 17:20 - 01403856 _____ (Microsoft Corporation) C:\windows\system32\winmde.dll
2015-02-05 18:21 - 2014-04-06 17:20 - 01379064 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2015-02-05 18:21 - 2014-04-06 17:20 - 00765408 _____ (Microsoft Corporation) C:\windows\system32\mfmpeg2srcsnk.dll
2015-02-05 18:21 - 2014-04-06 17:20 - 00609448 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2015-02-05 18:21 - 2014-04-06 17:20 - 00491744 _____ (Microsoft Corporation) C:\windows\system32\mfsvr.dll
2015-02-05 18:21 - 2014-04-06 17:20 - 00028408 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2015-02-05 18:21 - 2014-04-06 16:22 - 00178184 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSVideoDSP.dll
2015-02-05 18:21 - 2014-04-06 16:16 - 01209616 _____ (Microsoft Corporation) C:\windows\SysWOW64\winmde.dll
2015-02-05 18:21 - 2014-04-06 16:16 - 00669856 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmpeg2srcsnk.dll
2015-02-05 18:21 - 2014-04-06 16:16 - 00518544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2015-02-05 18:21 - 2014-04-06 16:16 - 00387896 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfsvr.dll
2015-02-05 18:21 - 2014-04-06 13:58 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-02-05 18:21 - 2014-04-06 13:51 - 00467968 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-02-05 18:21 - 2014-04-06 13:33 - 00335872 _____ (Microsoft Corporation) C:\windows\system32\MDEServer.exe
2015-02-05 18:21 - 2014-04-06 13:24 - 00271872 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-02-05 18:21 - 2014-04-06 13:06 - 00061440 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2015-02-05 18:21 - 2014-04-06 12:26 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\BootMenuUX.dll
2015-02-05 18:21 - 2014-04-06 11:05 - 01222656 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Streaming.dll
2015-02-05 18:21 - 2014-04-06 10:59 - 00982016 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Streaming.dll
2015-02-05 18:21 - 2014-04-03 09:12 - 00307304 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2015-02-05 18:21 - 2014-04-03 09:12 - 00130144 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2015-02-05 18:21 - 2014-04-03 05:03 - 00230808 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2015-02-05 18:21 - 2014-04-03 05:03 - 00111528 _____ (Microsoft Corporation) C:\windows\SysWOW64\gpapi.dll
2015-02-05 18:21 - 2014-04-03 03:23 - 00046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\tlscsp.dll
2015-02-05 18:21 - 2014-04-03 03:22 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\tlscsp.dll
2015-02-05 18:21 - 2014-03-28 16:58 - 00407016 _____ (Microsoft Corporation) C:\windows\system32\services.exe
2015-02-05 18:21 - 2014-03-27 06:36 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\resutils.dll
2015-02-05 18:21 - 2014-03-27 05:48 - 00219136 _____ (Microsoft Corporation) C:\windows\SysWOW64\resutils.dll
2015-02-05 18:21 - 2014-03-27 04:15 - 00718336 _____ (Microsoft Corporation) C:\windows\system32\swprv.dll
2015-02-05 18:21 - 2014-03-27 04:10 - 01436160 _____ (Microsoft Corporation) C:\windows\system32\VSSVC.exe
2015-02-05 18:21 - 2014-03-19 09:15 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\wlanhlp.dll
2015-02-05 18:21 - 2014-03-19 08:24 - 00064512 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2015-02-05 18:21 - 2014-03-19 08:17 - 00011264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wlanhlp.dll
2015-02-05 18:21 - 2014-03-18 06:00 - 07173120 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2015-02-05 18:21 - 2014-03-18 05:52 - 05104640 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2015-02-05 18:21 - 2014-03-17 06:09 - 00462336 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2015-02-05 18:21 - 2014-03-17 05:11 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2015-02-05 18:21 - 2014-03-14 07:26 - 00491520 _____ (Microsoft Corporation) C:\windows\system32\GeofenceMonitorService.dll
2015-02-05 18:21 - 2014-03-14 07:10 - 00357376 _____ (Microsoft Corporation) C:\windows\SysWOW64\GeofenceMonitorService.dll
2015-02-05 18:21 - 2014-03-06 10:19 - 00040960 _____ (Microsoft Corporation) C:\windows\system32\Windows.Shell.Search.UriHandler.dll
2015-02-05 18:21 - 2014-03-06 09:20 - 00035328 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Shell.Search.UriHandler.dll
2015-02-05 18:21 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2015-02-05 18:20 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-02-05 18:20 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2015-02-05 18:20 - 2014-11-01 00:57 - 01091072 _____ (Microsoft Corporation) C:\windows\system32\MrmCoreR.dll
2015-02-05 18:20 - 2014-11-01 00:47 - 00790528 _____ (Microsoft Corporation) C:\windows\SysWOW64\MrmCoreR.dll
2015-02-05 18:20 - 2014-10-07 04:30 - 04182016 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-02-05 18:20 - 2014-06-02 03:10 - 00423768 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2015-02-05 18:20 - 2014-05-31 11:07 - 00440664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2015-02-05 18:20 - 2014-05-31 11:07 - 00089944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2015-02-05 18:20 - 2014-05-31 11:07 - 00027480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2015-02-05 18:20 - 2014-05-31 07:30 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2015-02-05 18:20 - 2014-05-31 07:27 - 00110592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2015-02-05 18:20 - 2014-05-31 07:26 - 00227840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2015-02-05 18:20 - 2014-05-31 05:01 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2015-02-05 18:20 - 2014-05-31 05:01 - 00209408 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2015-02-05 18:20 - 2014-05-31 05:01 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2015-02-05 18:20 - 2014-05-27 10:56 - 00323584 _____ (Microsoft Corporation) C:\windows\system32\DaOtpCredentialProvider.dll
2015-02-05 18:20 - 2014-05-27 10:53 - 00270848 _____ (Microsoft Corporation) C:\windows\SysWOW64\DaOtpCredentialProvider.dll
2015-02-05 18:20 - 2014-05-19 07:31 - 00057856 _____ (Microsoft Corporation) C:\windows\system32\drvcfg.exe
2015-02-05 18:20 - 2014-05-19 07:21 - 00110592 _____ (Microsoft Corporation) C:\windows\system32\drvinst.exe
2015-02-05 18:20 - 2014-05-19 06:23 - 00098816 _____ (Microsoft Corporation) C:\windows\SysWOW64\drvinst.exe
2015-02-05 18:20 - 2014-04-30 05:43 - 01975296 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2015-02-05 18:20 - 2014-04-30 05:26 - 01345536 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2015-02-05 18:20 - 2014-04-30 04:47 - 01509888 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2015-02-05 18:20 - 2014-03-06 10:19 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\umpnpmgr.dll
2015-02-05 18:19 - 2014-12-06 04:17 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2015-02-05 18:19 - 2014-12-06 02:41 - 00391680 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2015-02-05 18:19 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2015-02-05 18:19 - 2014-10-30 23:34 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2015-02-05 18:19 - 2014-10-29 02:24 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2015-02-05 18:19 - 2014-10-29 02:01 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2015-02-05 18:19 - 2014-06-06 14:04 - 00586240 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2015-02-05 18:19 - 2014-06-06 13:18 - 00488960 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2015-02-05 18:18 - 2014-12-31 12:14 - 00298120 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2015-02-05 18:14 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-02-05 18:14 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2015-02-05 18:14 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\pku2u.dll
2015-02-05 18:14 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\windows\SysWOW64\pku2u.dll
2015-02-05 18:13 - 2014-09-10 07:25 - 00474432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2015-02-05 18:13 - 2014-09-08 04:07 - 02497344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2015-02-05 18:13 - 2014-09-08 04:07 - 00428864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2015-02-05 18:13 - 2014-09-07 23:08 - 00389176 _____ () C:\windows\system32\ApnDatabase.xml
2015-02-05 18:13 - 2014-09-04 23:30 - 00822272 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2015-02-05 18:13 - 2014-09-04 23:21 - 01053184 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2015-02-05 18:13 - 2014-09-04 04:05 - 00836176 _____ (Microsoft Corporation) C:\windows\system32\mfmp4srcsnk.dll
2015-02-05 18:13 - 2014-09-04 03:22 - 00670384 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfmp4srcsnk.dll
2015-02-05 18:13 - 2014-09-04 02:01 - 00448512 _____ (Microsoft Corporation) C:\windows\system32\puiobj.dll
2015-02-05 18:13 - 2014-09-04 01:32 - 00334336 _____ (Microsoft Corporation) C:\windows\SysWOW64\puiobj.dll
2015-02-05 18:13 - 2014-09-04 01:10 - 00118272 _____ (Microsoft Corporation) C:\windows\system32\winbici.dll
2015-02-05 18:13 - 2014-08-31 01:17 - 00148800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2015-02-05 18:13 - 2014-08-31 01:15 - 21197152 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-02-05 18:13 - 2014-08-30 23:59 - 18723112 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2015-02-05 18:13 - 2014-08-30 23:05 - 00615424 _____ (Microsoft Corporation) C:\windows\system32\FXSCOMEX.dll
2015-02-05 18:13 - 2014-08-30 22:58 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\FXSAPI.dll
2015-02-05 18:13 - 2014-08-30 22:04 - 00941568 _____ (Microsoft Corporation) C:\windows\system32\MFMediaEngine.dll
2015-02-05 18:13 - 2014-08-30 21:53 - 00239104 _____ (Microsoft Corporation) C:\windows\SysWOW64\FXSAPI.dll
2015-02-05 18:13 - 2014-08-30 21:17 - 00799744 _____ (Microsoft Corporation) C:\windows\SysWOW64\MFMediaEngine.dll
2015-02-05 18:13 - 2014-08-28 03:55 - 07484224 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-02-05 18:13 - 2014-08-28 01:21 - 02480128 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2015-02-05 18:13 - 2014-08-28 01:06 - 02030592 _____ (Microsoft Corporation) C:\windows\SysWOW64\WsmSvc.dll
2015-02-05 18:13 - 2014-08-23 06:14 - 13424128 _____ (Microsoft Corporation) C:\windows\system32\twinui.dll
2015-02-05 18:13 - 2014-08-23 06:04 - 11820544 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.dll
2015-02-05 18:13 - 2014-08-23 05:50 - 02714112 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers.dll
2015-02-05 18:13 - 2014-08-02 01:51 - 00545792 _____ (Microsoft Corporation) C:\windows\system32\untfs.dll
2015-02-05 18:13 - 2014-08-02 01:35 - 00485376 _____ (Microsoft Corporation) C:\windows\SysWOW64\untfs.dll
2015-02-05 18:13 - 2014-07-24 12:22 - 00308736 _____ (Microsoft Corporation) C:\windows\system32\compstui.dll
2015-02-05 18:13 - 2014-07-24 10:53 - 00215552 _____ (Microsoft Corporation) C:\windows\system32\prnntfy.dll
2015-02-05 18:13 - 2014-07-24 10:13 - 00195584 _____ (Microsoft Corporation) C:\windows\SysWOW64\prnntfy.dll
2015-02-05 18:13 - 2014-07-24 09:20 - 00187392 _____ (Microsoft Corporation) C:\windows\system32\puiapi.dll
2015-02-05 18:13 - 2014-07-24 09:08 - 00162816 _____ (Microsoft Corporation) C:\windows\SysWOW64\puiapi.dll
2015-02-05 18:13 - 2014-07-24 08:49 - 00263680 _____ (Microsoft Corporation) C:\windows\system32\DafPrintProvider.dll
2015-02-05 18:13 - 2014-07-24 08:43 - 00200192 _____ (Microsoft Corporation) C:\windows\SysWOW64\DafPrintProvider.dll
2015-02-05 18:13 - 2014-05-13 08:01 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\BulkOperationHost.exe
2015-02-05 18:13 - 2014-03-06 07:27 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2015-02-05 18:12 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2015-02-05 18:12 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2015-02-05 18:11 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-02-05 18:11 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-02-05 18:11 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-02-05 18:11 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-02-05 18:11 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-02-05 18:11 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-02-05 18:11 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-02-05 18:11 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-02-05 18:11 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-02-05 18:11 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-02-05 18:11 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2015-02-05 18:11 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2015-02-05 18:11 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-02-05 18:11 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2015-02-05 18:11 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-02-05 18:11 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2015-02-05 18:11 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-02-05 18:11 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2015-02-05 18:11 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-02-05 18:11 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-02-05 18:11 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-02-05 18:11 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-02-05 18:11 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-02-05 18:11 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-02-05 18:11 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2015-02-05 18:11 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-02-05 18:11 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-02-05 18:11 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2015-02-05 18:11 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-02-05 18:11 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2015-02-05 18:11 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-02-05 18:11 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-02-05 18:11 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-02-05 18:11 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-02-05 18:11 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-02-05 18:11 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-02-05 18:11 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-02-05 18:11 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-02-05 18:11 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2015-02-05 18:11 - 2014-10-31 06:12 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2015-02-05 18:11 - 2014-10-31 06:12 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2015-02-05 18:11 - 2014-10-31 06:10 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2015-02-05 18:11 - 2014-10-31 06:09 - 00064512 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2015-02-05 18:11 - 2014-10-31 06:08 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2015-02-05 18:11 - 2014-10-31 06:06 - 00237568 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2015-02-05 18:11 - 2014-10-31 06:06 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-02-05 18:11 - 2014-10-31 06:06 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-02-05 18:11 - 2014-10-31 05:57 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-02-05 18:11 - 2014-10-31 05:56 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-02-05 18:11 - 2014-10-31 05:54 - 00132096 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2015-02-05 18:11 - 2014-10-31 05:53 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-02-05 18:11 - 2014-10-31 05:52 - 00108544 _____ (Microsoft Corporation) C:\windows\system32\hlink.dll
2015-02-05 18:11 - 2014-10-31 05:51 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-02-05 18:11 - 2014-10-31 05:51 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-02-05 18:11 - 2014-10-31 05:50 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-02-05 18:11 - 2014-10-31 05:40 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2015-02-05 18:11 - 2014-10-31 05:38 - 00490496 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-02-05 18:11 - 2014-10-31 05:30 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-02-05 18:11 - 2014-10-31 05:29 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2015-02-05 18:11 - 2014-10-31 05:29 - 00087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2015-02-05 18:11 - 2014-10-31 05:28 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2015-02-05 18:11 - 2014-10-31 05:25 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-02-05 18:11 - 2014-10-31 05:24 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2015-02-05 18:11 - 2014-10-31 05:19 - 00152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2015-02-05 18:11 - 2014-10-31 04:44 - 02865152 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2015-02-05 18:11 - 2014-10-31 04:42 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2015-02-05 18:11 - 2014-10-31 04:28 - 00137728 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2015-02-05 18:11 - 2014-10-31 04:28 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2015-02-05 18:11 - 2014-10-31 04:27 - 00152064 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2015-02-05 18:11 - 2014-10-31 04:26 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2015-02-05 18:11 - 2014-10-31 04:25 - 00011264 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2015-02-05 18:11 - 2014-10-31 04:24 - 00235520 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2015-02-05 18:11 - 2014-10-31 04:24 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2015-02-05 18:11 - 2014-10-31 04:23 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2015-02-05 18:11 - 2014-10-31 04:16 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2015-02-05 18:11 - 2014-10-31 04:15 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2015-02-05 18:11 - 2014-10-31 04:14 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2015-02-05 18:11 - 2014-10-31 04:13 - 00478208 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2015-02-05 18:11 - 2014-10-31 04:13 - 00099328 _____ (Microsoft Corporation) C:\windows\SysWOW64\hlink.dll
2015-02-05 18:11 - 2014-10-31 04:12 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2015-02-05 18:11 - 2014-10-31 04:11 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2015-02-05 18:11 - 2014-10-31 04:03 - 00027136 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2015-02-05 18:11 - 2014-10-31 04:02 - 00418304 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-02-05 18:11 - 2014-10-31 03:57 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-05 18:11 - 2014-10-31 03:56 - 00091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2015-02-05 18:11 - 2014-10-31 03:56 - 00090624 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2015-02-05 18:11 - 2014-10-31 03:56 - 00073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2015-02-05 18:11 - 2014-10-31 03:53 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2015-02-05 18:11 - 2014-10-31 03:53 - 00052736 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2015-02-05 18:11 - 2014-10-31 03:48 - 00130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2015-02-05 18:11 - 2014-10-31 03:26 - 01042944 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2015-02-05 18:11 - 2014-10-31 03:24 - 00040448 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2015-02-05 18:11 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-02-05 18:11 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-02-05 18:11 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2015-02-05 18:09 - 2014-12-08 20:42 - 00535640 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2015-02-05 18:09 - 2014-12-08 20:42 - 00531616 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2015-02-05 18:09 - 2014-12-08 20:42 - 00448792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2015-02-05 18:09 - 2014-12-08 20:42 - 00413248 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll
2015-02-05 18:09 - 2014-12-08 20:42 - 00372408 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll
2015-02-05 18:09 - 2014-12-08 20:42 - 00108944 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2015-02-05 18:09 - 2014-12-08 20:42 - 00038264 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2015-02-05 18:09 - 2014-12-08 20:42 - 00033584 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe
2015-02-05 18:09 - 2014-12-06 02:35 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\AudioEndpointBuilder.dll
2015-02-05 18:09 - 2014-10-29 05:00 - 00465320 _____ (Microsoft Corporation) C:\windows\system32\WerFault.exe
2015-02-05 18:09 - 2014-10-29 05:00 - 00139984 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2015-02-05 18:09 - 2014-10-29 04:52 - 00500016 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2015-02-05 18:09 - 2014-10-29 04:52 - 00482872 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2015-02-05 18:09 - 2014-10-29 04:52 - 00394120 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2015-02-05 18:09 - 2014-10-29 04:52 - 00272248 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2015-02-05 18:09 - 2014-10-29 04:12 - 00413136 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFault.exe
2015-02-05 18:09 - 2014-10-29 04:12 - 00136296 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2015-02-05 18:09 - 2014-10-29 04:07 - 00424544 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2015-02-05 18:09 - 2014-10-29 04:07 - 00370424 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2015-02-05 18:09 - 2014-10-29 04:07 - 00344536 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2015-02-05 18:09 - 2014-10-29 03:44 - 00037888 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2015-02-05 18:09 - 2014-10-29 02:59 - 00033280 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll
2015-02-05 18:09 - 2014-10-29 02:02 - 00911360 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2015-02-05 18:08 - 2014-05-31 11:06 - 00555736 _____ (Microsoft Corporation) C:\windows\system32\twinapi.appcore.dll
2015-02-05 18:08 - 2014-05-31 03:37 - 01054208 _____ (Microsoft Corporation) C:\windows\system32\twinui.appcore.dll
2015-02-05 18:08 - 2014-05-31 03:35 - 00828928 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinui.appcore.dll
2015-02-05 18:08 - 2014-05-01 14:31 - 00055328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\wpcfltr.sys
2015-02-05 18:08 - 2014-05-01 06:24 - 02834944 _____ (Microsoft Corporation) C:\windows\system32\wpccpl.dll
2015-02-05 18:08 - 2014-04-11 09:25 - 00419928 _____ (Microsoft Corporation) C:\windows\SysWOW64\twinapi.appcore.dll
2015-02-05 18:08 - 2014-04-11 06:53 - 00079872 _____ (Microsoft Corporation) C:\windows\system32\WSReset.exe
2015-02-05 18:06 - 2014-07-12 05:17 - 00623616 _____ (Microsoft Corporation) C:\windows\system32\MDMAgent.exe
2015-02-05 18:02 - 2015-02-05 18:02 - 00000000 ____D () C:\Users\Radka\Intel
2015-02-05 18:01 - 2015-02-05 18:01 - 00000624 _____ () C:\AMDinstall.log
2015-02-05 13:40 - 2015-02-05 13:40 - 00000000 __SHD () C:\Users\Guest\AppData\Local\EmieUserList
2015-02-05 13:40 - 2015-02-05 13:40 - 00000000 __SHD () C:\Users\Guest\AppData\Local\EmieSiteList
2015-02-04 21:18 - 2015-02-04 21:18 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-02-03 18:55 - 2015-02-03 18:55 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\WebApp
2015-02-03 18:52 - 2015-02-05 18:51 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\CyberLink
2015-02-03 18:52 - 2015-02-03 18:52 - 00000000 ____D () C:\Users\Radka\Documents\CyberLink
2015-02-03 16:21 - 2015-02-05 13:42 - 00002338 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2015-02-03 16:21 - 2015-02-03 16:21 - 00002398 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo Web Start.lnk
2015-02-03 16:21 - 2015-02-03 16:21 - 00002167 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk
2015-02-03 16:20 - 2015-02-03 16:20 - 00000000 ____D () C:\Users\Guest\AppData\Local\Lenovo
2015-02-03 16:19 - 2015-02-03 16:19 - 00000000 ____D () C:\Users\Guest\AppData\Local\Power2Go
2015-02-03 16:18 - 2015-02-10 21:43 - 00000000 ____D () C:\Users\Guest\AppData\Local\Pokki
2015-02-03 16:18 - 2015-02-10 17:55 - 00000000 ____D () C:\Users\Guest
2015-02-03 16:18 - 2015-02-05 13:42 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Hightail for Lenovo
2015-02-03 16:18 - 2015-02-03 16:18 - 00000020 ___SH () C:\Users\Guest\ntuser.ini
2015-02-03 16:18 - 2015-02-03 16:18 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\ATI
2015-02-03 16:18 - 2015-02-03 16:18 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Adobe
2015-02-03 16:18 - 2015-02-03 16:18 - 00000000 ____D () C:\Users\Guest\AppData\Local\VirtualStore
2015-02-03 16:18 - 2015-02-03 16:18 - 00000000 ____D () C:\Users\Guest\AppData\Local\Packages
2015-02-03 16:18 - 2015-02-03 16:18 - 00000000 ____D () C:\Users\Guest\AppData\Local\ATI
2015-02-03 16:18 - 2014-09-09 19:06 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Macromedia
2015-02-03 16:18 - 2014-03-18 11:06 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-03 16:18 - 2014-03-18 11:06 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-03 16:18 - 2014-03-18 10:54 - 00000369 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-02-03 16:18 - 2014-03-18 10:54 - 00000369 _____ () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-02-03 16:18 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-03 16:18 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-02 20:23 - 2015-02-06 20:08 - 00000000 ____D () C:\Users\Radka\AppData\Local\Adobe
2015-02-02 20:22 - 2015-02-05 18:32 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\LSC
2015-02-02 20:21 - 2015-02-02 20:21 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Nitro
2015-02-02 20:07 - 2015-02-02 20:07 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-02-02 19:57 - 2015-02-02 19:57 - 06656148 _____ () C:\Users\Radka\Downloads\Jellyfish.themepack
2015-02-02 19:33 - 2015-02-02 19:33 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-02-02 19:28 - 2015-02-05 18:32 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Nitro PDF
2015-02-02 19:26 - 2015-02-12 14:46 - 00003918 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{D0C49007-E4E3-43C3-BA4C-FD8417DA71CB}
2015-02-02 19:26 - 2015-02-02 19:26 - 00000000 __SHD () C:\Users\Radka\AppData\Local\EmieUserList
2015-02-02 19:26 - 2015-02-02 19:26 - 00000000 __SHD () C:\Users\Radka\AppData\Local\EmieSiteList
2015-02-02 19:25 - 2015-02-12 14:44 - 00000000 __RDO () C:\Users\Radka\OneDrive
2015-02-02 19:24 - 2015-02-11 20:55 - 00003598 _____ () C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-616210761-3564209405-3471508708-1001
2015-02-02 19:23 - 2015-02-02 19:23 - 00000000 ____D () C:\Users\Public\Pokki
2015-02-02 19:22 - 2015-02-05 18:31 - 00002183 _____ () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Menu.lnk
2015-02-02 19:22 - 2015-02-03 15:40 - 00002338 _____ () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2015-02-02 19:21 - 2015-02-02 19:24 - 00000000 ____D () C:\Users\Radka\AppData\Local\Lenovo
2015-02-02 19:21 - 2015-02-02 19:21 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\ATI
2015-02-02 19:21 - 2015-02-02 19:21 - 00000000 ____D () C:\Users\Radka\AppData\Local\ATI
2015-02-02 19:20 - 2015-02-02 19:20 - 00000000 ____D () C:\Users\Radka\AppData\Local\Power2Go
2015-02-02 19:19 - 2015-02-06 18:09 - 00000000 ____D () C:\windows\System32\Tasks\WPD
2015-02-02 19:19 - 2015-02-05 18:30 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Hightail for Lenovo
2015-02-02 19:18 - 2015-02-06 20:08 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Adobe
2015-02-02 19:18 - 2015-02-05 19:00 - 00000000 ____D () C:\Users\Radka\AppData\Local\Packages
2015-02-02 19:18 - 2015-02-02 19:18 - 00000000 ____D () C:\Users\Radka\AppData\Local\VirtualStore
2015-02-02 19:17 - 2015-02-11 20:45 - 00000000 ____D () C:\Users\Radka\AppData\Local\Pokki
2015-02-02 19:17 - 2015-02-07 18:01 - 00000000 ____D () C:\Users\Radka
2015-02-02 19:17 - 2015-02-02 19:17 - 00000020 ___SH () C:\Users\Radka\ntuser.ini
2015-02-02 19:17 - 2014-09-09 19:06 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Macromedia
2015-02-02 19:17 - 2014-03-18 11:06 - 00000000 ___RD () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-02 19:17 - 2014-03-18 11:06 - 00000000 ___RD () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-02 19:17 - 2014-03-18 10:54 - 00000369 _____ () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-02-02 19:17 - 2014-03-18 10:54 - 00000369 _____ () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-02-02 19:17 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-02 19:17 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Radka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-12 14:42 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\sru
2015-02-11 22:21 - 2014-09-09 19:28 - 00742750 _____ () C:\windows\system32\perfh005.dat
2015-02-11 22:21 - 2014-09-09 19:28 - 00155300 _____ () C:\windows\system32\perfc005.dat
2015-02-11 22:21 - 2014-03-18 10:53 - 01745984 _____ () C:\windows\system32\PerfStringBackup.INI
2015-02-11 22:17 - 2013-08-22 15:45 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-02-11 22:16 - 2013-08-22 14:25 - 00262144 ___SH () C:\windows\system32\config\BBI
2015-02-11 22:14 - 2014-09-09 18:56 - 00000000 ____D () C:\Program Files (x86)\Amazon
2015-02-11 19:47 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\AppReadiness
2015-02-11 19:26 - 2013-08-22 16:20 - 00000000 ____D () C:\windows\CbsTemp
2015-02-10 20:32 - 2014-09-09 18:41 - 00000000 ____D () C:\windows\jmesoft
2015-02-10 19:46 - 2013-08-22 14:25 - 00000336 _____ () C:\windows\win.ini
2015-02-10 19:44 - 2013-08-22 16:36 - 00000000 ___HD () C:\windows\ELAMBKUP
2015-02-10 18:02 - 2013-08-22 14:25 - 00262144 ___SH () C:\windows\system32\config\ELAM
2015-02-10 17:59 - 2014-09-09 18:54 - 00000000 ____D () C:\ProgramData\McAfee
2015-02-08 12:28 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\LiveKernelReports
2015-02-08 10:04 - 2013-08-22 15:44 - 00491360 _____ () C:\windows\system32\FNTCACHE.DAT
2015-02-07 19:39 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\rescache
2015-02-07 17:59 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-06 21:46 - 2014-03-18 10:38 - 00000000 ____D () C:\Program Files\Windows Journal
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\windows\ToastData
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\windows\ImmersiveControlPanel
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\SysWOW64\setup
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\SysWOW64\InputMethod
2015-02-06 21:46 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\setup
2015-02-06 21:46 - 2013-08-22 14:36 - 00000000 ____D () C:\windows\system32\oobe
2015-02-06 20:09 - 2014-09-09 19:06 - 00000000 ____D () C:\ProgramData\Adobe
2015-02-06 20:07 - 2014-09-09 19:06 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-02-06 19:46 - 2014-04-02 18:34 - 00000000 ____D () C:\windows\Panther
2015-02-06 18:59 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\sr-Latn-RS
2015-02-06 18:59 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\sr-Latn-CS
2015-02-06 18:58 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\SecureBootUpdates
2015-02-06 17:58 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\GroupPolicy
2015-02-05 21:35 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-05 21:35 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-02-05 21:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-02-05 21:35 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-02-05 21:11 - 2014-04-02 17:49 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2015-02-05 21:11 - 2014-03-18 10:38 - 00000000 ____D () C:\windows\ShellNew
2015-02-05 20:15 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\WinStore
2015-02-05 20:14 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\PolicyDefinitions
2015-02-05 20:14 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\MediaViewer
2015-02-05 20:14 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\FileManager
2015-02-05 20:14 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\Camera
2015-02-05 18:53 - 2014-09-09 19:06 - 00000000 ____D () C:\windows\System32\Tasks\Lenovo
2015-02-05 18:53 - 2014-09-09 18:54 - 00000000 ____D () C:\Program Files\Lenovo
2015-02-05 18:52 - 2014-09-09 18:58 - 00000000 ____D () C:\ProgramData\CyberLink
2015-02-05 18:52 - 2014-09-09 18:57 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2015-02-05 18:52 - 2014-09-09 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2015-02-05 18:52 - 2014-09-09 18:39 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-02-05 18:33 - 2014-09-09 18:58 - 00000000 ____D () C:\Program Files\CyberLink
2015-02-05 18:32 - 2014-09-09 19:07 - 00000000 ____D () C:\ProgramData\Lenovo
2015-02-05 18:29 - 2014-09-09 19:00 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2015-02-05 18:03 - 2014-09-09 18:41 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-02-05 18:03 - 2014-09-09 18:41 - 00000000 ____D () C:\windows\SysWOW64\RTCOM
2015-02-05 18:03 - 2014-09-09 18:39 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-02-05 18:01 - 2014-09-09 18:41 - 00000000 ____D () C:\windows\SysWOW64\sda
2015-02-05 17:59 - 2014-09-09 18:38 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-05 17:57 - 2013-08-22 16:36 - 00000000 ____D () C:\windows\system32\restore

==================== Files in the root of some directories =======

2014-09-09 18:41 - 2014-09-09 18:41 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-02-05 20:43 - 2015-02-05 20:58 - 0001234 _____ () C:\ProgramData\hpzinstall.log

Some content of TEMP:
====================
C:\Users\Radka\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Radka\AppData\Local\Temp\Quarantine.exe
C:\Users\Radka\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-09 18:31

==================== End Of Log ============================

[radka68]

A ještě ten Addition:



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-02-2015 02
Ran by Radka at 2015-02-12 14:56:35
Running from C:\Users\Radka\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Internet Security (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

1400 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
1400_Help (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
1400Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.245 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD Catalyst Install Manager (HKLM\...\{1B59FFED-0903-9AAA-9BA5-FBB0E062982E}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Bing Bar (HKLM-x32\...\{3611CA6C-5FCA-4900-A329-6A118123CCFC}) (Version: 7.1.355.0 - Microsoft Corporation)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
Driver & Application Installation (HKLM-x32\...\{BFECCF2A-F094-4066-8BFA-29CCBB7F6602}) (Version: 6.13.0621 - Lenovo)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation)
Lenovo Blacksilk USB Keyboard Driver (HKLM-x32\...\{B266E062-D6C5-485B-B426-51B152B041A6}) (Version: V1.6.13.0724 - Lenovo)
Malwarebytes Anti-Malware, âåðñèÿ 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Metric Collection SDK (x32 Version: 1.1.0005.00 - Lenovo Group Limited) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 cs)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 35.0.1 - Mozilla)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.6.0.32 - Symantec Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7106 - Realtek Semiconductor Corp.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Start Menu (HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Pokki_Start_Menu) (Version: 0.269.5.460 - Pokki)
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinRAR 5.01 beta 1 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.1 - win.rar GmbH)
Zoner Photo Studio 16 (HKLM\...\ZonerPhotoStudio16_CZ_is1) (Version: 16.0.1.7 - ZONER software)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

06-02-2015 18:52:58 McAfee Vulnerability Scanner
10-02-2015 18:12:36 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {21F3D454-8E67-4A9B-AB70-C37046F19140} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-02-13] (Lenovo)
Task: {2C5A7C7E-1393-4BED-98DA-FA22555A5057} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2014-12-31] (Microsoft Corporation)
Task: {2D06DE64-0B1B-4EF4-A4DE-1E074BFE3EC5} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {49BD3F5A-DE8B-41ED-8A93-AB241C5DBF05} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {8B0C32A6-AADB-4A1F-91A6-6628E0442A63} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {8B817E0E-5998-4EE1-99BC-5EE7B34FDBE7} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {900BB596-53AF-4B6C-A6D9-4274745A71E4} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)

==================== Loaded Modules (whitelisted) ==============

2014-09-09 18:41 - 2011-08-17 04:46 - 00032768 _____ () C:\Windows\jmesoft\Service.exe
2014-09-09 18:41 - 2011-08-17 04:46 - 00024576 _____ () C:\Windows\jmesoft\JME_LOAD.exe
2014-09-09 18:41 - 2011-05-17 21:27 - 00028672 _____ () C:\Windows\jmesoft\hidhook.dll
2015-02-05 20:37 - 2015-01-23 11:37 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Radka\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Radka\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 78.157.167.7 - 78.157.167.57

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-616210761-3564209405-3471508708-500 - Administrator - Disabled)
Danča (S-1-5-21-616210761-3564209405-3471508708-1004 - Limited - Enabled) => C:\Users\Danča
Guest (S-1-5-21-616210761-3564209405-3471508708-501 - Administrator - Enabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-616210761-3564209405-3471508708-1003 - Limited - Enabled)
Radka (S-1-5-21-616210761-3564209405-3471508708-1001 - Administrator - Enabled) => C:\Users\Radka

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/11/2015 07:48:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2 na řádku C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Součást 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Error: (02/11/2015 07:48:16 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2 na řádku C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Součást 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Error: (02/11/2015 07:36:56 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-616210761-3564209405-3471508708-1004}/>.

Error: (02/11/2015 07:28:04 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-616210761-3564209405-3471508708-1004}/>.

Error: (02/10/2015 09:49:56 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-616210761-3564209405-3471508708-1001}/>.

Error: (02/10/2015 08:29:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Spyhunter4.exe verze 4.18.9.4384 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: b20

Čas spuštění: 01d0456666f9d87d

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe

ID hlášení: 192cf032-b15b-11e4-826e-c03fd5eb0acc

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (02/10/2015 08:08:51 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2 na řádku C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Součást 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Error: (02/08/2015 07:37:08 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPIK)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/08/2015 07:19:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPIK)
Description: Aplikaci windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/08/2015 05:26:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KOMPIK)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (02/12/2015 02:44:19 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby MBAMScheduler bylo dosaženo časového limitu (30000 ms).

Error: (02/11/2015 10:17:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Cyberlink RichVideo64 Service(CRVS) neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MBAMService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Media Player Network Sharing Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restart the service.

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restart the service.

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BBUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Print Spooler byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restart the service.

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MBAMScheduler byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/11/2015 10:14:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba JME Keyboard Driver byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/11/2015 10:14:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel(R) Capability Licensing Service Interface byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restart the service.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2015-02-10 17:12:59.304
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-08 12:36:22.221
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-08 10:05:02.921
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-07 17:50:36.520
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-06 17:58:15.603
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-06 16:20:29.107
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-05 20:52:19.743
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-05 20:17:25.568
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-05 18:33:47.977
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-05 18:25:13.721
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU J1900 @ 1.99GHz
Percentage of memory in use: 35%
Total physical RAM: 3988.64 MB
Available physical RAM: 2581.45 MB
Total Pagefile: 4692.64 MB
Available Pagefile: 3031 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:905.25 GB) (Free:869.84 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 7B0CBB87)

Partition: GPT Partition Type.

==================== End Of Log ============================

[altrok]

Udelala jste to spravne

• Stahnete Crystal Disk Info (CDI) http://sourceforge.jp/frs/redir.php?m=j ... o6_2_2.zip
• archiv extrahujte a spustte vyextrahovany soubor DiskInfo.exe
• ve spustenem programu kliknete nahore na Upravy -> Kopirovat (log mate nyni zkopirovany ve schrance)
• log vlozte do dalsi odpovedi (Ctrl + V)

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CloseProcesses:
  HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
  HKLM-x32\...\Run: [] => [X]
  HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
  HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
  HKLM\...\Policies\Explorer: [NoFolderOptions] 0
  HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
  HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833024 2014-06-16] (ZONER software)
  GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
  CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
  
  HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
  HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
  HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
  HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  SearchScopes: HKU\S-1-5-21-616210761-3564209405-3471508708-1001 -> {2188637B-475D-4A69-BF55-6B8F939364DE} URL = 
  CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
  CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
  
  S2 RichVideo64; "C:\Program Files\CyberLink\Shared files\RichVideo64.exe" [X]
  
  2015-02-12 14:53 - 2015-02-12 14:53 - 00112640 _____ (forum.viry.cz) C:\Users\Radka\Desktop\frstlauncher.exe
  2015-02-12 14:53 - 2015-02-12 14:53 - 00015327 _____ () C:\Users\Radka\Desktop\LM.bat
  2015-02-11 22:04 - 2015-02-11 22:14 - 00000000 ____D () C:\AdwCleaner
  2015-02-11 22:01 - 2015-02-11 22:01 - 02112512 _____ () C:\Users\Radka\Desktop\adwcleaner_4.110.exe
  2015-02-11 20:23 - 2015-02-11 20:23 - 00000000 ____D () C:\rsit
  2015-02-11 20:23 - 2015-02-11 20:23 - 00000000 ____D () C:\Program Files\trend micro
  2015-02-11 20:21 - 2015-02-11 20:22 - 01222144 _____ () C:\Users\Radka\Desktop\RSITx64.exe
  Hosts:
  EmptyTemp:
  End
  

[radka68]

Disk info:


----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2015/02/12 15:31:30

-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- WDC WD10EZEX-08M2NA0
- HL-DT-ST DVD-RAM GHC0N
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD10EZEX-08M2NA0 : 1000,2 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD10EZEX-08M2NA0
----------------------------------------------------------------------------
Model : WDC WD10EZEX-08M2NA0
Firmware : 01.01A01
Serial Number : WD-WMC3F0E6ULN3
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 35 hod.
Power On Count : 25 krát
Temperature : 35 C (95 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 174 173 _21 0000000008EB Čas na roztočení ploten
04 100 100 __0 000000000019 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 100 100 __0 000000000023 Hodin v činnosti
0A 100 253 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 253 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 000000000019 Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000009 Počet vypnutí disku
C1 200 200 __0 000000000012 Počet cyklů načítání/vymazání
C2 108 106 __0 000000000023 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 574D 4333 4630 4536 554C 4E33
020: 0000 0000 0000 3031 2E30 3141 3031 5744 4320 5744
030: 3130 455A 4558 2D30 384D 324E 4130 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 9D0E 0004 0044 0040
080: 03FE 001F 346B 7D01 6123 3469 BC01 6123 203F 003D
090: 003D 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5001 4EE0
110: 03E1 BB85 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3035 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 8EA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 AE AD EB 08 00 00 00 00 00 04 32 00 64 64 19
020: 00 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 64 64 23 00 00 00 00 00 00 0A 32 00 64 FD 00
050: 00 00 00 00 00 00 0B 32 00 64 FD 00 00 00 00 00
060: 00 00 0C 32 00 64 64 19 00 00 00 00 00 00 C0 32
070: 00 C8 C8 09 00 00 00 00 00 00 C1 32 00 C8 C8 12
080: 00 00 00 00 00 00 C2 22 00 6C 6A 23 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 64 FD 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 80 00 88 2C 01 7B
170: 03 00 01 00 02 76 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 16

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D

[radka68]

Fixlog:


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-02-2015 02
Ran by Radka at 2015-02-12 15:50:08 Run:1
Running from C:\Users\Radka\Desktop
Loaded Profiles: Radka (Available profiles: Radka & Danča & Guest)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833024 2014-06-16] (ZONER software)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-616210761-3564209405-3471508708-1001 -> {2188637B-475D-4A69-BF55-6B8F939364DE} URL =
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - No Path

S2 RichVideo64; "C:\Program Files\CyberLink\Shared files\RichVideo64.exe" [X]

2015-02-12 14:53 - 2015-02-12 14:53 - 00112640 _____ (forum.viry.cz) C:\Users\Radka\Desktop\frstlauncher.exe
2015-02-12 14:53 - 2015-02-12 14:53 - 00015327 _____ () C:\Users\Radka\Desktop\LM.bat
2015-02-11 22:04 - 2015-02-11 22:14 - 00000000 ____D () C:\AdwCleaner
2015-02-11 22:01 - 2015-02-11 22:01 - 02112512 _____ () C:\Users\Radka\Desktop\adwcleaner_4.110.exe
2015-02-11 20:23 - 2015-02-11 20:23 - 00000000 ____D () C:\rsit
2015-02-11 20:23 - 2015-02-11 20:23 - 00000000 ____D () C:\Program Files\trend micro
2015-02-11 20:21 - 2015-02-11 20:22 - 01222144 _____ () C:\Users\Radka\Desktop\RSITx64.exe
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoFolderOptions => value deleted successfully.
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-616210761-3564209405-3471508708-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Zoner Photo Studio Autoupdate => value deleted successfully.
C:\windows\system32\GroupPolicy\Machine => Moved successfully.
C:\windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => Value was restored successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-616210761-3564209405-3471508708-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2188637B-475D-4A69-BF55-6B8F939364DE}" => Key deleted successfully.
HKCR\CLSID\{2188637B-475D-4A69-BF55-6B8F939364DE} => Key not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\iikflkcanblccfahdhdonehdalibjnif" => Key deleted successfully.
RichVideo64 => Service deleted successfully.
C:\Users\Radka\Desktop\frstlauncher.exe => Moved successfully.
C:\Users\Radka\Desktop\LM.bat => Moved successfully.
C:\AdwCleaner => Moved successfully.
"C:\Users\Radka\Desktop\adwcleaner_4.110.exe" => File/Directory not found.
C:\rsit => Moved successfully.
C:\Program Files\trend micro => Moved successfully.
"C:\Users\Radka\Desktop\RSITx64.exe" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 98.7 MB temporary data.


The system needed a reboot.

==== End of Fixlog 15:50:21 ====

[altrok]

Takze jeste uklidime.

• Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
• Oznacte jen moznost "Remove disinfection tools"
• kliknete na Run

A pokud nejsou dotazy ci jine problemy, je to ode mne vse.

[radka68]

Mockrát děkuji za Vaši ochotu, jste vážně moc hodný

Jenom bych měla ještě menší dotaz ohledně jedné věci, která se mi zobrazuje na počítači při spuštění startové nabídky. Objevuje se nějaké načítání na ikoně a při přemístění kurzoru myši na ikonu startové nabídky vyskočí pojmenování s názvem Pokki Menu. Nic se neděje, ale pokud se ho pokusím ukončit, start se zasekne a nejde znova spustit. Na internetu jsem si přečetla, že je to klasická aplikace Windows 8, ale někdy může být považována za nežádoucí program typu malware nebo spyware. Je to něco závažnějšího, čeho bych se měla bát?

[altrok]

Je to presne jak pisete - nekdy je povazovana za nezadouci (potencialne nechtenou) a proto ji adwcleaner smazal. Osobne jsem netestoval, jestli se jedna o skodnou nebo ne... Pokud Vam jde o nabidku Start (ktera Vam ted pravdepodobne nefunguje), existuji alternativy. Doporucuji se vyhnout IObitu jinak by mely byt vsechny neskodne http://www.zive.cz/clanky/8-alternativn ... fault.aspx

Zkuste Pokki odinstalovat (pokud to vubec pujde) a nainstalovat jinou.