zavirovany pocitac

Zpráva

fasirek · #1 Příspěvek od **fasirek** » 24 kvě 2015 18:00

Zdravím, prosím o kontrolu logu. Denisa

Logfile of random's system information tool 1.10 (written by random/random)
Run by Denisa at 2015-05-24 18:47:55
Microsoft Windows 8.1
System drive C: has 311 GB (45%) free of 695 GB
Total RAM: 3911 MB (17% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:48:05, on 24. 5. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
C:\Program Files (x86)\yellow cabs\yellow_cabs_notification_service.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
C:\Program Files (x86)\iTunes\iTunes.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_17_0_0_169.exe
C:\Users\Denisa\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\ATH.exe
C:\Program Files (x86)\Techgile\bin\Techgile.BrowserAdapter.exe
C:\Program Files (x86)\Techgile\bin\Techgile.BOASHelper.exe
C:\Program Files (x86)\Techgile\bin\Techgile.expext.exe
C:\Users\Denisa\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Denisa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.yahoo.com/?fr=hp-ddc-bd&t ... syc_bd_com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... chTerms%7D
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: CrossriderApp0062180 - {11111111-1111-1111-1111-110611211180} - C:\Program Files (x86)\GoHD\GoHD-bho.dll
O2 - BHO: Techgile 1.0.0.7 - {7d2cbfb4-dfcd-4282-841a-c2a2a5299d7e} - C:\Program Files (x86)\Techgile\TechgileBHO.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [SpeedItupFree] "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
O4 - HKCU\..\Run: [Yahoo! Search] C:\Users\Denisa\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe -update plugin
O4 - Startup: MyPC Backup.lnk = C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Computer Backup (MyPC Backup) (BackupStack) - Just Develop It - C:\Program Files (x86)\MyPC Backup\BackupStack.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MaintainerSvc4.29.2173613 - Unknown owner - C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669\maintainer.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: RBClientService - Systweak - C:\Program Files (x86)\Right Backup\RBClientService.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Techgile - Unknown owner - C:\Program Files (x86)\Techgile\updateTechgile.exe
O23 - Service: Util Techgile - Unknown owner - C:\Program Files (x86)\Techgile\bin\utilTechgile.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13208 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-1.job - C:\Program Files (x86)\GoHD\GoHD-codedownloader.exe /rawdata=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
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-11.job - C:\Program Files (x86)\GoHD\cb91448f-4adb-4089-8201-e3e4cf11763a-11.exe /rawdata=grivScUdd0AOQt5c+qWjWcj0s6Tl68zZaDBVUWcvmWC4HfEFVTFmdpEyWnTWTfOB6WKzjKeNI/eSixXtj/9pdd5Gf7y3AelchiM+YdjpY1pkMH3cTe3fBL1QR6jcH0Vue3p8K6dljdCPkszq9WmRyHj1Rbg3Yl3j1bOuym3SLCheRbh6q8eI4AqaEg6jnpJ8MWdMJgJdjXNw6fp07/uJGb/3xM857ZB8CqXF0p7SPjINuorKkMelSwP687Ij2DafWSZnml4BBv+KpR9SI+AvhHxzzG7AshieScOKNQKYXg4q6E6CSClKrNMRx9NMxxe1kLV8xqMp0HPS+Zrc6++tDEV2i6qX7OqZ7kHMFkAqC3oXDSueIvdyFoGTLBzEhCVblVcla4QIYU9RLjqD95lB36Yi4tiuBYm7MttLM0VOz3oy7Bq28yegqlkxAcI0rBhVvvKGRFNMW+2FZv6pCYEj7rH88k7zBMjLO8vGFY3HjOzBKw2McX0Vt7Mp5PcN2SI4k78ZSBIPle06ri8ZFrAnK+DtcsEcuCl3kcjwR98pNScnnlkVOvc5mhHh67qHELx4NordChUYUFTvnzqStUBvggJ2pdEtURL4OETinaiaw6FKRuQAeGpiTeGr4/oDnBQM8hwJ9NeACTqkWe8OIDW4zX4/kgvKwI+dJDL530t60XZd/vixT8kGaAM/Q/2davJDdakCHu6xy/uZ5geAP4i4vMDwzBDy08XZTahQcFLqtgEpym5bDa3bElq7EjvPurrQaY8ICKo8xJ9WkDbELqQIo3K22miIi0RRFYnS5fdZMFPlyJrRp3z0lrWgPg/eb+ntBmApojhTJr2UGpyS9zJI4RDapL4wqDzlCLbaAqkBUQWaBRnrAwHfsodSYBazxI5t5SxPzghnyE0B5BBFdPTAU4ugQDp3Qu/CtGaeJn07rXOhtOA99n6UtqZBz3orJ2TisVYueHFATukos6dxUl5IrQWw2qsiC+Mt2RWhBNjMYmtEpCEV3pRv3+Dd/LqMkLQuxnJi8EKQ1ltkTTphDdNyZS8ffvPPosFTR6IO2Tlt99WUBbaVq4nfr76erXI9nE8/JOUpARebkIZvxDd0JCNBNOYk7PuWo3GDJ4zGL4Vshwmf3B7WjLAvg5GPpbyeqotKqmhgrzQFz3DqOXVGXMsSVZXQO5tzC+XoZJAINKueU6YVcTt74/jr3uErE8cjNdL6WDCR6kpwlwHWLxCEFsVsG7EbQbaGum9AXfpYES6HKbQlk6CTAJ0qJPEPYc7MLjE+8waT0TPtVaQF3d9Q4ENMEYSZoIG4jo0bVBjn0Y6hdn4Q9y0WK+6gkGGrJRYOKr04e3oGTqUeXd6aZNJlisbOI1bF0MLXNqMhOMOBds3S/OLVJ3LCr2LCQf8BAFg+7F14c1W3cG+lb9tvnH2OSVd8BXPlrFCE9poBdw4atLG/rRUO54G0qMIjqaCBDsCHVCPnTF+xsEddOe43bLfDOpkFE3VZzxuXzIpwZSsP+mbTenBVQrtbNrVLduVHNjKuC19Ermc3tnSsHv+E9w8MfIG2i0+b5Shch7Q8RgwzqKd8t0Gp78Fahv4jlzesLg464qWItpMCGYesFfEpWKMRymwp263zxQFosotYtATnGckCX/cj9m0HJa0YWM8XF2qwxlIB8FCSQmt7wzX4ucgDnmwlIjraXkKq+bi0YRC1V1sG/0YNhw92ChnAcTS4qL5Ni/hN5YADGh5XWGKRxMIUv7H6si/H111eXyFrr/6NVtG4vqH4qreY55vkWpfKvSO1Pv+99Rs+iHYb/MMegll5ijxEO/ivihEFB/YhbqpqAZvkXuCReaSQeMwfqcKIXygC17p2o7lB1V4Upb0li4VY3IAQXFOoBQ8LRQS6hvVyLz+WPo/gEBC/osF+yjjwD3PEqtcvuFYSkYHJWb3gwS/RhKY9Jt4D5XgHCuZMDxno7onAl2yxgwezvaFC/SvWKO/TleMFBGlKmMEvJTFIgLP40uNHxjBk5Nb8lxaKAFj4xXD/0IHTFX4f/tdKXGiV7dF7rYob
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-4.job - C:\Program Files (x86)\GoHD\cb91448f-4adb-4089-8201-e3e4cf11763a-4.exe /rawdata=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
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-5.job - C:\Program Files (x86)\GoHD\cb91448f-4adb-4089-8201-e3e4cf11763a-5.exe /rawdata=tDDKrHDRV8ZAtgtB765ovaAzPitLc/JC9dvuEd7eRtj+8c/LOR5VZ110pOivmnJBXvrj85jOUtN8Ya1Ga0Xbb5dEl3AmOOjRkg6eyks6tWtpGJfcbXWjIy/eLZXczC26OSYccLUEj2vfkbSmX4aAa+n7JUzL271aRNQnXUyxe8+ccQ+crYFd0N9ubvJ+h7gG+vb2HYHckXdBkh1z31pKmoj3wjtJXRBmlB5TpymiIyxoCWvQQuptlIxrDgzMvF/AWK4FCyudMmzPfOkrwY2Z75R5fvNAa+PJcV/xgTJk3WLyyzeizzxzYQN/0Y4Fec6yWtE+YSo0yqfbtihR1xQRqAHS7hT48Q+far8uwWZbFXQHH1kAsGcrrtxiybADmkQWWvRbu2UF6TO7nnFvMDIMeRQDGNxL+OnWbaS7Dl2qWDi7wwRj0mmUKxAQzN6GWku+UYtiay+5v6JGtnY9U5Sy56bHL1Kq4NjOig17bMjf7dkOJeAfr6nCJEYKIulDutaVnryRpNWv0Tg8XLd6nlsxJzFkVlBlE7n0UDVRJT1sYLc4IMxn/a1X7RMDBhig3OKhLq2QbV6VGtQRkjLKPfPzG4zf9ajLVXYoWGdaJSOnFYXjUMoKTrR/V0ccq34Vu7NPonToRJBK6K8oi+1rNAoBxxT0o4HmKEcrp/7vVotPVo+iCrYOC77IryaseDRhcUEHQbWmy4dqeYBTwSFbJnqbgRYStp7X0avmMqCWG+4aNxvMXnNSLiRybedOsMGfTbNAPChiYotsmUv3r8QFB+as6LY1LXqi2xCaLLZ9qesc68MawaJEDHhnQsS+1Ctns4a/VtyvlGgCHqn8L48TV8G8R0ehU6nOqb2e3VKGc3CV9rBjaTneQVoomtDHxU1k9zLyeB2YQm1/e5H1e6oCs4aA8nRj4uKJqKZ2yv8TusLB0YW2Ulanq7VuTrjmQsfPyX3hWQmQUaMCqRJQAtxu/jViWNPJGw79tQq8oEHXkrB+sMQdXCbhqVxY20d0miQhAPYA
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-5_user.job - C:\Program Files (x86)\GoHD\cb91448f-4adb-4089-8201-e3e4cf11763a-5.exe /rawdata=tDDKrHDRV8ZAtgtB765ovaAzPitLc/JC9dvuEd7eRtj+8c/LOR5VZ110pOivmnJBXvrj85jOUtN8Ya1Ga0Xbb5dEl3AmOOjRkg6eyks6tWtpGJfcbXWjIy/eLZXczC26OSYccLUEj2vfkbSmX4aAa+n7JUzL271aRNQnXUyxe8+ccQ+crYFd0N9ubvJ+h7gG+vb2HYHckXdBkh1z31pKmoj3wjtJXRBmlB5TpymiIyxoCWvQQuptlIxrDgzMvF/AWK4FCyudMmzPfOkrwY2Z75R5fvNAa+PJcV/xgTJk3WLyyzeizzxzYQN/0Y4Fec6yWtE+YSo0yqfbtihR1xQRqAHS7hT48Q+far8uwWZbFXQHH1kAsGcrrtxiybADmkQWWvRbu2UF6TO7nnFvMDIMeRQDGNxL+OnWbaS7Dl2qWDi7wwRj0mmUKxAQzN6GWku+UYtiay+5v6JGtnY9U5Sy56bHL1Kq4NjOig17bMjf7dkOJeAfr6nCJEYKIulDutaVnryRpNWv0Tg8XLd6nlsxJzFkVlBlE7n0UDVRJT1sYLc4IMxn/a1X7RMDBhig3OKhLq2QbV6VGtQRkjLKPfPzG4zf9ajLVXYoWGdaJSOnFYXjUMoKTrR/V0ccq34Vu7NPonToRJBK6K8oi+1rNAoBxxT0o4HmKEcrp/7vVotPVo+iCrYOC77IryaseDRhcUEHQbWmy4dqeYBTwSFbJnqbgRYStp7X0avmMqCWG+4aNxvMXnNSLiRybedOsMGfTbNAPChiYotsmUv3r8QFB+as6LY1LXqi2xCaLLZ9qesc68MawaJEDHhnQsS+1Ctns4a/VtyvlGgCHqn8L48TV8G8RwhMXTNTh+4Zk2DLwil4jihLMJ70uXcXRAyAXAnqXK97cmq4KGK+I0zwN3XKeK1w0Q3PXxA4pEBAeGLGEkCIcIzA+CV+IYXGpMdX+yvSypTSlYp7OY2VBe+yiUWICjrJ72+tijkLoJ0nEv1B3aWIU5LdRB+D9sxOdEFwLcX0+Jm5WLj2ycqCsU/zFX5axHdaedgmA//WDpznDhPjVm5x6I+E37ENeilarl1K3eoAnQfxt6FdJ5BgZvY0ipXSJ7fncOs5C8hdCmjMEm9O/v9PLDvwlOzz+K6LY/6oQ87EgCyus9LtOeIcVqgdX3Brj0Y/6yoc1Z0diqg0Ete0yNc6Yjs=
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-6.job - C:\Program Files (x86)\GoHD\cb91448f-4adb-4089-8201-e3e4cf11763a-6.exe /rawdata=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
C:\WINDOWS\tasks\cb91448f-4adb-4089-8201-e3e4cf11763a-7.job - C:\Program Files (x86)\GoHD\cb91448f-4adb-4089-8201-e3e4cf11763a-7.exe /rawdata=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
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\MFTMTSAoYFZbZye3vWm.job - C:\Users\Denisa\AppData\Roaming\MFTMTSAoYFZbZye3vWm.exe --c=aLhzKOTYo6DaRWGTd6/49SWDi04dtYOABdGVvdN9+6axMjrYNQ5OVf3T1VJirJne/RcFuFI4Mz2znkfjTV/cZR9IxQz9eXh/KJXMXv8OHIzgt0OaOwmyC2R76RDISb/gpL+2xzgalT+mrjChbXhiU3krJtdKy7zVmpyQ0r/5vk4rhsN6BToQ4BcuYeEC1Y2QlfEcaJS0HDy/n7s9YlyDYAM/ZYoUv7nOLn2ix+4mOjoJAWNI5bJFPQ9Vs/wC3qOpOMeORTfjasTb9SAzsSYXTa2vvVrttVShZ4cKkvNsTprOp02wFo5AktGIwHuJ6xZ01vxRYZKuDQE6vPpYUElbKQ==
C:\WINDOWS\tasks\PC Optimizer Pro64 Scan.job - C:\Program Files\PC Optimizer Pro\StartApps.exe -t
C:\WINDOWS\tasks\PC Optimizer Pro64 startups.job - C:\Program Files\PC Optimizer Pro\StartApps.exe -sm
C:\WINDOWS\tasks\Power Suite (Tray).job - C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
C:\WINDOWS\tasks\Power Suite.job - C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe -task
C:\WINDOWS\tasks\simplitec Power Suite.job - C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe -task
C:\WINDOWS\tasks\WebReg HP PSC 1310 series.job - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe "HP PSC 1310 series"
C:\WINDOWS\tasks\yellow_cabs_notification_service.job - C:\Program Files (x86)\yellow cabs\yellow_cabs_notification_service.exe /url='http://cdn.selectbestopt.com/notf_sys/index.html' /crregname='yellow cabs' /appid='73143' /srcid='2913' /bic='9698dcdc74defa0f4d8816de737112a0' /verifier='8df6c2459e7830285af20eeca2a630d3' /installerversion='1.50.3.10' /statsdomain='http://stats.buildomserv.com/data.gif?' /errorsdomain='http://stats.buildomserv.com/data.gif?' /monetizationdomain='http://logs.buildomserv.com/monetization.gif?' /installationtime='1428252547' /runfrom='task' /brwtype='notbg' /postponedhours='6'
C:\WINDOWS\tasks\yellow_cabs_updating_service.job - C:\Program Files (x86)\yellow cabs\yellow_cabs_updating_service.exe /campid=2913 /verid=1 /url=http://cdn.buildomserv.com/txt/@CAMPID@/@VER@/file.txt /appid=73143 /taskname=yellow_cabs_updating_service /funurl=http://stats.buildomserv.com

=========Mozilla firefox=========

ProfilePath - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default

prefs.js - "browser.startup.homepage" - "http://search.yahoo.com/?fr=hp-ddc-bd&t ... syc_bd_com"
prefs.js - "keyword.URL" - "http://search.yahoo.com/yhs/search?hspa ... _bd_com&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 17.0.0.169 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App V2 Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll

C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\extensions\
ajtNoaD@gmail.com
openbookmarkintab@piro.sakura.ne.jp
sonnypenn@aol.com
staged

C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\searchplugins\
dsrlte.xml
search-simple.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}]
GoHD - C:\Program Files (x86)\GoHD\GoHD-bho.dll [2014-09-08 556904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7d2cbfb4-dfcd-4282-841a-c2a2a5299d7e}]
Techgile 1.0.0.7 - C:\Program Files (x86)\Techgile\TechgileBHO.dll [2015-01-27 269040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LManager"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2010-06-09 49208]
""= []
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2014-09-01 152392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpeedItupFree"=C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe []
"Yahoo! Search"=C:\Users\Denisa\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe [2015-03-28 644352]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe [2015-04-14 927920]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE

C:\Users\Denisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MyPC Backup.lnk - C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"vidc.cvid"=iccvid.dll
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2015-05-24 18:47:56 ----D---- C:\Program Files (x86)\trend micro
2015-05-24 18:47:55 ----D---- C:\rsit
2015-05-14 00:59:57 ----A---- C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-14 00:39:07 ----A---- C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 00:19:06 ----A---- C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-14 00:18:44 ----A---- C:\WINDOWS\SysWOW64\certcli.dll
2015-05-14 00:18:14 ----A---- C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-14 00:18:11 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-14 00:18:03 ----A---- C:\WINDOWS\SysWOW64\SRH.dll
2015-05-14 00:18:01 ----A---- C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-14 00:18:00 ----A---- C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-14 00:17:59 ----A---- C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-14 00:17:58 ----A---- C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-14 00:17:55 ----A---- C:\WINDOWS\SysWOW64\schannel.dll
2015-05-14 00:17:55 ----A---- C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-14 00:17:53 ----A---- C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-14 00:17:49 ----A---- C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-14 00:17:47 ----A---- C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-14 00:17:45 ----A---- C:\WINDOWS\SysWOW64\wininet.dll
2015-05-14 00:17:45 ----A---- C:\WINDOWS\SysWOW64\jscript.dll
2015-05-14 00:17:44 ----A---- C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-14 00:17:44 ----A---- C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-14 00:17:44 ----A---- C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-14 00:17:44 ----A---- C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-14 00:17:43 ----A---- C:\WINDOWS\SysWOW64\dxtrans.dll
2015-04-24 03:26:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-04-18 01:26:28 ----D---- C:\Users\Denisa\AppData\Roaming\Opera Software
2015-04-17 22:31:20 ----A---- C:\WINDOWS\SysWOW64\msctf.dll
2015-04-17 22:23:01 ----A---- C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2015-04-17 22:19:58 ----A---- C:\WINDOWS\SysWOW64\packager.dll
2015-04-17 22:19:58 ----A---- C:\WINDOWS\SysWOW64\msihnd.dll
2015-04-17 22:19:57 ----A---- C:\WINDOWS\SysWOW64\msxml3.dll
2015-04-17 22:19:57 ----A---- C:\WINDOWS\SysWOW64\msi.dll
2015-04-17 22:19:43 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-04-17 22:19:28 ----A---- C:\WINDOWS\SysWOW64\wmp.dll
2015-04-17 22:19:12 ----A---- C:\WINDOWS\SysWOW64\twinui.dll
2015-04-17 22:19:05 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-04-17 22:19:04 ----A---- C:\WINDOWS\SysWOW64\mstscax.dll
2015-04-17 22:19:02 ----A---- C:\WINDOWS\SysWOW64\glcndFilter.dll
2015-04-17 22:19:00 ----A---- C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-04-17 22:18:59 ----A---- C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-04-17 22:18:50 ----A---- C:\WINDOWS\SysWOW64\mfcore.dll
2015-04-17 22:18:49 ----A---- C:\WINDOWS\SysWOW64\d2d1.dll
2015-04-17 22:18:47 ----A---- C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-04-17 22:18:44 ----A---- C:\WINDOWS\SysWOW64\esent.dll
2015-04-17 22:18:43 ----A---- C:\WINDOWS\SysWOW64\rdpcore.dll
2015-04-17 22:18:41 ----A---- C:\WINDOWS\SysWOW64\user32.dll
2015-04-17 22:18:39 ----A---- C:\WINDOWS\SysWOW64\WMVCORE.DLL
2015-04-17 22:18:39 ----A---- C:\WINDOWS\SysWOW64\msxml6.dll
2015-04-17 22:18:38 ----A---- C:\WINDOWS\SysWOW64\tquery.dll
2015-04-17 22:18:37 ----A---- C:\WINDOWS\SysWOW64\mssrch.dll
2015-04-17 22:18:35 ----A---- C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-04-17 22:18:30 ----A---- C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-04-17 22:18:28 ----A---- C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-04-17 22:18:26 ----A---- C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-04-17 22:18:26 ----A---- C:\WINDOWS\SysWOW64\d3d9.dll
2015-04-17 22:18:23 ----A---- C:\WINDOWS\SysWOW64\combase.dll
2015-04-17 22:18:21 ----A---- C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2015-04-17 22:18:19 ----A---- C:\WINDOWS\SysWOW64\d3d11.dll
2015-04-17 22:18:15 ----A---- C:\WINDOWS\SysWOW64\CertEnroll.dll
2015-04-17 22:18:13 ----A---- C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-04-17 22:18:12 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-04-17 22:18:12 ----A---- C:\WINDOWS\SysWOW64\ole32.dll
2015-04-17 22:18:11 ----A---- C:\WINDOWS\SysWOW64\mmcndmgr.dll
2015-04-17 22:18:11 ----A---- C:\WINDOWS\SysWOW64\dui70.dll
2015-04-17 22:18:10 ----A---- C:\WINDOWS\SysWOW64\Wpc.dll
2015-04-17 22:18:09 ----A---- C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2015-04-17 22:18:08 ----A---- C:\WINDOWS\SysWOW64\quartz.dll
2015-04-17 22:18:07 ----A---- C:\WINDOWS\SysWOW64\winmde.dll
2015-04-17 22:18:07 ----A---- C:\WINDOWS\SysWOW64\MSVidCtl.dll
2015-04-17 22:18:05 ----A---- C:\WINDOWS\SysWOW64\storagewmi.dll
2015-04-17 22:18:05 ----A---- C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-04-17 22:18:04 ----A---- C:\WINDOWS\SysWOW64\xpsrchvw.exe
2015-04-17 22:18:01 ----A---- C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-04-17 22:17:59 ----A---- C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-04-17 22:17:58 ----A---- C:\WINDOWS\SysWOW64\xpsservices.dll
2015-04-17 22:17:57 ----A---- C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-04-17 22:17:57 ----A---- C:\WINDOWS\SysWOW64\blackbox.dll
2015-04-17 22:17:56 ----A---- C:\WINDOWS\SysWOW64\webservices.dll
2015-04-17 22:17:53 ----A---- C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-04-17 22:17:53 ----A---- C:\WINDOWS\SysWOW64\OpcServices.dll
2015-04-17 22:17:52 ----A---- C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-04-17 22:17:50 ----A---- C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-04-17 22:17:47 ----A---- C:\WINDOWS\SysWOW64\pla.dll
2015-04-17 22:17:46 ----A---- C:\WINDOWS\SysWOW64\drmv2clt.dll
2015-04-17 22:17:45 ----A---- C:\WINDOWS\SysWOW64\psapi.dll
2015-04-17 22:17:45 ----A---- C:\WINDOWS\SysWOW64\mmc.exe
2015-04-17 22:17:43 ----A---- C:\WINDOWS\SysWOW64\XpsPrint.dll
2015-04-17 22:17:43 ----A---- C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-04-17 22:17:42 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2015-04-17 22:17:41 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-04-17 22:17:40 ----A---- C:\WINDOWS\SysWOW64\comsvcs.dll
2015-04-17 22:17:39 ----A---- C:\WINDOWS\SysWOW64\WMPDMC.exe
2015-04-17 22:17:39 ----A---- C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-04-17 22:17:37 ----A---- C:\WINDOWS\SysWOW64\sbe.dll
2015-04-17 22:17:36 ----A---- C:\WINDOWS\SysWOW64\WMNetMgr.dll
2015-04-17 22:17:36 ----A---- C:\WINDOWS\SysWOW64\mfplat.dll
2015-04-17 22:17:36 ----A---- C:\WINDOWS\SysWOW64\mfnetcore.dll
2015-04-17 22:17:35 ----A---- C:\WINDOWS\SysWOW64\mispace.dll
2015-04-17 22:17:34 ----A---- C:\WINDOWS\SysWOW64\sqlceqp40.dll
2015-04-17 22:17:32 ----A---- C:\WINDOWS\SysWOW64\propsys.dll
2015-04-17 22:17:32 ----A---- C:\WINDOWS\SysWOW64\KernelBase.dll
2015-04-17 22:17:31 ----A---- C:\WINDOWS\SysWOW64\WMADMOD.DLL
2015-04-17 22:17:29 ----A---- C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-04-17 22:17:29 ----A---- C:\WINDOWS\SysWOW64\RacEngn.dll
2015-04-17 22:17:27 ----A---- C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2015-04-17 22:17:24 ----A---- C:\WINDOWS\SysWOW64\WebcamUi.dll
2015-04-17 22:17:24 ----A---- C:\WINDOWS\SysWOW64\mf.dll
2015-04-17 22:17:23 ----A---- C:\WINDOWS\SysWOW64\WWAHost.exe
2015-04-17 22:17:19 ----A---- C:\WINDOWS\SysWOW64\taskschd.dll
2015-04-17 22:17:18 ----A---- C:\WINDOWS\SysWOW64\gdi32.dll
2015-04-17 22:17:18 ----A---- C:\WINDOWS\SysWOW64\evr.dll
2015-04-17 22:17:17 ----A---- C:\WINDOWS\SysWOW64\winhttp.dll
2015-04-17 22:17:16 ----A---- C:\WINDOWS\SysWOW64\uxtheme.dll
2015-04-17 22:17:15 ----A---- C:\WINDOWS\SysWOW64\ogldrv.dll
2015-04-17 22:17:15 ----A---- C:\WINDOWS\SysWOW64\comdlg32.dll
2015-04-17 22:17:14 ----A---- C:\WINDOWS\SysWOW64\setupapi.dll
2015-04-17 22:17:14 ----A---- C:\WINDOWS\SysWOW64\d3d8.dll
2015-04-17 22:17:13 ----A---- C:\WINDOWS\SysWOW64\wmdrmdev.dll
2015-04-17 22:17:13 ----A---- C:\WINDOWS\SysWOW64\StructuredQuery.dll
2015-04-17 22:17:11 ----A---- C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2015-04-17 22:17:11 ----A---- C:\WINDOWS\SysWOW64\riched20.dll
2015-04-17 22:17:09 ----A---- C:\WINDOWS\SysWOW64\mspaint.exe
2015-04-17 22:17:07 ----A---- C:\WINDOWS\SysWOW64\wdc.dll
2015-04-17 22:17:06 ----A---- C:\WINDOWS\SysWOW64\Taskmgr.exe
2015-04-17 22:17:05 ----A---- C:\WINDOWS\SysWOW64\cdosys.dll
2015-04-17 22:17:04 ----A---- C:\WINDOWS\SysWOW64\certutil.exe
2015-04-17 22:17:03 ----A---- C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-04-17 22:17:00 ----A---- C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-04-17 22:16:59 ----A---- C:\WINDOWS\SysWOW64\twinapi.dll
2015-04-17 22:16:59 ----A---- C:\WINDOWS\SysWOW64\TSWorkspace.dll
2015-04-17 22:16:59 ----A---- C:\WINDOWS\SysWOW64\odbc32.dll
2015-04-17 22:16:59 ----A---- C:\WINDOWS\SysWOW64\MrmIndexer.dll
2015-04-17 22:16:57 ----A---- C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2015-04-17 22:16:56 ----A---- C:\WINDOWS\SysWOW64\mfds.dll
2015-04-17 22:16:55 ----A---- C:\WINDOWS\SysWOW64\SettingSync.dll
2015-04-17 22:16:55 ----A---- C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2015-04-17 22:16:55 ----A---- C:\WINDOWS\SysWOW64\CPFilters.dll
2015-04-17 22:16:55 ----A---- C:\WINDOWS\SysWOW64\comuid.dll
2015-04-17 22:16:54 ----A---- C:\WINDOWS\SysWOW64\WSDApi.dll
2015-04-17 22:16:54 ----A---- C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-04-17 22:16:53 ----A---- C:\WINDOWS\SysWOW64\duser.dll
2015-04-17 22:16:51 ----A---- C:\WINDOWS\SysWOW64\xpssvcs.dll
2015-04-17 22:16:51 ----A---- C:\WINDOWS\SysWOW64\WMADMOE.DLL
2015-04-17 22:16:51 ----A---- C:\WINDOWS\SysWOW64\qedit.dll
2015-04-17 22:16:50 ----A---- C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-04-17 22:16:49 ----A---- C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2015-04-17 22:16:48 ----A---- C:\WINDOWS\SysWOW64\msdtcprx.dll
2015-04-17 22:16:48 ----A---- C:\WINDOWS\SysWOW64\autoconv.exe
2015-04-17 22:16:47 ----A---- C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-04-17 22:16:47 ----A---- C:\WINDOWS\SysWOW64\sqlsrv32.dll
2015-04-17 22:16:47 ----A---- C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-04-17 22:16:45 ----A---- C:\WINDOWS\SysWOW64\wmdrmnet.dll
2015-04-17 22:16:45 ----A---- C:\WINDOWS\SysWOW64\WinSync.dll
2015-04-17 22:16:45 ----A---- C:\WINDOWS\SysWOW64\vssapi.dll
2015-04-17 22:16:44 ----A---- C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2015-04-17 22:16:44 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2015-04-17 22:16:43 ----A---- C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-04-17 22:16:43 ----A---- C:\WINDOWS\SysWOW64\printui.dll
2015-04-17 22:16:42 ----A---- C:\WINDOWS\SysWOW64\d3d10level9.dll
2015-04-17 22:16:39 ----A---- C:\WINDOWS\SysWOW64\netlogon.dll
2015-04-17 22:16:39 ----A---- C:\WINDOWS\SysWOW64\dnsapi.dll
2015-04-17 22:16:38 ----A---- C:\WINDOWS\SysWOW64\usercpl.dll
2015-04-17 22:16:38 ----A---- C:\WINDOWS\SysWOW64\untfs.dll
2015-04-17 22:16:38 ----A---- C:\WINDOWS\SysWOW64\rasapi32.dll
2015-04-17 22:16:37 ----A---- C:\WINDOWS\SysWOW64\clbcatq.dll
2015-04-17 22:16:36 ----A---- C:\WINDOWS\SysWOW64\sqlcese40.dll
2015-04-17 22:16:36 ----A---- C:\WINDOWS\SysWOW64\imapi2fs.dll
2015-04-17 22:16:35 ----A---- C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2015-04-17 22:16:35 ----A---- C:\WINDOWS\SysWOW64\mfsvr.dll
2015-04-17 22:16:34 ----A---- C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2015-04-17 22:16:33 ----A---- C:\WINDOWS\SysWOW64\gameux.dll
2015-04-17 22:16:32 ----A---- C:\WINDOWS\SysWOW64\wmpeffects.dll
2015-04-17 22:16:32 ----A---- C:\WINDOWS\SysWOW64\mssph.dll
2015-04-17 22:16:32 ----A---- C:\WINDOWS\SysWOW64\aclui.dll
2015-04-17 22:16:31 ----A---- C:\WINDOWS\SysWOW64\wsecedit.dll
2015-04-17 22:16:31 ----A---- C:\WINDOWS\HelpPane.exe
2015-04-17 22:16:30 ----A---- C:\WINDOWS\SysWOW64\psisdecd.dll
2015-04-17 22:16:29 ----A---- C:\WINDOWS\SysWOW64\gpedit.dll
2015-04-17 22:16:29 ----A---- C:\WINDOWS\SysWOW64\EncDec.dll
2015-04-17 22:16:29 ----A---- C:\WINDOWS\SysWOW64\dsound.dll
2015-04-17 22:16:28 ----A---- C:\WINDOWS\SysWOW64\MMDevAPI.dll
2015-04-17 22:16:28 ----A---- C:\WINDOWS\SysWOW64\dxgi.dll
2015-04-17 22:16:27 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.dll
2015-04-17 22:16:27 ----A---- C:\WINDOWS\SysWOW64\es.dll
2015-04-17 22:16:26 ----A---- C:\WINDOWS\SysWOW64\ddraw.dll
2015-04-17 22:16:25 ----A---- C:\WINDOWS\SysWOW64\sxs.dll
2015-04-17 22:16:24 ----A---- C:\WINDOWS\SysWOW64\hgcpl.dll
2015-04-17 22:16:23 ----A---- C:\WINDOWS\SysWOW64\Windows.Web.dll
2015-04-17 22:16:23 ----A---- C:\WINDOWS\SysWOW64\certmgr.dll
2015-04-17 22:16:23 ----A---- C:\WINDOWS\SysWOW64\advapi32.dll
2015-04-17 22:16:22 ----A---- C:\WINDOWS\SysWOW64\qdvd.dll
2015-04-17 22:16:22 ----A---- C:\WINDOWS\SysWOW64\opengl32.dll
2015-04-17 22:16:22 ----A---- C:\WINDOWS\SysWOW64\netcfgx.dll
2015-04-17 22:16:22 ----A---- C:\WINDOWS\SysWOW64\MSWB70404.dll
2015-04-17 22:16:22 ----A---- C:\WINDOWS\SysWOW64\MSWB7001E.dll
2015-04-17 22:16:22 ----A---- C:\WINDOWS\SysWOW64\MSWB70011.dll
2015-04-17 22:16:21 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-04-17 22:16:21 ----A---- C:\WINDOWS\SysWOW64\MSWB70804.dll
2015-04-17 22:16:20 ----A---- C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2015-04-17 22:16:20 ----A---- C:\WINDOWS\SysWOW64\apphelp.dll
2015-04-17 22:16:19 ----A---- C:\WINDOWS\SysWOW64\SyncCenter.dll
2015-04-17 22:16:16 ----A---- C:\WINDOWS\SysWOW64\d3d10.dll
2015-04-17 22:16:15 ----A---- C:\WINDOWS\SysWOW64\msv1_0.dll
2015-04-17 22:16:14 ----A---- C:\WINDOWS\SysWOW64\catsrvut.dll
2015-04-17 22:16:13 ----A---- C:\WINDOWS\SysWOW64\msdrm.dll
2015-04-17 22:16:12 ----A---- C:\WINDOWS\SysWOW64\tsmf.dll
2015-04-17 22:16:12 ----A---- C:\WINDOWS\SysWOW64\secproc_isv.dll
2015-04-17 22:16:12 ----A---- C:\WINDOWS\SysWOW64\secproc.dll
2015-04-17 22:16:11 ----A---- C:\WINDOWS\SysWOW64\Wldap32.dll
2015-04-17 22:16:11 ----A---- C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2015-04-17 22:16:11 ----A---- C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-04-17 22:16:10 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-04-17 22:16:10 ----A---- C:\WINDOWS\SysWOW64\mswmdm.dll
2015-04-17 22:16:03 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-04-17 22:15:47 ----A---- C:\WINDOWS\SysWOW64\provsvc.dll
2015-04-17 22:15:47 ----A---- C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-04-17 22:15:45 ----A---- C:\WINDOWS\SysWOW64\webio.dll
2015-04-17 22:15:45 ----A---- C:\WINDOWS\SysWOW64\themeui.dll
2015-04-17 22:15:42 ----A---- C:\WINDOWS\SysWOW64\hnetcfg.dll
2015-04-17 22:15:42 ----A---- C:\WINDOWS\SysWOW64\catsrv.dll
2015-04-17 22:15:41 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2015-04-17 22:15:41 ----A---- C:\WINDOWS\SysWOW64\PrintDialogs.dll
2015-04-17 22:15:39 ----A---- C:\WINDOWS\SysWOW64\WinTypes.dll
2015-04-17 22:15:39 ----A---- C:\WINDOWS\SysWOW64\ReInfo.dll
2015-04-17 22:15:39 ----A---- C:\WINDOWS\SysWOW64\ReAgent.dll
2015-04-17 22:15:38 ----A---- C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-04-17 22:15:36 ----A---- C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2015-04-17 22:15:36 ----A---- C:\WINDOWS\SysWOW64\netshell.dll
2015-04-17 22:15:35 ----A---- C:\WINDOWS\SysWOW64\tapi3.dll
2015-04-17 22:15:34 ----A---- C:\WINDOWS\SysWOW64\themecpl.dll
2015-04-17 22:15:34 ----A---- C:\WINDOWS\SysWOW64\mscms.dll
2015-04-17 22:15:34 ----A---- C:\WINDOWS\SysWOW64\FirewallAPI.dll
2015-04-17 22:15:33 ----A---- C:\WINDOWS\SysWOW64\wlidprov.dll
2015-04-17 22:15:33 ----A---- C:\WINDOWS\SysWOW64\UIAnimation.dll
2015-04-17 22:15:33 ----A---- C:\WINDOWS\SysWOW64\provcore.dll
2015-04-17 22:15:33 ----A---- C:\WINDOWS\SysWOW64\ntshrui.dll
2015-04-17 22:15:30 ----A---- C:\WINDOWS\SysWOW64\Display.dll
2015-04-17 22:15:30 ----A---- C:\WINDOWS\SysWOW64\dcomp.dll
2015-04-17 22:15:29 ----A---- C:\WINDOWS\SysWOW64\wiaaut.dll
2015-04-17 22:15:29 ----A---- C:\WINDOWS\SysWOW64\RMActivate_isv.exe
2015-04-17 22:15:29 ----A---- C:\WINDOWS\SysWOW64\oleacc.dll
2015-04-17 22:15:29 ----A---- C:\WINDOWS\SysWOW64\mswsock.dll
2015-04-17 22:15:26 ----A---- C:\WINDOWS\SysWOW64\msscp.dll
2015-04-17 22:15:22 ----A---- C:\WINDOWS\SysWOW64\wbemcomn.dll
2015-04-17 22:15:10 ----A---- C:\WINDOWS\SysWOW64\upnphost.dll
2015-04-17 22:15:08 ----A---- C:\WINDOWS\SysWOW64\XpsRasterService.dll
2015-04-17 22:15:08 ----A---- C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2015-04-17 22:15:08 ----A---- C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2015-04-17 22:15:07 ----A---- C:\WINDOWS\SysWOW64\upnp.dll
2015-04-17 22:15:07 ----A---- C:\WINDOWS\SysWOW64\ninput.dll
2015-04-17 22:15:06 ----A---- C:\WINDOWS\SysWOW64\kernel32.dll
2015-04-17 22:15:05 ----A---- C:\WINDOWS\SysWOW64\mstsc.exe
2015-04-17 22:15:05 ----A---- C:\WINDOWS\SysWOW64\AppxPackaging.dll
2015-04-17 22:15:03 ----A---- C:\WINDOWS\SysWOW64\RMActivate.exe
2015-04-17 22:15:03 ----A---- C:\WINDOWS\SysWOW64\NL7Data0011.dll
2015-04-17 22:15:03 ----A---- C:\WINDOWS\SysWOW64\ipsmsnap.dll
2015-04-17 22:14:59 ----A---- C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-04-17 22:14:58 ----A---- C:\WINDOWS\SysWOW64\wevtapi.dll
2015-04-17 22:14:57 ----A---- C:\WINDOWS\SysWOW64\winsku.dll
2015-04-17 22:14:55 ----A---- C:\WINDOWS\SysWOW64\wlangpui.dll
2015-04-17 22:14:55 ----A---- C:\WINDOWS\SysWOW64\wintrust.dll
2015-04-17 22:14:55 ----A---- C:\WINDOWS\SysWOW64\msdt.exe
2015-04-17 22:14:55 ----A---- C:\WINDOWS\SysWOW64\azroles.dll
2015-04-17 22:14:54 ----A---- C:\WINDOWS\SysWOW64\SessEnv.dll
2015-04-17 22:14:54 ----A---- C:\WINDOWS\SysWOW64\d3dim700.dll
2015-04-17 22:14:53 ----A---- C:\WINDOWS\SysWOW64\wvc.dll
2015-04-17 22:14:53 ----A---- C:\WINDOWS\SysWOW64\rasdlg.dll
2015-04-17 22:14:53 ----A---- C:\WINDOWS\SysWOW64\imapi2.dll
2015-04-17 22:14:50 ----A---- C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2015-04-17 22:14:50 ----A---- C:\WINDOWS\SysWOW64\msvcrt.dll
2015-04-17 22:14:50 ----A---- C:\WINDOWS\SysWOW64\MP4SDECD.DLL
2015-04-17 22:14:49 ----A---- C:\WINDOWS\SysWOW64\XpsFilt.dll
2015-04-17 22:14:48 ----A---- C:\WINDOWS\SysWOW64\wisp.dll
2015-04-17 22:14:47 ----A---- C:\WINDOWS\SysWOW64\mssvp.dll
2015-04-17 22:14:46 ----A---- C:\WINDOWS\SysWOW64\wimgapi.dll
2015-04-17 22:14:46 ----A---- C:\WINDOWS\SysWOW64\rastls.dll
2015-04-17 22:14:38 ----A---- C:\WINDOWS\SysWOW64\SyncInfrastructure.dll
2015-04-17 22:14:38 ----A---- C:\WINDOWS\SysWOW64\dhcpcore.dll
2015-04-17 22:14:37 ----A---- C:\WINDOWS\SysWOW64\sdohlp.dll
2015-04-17 22:14:36 ----A---- C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-04-17 22:14:36 ----A---- C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2015-04-17 22:14:35 ----A---- C:\WINDOWS\SysWOW64\shsvcs.dll
2015-04-17 22:14:35 ----A---- C:\WINDOWS\SysWOW64\framedynos.dll
2015-04-17 22:14:34 ----A---- C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
2015-04-17 22:14:34 ----A---- C:\WINDOWS\SysWOW64\qdv.dll
2015-04-17 22:14:34 ----A---- C:\WINDOWS\SysWOW64\mfdvdec.dll
2015-04-17 22:14:34 ----A---- C:\WINDOWS\SysWOW64\comctl32.dll
2015-04-17 22:14:33 ----A---- C:\WINDOWS\SysWOW64\WMASF.DLL
2015-04-17 22:14:33 ----A---- C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-04-17 22:14:32 ----A---- C:\WINDOWS\SysWOW64\ws2_32.dll
2015-04-17 22:14:32 ----A---- C:\WINDOWS\SysWOW64\rasgcw.dll
2015-04-17 22:14:31 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2015-04-17 22:14:31 ----A---- C:\WINDOWS\SysWOW64\NlsData0007.dll
2015-04-17 22:14:30 ----A---- C:\WINDOWS\SysWOW64\taskcomp.dll
2015-04-17 22:14:29 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2015-04-17 22:14:29 ----A---- C:\WINDOWS\SysWOW64\msvproc.dll
2015-04-17 22:14:29 ----A---- C:\WINDOWS\SysWOW64\mssphtb.dll
2015-04-17 22:14:29 ----A---- C:\WINDOWS\SysWOW64\msls31.dll
2015-04-17 22:14:28 ----A---- C:\WINDOWS\SysWOW64\prnfldr.dll
2015-04-17 22:14:28 ----A---- C:\WINDOWS\SysWOW64\offfilt.dll
2015-04-17 22:14:28 ----A---- C:\WINDOWS\SysWOW64\filemgmt.dll
2015-04-17 22:14:27 ----A---- C:\WINDOWS\SysWOW64\mprapi.dll
2015-04-17 22:14:27 ----A---- C:\WINDOWS\SysWOW64\ipsecsnp.dll
2015-04-17 22:14:26 ----A---- C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2015-04-17 22:14:26 ----A---- C:\WINDOWS\SysWOW64\mftranscode.dll
2015-04-17 22:14:25 ----A---- C:\WINDOWS\SysWOW64\glmf32.dll
2015-04-17 22:14:24 ----A---- C:\WINDOWS\SysWOW64\WLanConn.dll
2015-04-17 22:14:24 ----A---- C:\WINDOWS\SysWOW64\MFWMAAEC.DLL
2015-04-17 22:14:24 ----A---- C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2015-04-17 22:14:23 ----A---- C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-04-17 22:14:23 ----A---- C:\WINDOWS\SysWOW64\azroleui.dll
2015-04-17 22:14:22 ----A---- C:\WINDOWS\SysWOW64\VAN.dll
2015-04-17 22:14:22 ----A---- C:\WINDOWS\SysWOW64\NlsData000a.dll
2015-04-17 22:14:22 ----A---- C:\WINDOWS\SysWOW64\dmime.dll
2015-04-17 22:14:21 ----A---- C:\WINDOWS\SysWOW64\Windows.System.Profile.HardwareId.dll
2015-04-17 22:14:20 ----A---- C:\WINDOWS\SysWOW64\WMVXENCD.DLL
2015-04-17 22:14:20 ----A---- C:\WINDOWS\SysWOW64\wlidcli.dll
2015-04-17 22:14:20 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2015-04-17 22:14:20 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-04-17 22:14:19 ----A---- C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-04-17 22:14:19 ----A---- C:\WINDOWS\SysWOW64\WinSATAPI.dll
2015-04-17 22:14:19 ----A---- C:\WINDOWS\SysWOW64\osk.exe
2015-04-17 22:14:19 ----A---- C:\WINDOWS\SysWOW64\netprofm.dll
2015-04-17 22:14:18 ----A---- C:\WINDOWS\SysWOW64\NlsData0416.dll
2015-04-17 22:14:18 ----A---- C:\WINDOWS\SysWOW64\NlsData001d.dll
2015-04-17 22:14:17 ----A---- C:\WINDOWS\SysWOW64\NlsData0816.dll
2015-04-17 22:14:17 ----A---- C:\WINDOWS\SysWOW64\NlsData0414.dll
2015-04-17 22:14:17 ----A---- C:\WINDOWS\SysWOW64\NlsData0010.dll
2015-04-17 22:14:17 ----A---- C:\WINDOWS\SysWOW64\msdelta.dll
2015-04-17 22:14:16 ----A---- C:\WINDOWS\SysWOW64\d3dim.dll
2015-04-17 22:14:16 ----A---- C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-04-17 22:14:15 ----A---- C:\WINDOWS\SysWOW64\rdpencom.dll
2015-04-17 22:14:15 ----A---- C:\WINDOWS\SysWOW64\qasf.dll
2015-04-17 22:14:15 ----A---- C:\WINDOWS\SysWOW64\mscandui.dll
2015-04-17 22:14:14 ----A---- C:\WINDOWS\SysWOW64\WMVSENCD.DLL
2015-04-17 22:14:14 ----A---- C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2015-04-17 22:14:14 ----A---- C:\WINDOWS\SysWOW64\P2PGraph.dll
2015-04-17 22:14:14 ----A---- C:\WINDOWS\SysWOW64\MFPlay.dll
2015-04-17 22:14:13 ----A---- C:\WINDOWS\SysWOW64\NlsData000d.dll
2015-04-17 22:14:13 ----A---- C:\WINDOWS\SysWOW64\BCP47Langs.dll
2015-04-17 22:14:12 ----A---- C:\WINDOWS\SysWOW64\LocationApi.dll
2015-04-17 22:14:10 ----A---- C:\WINDOWS\SysWOW64\winsta.dll
2015-04-17 22:14:10 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2015-04-17 22:14:10 ----A---- C:\WINDOWS\SysWOW64\objsel.dll
2015-04-17 22:14:10 ----A---- C:\WINDOWS\SysWOW64\iassdo.dll
2015-04-17 22:14:10 ----A---- C:\WINDOWS\SysWOW64\drvstore.dll
2015-04-17 22:14:07 ----A---- C:\WINDOWS\SysWOW64\xmllite.dll
2015-04-17 22:14:07 ----A---- C:\WINDOWS\SysWOW64\ksuser.dll
2015-04-17 22:14:06 ----A---- C:\WINDOWS\SysWOW64\stobject.dll
2015-04-17 22:14:06 ----A---- C:\WINDOWS\SysWOW64\sti.dll
2015-04-17 22:14:02 ----A---- C:\WINDOWS\SysWOW64\NlsData000c.dll
2015-04-17 22:14:01 ----A---- C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2015-04-17 22:14:00 ----A---- C:\WINDOWS\SysWOW64\resutils.dll
2015-04-17 22:14:00 ----A---- C:\WINDOWS\SysWOW64\dlnashext.dll
2015-04-17 22:13:59 ----A---- C:\WINDOWS\SysWOW64\RMActivate_ssp_isv.exe
2015-04-17 22:13:59 ----A---- C:\WINDOWS\SysWOW64\RMActivate_ssp.exe
2015-04-17 22:13:58 ----A---- C:\WINDOWS\SysWOW64\rsaenh.dll
2015-04-17 22:13:57 ----A---- C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-04-17 22:13:56 ----A---- C:\WINDOWS\SysWOW64\termmgr.dll
2015-04-17 22:13:55 ----A---- C:\WINDOWS\SysWOW64\spwizeng.dll
2015-04-17 22:13:55 ----A---- C:\WINDOWS\SysWOW64\d3d10_1core.dll
2015-04-17 22:13:53 ----A---- C:\WINDOWS\SysWOW64\netjoin.dll
2015-04-17 22:13:53 ----A---- C:\WINDOWS\SysWOW64\FirewallControlPanel.dll
2015-04-17 22:13:53 ----A---- C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-04-17 22:13:52 ----A---- C:\WINDOWS\SysWOW64\mfh264enc.dll
2015-04-17 22:13:50 ----A---- C:\WINDOWS\SysWOW64\xwizards.dll
2015-04-17 22:13:50 ----A---- C:\WINDOWS\SysWOW64\devmgr.dll
2015-04-17 22:13:49 ----A---- C:\WINDOWS\SysWOW64\msutb.dll
2015-04-17 22:13:48 ----A---- C:\WINDOWS\SysWOW64\nshwfp.dll
2015-04-17 22:13:46 ----A---- C:\WINDOWS\SysWOW64\shlwapi.dll
2015-04-17 22:13:46 ----A---- C:\WINDOWS\SysWOW64\certreq.exe
2015-04-17 22:13:44 ----A---- C:\WINDOWS\SysWOW64\wlanmsm.dll
2015-04-17 22:13:44 ----A---- C:\WINDOWS\SysWOW64\pdh.dll
2015-04-17 22:13:44 ----A---- C:\WINDOWS\SysWOW64\drmmgrtn.dll
2015-04-17 22:13:43 ----A---- C:\WINDOWS\SysWOW64\WPDSp.dll
2015-04-17 22:13:42 ----A---- C:\WINDOWS\SysWOW64\scecli.dll
2015-04-17 22:13:41 ----A---- C:\WINDOWS\SysWOW64\DxpTaskSync.dll
2015-04-17 22:13:40 ----A---- C:\WINDOWS\SysWOW64\wmvdspa.dll
2015-04-17 22:13:39 ----A---- C:\WINDOWS\SysWOW64\NL7Data0404.dll
2015-04-17 22:13:38 ----A---- C:\WINDOWS\SysWOW64\WmpDui.dll
2015-04-17 22:13:38 ----A---- C:\WINDOWS\SysWOW64\adsldp.dll
2015-04-17 22:13:37 ----A---- C:\WINDOWS\SysWOW64\FXSAPI.dll
2015-04-17 22:13:34 ----A---- C:\WINDOWS\SysWOW64\DisplaySwitch.exe
2015-04-17 22:13:30 ----A---- C:\WINDOWS\SysWOW64\efscore.dll
2015-04-17 22:13:27 ----A---- C:\WINDOWS\SysWOW64\PCPTpm12.dll
2015-04-17 22:13:27 ----A---- C:\WINDOWS\SysWOW64\clusapi.dll
2015-04-17 22:13:26 ----A---- C:\WINDOWS\SysWOW64\mprddm.dll
2015-04-17 22:13:26 ----A---- C:\WINDOWS\SysWOW64\diskraid.exe
2015-04-17 22:13:23 ----A---- C:\WINDOWS\SysWOW64\activeds.dll
2015-04-17 22:13:19 ----A---- C:\WINDOWS\SysWOW64\NL7Data0804.dll
2015-04-17 22:13:17 ----A---- C:\WINDOWS\SysWOW64\msoeacct.dll
2015-04-17 22:13:15 ----A---- C:\WINDOWS\SysWOW64\wlanpref.dll
2015-04-17 22:13:10 ----A---- C:\WINDOWS\SysWOW64\WlanMM.dll
2015-04-17 22:13:09 ----A---- C:\WINDOWS\SysWOW64\wpnapps.dll
2015-04-17 22:13:07 ----A---- C:\WINDOWS\SysWOW64\PlayToDevice.dll
2015-04-17 22:13:05 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2015-04-17 22:13:04 ----A---- C:\WINDOWS\SysWOW64\riched32.dll
2015-04-17 22:13:04 ----A---- C:\WINDOWS\SysWOW64\framedyn.dll
2015-04-17 22:13:01 ----A---- C:\WINDOWS\SysWOW64\NlsData0002.dll
2015-04-17 22:13:00 ----A---- C:\WINDOWS\SysWOW64\NlsData0c1a.dll
2015-04-17 22:13:00 ----A---- C:\WINDOWS\SysWOW64\NlsData0018.dll
2015-04-17 22:12:59 ----A---- C:\WINDOWS\SysWOW64\NlsData0003.dll
2015-04-17 22:12:58 ----A---- C:\WINDOWS\SysWOW64\NlsData001b.dll
2015-04-17 22:12:57 ----A---- C:\WINDOWS\SysWOW64\NlsData081a.dll
2015-04-17 22:12:56 ----A---- C:\WINDOWS\SysWOW64\NlsData000f.dll
2015-04-17 22:12:55 ----A---- C:\WINDOWS\SysWOW64\NlsData001a.dll
2015-04-17 22:12:53 ----A---- C:\WINDOWS\SysWOW64\NlsData0026.dll
2015-04-17 22:12:51 ----A---- C:\WINDOWS\SysWOW64\NlsData0024.dll
2015-04-17 22:12:50 ----A---- C:\WINDOWS\SysWOW64\NlsData0027.dll
2015-04-17 22:12:47 ----A---- C:\WINDOWS\SysWOW64\d3d10core.dll
2015-04-17 22:12:44 ----A---- C:\WINDOWS\SysWOW64\XAudio2_8.dll
2015-04-17 22:12:43 ----A---- C:\WINDOWS\SysWOW64\dhcpcore6.dll
2015-04-17 22:12:43 ----A---- C:\WINDOWS\SysWOW64\cryptnet.dll
2015-04-17 22:12:43 ----A---- C:\WINDOWS\SysWOW64\cmdial32.dll
2015-04-17 22:12:43 ----A---- C:\WINDOWS\SysWOW64\cmd.exe
2015-04-17 22:12:43 ----A---- C:\WINDOWS\SysWOW64\authfwcfg.dll
2015-04-17 22:12:42 ----A---- C:\WINDOWS\SysWOW64\comsnap.dll
2015-04-17 22:12:41 ----A---- C:\WINDOWS\SysWOW64\rpchttp.dll
2015-04-17 22:12:41 ----A---- C:\WINDOWS\SysWOW64\rdpendp.dll
2015-04-17 22:12:40 ----A---- C:\WINDOWS\SysWOW64\wlanapi.dll
2015-04-17 22:12:40 ----A---- C:\WINDOWS\SysWOW64\msinfo32.exe
2015-04-17 22:12:40 ----A---- C:\WINDOWS\SysWOW64\miutils.dll
2015-04-17 22:12:40 ----A---- C:\WINDOWS\SysWOW64\cryptui.dll
2015-04-17 22:12:40 ----A---- C:\WINDOWS\SysWOW64\adsnt.dll
2015-04-17 22:12:39 ----A---- C:\WINDOWS\SysWOW64\taskeng.exe
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData004e.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData004c.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData004b.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData004a.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData0049.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData0047.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData0046.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData0045.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData0039.dll
2015-04-17 22:12:38 ----A---- C:\WINDOWS\SysWOW64\NlsData0020.dll
2015-04-17 22:12:37 ----A---- C:\WINDOWS\SysWOW64\rasmontr.dll
2015-04-17 22:12:37 ----A---- C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2015-04-17 22:12:37 ----A---- C:\WINDOWS\SysWOW64\ifsutil.dll
2015-04-17 22:12:34 ----A---- C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2015-04-17 22:12:34 ----A---- C:\WINDOWS\SysWOW64\NlsData003e.dll
2015-04-17 22:12:34 ----A---- C:\WINDOWS\SysWOW64\NlsData002a.dll
2015-04-17 22:12:34 ----A---- C:\WINDOWS\SysWOW64\NlsData0021.dll
2015-04-17 22:12:33 ----A---- C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-04-17 22:12:33 ----A---- C:\WINDOWS\SysWOW64\NlsData0022.dll
2015-04-17 22:12:32 ----A---- C:\WINDOWS\SysWOW64\tapisrv.dll
2015-04-17 22:12:32 ----A---- C:\WINDOWS\SysWOW64\msdtcuiu.dll
2015-04-17 22:12:32 ----A---- C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-04-17 22:12:32 ----A---- C:\WINDOWS\SysWOW64\IasMigPlugin.dll
2015-04-17 22:12:31 ----A---- C:\WINDOWS\SysWOW64\sqlceoledb40.dll
2015-04-17 22:12:31 ----A---- C:\WINDOWS\SysWOW64\nshipsec.dll
2015-04-17 22:12:31 ----A---- C:\WINDOWS\SysWOW64\cfgmgr32.dll
2015-04-17 22:12:30 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2015-04-17 22:12:30 ----A---- C:\WINDOWS\SysWOW64\mbsmsapi.dll
2015-04-17 22:12:30 ----A---- C:\WINDOWS\SysWOW64\iasnap.dll
2015-04-17 22:12:29 ----A---- C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-04-17 22:12:29 ----A---- C:\WINDOWS\SysWOW64\cewmdm.dll
2015-04-17 22:12:28 ----A---- C:\WINDOWS\SysWOW64\WSSync.dll
2015-04-17 22:12:28 ----A---- C:\WINDOWS\SysWOW64\winmmbase.dll
2015-04-17 22:12:28 ----A---- C:\WINDOWS\SysWOW64\spp.dll
2015-04-17 22:12:28 ----A---- C:\WINDOWS\SysWOW64\iprtrmgr.dll
2015-04-17 22:12:28 ----A---- C:\WINDOWS\SysWOW64\gpresult.exe
2015-04-17 22:12:28 ----A---- C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\WinSCard.dll
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\srchadmin.dll
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\sqmapi.dll
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\SndVol.exe
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\netdiagfx.dll
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\NAPMONTR.DLL
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\fdprint.dll
2015-04-17 22:12:27 ----A---- C:\WINDOWS\SysWOW64\dmvdsitf.dll
2015-04-17 22:12:26 ----A---- C:\WINDOWS\SysWOW64\WebClnt.dll
2015-04-17 22:12:26 ----A---- C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-04-17 22:12:26 ----A---- C:\WINDOWS\SysWOW64\ulib.dll
2015-04-17 22:12:26 ----A---- C:\WINDOWS\SysWOW64\odbcjt32.dll
2015-04-17 22:12:26 ----A---- C:\WINDOWS\SysWOW64\dmdskmgr.dll
2015-04-17 22:12:26 ----A---- C:\WINDOWS\SysWOW64\deviceaccess.dll
2015-04-17 22:12:25 ----A---- C:\WINDOWS\SysWOW64\wevtutil.exe
2015-04-17 22:12:25 ----A---- C:\WINDOWS\SysWOW64\scrobj.dll
2015-04-17 22:12:25 ----A---- C:\WINDOWS\SysWOW64\sbeio.dll
2015-04-17 22:12:25 ----A---- C:\WINDOWS\SysWOW64\NL7Data001E.dll
2015-04-17 22:12:25 ----A---- C:\WINDOWS\SysWOW64\DeviceCenter.dll
2015-04-17 22:12:24 ----A---- C:\WINDOWS\SysWOW64\wdigest.dll
2015-04-17 22:12:24 ----A---- C:\WINDOWS\SysWOW64\srumsvc.dll
2015-04-17 22:12:24 ----A---- C:\WINDOWS\SysWOW64\dinput8.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\WSClient.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\wdscore.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\prntvpt.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\ntmarta.dll
2015-04-17 22:12:23 ----A---- C:\WINDOWS\SysWOW64\InputSwitch.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\xwtpdui.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\WwaApi.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\wlidcredprov.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\WinSyncMetastore.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\esentutl.exe
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\dmdlgs.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2015-04-17 22:12:22 ----A---- C:\WINDOWS\SysWOW64\accessibilitycpl.dll
2015-04-17 22:12:21 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.SpeechSynthesis.dll
2015-04-17 22:12:21 ----A---- C:\WINDOWS\SysWOW64\tapi32.dll
2015-04-17 22:12:21 ----A---- C:\WINDOWS\SysWOW64\ncrypt.dll
2015-04-17 22:12:21 ----A---- C:\WINDOWS\SysWOW64\certca.dll
2015-04-17 22:12:20 ----A---- C:\WINDOWS\SysWOW64\thumbcache.dll
2015-04-17 22:12:20 ----A---- C:\WINDOWS\SysWOW64\raschap.dll
2015-04-17 22:12:20 ----A---- C:\WINDOWS\SysWOW64\msieftp.dll
2015-04-17 22:12:20 ----A---- C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2015-04-17 22:12:19 ----A---- C:\WINDOWS\SysWOW64\wmidx.dll
2015-04-17 22:12:19 ----A---- C:\WINDOWS\SysWOW64\qwave.dll
2015-04-17 22:12:19 ----A---- C:\WINDOWS\SysWOW64\netiohlp.dll
2015-04-17 22:12:18 ----A---- C:\WINDOWS\SysWOW64\wincorlib.dll
2015-04-17 22:12:18 ----A---- C:\WINDOWS\SysWOW64\NlsData0000.dll
2015-04-17 22:12:18 ----A---- C:\WINDOWS\SysWOW64\msvcp60.dll
2015-04-17 22:12:18 ----A---- C:\WINDOWS\SysWOW64\itircl.dll
2015-04-17 22:12:18 ----A---- C:\WINDOWS\SysWOW64\iasrecst.dll
2015-04-17 22:12:18 ----A---- C:\WINDOWS\SysWOW64\diskpart.exe
2015-04-17 22:12:17 ----A---- C:\WINDOWS\SysWOW64\verifier.dll
2015-04-17 22:12:17 ----A---- C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\TtlsCfg.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\scansetting.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\rascfg.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\localsec.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\IDStore.dll
2015-04-17 22:12:16 ----A---- C:\WINDOWS\SysWOW64\dxdiagn.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\winmm.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\wiadefui.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\VIDRESZR.DLL
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\uudf.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\shacct.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\mtxclu.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\Magnify.exe
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\authz.dll
2015-04-17 22:12:15 ----A---- C:\WINDOWS\SysWOW64\audiodev.dll
2015-04-17 22:12:14 ----A---- C:\WINDOWS\SysWOW64\wlanui.dll
2015-04-17 22:12:14 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2015-04-17 22:12:14 ----A---- C:\WINDOWS\SysWOW64\mcbuilder.exe
2015-04-17 22:12:14 ----A---- C:\WINDOWS\SysWOW64\dxva2.dll
2015-04-17 22:12:14 ----A---- C:\WINDOWS\SysWOW64\dmstyle.dll
2015-04-17 22:12:14 ----A---- C:\WINDOWS\SysWOW64\COLORCNV.DLL
2015-04-17 22:12:09 ----A---- C:\WINDOWS\SysWOW64\psr.exe
2015-04-17 22:12:09 ----A---- C:\WINDOWS\SysWOW64\mibincodec.dll
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\wavemsp.dll
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\sdiageng.dll
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceTypes.dll
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\iassam.dll
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\dxdiag.exe
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\dsquery.dll
2015-04-17 22:12:08 ----A---- C:\WINDOWS\SysWOW64\connect.dll
2015-04-17 22:12:07 ----A---- C:\WINDOWS\SysWOW64\SettingMonitor.dll
2015-04-17 22:12:07 ----A---- C:\WINDOWS\SysWOW64\RTWorkQ.dll
2015-04-17 22:12:07 ----A---- C:\WINDOWS\SysWOW64\MPG4DECD.DLL
2015-04-17 22:12:07 ----A---- C:\WINDOWS\SysWOW64\MP43DECD.DLL
2015-04-17 22:12:07 ----A---- C:\WINDOWS\SysWOW64\InkEd.dll
2015-04-17 22:12:07 ----A---- C:\WINDOWS\SysWOW64\fontext.dll
2015-04-17 22:12:06 ----A---- C:\WINDOWS\SysWOW64\RADCUI.dll
2015-04-17 22:12:06 ----A---- C:\WINDOWS\SysWOW64\msrdc.dll
2015-04-17 22:12:05 ----A---- C:\WINDOWS\SysWOW64\wlancfg.dll
2015-04-17 22:12:05 ----A---- C:\WINDOWS\SysWOW64\ufat.dll
2015-04-17 22:12:05 ----A---- C:\WINDOWS\SysWOW64\SensorsCpl.dll
2015-04-17 22:12:05 ----A---- C:\WINDOWS\SysWOW64\provthrd.dll
2015-04-17 22:12:05 ----A---- C:\WINDOWS\SysWOW64\msnetobj.dll
2015-04-17 22:12:05 ----A---- C:\WINDOWS\SysWOW64\itss.dll
2015-04-17 22:12:04 ----A---- C:\WINDOWS\SysWOW64\softkbd.dll
2015-04-17 22:12:04 ----A---- C:\WINDOWS\SysWOW64\shwebsvc.dll
2015-04-17 22:12:04 ----A---- C:\WINDOWS\SysWOW64\mssha.dll
2015-04-17 22:12:04 ----A---- C:\WINDOWS\SysWOW64\msctfui.dll
2015-04-17 22:12:04 ----A---- C:\WINDOWS\SysWOW64\gpapi.dll
2015-04-17 22:12:04 ----A---- C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-04-17 22:12:03 ----A---- C:\WINDOWS\SysWOW64\wmitomi.dll
2015-04-17 22:12:03 ----A---- C:\WINDOWS\SysWOW64\difxapi.dll
2015-04-17 22:12:02 ----A---- C:\WINDOWS\SysWOW64\zipfldr.dll
2015-04-17 22:12:02 ----A---- C:\WINDOWS\SysWOW64\WinSyncProviders.dll
2015-04-17 22:12:02 ----A---- C:\WINDOWS\SysWOW64\schtasks.exe
2015-04-17 22:12:02 ----A---- C:\WINDOWS\SysWOW64\scrrun.dll
2015-04-17 22:12:02 ----A---- C:\WINDOWS\SysWOW64\iasrad.dll
2015-04-17 22:12:02 ----A---- C:\WINDOWS\SysWOW64\dskquoui.dll
2015-04-17 22:12:01 ----A---- C:\WINDOWS\SysWOW64\dsprop.dll
2015-04-17 22:12:00 ----A---- C:\WINDOWS\SysWOW64\fundisc.dll
2015-04-17 22:11:58 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2015-04-17 22:11:58 ----A---- C:\WINDOWS\SysWOW64\negoexts.dll
2015-04-17 22:11:58 ----A---- C:\WINDOWS\SysWOW64\dot3gpui.dll
2015-04-17 22:11:57 ----A---- C:\WINDOWS\SysWOW64\rastapi.dll
2015-04-17 22:11:57 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceSyncProvider.dll
2015-04-17 22:11:57 ----A---- C:\WINDOWS\SysWOW64\netcorehc.dll
2015-04-17 22:11:57 ----A---- C:\WINDOWS\SysWOW64\els.dll
2015-04-17 22:11:57 ----A---- C:\WINDOWS\SysWOW64\dmusic.dll
2015-04-17 22:11:56 ----A---- C:\WINDOWS\SysWOW64\MSWB7.dll
2015-04-17 22:11:56 ----A---- C:\WINDOWS\SysWOW64\mlang.dll
2015-04-17 22:11:56 ----A---- C:\WINDOWS\SysWOW64\fdWSD.dll
2015-04-17 22:11:56 ----A---- C:\WINDOWS\SysWOW64\eudcedit.exe
2015-04-17 22:11:56 ----A---- C:\WINDOWS\SysWOW64\devobj.dll
2015-04-17 22:11:54 ----A---- C:\WINDOWS\SysWOW64\drt.dll
2015-04-17 22:11:54 ----A---- C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-04-17 22:11:53 ----A---- C:\WINDOWS\SysWOW64\RESAMPLEDMO.DLL
2015-04-17 22:11:53 ----A---- C:\WINDOWS\SysWOW64\rasman.dll
2015-04-17 22:11:53 ----A---- C:\WINDOWS\SysWOW64\notepad.exe
2015-04-17 22:11:53 ----A---- C:\WINDOWS\SysWOW64\bitsadmin.exe
2015-04-17 22:11:53 ----A---- C:\WINDOWS\SysWOW64\atl.dll
2015-04-17 22:11:52 ----A---- C:\WINDOWS\SysWOW64\ssText3d.scr
2015-04-17 22:11:52 ----A---- C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2015-04-17 22:11:50 ----A---- C:\WINDOWS\SysWOW64\netcenter.dll
2015-04-17 22:11:50 ----A---- C:\WINDOWS\SysWOW64\biwinrt.dll
2015-04-17 22:11:49 ----A---- C:\WINDOWS\SysWOW64\wscript.exe
2015-04-17 22:11:49 ----A---- C:\WINDOWS\SysWOW64\tcpipcfg.dll
2015-04-17 22:11:49 ----A---- C:\WINDOWS\SysWOW64\mpr.dll
2015-04-17 22:11:49 ----A---- C:\WINDOWS\SysWOW64\cscript.exe
2015-04-17 22:11:49 ----A---- C:\WINDOWS\SysWOW64\cabinet.dll
2015-04-17 22:11:49 ----A---- C:\WINDOWS\notepad.exe
2015-04-17 22:11:47 ----A---- C:\WINDOWS\SysWOW64\Windows.Management.Workplace.WorkplaceSettings.dll
2015-04-17 22:11:47 ----A---- C:\WINDOWS\SysWOW64\efswrt.dll
2015-04-17 22:11:46 ----A---- C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2015-04-17 22:11:46 ----A---- C:\WINDOWS\SysWOW64\imapi.dll
2015-04-17 22:11:45 ----A---- C:\WINDOWS\SysWOW64\polstore.dll
2015-04-17 22:11:45 ----A---- C:\WINDOWS\SysWOW64\imm32.dll
2015-04-17 22:11:44 ----A---- C:\WINDOWS\SysWOW64\dwmapi.dll
2015-04-17 22:11:43 ----A---- C:\WINDOWS\SysWOW64\cic.dll
2015-04-17 22:11:42 ----A---- C:\WINDOWS\SysWOW64\wscapi.dll
2015-04-17 22:11:42 ----A---- C:\WINDOWS\SysWOW64\regedit.exe
2015-04-17 22:11:42 ----A---- C:\WINDOWS\SysWOW64\rasppp.dll
2015-04-17 22:11:41 ----A---- C:\WINDOWS\SysWOW64\Vault.dll
2015-04-17 22:11:41 ----A---- C:\WINDOWS\SysWOW64\userenv.dll
2015-04-17 22:11:41 ----A---- C:\WINDOWS\SysWOW64\txflog.dll
2015-04-17 22:11:41 ----A---- C:\WINDOWS\SysWOW64\powercpl.dll
2015-04-17 22:11:41 ----A---- C:\WINDOWS\SysWOW64\easwrt.dll
2015-04-17 22:11:40 ----A---- C:\WINDOWS\SysWOW64\wscinterop.dll
2015-04-17 22:11:40 ----A---- C:\WINDOWS\SysWOW64\mprdim.dll
2015-04-17 22:11:40 ----A---- C:\WINDOWS\SysWOW64\apds.dll
2015-04-17 22:11:40 ----A---- C:\WINDOWS\SysWOW64\amstream.dll
2015-04-17 22:11:39 ----A---- C:\WINDOWS\SysWOW64\dinput.dll
2015-04-17 22:11:39 ----A---- C:\WINDOWS\SysWOW64\dbnetlib.dll
2015-04-17 22:11:39 ----A---- C:\WINDOWS\SysWOW64\AppxSip.dll
2015-04-17 22:11:38 ----A---- C:\WINDOWS\SysWOW64\wmpdxm.dll
2015-04-17 22:11:38 ----A---- C:\WINDOWS\SysWOW64\olethk32.dll
2015-04-17 22:11:38 ----A---- C:\WINDOWS\SysWOW64\nlhtml.dll
2015-04-17 22:11:38 ----A---- C:\WINDOWS\SysWOW64\mtstocom.exe
2015-04-17 22:11:37 ----A---- C:\WINDOWS\SysWOW64\Robocopy.exe
2015-04-17 22:11:37 ----A---- C:\WINDOWS\SysWOW64\mstask.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\sqlcecompact40.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\rtm.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\rshx32.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\OEMLicense.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\MP3DMOD.DLL
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\logoncli.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\fde.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\elshyph.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\dmcompos.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\dllhst3g.exe
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\dllhost.exe
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\comrepl.dll
2015-04-17 22:11:36 ----A---- C:\WINDOWS\SysWOW64\cca.dll
2015-04-17 22:11:35 ----A---- C:\WINDOWS\SysWOW64\rasplap.dll
2015-04-17 22:11:34 ----A---- C:\WINDOWS\SysWOW64\SimCfg.dll
2015-04-17 22:11:34 ----A---- C:\WINDOWS\SysWOW64\QAGENT.DLL
2015-04-17 22:11:34 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceWiaCompat.dll
2015-04-17 22:11:34 ----A---- C:\WINDOWS\SysWOW64\p2pnetsh.dll
2015-04-17 22:11:34 ----A---- C:\WINDOWS\SysWOW64\iassvcs.dll
2015-04-17 22:11:34 ----A---- C:\WINDOWS\SysWOW64\BioCredProv.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\wmidcom.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\twext.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\oledlg.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\mycomput.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\msoert2.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\mmcbase.dll
2015-04-17 22:11:33 ----A---- C:\WINDOWS\SysWOW64\d3d10_1.dll
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\TtlsAuth.dll
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\SndVolSSO.dll
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\ntprint.dll
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\nlmgp.dll
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\NAPSTAT.EXE
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\devenum.dll
2015-04-17 22:11:32 ----A---- C:\WINDOWS\SysWOW64\advpack.dll
2015-04-17 22:11:31 ----A---- C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-04-17 22:11:31 ----A---- C:\WINDOWS\SysWOW64\mtxoci.dll
2015-04-17 22:11:30 ----A---- C:\WINDOWS\SysWOW64\ntasn1.dll
2015-04-17 22:11:30 ----A---- C:\WINDOWS\SysWOW64\ndfapi.dll
2015-04-17 22:11:30 ----A---- C:\WINDOWS\SysWOW64\msacm32.dll
2015-04-17 22:11:30 ----A---- C:\WINDOWS\SysWOW64\dmscript.dll
2015-04-17 22:11:29 ----A---- C:\WINDOWS\SysWOW64\wiadss.dll
2015-04-17 22:11:29 ----A---- C:\WINDOWS\SysWOW64\sud.dll
2015-04-17 22:11:29 ----A---- C:\WINDOWS\SysWOW64\net1.exe
2015-04-17 22:11:29 ----A---- C:\WINDOWS\SysWOW64\input.dll
2015-04-17 22:11:29 ----A---- C:\WINDOWS\SysWOW64\fdeploy.dll
2015-04-17 22:11:29 ----A---- C:\WINDOWS\SysWOW64\asycfilt.dll
2015-04-17 22:11:28 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2015-04-17 22:11:28 ----A---- C:\WINDOWS\SysWOW64\sdiagprv.dll
2015-04-17 22:11:28 ----A---- C:\WINDOWS\SysWOW64\radardt.dll
2015-04-17 22:11:28 ----A---- C:\WINDOWS\SysWOW64\P2P.dll
2015-04-17 22:11:28 ----A---- C:\WINDOWS\SysWOW64\loadperf.dll
2015-04-17 22:11:28 ----A---- C:\WINDOWS\SysWOW64\chartv.dll
2015-04-17 22:11:27 ----A---- C:\WINDOWS\SysWOW64\xwtpw32.dll
2015-04-17 22:11:27 ----A---- C:\WINDOWS\SysWOW64\rekeywiz.exe
2015-04-17 22:11:27 ----A---- C:\WINDOWS\SysWOW64\cryptuiwizard.dll
2015-04-17 22:11:27 ----A---- C:\WINDOWS\SysWOW64\avifil32.dll
2015-04-17 22:11:26 ----A---- C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2015-04-17 22:11:26 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceWMDRM.dll
2015-04-17 22:11:25 ----A---- C:\WINDOWS\SysWOW64\Windows.Storage.Compression.dll
2015-04-17 22:11:25 ----A---- C:\WINDOWS\SysWOW64\rgb9rast.dll
2015-04-17 22:11:25 ----A---- C:\WINDOWS\SysWOW64\davclnt.dll
2015-04-17 22:11:24 ----A---- C:\WINDOWS\SysWOW64\sspicli.dll
2015-04-17 22:11:24 ----A---- C:\WINDOWS\SysWOW64\iscsicpl.dll
2015-04-17 22:11:24 ----A---- C:\WINDOWS\SysWOW64\imagehlp.dll
2015-04-17 22:11:24 ----A---- C:\WINDOWS\SysWOW64\dskquota.dll
2015-04-17 22:11:24 ----A---- C:\WINDOWS\SysWOW64\adsmsext.dll
2015-04-17 22:11:23 ----A---- C:\WINDOWS\SysWOW64\windowslivelogin.dll
2015-04-17 22:11:23 ----A---- C:\WINDOWS\SysWOW64\unregmp2.exe
2015-04-17 22:11:23 ----A---- C:\WINDOWS\SysWOW64\dot3ui.dll
2015-04-17 22:11:23 ----A---- C:\WINDOWS\SysWOW64\adsldpc.dll
2015-04-17 22:11:23 ----A---- C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2015-04-17 22:11:22 ----A---- C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.UserConsentVerifier.dll
2015-04-17 22:11:22 ----A---- C:\WINDOWS\SysWOW64\mfvdsp.dll
2015-04-17 22:11:21 ----A---- C:\WINDOWS\SysWOW64\verifier.exe
2015-04-17 22:11:21 ----A---- C:\WINDOWS\SysWOW64\prncache.dll
2015-04-17 22:11:21 ----A---- C:\WINDOWS\SysWOW64\dssenh.dll
2015-04-17 22:11:20 ----A---- C:\WINDOWS\SysWOW64\remotepg.dll
2015-04-17 22:11:20 ----A---- C:\WINDOWS\SysWOW64\newdev.dll
2015-04-17 22:11:20 ----A---- C:\WINDOWS\SysWOW64\dsuiext.dll
2015-04-17 22:11:19 ----A---- C:\WINDOWS\SysWOW64\odbccp32.dll
2015-04-17 22:11:18 ----A---- C:\WINDOWS\SysWOW64\SSShim.dll
2015-04-17 22:11:18 ----A---- C:\WINDOWS\SysWOW64\msaatext.dll
2015-04-17 22:11:18 ----A---- C:\WINDOWS\SysWOW64\fdSSDP.dll
2015-04-17 22:11:17 ----A---- C:\WINDOWS\SysWOW64\wkspbrokerAx.dll
2015-04-17 22:11:17 ----A---- C:\WINDOWS\SysWOW64\olepro32.dll
2015-04-17 22:11:17 ----A---- C:\WINDOWS\SysWOW64\oleprn.dll
2015-04-17 22:11:17 ----A---- C:\WINDOWS\SysWOW64\msvfw32.dll
2015-04-17 22:11:17 ----A---- C:\WINDOWS\SysWOW64\cmifw.dll
2015-04-17 22:11:16 ----A---- C:\WINDOWS\SysWOW64\shdocvw.dll
2015-04-17 22:11:16 ----A---- C:\WINDOWS\SysWOW64\dccw.exe
2015-04-17 22:11:15 ----A---- C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2015-04-17 22:11:15 ----A---- C:\WINDOWS\SysWOW64\wiashext.dll
2015-04-17 22:11:15 ----A---- C:\WINDOWS\SysWOW64\uexfat.dll
2015-04-17 22:11:15 ----A---- C:\WINDOWS\SysWOW64\credui.dll
2015-04-17 22:11:14 ----A---- C:\WINDOWS\SysWOW64\ssdpapi.dll
2015-04-17 22:11:14 ----A---- C:\WINDOWS\SysWOW64\shsetup.dll
2015-04-17 22:11:14 ----A---- C:\WINDOWS\SysWOW64\powrprof.dll
2015-04-17 22:11:14 ----A---- C:\WINDOWS\SysWOW64\fms.dll
2015-04-17 22:11:14 ----A---- C:\WINDOWS\SysWOW64\AuthBroker.dll
2015-04-17 22:11:13 ----A---- C:\WINDOWS\SysWOW64\Winlangdb.dll
2015-04-17 22:11:13 ----A---- C:\WINDOWS\SysWOW64\SPInf.dll
2015-04-17 22:11:13 ----A---- C:\WINDOWS\SysWOW64\FXSXP32.dll
2015-04-17 22:11:13 ----A---- C:\WINDOWS\SysWOW64\CallButtons.dll
2015-04-17 22:11:12 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2015-04-17 22:11:12 ----A---- C:\WINDOWS\SysWOW64\msasn1.dll
2015-04-17 22:11:12 ----A---- C:\WINDOWS\SysWOW64\ELSCore.dll
2015-04-17 22:11:12 ----A---- C:\WINDOWS\SysWOW64\dsdmo.dll
2015-04-17 22:11:12 ----A---- C:\WINDOWS\SysWOW64\cryptxml.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.HostName.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\raserver.exe
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\ncobjapi.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\modemui.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\mfAACEnc.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\l2gpstore.dll
2015-04-17 22:11:11 ----A---- C:\WINDOWS\SysWOW64\basecsp.dll
2015-04-17 22:11:10 ----A---- C:\WINDOWS\SysWOW64\WinRtTracing.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\WinOpcIrmProtector.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\WinMsoIrmProtector.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\taskkill.exe
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceClassExtension.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\mfps.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\globinputhost.dll
2015-04-17 22:11:09 ----A---- C:\WINDOWS\SysWOW64\CompPkgSup.dll
2015-04-17 22:11:08 ----A---- C:\WINDOWS\SysWOW64\wevtfwd.dll
2015-04-17 22:11:08 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceStatus.dll
2015-04-17 22:11:08 ----A---- C:\WINDOWS\SysWOW64\msorcl32.dll
2015-04-17 22:11:07 ----A---- C:\WINDOWS\SysWOW64\systeminfo.exe
2015-04-17 22:11:07 ----A---- C:\WINDOWS\SysWOW64\setupugc.exe
2015-04-17 22:11:06 ----A---- C:\WINDOWS\SysWOW64\WsmAuto.dll
2015-04-17 22:11:06 ----A---- C:\WINDOWS\SysWOW64\SMBHelperClass.dll
2015-04-17 22:11:06 ----A---- C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2015-04-17 22:11:06 ----A---- C:\WINDOWS\SysWOW64\ProximityCommon.dll
2015-04-17 22:11:06 ----A---- C:\WINDOWS\SysWOW64\msdart.dll
2015-04-17 22:11:06 ----A---- C:\WINDOWS\SysWOW64\dfrgui.exe
2015-04-17 22:11:05 ----A---- C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2015-04-17 22:11:05 ----A---- C:\WINDOWS\SysWOW64\vssadmin.exe
2015-04-17 22:11:05 ----A---- C:\WINDOWS\SysWOW64\TSpkg.dll
2015-04-17 22:11:05 ----A---- C:\WINDOWS\SysWOW64\mimofcodec.dll
2015-04-17 22:11:05 ----A---- C:\WINDOWS\SysWOW64\icsigd.dll
2015-04-17 22:11:05 ----A---- C:\WINDOWS\SysWOW64\glu32.dll
2015-04-17 22:11:04 ----A---- C:\WINDOWS\SysWOW64\fdWCN.dll
2015-04-17 22:11:04 ----A---- C:\WINDOWS\SysWOW64\fdBth.dll
2015-04-17 22:11:03 ----A---- C:\WINDOWS\SysWOW64\vaultcli.dll
2015-04-17 22:11:03 ----A---- C:\WINDOWS\SysWOW64\logagent.exe
2015-04-17 22:11:03 ----A---- C:\WINDOWS\SysWOW64\IdCtrls.dll
2015-04-17 22:11:03 ----A---- C:\WINDOWS\SysWOW64\DevicePairingFolder.dll
2015-04-17 22:11:02 ----A---- C:\WINDOWS\SysWOW64\odbccu32.dll
2015-04-17 22:11:02 ----A---- C:\WINDOWS\SysWOW64\odbccr32.dll
2015-04-17 22:11:02 ----A---- C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-04-17 22:11:02 ----A---- C:\WINDOWS\SysWOW64\cttune.exe
2015-04-17 22:11:02 ----A---- C:\WINDOWS\SysWOW64\colbact.dll
2015-04-17 22:11:01 ----A---- C:\WINDOWS\SysWOW64\wdi.dll
2015-04-17 22:11:01 ----A---- C:\WINDOWS\SysWOW64\RstrtMgr.dll
2015-04-17 22:11:01 ----A---- C:\WINDOWS\SysWOW64\iscsiwmi.dll
2015-04-17 22:11:01 ----A---- C:\WINDOWS\SysWOW64\eqossnap.dll
2015-04-17 22:11:01 ----A---- C:\WINDOWS\SysWOW64\BluetoothApis.dll
2015-04-17 22:11:00 ----A---- C:\WINDOWS\SysWOW64\SimAuth.dll
2015-04-17 22:11:00 ----A---- C:\WINDOWS\SysWOW64\samcli.dll
2015-04-17 22:11:00 ----A---- C:\WINDOWS\SysWOW64\OpenWith.exe
2015-04-17 22:10:59 ----A---- C:\WINDOWS\SysWOW64\wmpshell.dll
2015-04-17 22:10:59 ----A---- C:\WINDOWS\SysWOW64\tasklist.exe
2015-04-17 22:10:59 ----A---- C:\WINDOWS\SysWOW64\netplwiz.dll
2015-04-17 22:10:58 ----A---- C:\WINDOWS\SysWOW64\xcopy.exe
2015-04-17 22:10:58 ----A---- C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-04-17 22:10:58 ----A---- C:\WINDOWS\SysWOW64\networkexplorer.dll
2015-04-17 22:10:58 ----A---- C:\WINDOWS\SysWOW64\Bubbles.scr
2015-04-17 22:10:57 ----A---- C:\WINDOWS\SysWOW64\syncui.dll
2015-04-17 22:10:57 ----A---- C:\WINDOWS\SysWOW64\msdadiag.dll
2015-04-17 22:10:57 ----A---- C:\WINDOWS\SysWOW64\mi.dll
2015-04-17 22:10:57 ----A---- C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2015-04-17 22:10:57 ----A---- C:\WINDOWS\SysWOW64\cmstp.exe
2015-04-17 22:10:56 ----A---- C:\WINDOWS\SysWOW64\TpmInit.exe
2015-04-17 22:10:56 ----A---- C:\WINDOWS\SysWOW64\Syncreg.dll
2015-04-17 22:10:56 ----A---- C:\WINDOWS\SysWOW64\Ribbons.scr
2015-04-17 22:10:56 ----A---- C:\WINDOWS\SysWOW64\Mystify.scr
2015-04-17 22:10:56 ----A---- C:\WINDOWS\SysWOW64\fphc.dll
2015-04-17 22:10:55 ----A---- C:\WINDOWS\SysWOW64\t2embed.dll
2015-04-17 22:10:55 ----A---- C:\WINDOWS\SysWOW64\secproc_ssp_isv.dll
2015-04-17 22:10:55 ----A---- C:\WINDOWS\SysWOW64\secproc_ssp.dll
2015-04-17 22:10:55 ----A---- C:\WINDOWS\SysWOW64\ntlanman.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\wlandlg.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\profapi.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\korwbrkr.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\iasacct.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\getmac.exe
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\cryptsp.dll
2015-04-17 22:10:54 ----A---- C:\WINDOWS\SysWOW64\CertPolEng.dll
2015-04-17 22:10:53 ----A---- C:\WINDOWS\SysWOW64\icm32.dll
2015-04-17 22:10:51 ----A---- C:\WINDOWS\SysWOW64\scripto.dll
2015-04-17 22:10:51 ----A---- C:\WINDOWS\SysWOW64\prvdmofcomp.dll
2015-04-17 22:10:51 ----A---- C:\WINDOWS\SysWOW64\ndishc.dll
2015-04-17 22:10:51 ----A---- C:\WINDOWS\SysWOW64\charmap.exe
2015-04-17 22:10:51 ----A---- C:\WINDOWS\SysWOW64\cryptdll.dll
2015-04-17 22:10:50 ----A---- C:\WINDOWS\SysWOW64\WABSyncProvider.dll
2015-04-17 22:10:50 ----A---- C:\WINDOWS\SysWOW64\synceng.dll
2015-04-17 22:10:50 ----A---- C:\WINDOWS\SysWOW64\ntdsapi.dll
2015-04-17 22:10:50 ----A---- C:\WINDOWS\SysWOW64\colorui.dll
2015-04-17 22:10:49 ----A---- C:\WINDOWS\SysWOW64\olecli32.dll
2015-04-17 22:10:49 ----A---- C:\WINDOWS\SysWOW64\iashlpr.dll
2015-04-17 22:10:49 ----A---- C:\WINDOWS\SysWOW64\autoplay.dll
2015-04-17 22:10:48 ----A---- C:\WINDOWS\SysWOW64\usbceip.dll
2015-04-17 22:10:48 ----A---- C:\WINDOWS\SysWOW64\netprovisionsp.dll
2015-04-17 22:10:48 ----A---- C:\WINDOWS\SysWOW64\ndfhcdiscovery.dll
2015-04-17 22:10:48 ----A---- C:\WINDOWS\SysWOW64\fmifs.dll
2015-04-17 22:10:48 ----A---- C:\WINDOWS\SysWOW64\driverquery.exe
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\wtsapi32.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\wshext.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\wlansec.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Background.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\wecapi.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\WcnApi.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\threadpoolwinrt.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\TapiMigPlugin.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\systemcpl.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\scksp.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\RpcRtRemote.dll
2015-04-17 22:10:47 ----A---- C:\WINDOWS\SysWOW64\racpldlg.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\wiascanprofiles.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\playlistfolder.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\loghours.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\fsutil.exe
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\dssec.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\ddrawex.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\SysWOW64\cliconfg.dll
2015-04-17 22:10:46 ----A---- C:\WINDOWS\regedit.exe
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\wlgpclnt.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\udhisapi.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\Storprop.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\net.exe
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\makecab.exe
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\iasads.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\EhStorAPI.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\dmsynth.dll
2015-04-17 22:10:45 ----A---- C:\WINDOWS\SysWOW64\apprepsync.dll
2015-04-17 22:10:44 ----A---- C:\WINDOWS\SysWOW64\winsockhc.dll
2015-04-17 22:10:44 ----A---- C:\WINDOWS\SysWOW64\srvcli.dll
2015-04-17 22:10:44 ----A---- C:\WINDOWS\SysWOW64\L2SecHC.dll
2015-04-17 22:10:44 ----A---- C:\WINDOWS\SysWOW64\dot3hc.dll
2015-04-17 22:10:44 ----A---- C:\WINDOWS\SysWOW64\devrtl.dll
2015-04-17 22:10:43 ----A---- C:\WINDOWS\SysWOW64\tsgqec.dll
2015-04-17 22:10:43 ----A---- C:\WINDOWS\SysWOW64\Query.dll
2015-04-17 22:10:43 ----A---- C:\WINDOWS\SysWOW64\powercfg.exe
2015-04-17 22:10:43 ----A---- C:\WINDOWS\SysWOW64\mciavi32.dll
2015-04-17 22:10:43 ----A---- C:\WINDOWS\SysWOW64\mbussdapi.dll
2015-04-17 22:10:42 ----A---- C:\WINDOWS\SysWOW64\ustprov.dll
2015-04-17 22:10:42 ----A---- C:\WINDOWS\SysWOW64\mssign32.dll
2015-04-17 22:10:42 ----A---- C:\WINDOWS\SysWOW64\iasdatastore.dll
2015-04-17 22:10:42 ----A---- C:\WINDOWS\SysWOW64\frprov.dll
2015-04-17 22:10:42 ----A---- C:\WINDOWS\SysWOW64\dot3cfg.dll
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\wkscli.dll
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\wecutil.exe
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\usbui.dll
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\unimdmat.dll
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\EAPQEC.DLL
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\dsrole.dll
2015-04-17 22:10:41 ----A---- C:\WINDOWS\SysWOW64\cscapi.dll
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\werui.dll
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\MsSpellCheckingHost.exe
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\msiexec.exe
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\mapistub.dll
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\mapi32.dll
2015-04-17 22:10:40 ----A---- C:\WINDOWS\SysWOW64\bcd.dll
2015-04-17 22:10:39 ----A---- C:\WINDOWS\SysWOW64\wlidfdp.dll
2015-04-17 22:10:39 ----A---- C:\WINDOWS\SysWOW64\ftp.exe
2015-04-17 22:10:39 ----A---- C:\WINDOWS\SysWOW64\Dsui.dll
2015-04-17 22:10:39 ----A---- C:\WINDOWS\SysWOW64\drvinst.exe
2015-04-17 22:10:39 ----A---- C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2015-04-17 22:10:38 ----A---- C:\WINDOWS\SysWOW64\uxlib.dll
2015-04-17 22:10:37 ----A---- C:\WINDOWS\SysWOW64\Utilman.exe
2015-04-17 22:10:37 ----A---- C:\WINDOWS\SysWOW64\networkitemfactory.dll
2015-04-17 22:10:37 ----A---- C:\WINDOWS\SysWOW64\DfsShlEx.dll
2015-04-17 22:10:37 ----A---- C:\WINDOWS\SysWOW64\bootcfg.exe

fasirek · #2 Příspěvek od **fasirek** » 24 kvě 2015 18:02

2015-04-17 22:10:36 ----A---- C:\WINDOWS\SysWOW64\WfHC.dll
2015-04-17 22:10:36 ----A---- C:\WINDOWS\SysWOW64\sfc_os.dll
2015-04-17 22:10:36 ----A---- C:\WINDOWS\SysWOW64\rdvvmtransport.dll
2015-04-17 22:10:36 ----A---- C:\WINDOWS\SysWOW64\PortableDeviceConnectApi.dll
2015-04-17 22:10:36 ----A---- C:\WINDOWS\SysWOW64\onexui.dll
2015-04-17 22:10:36 ----A---- C:\WINDOWS\SysWOW64\ConnectedAccountState.dll
2015-04-17 22:10:36 ----A---- C:\WINDOWS\splwow64.exe
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\vfwwdm32.dll
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\QUTIL.DLL
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\netapi32.dll
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\msident.dll
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\mdminst.dll
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\iscsiwmiv2.dll
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\iccvid.dll
2015-04-17 22:10:35 ----A---- C:\WINDOWS\SysWOW64\gcdef.dll
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\regapi.dll
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\QCLIPROV.DLL
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\nslookup.exe
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\netutils.dll
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\FXSCOM.dll
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\format.com
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\dmloader.dll
2015-04-17 22:10:34 ----A---- C:\WINDOWS\SysWOW64\d3dxof.dll
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\xmlfilter.dll
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\onex.dll
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\netid.dll
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\fwcfg.dll
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\DHCPQEC.DLL
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\BWContextHandler.dll
2015-04-17 22:10:33 ----A---- C:\WINDOWS\SysWOW64\avicap32.dll
2015-04-17 22:10:32 ----A---- C:\WINDOWS\SysWOW64\winrscmd.dll
2015-04-17 22:10:32 ----A---- C:\WINDOWS\SysWOW64\srclient.dll
2015-04-17 22:10:31 ----A---- C:\WINDOWS\twain_32.dll
2015-04-17 22:10:31 ----A---- C:\WINDOWS\SysWOW64\wusa.exe
2015-04-17 22:10:31 ----A---- C:\WINDOWS\SysWOW64\DWWIN.EXE
2015-04-17 22:10:31 ----A---- C:\WINDOWS\SysWOW64\bcrypt.dll
2015-04-17 22:10:30 ----A---- C:\WINDOWS\SysWOW64\xwreg.dll
2015-04-17 22:10:30 ----A---- C:\WINDOWS\SysWOW64\SortWindows6Compat.dll
2015-04-17 22:10:30 ----A---- C:\WINDOWS\SysWOW64\keymgr.dll
2015-04-17 22:10:30 ----A---- C:\WINDOWS\SysWOW64\isoburn.exe
2015-04-17 22:10:30 ----A---- C:\WINDOWS\SysWOW64\apprepapi.dll
2015-04-17 22:10:29 ----A---- C:\WINDOWS\SysWOW64\spfileq.dll
2015-04-17 22:10:29 ----A---- C:\WINDOWS\SysWOW64\efsadu.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\PickerHost.exe
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\netsh.exe
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\NapiNSP.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\mydocs.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\MsRdpWebAccess.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\mmcshext.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\l2nacp.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\dmband.dll
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\CameraSettingsUIHost.exe
2015-04-17 22:10:28 ----A---- C:\WINDOWS\SysWOW64\bidispl.dll
2015-04-17 22:10:27 ----A---- C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2015-04-17 22:10:27 ----A---- C:\WINDOWS\SysWOW64\samlib.dll
2015-04-17 22:10:27 ----A---- C:\WINDOWS\SysWOW64\rasdiag.dll
2015-04-17 22:10:27 ----A---- C:\WINDOWS\SysWOW64\pdhui.dll
2015-04-17 22:10:26 ----A---- C:\WINDOWS\SysWOW64\wiaacmgr.exe
2015-04-17 22:10:26 ----A---- C:\WINDOWS\SysWOW64\stclient.dll
2015-04-17 22:10:26 ----A---- C:\WINDOWS\SysWOW64\DevDispItemProvider.dll
2015-04-17 22:10:26 ----A---- C:\WINDOWS\SysWOW64\cnvfat.dll
2015-04-17 22:10:26 ----A---- C:\WINDOWS\SysWOW64\cfgbkend.dll
2015-04-17 22:10:26 ----A---- C:\WINDOWS\SysWOW64\appidapi.dll
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\w32tm.exe
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\uireng.dll
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\SyncHost.exe
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\svchost.exe
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\RegCtrl.dll
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\offreg.dll
2015-04-17 22:10:25 ----A---- C:\WINDOWS\SysWOW64\CloudNotifications.exe
2015-04-17 22:10:24 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Printers.Extensions.dll
2015-04-17 22:10:24 ----A---- C:\WINDOWS\SysWOW64\UserAccountControlSettings.dll
2015-04-17 22:10:24 ----A---- C:\WINDOWS\SysWOW64\sendmail.dll
2015-04-17 22:10:24 ----A---- C:\WINDOWS\SysWOW64\luainstall.dll
2015-04-17 22:10:24 ----A---- C:\WINDOWS\SysWOW64\btpanui.dll
2015-04-17 22:10:23 ----A---- C:\WINDOWS\SysWOW64\spbcd.dll
2015-04-17 22:10:23 ----A---- C:\WINDOWS\SysWOW64\shrpubw.exe
2015-04-17 22:10:22 ----A---- C:\WINDOWS\SysWOW64\wmpps.dll
2015-04-17 22:10:22 ----A---- C:\WINDOWS\SysWOW64\mciqtz32.dll
2015-04-17 22:10:22 ----A---- C:\WINDOWS\SysWOW64\HelpPaneProxy.dll
2015-04-17 22:10:22 ----A---- C:\WINDOWS\SysWOW64\fdPnp.dll
2015-04-17 22:10:22 ----A---- C:\WINDOWS\SysWOW64\dot3api.dll
2015-04-17 22:10:22 ----A---- C:\WINDOWS\SysWOW64\acppage.dll
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\ucmhc.dll
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\rrinstaller.exe
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\pautoenr.dll
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\openfiles.exe
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\ndfetw.dll
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\mimefilt.dll
2015-04-17 22:10:21 ----A---- C:\WINDOWS\SysWOW64\console.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\UXInit.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\utildll.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\takeown.exe
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\signdrv.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\msimtf.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\msdmo.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\keyiso.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\cryptext.dll
2015-04-17 22:10:20 ----A---- C:\WINDOWS\SysWOW64\cmdl32.exe
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\winbio.dll
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\RemoveDeviceContextHandler.dll
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\perfmon.exe
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\EhStorAuthn.exe
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\docprop.dll
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\cabview.dll
2015-04-17 22:10:19 ----A---- C:\WINDOWS\SysWOW64\AuthExt.dll
2015-04-17 22:10:18 ----A---- C:\WINDOWS\SysWOW64\wlanext.exe
2015-04-17 22:10:18 ----A---- C:\WINDOWS\SysWOW64\traffic.dll
2015-04-17 22:10:18 ----A---- C:\WINDOWS\SysWOW64\PlayToStatusProvider.dll
2015-04-17 22:10:18 ----A---- C:\WINDOWS\SysWOW64\msvcirt.dll
2015-04-17 22:10:18 ----A---- C:\WINDOWS\SysWOW64\mskeyprotect.dll
2015-04-17 22:10:18 ----A---- C:\WINDOWS\SysWOW64\DeviceDisplayStatusManager.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\wincredprovider.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\setx.exe
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\hhsetup.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\FdDevQuery.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\dpapiprovider.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\cngprovider.dll
2015-04-17 22:10:17 ----A---- C:\WINDOWS\SysWOW64\capiprovider.dll
2015-04-17 22:10:16 ----A---- C:\WINDOWS\SysWOW64\wshbth.dll
2015-04-17 22:10:15 ----A---- C:\WINDOWS\SysWOW64\batmeter.dll
2015-04-17 22:10:13 ----A---- C:\WINDOWS\SysWOW64\tlscsp.dll
2015-04-17 22:10:13 ----A---- C:\WINDOWS\SysWOW64\rtutils.dll
2015-04-17 22:10:13 ----A---- C:\WINDOWS\SysWOW64\pcaui.dll
2015-04-17 22:10:13 ----A---- C:\WINDOWS\SysWOW64\dot3dlg.dll
2015-04-17 22:10:11 ----A---- C:\WINDOWS\SysWOW64\xolehlp.dll
2015-04-17 22:10:11 ----A---- C:\WINDOWS\SysWOW64\wwapi.dll
2015-04-17 22:10:11 ----A---- C:\WINDOWS\SysWOW64\tcpmonui.dll
2015-04-17 22:10:11 ----A---- C:\WINDOWS\SysWOW64\msisip.dll
2015-04-17 22:10:10 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Portable.dll
2015-04-17 22:10:10 ----A---- C:\WINDOWS\SysWOW64\SCardDlg.dll
2015-04-17 22:10:10 ----A---- C:\WINDOWS\SysWOW64\PasswordOnWakeSettingFlyout.exe
2015-04-17 22:10:09 ----A---- C:\WINDOWS\SysWOW64\whoami.exe
2015-04-17 22:10:09 ----A---- C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll
2015-04-17 22:10:09 ----A---- C:\WINDOWS\SysWOW64\hcproviders.dll
2015-04-17 22:10:09 ----A---- C:\WINDOWS\SysWOW64\elslad.dll
2015-04-17 22:10:09 ----A---- C:\WINDOWS\SysWOW64\dataclen.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\version.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\ndiscapCfg.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\msports.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\hbaapi.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\EhStorPwdMgr.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\avrt.dll
2015-04-17 22:10:08 ----A---- C:\WINDOWS\SysWOW64\auditpol.exe
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\ThumbnailExtractionHost.exe
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\SortServer2003Compat.dll
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\sdchange.exe
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\reg.exe
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\olesvr32.dll
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\dhcpsapi.dll
2015-04-17 22:10:07 ----A---- C:\WINDOWS\SysWOW64\adprovider.dll
2015-04-17 22:10:06 ----A---- C:\WINDOWS\SysWOW64\Windows.Globalization.Fontgroups.dll
2015-04-17 22:10:06 ----A---- C:\WINDOWS\SysWOW64\TSTheme.exe
2015-04-17 22:10:06 ----A---- C:\WINDOWS\SysWOW64\mf3216.dll
2015-04-17 22:10:06 ----A---- C:\WINDOWS\SysWOW64\iscsidsc.dll
2015-04-17 22:10:06 ----A---- C:\WINDOWS\SysWOW64\elsTrans.dll
2015-04-17 22:10:06 ----A---- C:\WINDOWS\SysWOW64\dimsroam.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\sxsstore.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\PSModuleDiscoveryProvider.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\PlaySndSrv.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\nshhttp.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\mfpmp.exe
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\dot3msm.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\cttunesvr.exe
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\cmutil.dll
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\cmmon32.exe
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\cleanmgr.exe
2015-04-17 22:10:05 ----A---- C:\WINDOWS\SysWOW64\AzSqlExt.dll
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\wmiprop.dll
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\uicom.dll
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\tvratings.dll
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\sethc.exe
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\htui.dll
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\feclient.dll
2015-04-17 22:10:04 ----A---- C:\WINDOWS\SysWOW64\certCredProvider.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\winbrand.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\vsstrace.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\rundll32.exe
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\rtffilt.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\pnrpnsp.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\mode.com
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\gpprnext.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\forfiles.exe
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\eventcreate.exe
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\dtsh.dll
2015-04-17 22:10:03 ----A---- C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\wsnmp32.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\sfc.exe
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\perfos.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\perfctrs.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\nsi.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\msscntrs.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\iscsicli.exe
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\FXSEXT32.dll
2015-04-17 22:10:02 ----A---- C:\WINDOWS\SysWOW64\fc.exe
2015-04-17 22:10:01 ----A---- C:\WINDOWS\SysWOW64\where.exe
2015-04-17 22:10:01 ----A---- C:\WINDOWS\SysWOW64\RdpSa.exe
2015-04-17 22:10:01 ----A---- C:\WINDOWS\SysWOW64\more.com
2015-04-17 22:10:01 ----A---- C:\WINDOWS\SysWOW64\dswave.dll
2015-04-17 22:10:01 ----A---- C:\WINDOWS\SysWOW64\drttransport.dll
2015-04-17 22:10:01 ----A---- C:\WINDOWS\SysWOW64\cipher.exe
2015-04-17 22:09:59 ----A---- C:\WINDOWS\SysWOW64\mspatchc.dll
2015-04-17 22:09:59 ----A---- C:\WINDOWS\SysWOW64\dot3gpclnt.dll
2015-04-17 22:09:59 ----A---- C:\WINDOWS\SysWOW64\comp.exe
2015-04-17 22:09:58 ----A---- C:\WINDOWS\SysWOW64\timeout.exe
2015-04-17 22:09:58 ----A---- C:\WINDOWS\SysWOW64\rasphone.exe
2015-04-17 22:09:58 ----A---- C:\WINDOWS\SysWOW64\choice.exe
2015-04-17 22:09:58 ----A---- C:\WINDOWS\SysWOW64\cryptbase.dll
2015-04-17 22:09:58 ----A---- C:\WINDOWS\SysWOW64\clip.exe
2015-04-17 22:09:58 ----A---- C:\WINDOWS\SysWOW64\AuthFWGP.dll
2015-04-17 22:09:57 ----A---- C:\WINDOWS\SysWOW64\rdrleakdiag.exe
2015-04-17 22:09:57 ----A---- C:\WINDOWS\SysWOW64\MirrorDrvCompat.dll
2015-04-17 22:09:57 ----A---- C:\WINDOWS\SysWOW64\iaspolcy.dll
2015-04-17 22:09:56 ----A---- C:\WINDOWS\SysWOW64\winnsi.dll
2015-04-17 22:09:56 ----A---- C:\WINDOWS\SysWOW64\PCPKsp.dll
2015-04-17 22:09:56 ----A---- C:\WINDOWS\SysWOW64\MsCtfMonitor.dll
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\wshcon.dll
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\runonce.exe
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\radarrs.dll
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\napdsnap.dll
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\mtxlegih.dll
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\mtxdm.dll
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\dialer.exe
2015-04-17 22:09:55 ----A---- C:\WINDOWS\SysWOW64\ByteCodeGenerator.exe
2015-04-17 22:09:54 ----A---- C:\WINDOWS\SysWOW64\Windows.Media.Streaming.ps.dll
2015-04-17 22:09:54 ----A---- C:\WINDOWS\SysWOW64\waitfor.exe
2015-04-17 22:09:53 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.TimeBroker.dll
2015-04-17 22:09:53 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2015-04-17 22:09:53 ----A---- C:\WINDOWS\SysWOW64\Magnification.dll
2015-04-17 22:09:52 ----A---- C:\WINDOWS\SysWOW64\pwrshplugin.dll
2015-04-17 22:09:52 ----A---- C:\WINDOWS\SysWOW64\expand.exe
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\wmdmlog.dll
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\srumapi.dll
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\msctfp.dll
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\mcicda.dll
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\inetmib1.dll
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\drtprov.dll
2015-04-17 22:09:51 ----A---- C:\WINDOWS\SysWOW64\cfmifs.dll
2015-04-17 22:09:50 ----A---- C:\WINDOWS\SysWOW64\WcsPlugInService.dll
2015-04-17 22:09:50 ----A---- C:\WINDOWS\SysWOW64\profext.dll
2015-04-17 22:09:50 ----A---- C:\WINDOWS\SysWOW64\linkinfo.dll
2015-04-17 22:09:50 ----A---- C:\WINDOWS\SysWOW64\certenc.dll
2015-04-17 22:09:49 ----A---- C:\WINDOWS\SysWOW64\ureg.dll
2015-04-17 22:09:49 ----A---- C:\WINDOWS\SysWOW64\dfscli.dll
2015-04-17 22:09:49 ----A---- C:\WINDOWS\SysWOW64\cmlua.dll
2015-04-17 22:09:49 ----A---- C:\WINDOWS\SysWOW64\cmcfg32.dll
2015-04-17 22:09:48 ----A---- C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2015-04-17 22:09:48 ----A---- C:\WINDOWS\SysWOW64\odbcbcp.dll
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\winrs.exe
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\w32topl.dll
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\sxproxy.dll
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\sc.exe
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\kernel.appcore.dll
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\hid.dll
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\crypttpmeksvc.dll
2015-04-17 22:09:47 ----A---- C:\WINDOWS\SysWOW64\cmpbk32.dll
2015-04-17 22:09:46 ----A---- C:\WINDOWS\SysWOW64\wscisvif.dll
2015-04-17 22:09:46 ----A---- C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2015-04-17 22:09:46 ----A---- C:\WINDOWS\SysWOW64\PkgMgr.exe
2015-04-17 22:09:46 ----A---- C:\WINDOWS\SysWOW64\mssitlb.dll
2015-04-17 22:09:46 ----A---- C:\WINDOWS\SysWOW64\browcli.dll
2015-04-17 22:09:45 ----A---- C:\WINDOWS\SysWOW64\Windows.System.Display.dll
2015-04-17 22:09:45 ----A---- C:\WINDOWS\SysWOW64\pid.dll
2015-04-17 22:09:45 ----A---- C:\WINDOWS\SysWOW64\findstr.exe
2015-04-17 22:09:45 ----A---- C:\WINDOWS\SysWOW64\convert.exe
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\shutdown.exe
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\serwvdrv.dll
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\mmci.dll
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\chkdsk.exe
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\hidserv.dll
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\fdWNet.dll
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\efsutil.dll
2015-04-17 22:09:44 ----A---- C:\WINDOWS\SysWOW64\dimsjob.dll
2015-04-17 22:09:43 ----A---- C:\WINDOWS\SysWOW64\WPDShextAutoplay.exe
2015-04-17 22:09:43 ----A---- C:\WINDOWS\SysWOW64\Windows.System.Profile.SystemManufacturers.dll
2015-04-17 22:09:43 ----A---- C:\WINDOWS\SysWOW64\tbs.dll
2015-04-17 22:09:43 ----A---- C:\WINDOWS\SysWOW64\setupcln.dll
2015-04-17 22:09:42 ----A---- C:\WINDOWS\SysWOW64\wsdchngr.dll
2015-04-17 22:09:42 ----A---- C:\WINDOWS\SysWOW64\Websocket.dll
2015-04-17 22:09:42 ----A---- C:\WINDOWS\SysWOW64\MuiUnattend.exe
2015-04-17 22:09:42 ----A---- C:\WINDOWS\SysWOW64\AtBroker.exe
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\wfapigp.dll
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\tree.com
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\NETSTAT.EXE
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\msvidc32.dll
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\mspatcha.dll
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\eapprovp.dll
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\deskmon.dll
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\DefaultPrinterProvider.dll
2015-04-17 22:09:41 ----A---- C:\WINDOWS\SysWOW64\cryptdlg.dll
2015-04-17 22:09:40 ----A---- C:\WINDOWS\SysWOW64\sscore.dll
2015-04-17 22:09:40 ----A---- C:\WINDOWS\SysWOW64\NcdProp.dll
2015-04-17 22:09:40 ----A---- C:\WINDOWS\SysWOW64\iscsium.dll
2015-04-17 22:09:40 ----A---- C:\WINDOWS\SysWOW64\icacls.exe
2015-04-17 22:09:40 ----A---- C:\WINDOWS\SysWOW64\diskcopy.dll
2015-04-17 22:09:39 ----A---- C:\WINDOWS\SysWOW64\RdpSaProxy.exe
2015-04-17 22:09:38 ----A---- C:\WINDOWS\SysWOW64\wmiclnt.dll
2015-04-17 22:09:38 ----A---- C:\WINDOWS\SysWOW64\userinit.exe
2015-04-17 22:09:38 ----A---- C:\WINDOWS\SysWOW64\tcpmib.dll
2015-04-17 22:09:38 ----A---- C:\WINDOWS\SysWOW64\hnetmon.dll
2015-04-17 22:09:38 ----A---- C:\WINDOWS\SysWOW64\dmocx.dll
2015-04-17 22:09:38 ----A---- C:\WINDOWS\SysWOW64\cngcredui.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\shimgvw.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\SecEdit.exe
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\rpcnsh.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\replace.exe
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\perfdisk.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\icmui.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\encapi.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\dsparse.dll
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\doskey.exe
2015-04-17 22:09:37 ----A---- C:\WINDOWS\SysWOW64\dmutil.dll
2015-04-17 22:09:36 ----A---- C:\WINDOWS\SysWOW64\XInput1_4.dll
2015-04-17 22:09:36 ----A---- C:\WINDOWS\SysWOW64\ddodiag.exe
2015-04-17 22:09:36 ----A---- C:\WINDOWS\SysWOW64\cacls.exe
2015-04-17 22:09:36 ----A---- C:\WINDOWS\SysWOW64\bitsperf.dll
2015-04-17 22:09:36 ----A---- C:\WINDOWS\SysWOW64\attrib.exe
2015-04-17 22:09:35 ----A---- C:\WINDOWS\SysWOW64\shpafact.dll
2015-04-17 22:09:35 ----A---- C:\WINDOWS\SysWOW64\shgina.dll
2015-04-17 22:09:35 ----A---- C:\WINDOWS\SysWOW64\fsutilext.dll
2015-04-17 22:09:35 ----A---- C:\WINDOWS\SysWOW64\esentprf.dll
2015-04-17 22:09:35 ----A---- C:\WINDOWS\SysWOW64\delegatorprovider.dll
2015-04-17 22:09:34 ----A---- C:\WINDOWS\SysWOW64\wfdprov.dll
2015-04-17 22:09:33 ----A---- C:\WINDOWS\SysWOW64\winrshost.exe
2015-04-17 22:09:32 ----A---- C:\WINDOWS\SysWOW64\rasmxs.dll
2015-04-17 22:09:32 ----A---- C:\WINDOWS\SysWOW64\netiougc.exe
2015-04-17 22:09:32 ----A---- C:\WINDOWS\SysWOW64\chkntfs.exe
2015-04-17 22:09:32 ----A---- C:\WINDOWS\SysWOW64\httpapi.dll
2015-04-17 22:09:32 ----A---- C:\WINDOWS\SysWOW64\dbnmpntw.dll
2015-04-17 22:09:32 ----A---- C:\WINDOWS\SysWOW64\compact.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\xwizard.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\wsmprovhost.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\WsmAgent.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\WinFax.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\Windows.System.RemoteDesktop.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\snmpapi.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\secur32.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\proquota.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\prevhost.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\odbcconf.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\ipconfig.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\ifmon.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\ias.dll
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\CheckNetIsolation.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\find.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\dvdupgrd.exe
2015-04-17 22:09:31 ----A---- C:\WINDOWS\SysWOW64\deskadp.dll
2015-04-17 22:09:30 ----A---- C:\WINDOWS\SysWOW64\ReAgentc.exe
2015-04-17 22:09:30 ----A---- C:\WINDOWS\SysWOW64\lodctr.exe
2015-04-17 22:09:30 ----A---- C:\WINDOWS\SysWOW64\dsauth.dll
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\vds_ps.dll
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\sxstrace.exe
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\RpcPing.exe
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\regini.exe
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\perfproc.dll
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\odbcconf.exe
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\msiltcfg.dll
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\icsunattend.exe
2015-04-17 22:09:29 ----A---- C:\WINDOWS\SysWOW64\credwiz.exe
2015-04-17 22:09:28 ----A---- C:\WINDOWS\SysWOW64\sisbkup.dll
2015-04-17 22:09:28 ----A---- C:\WINDOWS\SysWOW64\netbtugc.exe
2015-04-17 22:09:28 ----A---- C:\WINDOWS\SysWOW64\napipsec.dll
2015-04-17 22:09:28 ----A---- C:\WINDOWS\SysWOW64\mfcsubs.dll
2015-04-17 22:09:28 ----A---- C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2015-04-17 22:09:26 ----A---- C:\WINDOWS\SysWOW64\wshqos.dll
2015-04-17 22:09:26 ----A---- C:\WINDOWS\SysWOW64\wlidnsp.dll
2015-04-17 22:09:26 ----A---- C:\WINDOWS\SysWOW64\StorSvc.dll
2015-04-17 22:09:25 ----A---- C:\WINDOWS\SysWOW64\xmlprovi.dll
2015-04-17 22:09:25 ----A---- C:\WINDOWS\SysWOW64\ocsetapi.dll
2015-04-17 22:09:25 ----A---- C:\WINDOWS\SysWOW64\fontview.exe
2015-04-17 22:09:25 ----A---- C:\WINDOWS\SysWOW64\extrac32.exe
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\wlaninst.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\winusb.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\shunimpl.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\sdiagnhost.exe
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\netbios.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\mssprxy.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\mskeyprotcli.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\mgmtapi.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\fltLib.dll
2015-04-17 22:09:24 ----A---- C:\WINDOWS\SysWOW64\davhlpr.dll
2015-04-17 22:09:23 ----A---- C:\WINDOWS\SysWOW64\wshelper.dll
2015-04-17 22:09:23 ----A---- C:\WINDOWS\SysWOW64\syskey.exe
2015-04-17 22:09:23 ----A---- C:\WINDOWS\SysWOW64\idndl.dll
2015-04-17 22:09:23 ----A---- C:\WINDOWS\SysWOW64\capisp.dll
2015-04-17 22:09:23 ----A---- C:\WINDOWS\SysWOW64\BackgroundTransferHost.exe
2015-04-17 22:09:22 ----A---- C:\WINDOWS\SysWOW64\sxshared.dll
2015-04-17 22:09:22 ----A---- C:\WINDOWS\SysWOW64\ProximityCommonPal.dll
2015-04-17 22:09:22 ----A---- C:\WINDOWS\SysWOW64\Microsoft.Management.Infrastructure.Native.Unmanaged.dll
2015-04-17 22:09:22 ----A---- C:\WINDOWS\SysWOW64\cmstplua.dll
2015-04-17 22:09:22 ----A---- C:\WINDOWS\SysWOW64\Apphlpdm.dll
2015-04-17 22:09:21 ----A---- C:\WINDOWS\SysWOW64\diskcopy.com
2015-04-17 22:09:21 ----A---- C:\WINDOWS\SysWOW64\diskcomp.com
2015-04-17 22:09:21 ----A---- C:\WINDOWS\SysWOW64\ARP.EXE
2015-04-17 22:09:20 ----A---- C:\WINDOWS\SysWOW64\winrnr.dll
2015-04-17 22:09:20 ----A---- C:\WINDOWS\SysWOW64\print.exe
2015-04-17 22:09:20 ----A---- C:\WINDOWS\SysWOW64\msrle32.dll
2015-04-17 22:09:20 ----A---- C:\WINDOWS\SysWOW64\IconCodecService.dll
2015-04-17 22:09:19 ----A---- C:\WINDOWS\SysWOW64\regsvr32.exe
2015-04-17 22:09:19 ----A---- C:\WINDOWS\SysWOW64\nci.dll
2015-04-17 22:09:19 ----A---- C:\WINDOWS\SysWOW64\fixmapi.exe
2015-04-17 22:09:18 ----A---- C:\WINDOWS\SysWOW64\RdpSaUacHelper.exe
2015-04-17 22:09:18 ----A---- C:\WINDOWS\SysWOW64\rasser.dll
2015-04-17 22:09:18 ----A---- C:\WINDOWS\SysWOW64\cscdll.dll
2015-04-17 22:09:18 ----A---- C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2015-04-17 22:09:18 ----A---- C:\WINDOWS\SysWOW64\at.exe
2015-04-17 22:09:16 ----A---- C:\WINDOWS\SysWOW64\DefaultDeviceManager.dll
2015-04-17 22:09:15 ----A---- C:\WINDOWS\SysWOW64\DDORes.dll
2015-04-17 22:09:14 ----A---- C:\WINDOWS\SysWOW64\userinitext.dll
2015-04-17 22:09:14 ----A---- C:\WINDOWS\SysWOW64\qmgrprxy.dll
2015-04-17 22:09:13 ----A---- C:\WINDOWS\SysWOW64\virtdisk.dll
2015-04-17 22:09:13 ----A---- C:\WINDOWS\SysWOW64\upnpcont.exe
2015-04-17 22:09:13 ----A---- C:\WINDOWS\SysWOW64\ntlanui2.dll
2015-04-17 22:09:13 ----A---- C:\WINDOWS\SysWOW64\label.exe
2015-04-17 22:09:12 ----A---- C:\WINDOWS\SysWOW64\slpts.dll
2015-04-17 22:09:12 ----A---- C:\WINDOWS\SysWOW64\eventvwr.exe
2015-04-17 22:09:12 ----A---- C:\WINDOWS\SysWOW64\clb.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\uniplat.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\TtlsExt.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\schedcli.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\shfolder.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\rasctrs.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\drprov.dll
2015-04-17 22:09:11 ----A---- C:\WINDOWS\SysWOW64\deviceassociation.dll
2015-04-17 22:09:10 ----A---- C:\WINDOWS\SysWOW64\wksprtPS.dll
2015-04-17 22:09:10 ----A---- C:\WINDOWS\SysWOW64\CHxReadingStringIME.dll
2015-04-17 22:09:10 ----A---- C:\WINDOWS\SysWOW64\credssp.dll
2015-04-17 22:09:09 ----A---- C:\WINDOWS\SysWOW64\pots.dll
2015-04-17 22:09:08 ----A---- C:\WINDOWS\SysWOW64\ROUTE.EXE
2015-04-17 22:09:08 ----A---- C:\WINDOWS\SysWOW64\PING.EXE
2015-04-17 22:09:08 ----A---- C:\WINDOWS\SysWOW64\pcaui.exe
2015-04-17 22:09:08 ----A---- C:\WINDOWS\SysWOW64\pcacli.dll
2015-04-17 22:09:08 ----A---- C:\WINDOWS\SysWOW64\midimap.dll
2015-04-17 22:09:08 ----A---- C:\WINDOWS\SysWOW64\ifsutilx.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\winipsec.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\wcmapi.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\vdmdbg.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\syssetup.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\subst.exe
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\spopk.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\odbctrac.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\ktmutil.exe
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\irclass.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\HOSTNAME.EXE
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\gptext.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\finger.exe
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\eventcls.dll
2015-04-17 22:09:07 ----A---- C:\WINDOWS\SysWOW64\dhcpcmonitor.dll
2015-04-17 22:09:06 ----A---- C:\WINDOWS\SysWOW64\WINSRPC.DLL
2015-04-17 22:09:06 ----A---- C:\WINDOWS\SysWOW64\tpmcompc.dll
2015-04-17 22:09:06 ----A---- C:\WINDOWS\SysWOW64\TimeBrokerClient.dll
2015-04-17 22:09:06 ----A---- C:\WINDOWS\SysWOW64\panmap.dll
2015-04-17 22:09:06 ----A---- C:\WINDOWS\SysWOW64\msshooks.dll
2015-04-17 22:09:06 ----A---- C:\WINDOWS\SysWOW64\mciwave.dll
2015-04-17 22:09:05 ----A---- C:\WINDOWS\SysWOW64\nlmsprep.dll
2015-04-17 22:09:05 ----A---- C:\WINDOWS\SysWOW64\mobsync.exe
2015-04-17 22:09:05 ----A---- C:\WINDOWS\SysWOW64\iyuv_32.dll
2015-04-17 22:09:05 ----A---- C:\WINDOWS\SysWOW64\grpconv.exe
2015-04-17 22:09:05 ----A---- C:\WINDOWS\SysWOW64\dispex.dll
2015-04-17 22:09:05 ----A---- C:\WINDOWS\SysWOW64\d3dramp.dll
2015-04-17 22:09:04 ----A---- C:\WINDOWS\SysWOW64\vpnikeapi.dll
2015-04-17 22:09:04 ----A---- C:\WINDOWS\SysWOW64\Nlsdl.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\SortWindows61.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\serialui.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\rastlsext.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\raschapext.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\osbaseln.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\npmproxy.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\mscpxl32.dLL
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\mmcico.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\dpapi.dll
2015-04-17 22:09:03 ----A---- C:\WINDOWS\SysWOW64\DDACLSys.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\recover.exe
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\perfnet.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\NcaApi.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\d3d8thk.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\catsrvps.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\bitsprx7.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\bitsprx6.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\bitsprx5.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\bitsprx4.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\bitsprx3.dll
2015-04-17 22:09:02 ----A---- C:\WINDOWS\SysWOW64\bitsprx2.dll
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\umdmxfrm.dll
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\smphost.dll
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\RmClient.exe
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\rasadhlp.dll
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\muifontsetup.dll
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\mountvol.exe
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\gpupdate.exe
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\dpapimig.exe
2015-04-17 22:09:01 ----A---- C:\WINDOWS\SysWOW64\control.exe
2015-04-17 22:09:00 ----A---- C:\WINDOWS\SysWOW64\verclsid.exe
2015-04-17 22:09:00 ----A---- C:\WINDOWS\SysWOW64\Startupscan.dll
2015-04-17 22:09:00 ----A---- C:\WINDOWS\SysWOW64\newdev.exe
2015-04-17 22:09:00 ----A---- C:\WINDOWS\SysWOW64\ndadmin.exe
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\wmsgapi.dll
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\wiatrace.dll
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\softpub.dll
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\rasautou.exe
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\mssip32.dll
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\mscat32.dll
2015-04-17 22:08:59 ----A---- C:\WINDOWS\SysWOW64\cmdext.dll
2015-04-17 22:08:58 ----A---- C:\WINDOWS\SysWOW64\wininitext.dll
2015-04-17 22:08:58 ----A---- C:\WINDOWS\SysWOW64\whhelper.dll
2015-04-17 22:08:58 ----A---- C:\WINDOWS\SysWOW64\tcmsetup.exe
2015-04-17 22:08:58 ----A---- C:\WINDOWS\SysWOW64\TapiSysprep.dll
2015-04-17 22:08:58 ----A---- C:\WINDOWS\SysWOW64\Register-CimProvider.exe
2015-04-17 22:08:58 ----A---- C:\WINDOWS\SysWOW64\browseui.dll
2015-04-17 22:08:57 ----A---- C:\WINDOWS\SysWOW64\SyncInfrastructureps.dll
2015-04-17 22:08:57 ----A---- C:\WINDOWS\SysWOW64\spwinsat.dll
2015-04-17 22:08:57 ----A---- C:\WINDOWS\SysWOW64\ndproxystub.dll
2015-04-17 22:08:54 ----A---- C:\WINDOWS\SysWOW64\wshrm.dll
2015-04-17 22:08:54 ----A---- C:\WINDOWS\SysWOW64\wmdmps.dll
2015-04-17 22:08:54 ----A---- C:\WINDOWS\SysWOW64\unlodctr.exe
2015-04-17 22:08:54 ----A---- C:\WINDOWS\SysWOW64\perfts.dll
2015-04-17 22:08:54 ----A---- C:\WINDOWS\SysWOW64\dmintf.dll
2015-04-17 22:08:54 ----A---- C:\WINDOWS\SysWOW64\DevicePairingWizard.exe
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\VscMgrPS.dll
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\UserAccountControlSettings.exe
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\tapiperf.dll
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\oleacchooks.dll
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\nlmproxy.dll
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\lsmproxy.dll
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\chcp.com
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\hdwwiz.exe
2015-04-17 22:08:53 ----A---- C:\WINDOWS\SysWOW64\C_G18030.DLL
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\wsock32.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\wshirda.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\vss_ps.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\usbperf.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\TSChannel.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\rasdial.exe
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\nddeapi.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\msidle.dll
2015-04-17 22:08:52 ----A---- C:\WINDOWS\SysWOW64\fltMC.exe
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\wmcodecdspps.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\SyncHostps.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\SensApi.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\RemoveDeviceElevated.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\RdpSaPs.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\ProximityRtapiPal.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\mprext.dll
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\LAPRXY.DLL
2015-04-17 22:08:51 ----A---- C:\WINDOWS\SysWOW64\DevicePairingProxy.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\XInput9_1_0.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\wsmplpxy.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\winrssrv.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\TimeDateMUICallback.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\spnet.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\secinit.exe
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\OskSupport.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\mtxex.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\ir50_qcx.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\ir50_qc.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\ir50_32.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\ir41_qcx.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\ir41_qc.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\ir32_32.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\getuname.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\fdBthProxy.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\efsui.exe
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\cfmifsproxy.dll
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\C_IS2022.DLL
2015-04-17 22:08:50 ----A---- C:\WINDOWS\SysWOW64\acledit.dll
2015-04-17 22:08:49 ----A---- C:\WINDOWS\SysWOW64\wscproxystub.dll
2015-04-17 22:08:49 ----A---- C:\WINDOWS\SysWOW64\WlS0WndH.dll
2015-04-17 22:08:48 ----A---- C:\WINDOWS\SysWOW64\tsbyuv.dll
2015-04-17 22:08:48 ----A---- C:\WINDOWS\SysWOW64\sas.dll
2015-04-17 22:08:48 ----A---- C:\WINDOWS\SysWOW64\odbcji32.dll
2015-04-17 22:08:48 ----A---- C:\WINDOWS\SysWOW64\iprtprio.dll
2015-04-17 22:08:47 ----A---- C:\WINDOWS\SysWOW64\sort.exe
2015-04-17 22:08:46 ----A---- C:\WINDOWS\SysWOW64\wowreg32.exe
2015-04-17 22:08:46 ----A---- C:\WINDOWS\SysWOW64\TaskSchdPS.dll
2015-04-17 22:08:46 ----A---- C:\WINDOWS\SysWOW64\runas.exe
2015-04-17 22:08:46 ----A---- C:\WINDOWS\SysWOW64\ntprint.exe
2015-04-17 22:08:46 ----A---- C:\WINDOWS\SysWOW64\iscsied.dll
2015-04-17 22:08:45 ----A---- C:\WINDOWS\SysWOW64\wpcsvc.dll
2015-04-17 22:08:45 ----A---- C:\WINDOWS\SysWOW64\msyuv.dll
2015-04-17 22:08:44 ----A---- C:\WINDOWS\SysWOW64\mprmsg.dll
2015-04-17 22:08:43 ----A---- C:\WINDOWS\SysWOW64\msiwer.dll
2015-04-17 22:08:43 ----A---- C:\WINDOWS\SysWOW64\MRINFO.EXE
2015-04-17 22:08:43 ----A---- C:\WINDOWS\SysWOW64\miguiresource.dll
2015-04-17 22:08:43 ----A---- C:\WINDOWS\SysWOW64\Fondue.exe
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\spwmp.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\PATHPING.EXE
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\osuninst.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\odtext32.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\odpdx32.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\odfox32.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\odexl32.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\oddbse32.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\Narrator.exe
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\msimg32.dll
2015-04-17 22:08:42 ----A---- C:\WINDOWS\SysWOW64\comcat.dll
2015-04-17 22:08:41 ----A---- C:\WINDOWS\SysWOW64\msidcrl40.dll
2015-04-17 22:08:39 ----A---- C:\WINDOWS\SysWOW64\SmartScreenSettings.exe
2015-04-17 22:08:38 ----A---- C:\WINDOWS\SysWOW64\TRACERT.EXE
2015-04-17 22:08:37 ----A---- C:\WINDOWS\SysWOW64\tzutil.exe
2015-04-17 22:08:37 ----A---- C:\WINDOWS\SysWOW64\txfw32.dll
2015-04-17 22:08:37 ----A---- C:\WINDOWS\SysWOW64\InfDefaultInstall.exe
2015-04-17 22:08:36 ----A---- C:\WINDOWS\SysWOW64\Netplwiz.exe
2015-04-17 22:08:35 ----A---- C:\WINDOWS\SysWOW64\cliconfg.exe
2015-04-17 22:08:34 ----A---- C:\WINDOWS\SysWOW64\RunLegacyCPLElevated.exe
2015-04-17 22:08:34 ----A---- C:\WINDOWS\SysWOW64\iscsicpl.exe
2015-04-17 22:08:34 ----A---- C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2015-04-17 22:08:33 ----A---- C:\WINDOWS\SysWOW64\TapiUnattend.exe
2015-04-17 22:08:32 ----A---- C:\WINDOWS\SysWOW64\regedt32.exe
2015-04-17 22:08:32 ----A---- C:\WINDOWS\SysWOW64\odbcad32.exe
2015-04-17 22:08:32 ----A---- C:\WINDOWS\SysWOW64\LocationNotifications.exe
2015-04-17 22:08:31 ----A---- C:\WINDOWS\SysWOW64\winver.exe
2015-04-17 22:08:31 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.ps.dll
2015-04-17 22:08:31 ----A---- C:\WINDOWS\SysWOW64\mciseq.dll
2015-04-17 22:08:31 ----A---- C:\WINDOWS\SysWOW64\hh.exe
2015-04-17 22:08:31 ----A---- C:\WINDOWS\SysWOW64\fdProxy.dll
2015-04-17 22:08:31 ----A---- C:\WINDOWS\SysWOW64\DpiScaling.exe
2015-04-17 22:08:30 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Background.ps.dll
2015-04-17 22:08:30 ----A---- C:\WINDOWS\SysWOW64\dvdplay.exe
2015-04-17 22:08:30 ----A---- C:\WINDOWS\SysWOW64\ctfmon.exe
2015-04-17 22:08:29 ----A---- C:\WINDOWS\SysWOW64\LaunchTM.exe
2015-04-17 22:08:29 ----A---- C:\WINDOWS\hh.exe
2015-04-17 22:08:28 ----A---- C:\WINDOWS\SysWOW64\msra.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesRemote.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesProtection.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesHardware.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesDataExecutionPrevention.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesComputerName.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\SystemPropertiesAdvanced.exe
2015-04-17 22:08:27 ----A---- C:\WINDOWS\SysWOW64\resmon.exe
2015-04-17 22:08:26 ----A---- C:\WINDOWS\SysWOW64\systray.exe
2015-04-17 22:08:26 ----A---- C:\WINDOWS\SysWOW64\colorcpl.exe
2015-04-17 22:08:25 ----A---- C:\WINDOWS\winhlp32.exe
2015-04-17 22:08:25 ----A---- C:\WINDOWS\SysWOW64\write.exe
2015-04-17 22:08:25 ----A---- C:\WINDOWS\SysWOW64\scrnsave.scr
2015-04-17 22:08:25 ----A---- C:\WINDOWS\SysWOW64\AuthFWSnapin.dll
2015-04-17 22:08:24 ----A---- C:\WINDOWS\SysWOW64\TCPSVCS.EXE
2015-04-17 22:08:23 ----A---- C:\WINDOWS\SysWOW64\wship6.dll
2015-04-17 22:08:22 ----A---- C:\WINDOWS\write.exe
2015-04-17 22:08:22 ----A---- C:\WINDOWS\SysWOW64\DeviceProperties.exe
2015-04-17 22:08:22 ----A---- C:\WINDOWS\SysWOW64\DDOIProxy.dll
2015-04-17 22:08:22 ----A---- C:\WINDOWS\SysWOW64\cmdkey.exe
2015-04-17 22:08:22 ----A---- C:\WINDOWS\SysWOW64\backgroundTaskHost.exe
2015-04-17 22:08:21 ----A---- C:\WINDOWS\SysWOW64\ktmw32.dll
2015-04-17 22:08:19 ----A---- C:\WINDOWS\SysWOW64\CallButtons.ProxyStub.dll
2015-04-17 22:08:17 ----A---- C:\WINDOWS\SysWOW64\help.exe
2015-04-17 22:08:17 ----A---- C:\WINDOWS\SysWOW64\dcomcnfg.exe
2015-04-17 22:08:15 ----A---- C:\WINDOWS\SysWOW64\bthudtask.exe
2015-04-17 22:08:14 ----A---- C:\WINDOWS\SysWOW64\AuthFWWizFwk.dll
2015-04-17 22:08:12 ----A---- C:\WINDOWS\SysWOW64\WSHTCPIP.DLL
2015-04-17 22:08:09 ----A---- C:\WINDOWS\SysWOW64\usp10.dll
2015-04-17 22:08:09 ----A---- C:\WINDOWS\SysWOW64\RpcNs4.dll
2015-04-17 22:08:08 ----A---- C:\WINDOWS\SysWOW64\dabapi.dll
2015-04-17 22:08:07 ----A---- C:\WINDOWS\SysWOW64\OobeFldr.dll
2015-04-17 22:08:04 ----A---- C:\WINDOWS\SysWOW64\pstorec.dll
2015-04-17 22:08:04 ----A---- C:\WINDOWS\SysWOW64\normaliz.dll
2015-04-17 22:08:04 ----A---- C:\WINDOWS\SysWOW64\C_ISCII.DLL
2015-04-17 22:08:03 ----A---- C:\WINDOWS\SysWOW64\shimeng.dll
2015-04-17 22:08:03 ----A---- C:\WINDOWS\SysWOW64\dxmasf.dll
2015-04-17 22:08:03 ----A---- C:\WINDOWS\SysWOW64\DeviceUxRes.dll
2015-04-17 22:08:01 ----A---- C:\WINDOWS\SysWOW64\wlanhlp.dll
2015-04-17 22:08:01 ----A---- C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-04-17 22:08:01 ----A---- C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-04-17 22:08:00 ----A---- C:\WINDOWS\SysWOW64\ws2help.dll
2015-04-17 22:08:00 ----A---- C:\WINDOWS\SysWOW64\wmi.dll
2015-04-17 22:08:00 ----A---- C:\WINDOWS\SysWOW64\rnr20.dll
2015-04-17 22:08:00 ----A---- C:\WINDOWS\SysWOW64\iprop.dll
2015-04-17 01:33:44 ----A---- C:\WINDOWS\SysWOW64\tracerpt.exe
2015-04-17 01:33:44 ----A---- C:\WINDOWS\SysWOW64\tdh.dll
2015-04-17 01:33:44 ----A---- C:\WINDOWS\SysWOW64\sechost.dll
2015-04-17 01:33:44 ----A---- C:\WINDOWS\SysWOW64\ntdll.dll
2015-04-17 01:33:43 ----A---- C:\WINDOWS\SysWOW64\typeperf.exe
2015-04-17 01:33:43 ----A---- C:\WINDOWS\SysWOW64\relog.exe
2015-04-17 01:33:43 ----A---- C:\WINDOWS\SysWOW64\logman.exe
2015-04-17 01:33:43 ----A---- C:\WINDOWS\SysWOW64\diskperf.exe
2015-04-17 01:33:40 ----A---- C:\WINDOWS\SysWOW64\pku2u.dll
2015-04-17 01:32:34 ----A---- C:\WINDOWS\SysWOW64\clfsw32.dll
2015-04-14 22:03:45 ----A---- C:\WINDOWS\SysWOW64\wuwebv.dll
2015-04-14 22:03:45 ----A---- C:\WINDOWS\SysWOW64\wudriver.dll
2015-04-14 22:03:45 ----A---- C:\WINDOWS\SysWOW64\wuapp.exe
2015-04-14 22:03:45 ----A---- C:\WINDOWS\SysWOW64\wuapi.dll
2015-04-14 22:03:42 ----A---- C:\WINDOWS\SysWOW64\wups.dll
2015-04-06 23:46:17 ----SD---- C:\WINDOWS\SysWOW64\GWX
2015-04-05 18:49:06 ----D---- C:\Program Files (x86)\yellow cabs
2015-04-05 14:36:52 ----D---- C:\rbtemp
2015-04-05 14:36:49 ----D---- C:\Program Files (x86)\Right Backup
2015-04-03 15:49:34 ----A---- C:\Users\Denisa\AppData\Roaming\MFTMTSAoYFZbZye3vWm.exe
2015-03-12 14:33:40 ----A---- C:\WINDOWS\SysWOW64\calc.exe
2015-03-12 14:33:33 ----A---- C:\WINDOWS\SysWOW64\winshfhc.dll
2015-03-12 14:33:00 ----A---- C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-12 14:32:51 ----A---- C:\WINDOWS\SysWOW64\photowiz.dll
2015-03-12 14:32:51 ----A---- C:\WINDOWS\SysWOW64\msftedit.dll
2015-03-12 14:32:50 ----A---- C:\WINDOWS\SysWOW64\puiobj.dll
2015-03-12 14:32:50 ----A---- C:\WINDOWS\SysWOW64\puiapi.dll
2015-03-12 14:32:50 ----A---- C:\WINDOWS\SysWOW64\prnntfy.dll
2015-03-12 14:32:50 ----A---- C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2015-03-12 14:32:50 ----A---- C:\WINDOWS\SysWOW64\compstui.dll
2015-03-12 14:32:49 ----A---- C:\WINDOWS\SysWOW64\printui.exe
2015-03-12 14:32:49 ----A---- C:\WINDOWS\SysWOW64\findnetprinters.dll
2015-03-12 14:32:44 ----A---- C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-03-12 14:32:44 ----A---- C:\WINDOWS\SysWOW64\atlthunk.dll
2015-03-12 14:32:43 ----A---- C:\WINDOWS\SysWOW64\mfc42u.dll
2015-03-12 14:32:43 ----A---- C:\WINDOWS\SysWOW64\mfc42.dll
2015-03-12 14:32:42 ----A---- C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-12 14:32:42 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-12 14:32:42 ----A---- C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\eappprxy.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\eapphost.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\eappgnui.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\eappcfg.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-03-12 14:32:40 ----A---- C:\WINDOWS\SysWOW64\authui.dll
2015-03-12 14:32:39 ----A---- C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-03-12 14:32:27 ----A---- C:\WINDOWS\SysWOW64\explorer.exe
2015-03-12 14:32:27 ----A---- C:\WINDOWS\explorer.exe
2015-03-12 14:30:39 ----A---- C:\WINDOWS\SysWOW64\lpk.dll
2015-03-12 14:30:39 ----A---- C:\WINDOWS\SysWOW64\fontsub.dll
2015-03-12 14:30:39 ----A---- C:\WINDOWS\SysWOW64\dciman32.dll
2015-03-12 14:30:39 ----A---- C:\WINDOWS\SysWOW64\atmlib.dll
2015-03-12 14:30:39 ----A---- C:\WINDOWS\SysWOW64\atmfd.dll
2015-03-12 14:30:15 ----A---- C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-03-12 14:30:10 ----A---- C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-12 14:30:08 ----A---- C:\WINDOWS\SysWOW64\shell32.dll
2015-03-12 14:30:01 ----A---- C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-02-26 02:06:51 ----A---- C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-26 02:06:51 ----A---- C:\WINDOWS\SysWOW64\GlobCollationHost.dll

======List of files/folders modified in the last 3 months======

2015-05-24 18:47:56 ----RD---- C:\Program Files (x86)
2015-05-24 18:46:47 ----D---- C:\WINDOWS\Temp
2015-05-24 18:34:23 ----A---- C:\WINDOWS\win.ini
2015-05-24 18:34:22 ----D---- C:\Program Files (x86)\Techgile
2015-05-24 18:25:29 ----D---- C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669
2015-05-22 10:44:08 ----D---- C:\WINDOWS\Prefetch
2015-05-21 22:36:35 ----D---- C:\Users\Denisa\AppData\Roaming\vlc
2015-05-21 20:12:34 ----D---- C:\ProgramData\Systweak
2015-05-21 20:11:54 ----D---- C:\Users\Denisa\AppData\Roaming\systweak
2015-05-21 20:11:51 ----D---- C:\Program Files (x86)\ASP
2015-05-21 19:19:44 ----SHD---- C:\System Volume Information
2015-05-21 17:59:35 ----D---- C:\WINDOWS\Microsoft.NET
2015-05-19 16:29:16 ----D---- C:\WINDOWS\AppReadiness
2015-05-16 21:45:58 ----D---- C:\WINDOWS\rescache
2015-05-16 21:18:32 ----SHD---- C:\WINDOWS\Installer
2015-05-16 21:18:32 ----HD---- C:\Config.Msi
2015-05-16 21:18:29 ----D---- C:\ProgramData\Microsoft Help
2015-05-16 15:56:34 ----D---- C:\WINDOWS\Tasks
2015-05-14 18:33:51 ----D---- C:\WINDOWS\System32
2015-05-14 18:33:51 ----D---- C:\WINDOWS\Inf
2015-05-14 14:13:37 ----RSD---- C:\WINDOWS\assembly
2015-05-14 13:59:05 ----D---- C:\WINDOWS\SysWOW64
2015-05-14 01:39:01 ----D---- C:\WINDOWS\WinSxS
2015-05-14 01:01:38 ----A---- C:\WINDOWS\SysWOW64\log.txt
2015-05-14 00:53:33 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-05-14 00:53:32 ----RSD---- C:\WINDOWS\Fonts
2015-05-14 00:53:31 ----D---- C:\WINDOWS\apppatch
2015-05-14 00:53:30 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-14 00:42:55 ----D---- C:\WINDOWS\CbsTemp
2015-05-03 01:04:35 ----D---- C:\WINDOWS\AppCompat
2015-05-02 20:21:50 ----D---- C:\Program Files (x86)\GoHD
2015-05-02 19:58:00 ----D---- C:\Windows
2015-05-02 19:46:50 ----D---- C:\WINDOWS\MediaViewer
2015-05-02 19:46:49 ----RD---- C:\WINDOWS\ToastData
2015-05-02 19:46:49 ----D---- C:\WINDOWS\FileManager
2015-05-02 19:46:49 ----D---- C:\WINDOWS\Camera
2015-05-02 19:46:26 ----D---- C:\WINDOWS\SysWOW64\oobe
2015-05-02 19:46:26 ----D---- C:\WINDOWS\SysWOW64\migration
2015-05-02 19:46:26 ----D---- C:\WINDOWS\SysWOW64\en-US
2015-05-02 19:46:26 ----D---- C:\WINDOWS\SysWOW64\Com
2015-05-02 19:46:26 ----D---- C:\WINDOWS\servicing
2015-05-02 19:46:23 ----D---- C:\WINDOWS\SysWOW64\sppui
2015-05-02 19:46:23 ----D---- C:\WINDOWS\SysWOW64\setup
2015-05-02 19:46:23 ----D---- C:\WINDOWS\SysWOW64\cs-CZ
2015-05-02 19:46:22 ----D---- C:\WINDOWS\SysWOW64\wbem
2015-05-02 19:46:21 ----D---- C:\WINDOWS\SysWOW64\migwiz
2015-05-02 19:46:21 ----D---- C:\WINDOWS\SysWOW64\Dism
2015-05-02 19:45:29 ----D---- C:\WINDOWS\twain_32
2015-05-02 19:45:29 ----D---- C:\WINDOWS\IME
2015-05-02 19:43:30 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2015-05-02 19:43:30 ----D---- C:\Program Files (x86)\Windows Mail
2015-05-02 19:43:29 ----D---- C:\Program Files (x86)\Windows Portable Devices
2015-05-02 19:43:29 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-05-02 19:43:29 ----D---- C:\Program Files (x86)\Windows Media Player
2015-05-02 19:43:26 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-05-02 19:43:26 ----D---- C:\Program Files (x86)\Common Files\System
2015-05-01 20:17:22 ----A---- C:\WINDOWS\SysWOW64\msclmd.dll
2015-04-30 22:35:23 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-06 23:46:35 ----D---- C:\WINDOWS\Logs
2015-03-17 03:24:13 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-17 03:24:08 ----D---- C:\WINDOWS\WinStore
2015-03-13 04:03:50 ----A---- C:\WINDOWS\SysWOW64\PrintConfig.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys []
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys []
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys []
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys []
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys []
R2 epfwwfpr;epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys []
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys []
R3 b57xdbd;@oem32.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys []
R3 b57xdmp;@oem32.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys []
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys []
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys []
R3 ETD;@oem5.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys []
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys []
R3 IntcDAud;@oem28.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys []
R3 iwdbus;@oem38.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys []
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys []
R3 MEIx64;@oem3.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys []
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys []
R3 Ps2Kb2Hid;@oem6.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys []
R3 USBAAPL64;@oem1.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys []
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys []
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys []
S3 cpuz135;cpuz135; \??\C:\Users\Denisa\AppData\Local\Temp\cpuz135\cpuz135_x64.sys []
S3 dot4;@oem14.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys []
S3 Dot4Print;@oem16.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys []
S3 dot4usb;@oem14.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys []
S3 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys []
S3 intaud_WaveExtensible;@oem37.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys []
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\System32\drivers\usbscan.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-05-01 81088]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-08-28 43336]
R2 BackupStack;Computer Backup (MyPC Backup); C:\Program Files (x86)\MyPC Backup\BackupStack.exe [2014-11-13 53320]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-29 33088]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2014-03-08 2135232]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-08-21 348784]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2014-10-01 1349576]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2014-10-29 33088]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2014-10-29 33088]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe []
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 MaintainerSvc4.29.2173613;MaintainerSvc4.29.2173613; C:\ProgramData\685d26dc-c30a-434b-bda2-3004e8743669\maintainer.exe [2015-05-24 128240]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-26 687400]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe []
R2 RBClientService;RBClientService; C:\Program Files (x86)\Right Backup\RBClientService.exe [2014-07-11 48240]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2012-09-17 93296]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R2 Update Techgile;Update Techgile; C:\Program Files (x86)\Techgile\updateTechgile.exe [2015-05-24 652016]
R2 Util Techgile;Util Techgile; C:\Program Files (x86)\Techgile\bin\utilTechgile.exe [2015-05-24 652016]
R3 ePowerSvc;ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2012-08-23 658576]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2014-10-29 33088]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-09-01 640840]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-09-08 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31 116648]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2014-10-29 33088]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-09-05 1364256]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2014-10-29 33088]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14 268464]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-29 33088]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-05-21 278344]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe [2012-08-23 468624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-09-08 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-04-24 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]

-----------------EOF-----------------

fasirek · #3 Příspěvek od **fasirek** » 24 kvě 2015 18:02

info.txt logfile of random's system information tool 1.10 2015-05-24 18:48:18

======MBR======

0x0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000A8149842000000000200EEFFFFFF01000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

-->"C:\Program Files (x86)\WildTangent Games\Game Explorer Categories - main\Uninstall.exe"
-->MsiExec /X{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}
Adobe Flash Player 17 NPAPI-->C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe -maintain plugin
Adobe Reader XI (11.0.11) - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AB0000000001}
Advanced-System Protector-->"C:\Program Files (x86)\ASP\unins003.exe"
Agatha Christie - Death on the Nile-->"C:\Program Files (x86)\WildGames\Agatha Christie - Death on the Nile\uninstall\uninstaller.exe"
Aloha TriPeaks-->"C:\Program Files (x86)\WildGames\Aloha TriPeaks\uninstall\uninstaller.exe"
Apple Application Support-->MsiExec.exe /I{78002155-F025-4070-85B3-7C0453561701}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
aTube Catcher verze 3.8-->"C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\unins000.exe"
aTube Catcher-->C:\Program Files (x86)\DsNET Corp\aTube Catcher 2.0\uninstall.exe
Bejeweled 3-->"C:\Program Files (x86)\WildGames\Bejeweled 3\uninstall\uninstaller.exe"
BleachBit-->C:\Program Files (x86)\BleachBit\uninstall.exe
CollageIt 1.9.2-->"C:\Program Files (x86)\CollageIt\unins000.exe"
Comodo Dragon-->"C:\Program Files (x86)\Comodo\Dragon\uninstall.exe"
CyberLink PowerDVD 10-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\setup.exe" /z-uninstall
CyberLink PowerDVD 10-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\setup.exe" /z-uninstall
Delicious: Emily's True Love Premium Edition-->"C:\Program Files (x86)\WildGames\Delicious Emilys True Love Premium Edition\uninstall\uninstaller.exe"
Final Drive: Nitro-->"C:\Program Files (x86)\WildGames\Final Drive Nitro\uninstall\uninstaller.exe"
GoHD-->C:\Program Files (x86)\GoHD\Uninstall.exe /fcp=1
Google Chrome-->"C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Update Helper-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Governor of Poker 2 Premium Edition-->"C:\Program Files (x86)\WildGames\Governor of Poker 2 Premium Edition\uninstall\uninstaller.exe"
HP Update-->MsiExec.exe /X{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}
Identity Card-->MsiExec.exe /X{3D9CB654-99AD-4301-89C6-0D12A790767C}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics-->C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Intel(R) SDK for OpenCL - CPU Only Runtime Package-->C:\Program Files (x86)\Intel\OpenCL SDK\2.0\Uninstall\setup.exe -uninstall
Island Tribe-->"C:\Program Files (x86)\WildGames\Island Tribe\uninstall\uninstaller.exe"
Jewel Match 3-->"C:\Program Files (x86)\WildGames\Jewel Match 3\uninstall\uninstaller.exe"
John Deere Drive Green-->"C:\Program Files (x86)\WildGames\John Deere Drive Green\uninstall\uninstaller.exe"
Launch Manager-->C:\Windows\UNINSTLMv7.EXE LMv7.UNI
Live Updater-->MsiExec.exe /X{EE26E302-876A-48D9-9058-3129E5B99999}
Magic Academy-->"C:\Program Files (x86)\WildGames\Magic Academy\uninstall\uninstaller.exe"
Microsoft Office Access MUI (Czech) 2010-->MsiExec.exe /X{90140000-0015-0405-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2010-->MsiExec.exe /X{90140000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2010-->MsiExec.exe /X{90140000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2010-->MsiExec.exe /X{90140000-0044-0405-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2010-->MsiExec.exe /X{90140000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2010-->MsiExec.exe /X{90140000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2010-->MsiExec.exe /X{90140000-0018-0405-0000-0000000FF1CE}
Microsoft Office Professional Plus 2010-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe" /uninstall PROPLUSR /dll OSETUP.DLL
Microsoft Office Professional Plus 2010-->MsiExec.exe /X{91140000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2010-->MsiExec.exe /X{90140000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2010-->MsiExec.exe /X{90140000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2010-->MsiExec.exe /X{90140000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2010-->MsiExec.exe /X{90140000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2010-->MsiExec.exe /X{90140000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2010-->MsiExec.exe /X{90140000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2010-->MsiExec.exe /X{90140000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2010-->MsiExec.exe /X{90140000-001B-0405-0000-0000000FF1CE}
Microsoft Office XP Professional s aplikací FrontPage-->MsiExec.exe /I{90280405-6000-11D3-8CFE-0050048383C9}
Microsoft Office-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Movie Player 1.0.5-->"C:\Program Files (x86)\Movie Player\unins000.exe"
Mozilla Firefox 37.0.2 (x86 cs)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
Nero 12 Essentials OEM.a01-->MsiExec.exe /I{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}
Nero BackItUp 12 Essentials OEM.a01-->MsiExec.exe /I{B2B0EC73-AD4A-4716-A3DE-CEA8440B309B}
Nero BackItUp Help (CHM)-->MsiExec.exe /X{EF0D1292-8FC1-41BE-9740-DBC134F66415}
Nero BackItUp-->MsiExec.exe /X{E70B2F2C-94D1-4287-B5B0-CBBE618E2652}
Nero ControlCenter Help (CHM)-->MsiExec.exe /X{C994C746-C6D0-4EBA-B09E-DF7B18381B69}
Nero ControlCenter-->MsiExec.exe /X{ABC88553-8770-4B97-B43E-5A90647A5B63}
Nero Core Components-->MsiExec.exe /X{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
Nero Express Help (CHM)-->MsiExec.exe /X{0708FF30-78C0-47B0-81F0-C84604DC769C}
Nero Express-->MsiExec.exe /X{848A7C68-0ADC-4193-8A89-2CEA78E56A0C}
Nero Launcher-->MsiExec.exe /X{0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
Nero RescueAgent Help (CHM)-->MsiExec.exe /X{0B311221-05A5-4766-8D03-7A6446794156}
Nero RescueAgent-->MsiExec.exe /X{A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
Nero Update-->MsiExec.exe /X{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
NVIDIA PhysX-->MsiExec.exe /X{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}
Opera 12.17-->"C:\Program Files (x86)\Opera\Opera.exe" /uninstall
Penguins!-->"C:\Program Files (x86)\WildGames\Penguins!\uninstall\uninstaller.exe"
Plants vs. Zombies - Game of the Year-->"C:\Program Files (x86)\WildGames\Plants vs Zombies - Game of the Year\uninstall\uninstaller.exe"
PokerStars-->"C:\Program Files (x86)\PokerStars\PokerStarsUninstall.exe" /u:PokerStars
Polar Bowler-->"C:\Program Files (x86)\WildGames\Polar Bowler\uninstall\uninstaller.exe"
Qualcomm Atheros WiFi Driver Installation-->"C:\Program Files (x86)\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\setup.exe" -runfromtemp -l0x0409 -removeonly
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
Right Backup-->"C:\Program Files (x86)\Right Backup\unins000.exe"
simplisafe-->"C:\Program Files (x86)\simplitec\simplisafe\unins000.exe"
Tales of Lagoona-->"C:\Program Files (x86)\WildGames\Tales of Lagoona\uninstall\uninstaller.exe"
The KMPlayer (remove only)-->"C:\The KMPlayer\uninstall.exe"
Update Installer for WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
VLC media player-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Webcam Protector-->"C:\Windows\Software Display\uninstall.exe" "/U:C:\Program Files (x86)\Software Display\irunin.xml"
WildTangent Games App-->"C:\Program Files (x86)\WildTangent Games\Touchpoints\packardbell\Uninstall.exe"
WildTangent Games-->"C:\Program Files (x86)\WildGames\Uninstall.exe"
WinRAR 4.20 (32-bit)-->C:\Program Files (x86)\WinRAR\uninstall.exe
Zuma's Revenge-->"C:\Program Files (x86)\WildGames\Zumas Revenge\uninstall\uninstaller.exe"

======System event log======

Computer Name: Denisa
Event Code: 30
Message: Firmware oznámil metriky spouštění.
Record Number: 13558
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20130623095107.100652-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 1
Message: Došlo ke změně systémového času z hodnoty ‎2013‎-‎06‎-‎23T01:49:45.420675500Z na hodnotu ‎2013‎-‎06‎-‎23T09:51:06.500000000Z.

Důvod změny: Systémový čas byl synchronizován s hodinami hardwaru.
Record Number: 13557
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20130623095106.499905-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 42
Message: Systém přechází do režimu spánku.

Důvod spánku: Tlačítko nebo kryt
Record Number: 13556
Source Name: Microsoft-Windows-Kernel-Power
Time Written: 20130623014934.967650-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 12
Message: Schéma zásad resetování procesu C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe (ID procesu: 3800) od {A1841308-3541-4FAB-BC81-F71556F20B4A} do {A1841308-3541-4FAB-BC81-F71556F20B4A}
Record Number: 13555
Source Name: Microsoft-Windows-UserModePowerService
Time Written: 20130623014934.493472-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: Denisa
Event Code: 12
Message: Schéma zásad resetování procesu C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe (ID procesu: 3800) od {381B4222-F694-41F0-9685-FF5BB260DF2E} do {A1841308-3541-4FAB-BC81-F71556F20B4A}
Record Number: 13554
Source Name: Microsoft-Windows-UserModePowerService
Time Written: 20130623014223.680736-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: Denisa
Event Code: 1003
Message: The Software Protection service has completed licensing status check.
Application Id=59a52881-a989-479d-af46-f275c6370663
Licensing Status=
1: 191301d3-a579-428c-b0c7-d7988500f9e3, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 28fe27a7-2e11-4c05-8dd0-e1f1c08dc3ae, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
3: 42cbf3f6-4d5e-49c6-991a-0d99b8429a6d, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
4: 46c84aad-65c7-482d-b82a-1edc52e6989a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
5: 6f327760-8c5c-417c-9b61-836a98287e0c, 1, 1 [(0 [0xC004E003, 0, 0], [( 1 0xC004F056 30 0 msft:rm/algorithm/volume/1.0 0x00000000 0)(?)( 1 0xC004F056 30 0 msft:rm/algorithm/volume/1.0 0x00000000 0)(?)(?)(?)])(1 )(2 [0x00000000, 0, 0], [( 5 0xC004F009 30 0)( 5 0xC004F009 30 0)( 1 0x00000000 0 0 msft:rm/algorithm/flags/1.0 0x00000000 0)(?)(?)( 9 0x00000000 0xC004F056)])]
6: 71af7e84-93e6-4363-9b69-699e04e74071, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
7: 75bb133b-f5dd-423c-8321-3bd0b50322a5, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
8: 8c5edb5d-9aa0-47a7-9416-d61c7419a60a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
9: 8c5fa740-5dca-43f9-be1b-d0281bcf9779, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
10: c1ceda8b-c578-4d5d-a4aa-23626be4e234, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
11: fdf3ecb9-b56f-43b2-a9b8-1b48b6bae1a7, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]

Record Number: 17030
Source Name: Office Software Protection Platform Service
Time Written: 20131217111716.000000-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 12288
Message: The client has sent an activation request to the key management service machine.
Info:
0xC0020017, 0x00000000, 127.0.0.1:1688, ff6a6325-fd86-48f7-962a-2f1e68b81ca5, 2013/12/17 11:17, 0, 5, 0, 6f327760-8c5c-417c-9b61-836a98287e0c, 5
Record Number: 17029
Source Name: Office Software Protection Platform Service
Time Written: 20131217111715.000000-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 1003
Message: The Software Protection service has completed licensing status check.
Application Id=59a52881-a989-479d-af46-f275c6370663
Licensing Status=
1: 191301d3-a579-428c-b0c7-d7988500f9e3, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 28fe27a7-2e11-4c05-8dd0-e1f1c08dc3ae, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
3: 42cbf3f6-4d5e-49c6-991a-0d99b8429a6d, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
4: 46c84aad-65c7-482d-b82a-1edc52e6989a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
5: 6f327760-8c5c-417c-9b61-836a98287e0c, 1, 1 [(0 [0xC004E003, 0, 0], [( 1 0xC004F056 30 0 msft:rm/algorithm/volume/1.0 0x00000000 0)(?)( 1 0xC004F056 30 0 msft:rm/algorithm/volume/1.0 0x00000000 0)(?)(?)(?)])(1 )(2 [0x00000000, 0, 0], [( 5 0xC004F009 30 0)( 5 0xC004F009 30 0)( 1 0x00000000 0 0 msft:rm/algorithm/flags/1.0 0x00000000 0)(?)(?)( 9 0x00000000 0xC004F056)])]
6: 71af7e84-93e6-4363-9b69-699e04e74071, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
7: 75bb133b-f5dd-423c-8321-3bd0b50322a5, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
8: 8c5edb5d-9aa0-47a7-9416-d61c7419a60a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
9: 8c5fa740-5dca-43f9-be1b-d0281bcf9779, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
10: c1ceda8b-c578-4d5d-a4aa-23626be4e234, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
11: fdf3ecb9-b56f-43b2-a9b8-1b48b6bae1a7, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]

Record Number: 17028
Source Name: Office Software Protection Platform Service
Time Written: 20131217111713.000000-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 12288
Message: The client has sent an activation request to the key management service machine.
Info:
0xC0020017, 0x00000000, 127.0.0.1:1688, ff6a6325-fd86-48f7-962a-2f1e68b81ca5, 2013/12/17 11:01, 0, 5, 0, 6f327760-8c5c-417c-9b61-836a98287e0c, 5
Record Number: 17027
Source Name: Office Software Protection Platform Service
Time Written: 20131217110157.000000-000
Event Type: Informace
User:

Computer Name: Denisa
Event Code: 1001
Message: Chybný blok -1973258817, typ 5
Název události: WPNConnectionFailure
Reakce: Není k dispozici.
ID souboru CAB: 0

Podpis problému:
P1: Data Connect
P2: 80072af9
P3: WNP
P4: Unknown
P5: Unknown
P6: Unknown
P7: 2
P8: 75
P9:
P10:

Připojené soubory:
C:\Users\Denisa\AppData\Local\Temp\wpn_7159692826249670089.evtx

Tyto soubory mohou být k dispozici zde:

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 75b18258-6703-11e3-beb6-b888e3c4485c
Stav hlášení: 0
Zakódovaný interval: 8b83d0d0c14ad05ebc206873bf9cef63
Record Number: 17026
Source Name: Windows Error Reporting
Time Written: 20131217101033.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: Denisa
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.

Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Další informace:
Pracovní stanice volajícího: DENISA
Název cílového účtu: Guest
Doména cílového účtu: Denisa
Record Number: 234178
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110145645.578200-000
Event Type: Úspěšný audit
User:

Computer Name: Denisa
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.

Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Další informace:
Pracovní stanice volajícího: DENISA
Název cílového účtu: Denisa
Doména cílového účtu: Denisa
Record Number: 234177
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110145645.562574-000
Event Type: Úspěšný audit
User:

Computer Name: Denisa
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.

Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Další informace:
Pracovní stanice volajícího: DENISA
Název cílového účtu: Administrator
Doména cílového účtu: Denisa
Record Number: 234176
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110145645.562574-000
Event Type: Úspěšný audit
User:

Computer Name: Denisa
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.

Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Další informace:
Pracovní stanice volajícího: DENISA
Název cílového účtu: Denisa
Doména cílového účtu: Denisa
Record Number: 234175
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110145645.546954-000
Event Type: Úspěšný audit
User:

Computer Name: Denisa
Event Code: 4797
Message: Došlo k pokusu o zadání dotazu na existenci prázdného hesla pro účet.

Subjekt:
ID zabezpečení: S-1-5-19
Název účtu: LOCAL SERVICE
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E5

Další informace:
Pracovní stanice volajícího: DENISA
Název cílového účtu: UpdatusUser
Doména cílového účtu: Denisa
Record Number: 234174
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20141110145645.546954-000
Event Type: Úspěšný audit
User:

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"Path"=C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
"asl.log"=Destination=file

-----------------EOF-----------------

Spartak24 · #4 Příspěvek od **Spartak24** » 28 kvě 2015 23:23

zdravím

být vámi, založím si nové téma a tentokrát vložím logy jako textový soubor na třeba leteckou poštu ... takhle si vás totiž nikdo nevšimne, jelikož to vypadá, že máte od někoho již 2 odpovědi

ps: vím, že pokud to občas někdo udělá jako vy, dlouho si ho nevšimnou (u vás jsou to zatím 2-3 dny)

tuvok07 · #5 Příspěvek od **tuvok07** » 28 kvě 2015 23:26

Nové téma nezakládat, nahlásím to v Samoodpovídačích

#6 Příspěvek od **altrok** » 28 kvě 2015 23:40

Krasny den Vam preju

Presne jak rikaji chlapi nade mnou, kterym timto dekuju. Pokud je Vas log dlouhy a nevejde se do jednoho prispevku, pridejte do nazvu tematu informaci o tom, ze je log dlouhy a je rozdelen do 3/vice postu. Nebo log muzete zabalit do zipu/raru a prilozit (osobne preferuji prvni moznost). Jinak nam zkratka a jednoduse zapadnete. Zavirovano mate slusne, takze zacneme.

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Cleaning
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Ulozte na plochu zoek.exe http://hijackthis.nl/smeenk/zoek.htm

spustte jako spravce
do velkeho okna zkopirujte script uvedeny nize
kliknete na Run script
po restartu na Vas vyskoci log (pripadne jej najdete v C:\zoek-results.log) - vlozte mi jej do pristi odpovedi
Kód: Vybrat vše
```
autoclean;
emptyclsid;
emptyalltemp;
```

fasirek · #7 Příspěvek od **fasirek** » 01 čer 2015 10:02

Hezký den, děkuji za odpověď, příště už aspoň vím jak na to

zasílám první log

# AdwCleaner v4.206 - Log vytvořen 01/06/2015 v 10:51:38
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-05-31.5 [Server]
# Operační system : Windows 8.1 (x64)
# Uživatelské jméno : Denisa - DENISA
# Spuštěno z : C:\Users\Denisa\Desktop\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****

[#] Služba Smazáno : BackupStack
[#] Služba Smazáno : globalUpdate
[#] Služba Smazáno : globalUpdatem
[#] Služba Smazáno : RBClientService
[#] Služba Smazáno : Update Techgile
[#] Služba Smazáno : Util Techgile
Služba Smazáno : {0bab8292-6c5d-4497-a29c-a0f9172b118b}w64
Služba Smazáno : {0dd9a828-65e1-4c37-98c6-d39c76a89715}w64
Služba Smazáno : {1c02978a-62e1-4a07-9e56-c805d0438441}w64
Služba Smazáno : {1faf557f-055a-41ea-bf98-8743d653dfbd}w64
Služba Smazáno : {200a5d73-9221-4e6e-9344-ad5db75a21b8}w64
Služba Smazáno : {23965273-0465-4e7f-993a-3e299efbd905}w64
Služba Smazáno : {24e0dbe9-5e04-4423-805e-fc8b4c7506a4}w64
Služba Smazáno : {2e549179-ae27-47de-bff3-b445e0bfda1a}w64
Služba Smazáno : {3200bfc0-5e5f-40e7-b9b9-11a87e4d2aa6}w64
Služba Smazáno : {3254b624-3dc6-470b-b41f-230aff035acc}w64
Služba Smazáno : {446c5b48-2f52-416a-a55d-ff502a78670c}w64
Služba Smazáno : {48de083b-f618-4062-860e-1036873309cf}w64
Služba Smazáno : {4a0d8869-1fbc-4918-9ada-bb10f8dfcc5c}w64
Služba Smazáno : {6194affa-4cec-4319-b18d-12df0338c3cf}w64
Služba Smazáno : {665e51a3-da93-4d76-a3a4-e4194c384ce8}w64
Služba Smazáno : {670b17cf-f53d-46d2-a0f0-771be0b4f802}w64
Služba Smazáno : {6a42a827-4aa4-4407-9673-d01c0f4ec37d}w64
Služba Smazáno : {7594955a-29b6-4548-9263-89299555d649}w64
Služba Smazáno : {770d9261-ea7b-44d1-b1fa-cd753813d1ca}w64
Služba Smazáno : {7d71b13c-fa47-4ddb-a69a-0fd038af3e02}w64
Služba Smazáno : {847c2db9-6f00-49b6-896c-0d969fee7b00}w64
Služba Smazáno : {8590482e-6fbf-4e86-9e78-2d81034791b1}w64
Služba Smazáno : {886f5d30-5b8b-42ab-98f8-31d062b96dc3}w64
Služba Smazáno : {8d2ec2e6-fa06-442e-8979-3f0c417f3c4a}Gw64
Služba Smazáno : {8d3b604a-9bd5-4112-8d4a-58ce2f912071}w64
Služba Smazáno : {ab46f924-b0f6-4def-a8e6-edf07f1475f2}w64
Služba Smazáno : {ab53d71f-2c3d-48d9-a758-51265fe59ee6}w64
Služba Smazáno : {b082a895-f2bc-40a0-9735-d7592e9e422c}w64
Služba Smazáno : {b0aa2e34-2206-4d3d-8f9b-da4d3c817ee7}w64
Služba Smazáno : {b2f2548f-689a-4d00-a96e-d3a31faab92e}w64
Služba Smazáno : {bdd8d838-7d34-42df-8fce-f69963a9341a}w64
Služba Smazáno : {c9dd49c1-5974-41ee-8826-de0b55e8da26}w64
Služba Smazáno : {f10b86b0-bf15-437d-92fd-f05ff37c387b}w64
Služba Smazáno : {fb6e2902-a029-4535-854a-1a69a22df5f7}w64
Služba Smazáno : {fee70205-e9b9-40aa-9da7-7766876eede2}w64
[#] Služba Smazáno : MaintainerSvc4.29.2173613

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\PC Optimizer Pro
Složka Smazáno : C:\ProgramData\simplitec
Složka Smazáno : C:\ProgramData\Systweak
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Optimizer Pro
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Right Backup
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simplitec
Složka Smazáno : C:\Program Files (x86)\ASP
Složka Smazáno : C:\Program Files (x86)\globalUpdate
Složka Smazáno : C:\Program Files (x86)\MyPC Backup
Složka Smazáno : C:\Program Files (x86)\Right Backup
Složka Smazáno : C:\Program Files (x86)\simplitec
Složka Smazáno : C:\Program Files (x86)\SpeedItup Free
Složka Smazáno : C:\Program Files (x86)\Techgile
Složka Smazáno : C:\Program Files (x86)\GoHD
Složka Smazáno : C:\Program Files (x86)\yellow cabs
Složka Smazáno : C:\Users\Denisa\AppData\Local\Temp\Techgile
Složka Smazáno : C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Systweak
Složka Smazáno : C:\Program Files\PC Optimizer Pro
Složka Smazáno : C:\Users\Denisa\AppData\Local\globalUpdate
Složka Smazáno : C:\Users\Denisa\AppData\Local\pay-by-ads
Složka Smazáno : C:\Users\Denisa\AppData\LocalLow\GoHD
Složka Smazáno : C:\Users\Denisa\AppData\Roaming\ASP
Složka Smazáno : C:\Users\Denisa\AppData\Roaming\Systweak
Složka Smazáno : C:\Users\Denisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Složka Smazáno : C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\sonnypenn@aol.com
Složka Smazáno : C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhekfgkiebcdiemikbpipliohcokogk
Složka Smazáno : C:\Users\Denisa\AppData\Roaming\Opera Software\Opera Stable\Extensions\bokijhalndhhhikpnaniimagniglonke
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\{6a42a827-4aa4-4407-9673-d01c0f4ec37d}.xpi
Soubor Smazáno : C:\WINDOWS\SpeedItup Free Setup Log.txt
Soubor Smazáno : C:\WINDOWS\System32\roboot64.exe
Soubor Smazáno : C:\WINDOWS\System32\sasnative64.exe
Soubor Smazáno : C:\WINDOWS\System32\drivers\{0bab8292-6c5d-4497-a29c-a0f9172b118b}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{0dd9a828-65e1-4c37-98c6-d39c76a89715}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{1c02978a-62e1-4a07-9e56-c805d0438441}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{1faf557f-055a-41ea-bf98-8743d653dfbd}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{200a5d73-9221-4e6e-9344-ad5db75a21b8}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{23965273-0465-4e7f-993a-3e299efbd905}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{24e0dbe9-5e04-4423-805e-fc8b4c7506a4}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{2e549179-ae27-47de-bff3-b445e0bfda1a}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{3200bfc0-5e5f-40e7-b9b9-11a87e4d2aa6}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{3254b624-3dc6-470b-b41f-230aff035acc}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{446c5b48-2f52-416a-a55d-ff502a78670c}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{48de083b-f618-4062-860e-1036873309cf}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{4a0d8869-1fbc-4918-9ada-bb10f8dfcc5c}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{6194affa-4cec-4319-b18d-12df0338c3cf}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{665e51a3-da93-4d76-a3a4-e4194c384ce8}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{670b17cf-f53d-46d2-a0f0-771be0b4f802}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{6a42a827-4aa4-4407-9673-d01c0f4ec37d}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{7594955a-29b6-4548-9263-89299555d649}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{770d9261-ea7b-44d1-b1fa-cd753813d1ca}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{7d71b13c-fa47-4ddb-a69a-0fd038af3e02}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{847c2db9-6f00-49b6-896c-0d969fee7b00}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{8590482e-6fbf-4e86-9e78-2d81034791b1}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{886f5d30-5b8b-42ab-98f8-31d062b96dc3}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{8d2ec2e6-fa06-442e-8979-3f0c417f3c4a}Gw64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{8d3b604a-9bd5-4112-8d4a-58ce2f912071}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{ab46f924-b0f6-4def-a8e6-edf07f1475f2}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{ab53d71f-2c3d-48d9-a758-51265fe59ee6}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{b082a895-f2bc-40a0-9735-d7592e9e422c}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{b0aa2e34-2206-4d3d-8f9b-da4d3c817ee7}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{b2f2548f-689a-4d00-a96e-d3a31faab92e}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{bdd8d838-7d34-42df-8fce-f69963a9341a}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{c9dd49c1-5974-41ee-8826-de0b55e8da26}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{f10b86b0-bf15-437d-92fd-f05ff37c387b}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{fb6e2902-a029-4535-854a-1a69a22df5f7}w64.sys
Soubor Smazáno : C:\WINDOWS\System32\drivers\{fee70205-e9b9-40aa-9da7-7766876eede2}w64.sys
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\GDIPFONTCACHEV1.DAT
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\MFTMTSAoYFZbZye3vWm
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\MFTMTSAoYFZbZye3vWm.exe
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
Soubor Smazáno : C:\Users\Denisa\Desktop\Live PC Help.lnk
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\searchplugins\dsrlte.xml
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\user.js
Soubor Smazáno : C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\searchplugins\search-simple.xml

***** [ Naplánované úlohy ] *****

Úloha Smazáno : globalUpdateUpdateTaskMachineCore
Úloha Smazáno : globalUpdateUpdateTaskMachineUA
Úloha Smazáno : LaunchSignup
Úloha Smazáno : PC Optimizer Pro64 Scan
Úloha Smazáno : Power Suite
Úloha Smazáno : Power Suite (Tray)
Úloha Smazáno : Right Backup_startup
Úloha Smazáno : Yahoo! Search
Úloha Smazáno : Yahoo! Search Updater
Úloha Smazáno : yellow_cabs_updating_service
Úloha Smazáno : yellow_cabs_notification_service
Úloha Smazáno : MFTMTSAoYFZbZye3vWm
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-1
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-11
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-4
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-5
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-5_user
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-6
Úloha Smazáno : cb91448f-4adb-4089-8201-e3e4cf11763a-7

***** [ Zástupci ] *****

***** [ Registry ] *****

Klíč Smazáno : HKCU\Software\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.superfish.com
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Klíč Smazáno : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Klíč Smazáno : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Klíč Smazáno : HKCU\Software\Classes\keepmysearch
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Techgile
Klíč Smazáno : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Techgile
Klíč Smazáno : HKEY_USERS\.DEFAULT\Software\Microsoft\.NETFramework\SQM\Apps\updateTechgile.exe
Klíč Smazáno : HKLM\SOFTWARE\56F1EB4E-005D-4B07-A6CC-81EF3AD48B73
Klíč Smazáno : HKLM\SOFTWARE\7698adcc-a45f-41a5-b5e9-a926e3eff51c
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0062180.BHO
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0062180.BHO.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0062180.Sandbox
Klíč Smazáno : HKLM\SOFTWARE\Classes\CrossriderApp0062180.Sandbox.1
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6D4506CE-F855-4657-AA38-DB6B1F733982}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{7D2CBFB4-DFCD-4282-841A-C2A2A5299D7E}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611211180}
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622212280}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655215580}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666216680}
Klíč Smazáno : HKLM\SOFTWARE\Classes\Interface\{34FF23C3-C89F-4E8B-98D2-0D531202580F}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644214480}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{edb15ac4-64a4-4217-ad1e-bd8af929342e}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7D2CBFB4-DFCD-4282-841A-C2A2A5299D7E}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7D2CBFB4-DFCD-4282-841A-C2A2A5299D7E}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611211180}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7D2CBFB4-DFCD-4282-841A-C2A2A5299D7E}
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611211180}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20610597-4bd3-4d63-851c-d51edcb0a298}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{577181ae-5064-4a44-8316-0feeed3a50d3}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9cf5e7c8-6c89-482f-837e-855caec845ba}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{b0f45591-2751-48d9-8430-eb131281cd3b}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110611211180}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622212280}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655215580}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666216680}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Classes\Interface\{34FF23C3-C89F-4E8B-98D2-0D531202580F}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611211180}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20610597-4bd3-4d63-851c-d51edcb0a298}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{577181ae-5064-4a44-8316-0feeed3a50d3}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9cf5e7c8-6c89-482f-837e-855caec845ba}
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{b0f45591-2751-48d9-8430-eb131281cd3b}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{059B0D25-E012-4263-91BC-8854B62C91F2}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8066019F-FA45-4627-BE8C-46C1CE7BC36A}
Klíč Smazáno : HKCU\Software\GlobalUpdate
Klíč Smazáno : HKCU\Software\InstalledBrowserExtensions
Klíč Smazáno : HKCU\Software\pc optimizer pro
Klíč Smazáno : HKCU\Software\systweak
Klíč Smazáno : HKCU\Software\Techgile
Klíč Smazáno : HKCU\Software\AppDataLow\Software\Crossrider
Klíč Smazáno : HKCU\Software\AppDataLow\Software\GoHD
Klíč Smazáno : HKLM\SOFTWARE\GlobalUpdate
Klíč Smazáno : HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : HKLM\SOFTWARE\PIP
Klíč Smazáno : HKLM\SOFTWARE\simplitec
Klíč Smazáno : HKLM\SOFTWARE\systweak
Klíč Smazáno : HKLM\SOFTWARE\Techgile
Klíč Smazáno : HKLM\SOFTWARE\GoHD
Klíč Smazáno : HKLM\SOFTWARE\GoHD-nv
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Search
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GoHD
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\simplitec POWER SUITE_is1
Klíč Smazáno : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
Klíč Smazáno : [x64] HKLM\SOFTWARE\pc optimizer pro
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\pc optimizer pro
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Techgile
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Mozilla Firefox v38.0.1 (x86 cs)

[v3ivcapf.default\prefs.js] - Řádek Smazáno : user_pref("extensions.asonnypennaolcom62180.62180.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2C%22dealply_p%22%3A%7B%22urls%22%[...]
[v3ivcapf.default\prefs.js] - Řádek Smazáno : user_pref("extensions.crossrider.bic", "148998c28b1a5b5095f381743434e1f3");

-\\ Google Chrome v43.0.2357.81

-\\ Comodo Dragon v31.1.2.0

-\\ Opera v0.0.0.0

*************************

AdwCleaner[R0].txt - [24782 bytů] - [01/06/2015 10:49:27]
AdwCleaner[S0].txt - [22055 bytů] - [01/06/2015 10:51:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [22114 bytů] ##########

fasirek · #8 Příspěvek od **fasirek** » 01 čer 2015 10:46

Zasílám druhý log v příloze, byl moc dlouhý

#9 Příspěvek od **altrok** » 01 čer 2015 11:30

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

fasirek · #10 Příspěvek od **fasirek** » 11 čer 2015 21:07

Zasílám, trošku se zpožděním, byla jsem pracovně pryč

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:08-06-2015
Ran by Denisa (administrator) on DENISA on 11-06-2015 22:03:37
Running from C:\Users\Denisa\Desktop
Loaded Profiles: Denisa (Available Profiles: UpdatusUser & Denisa)
Platform: Windows 8.1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser path: "C:\Program Files (x86)\Opera\Opera.exe" "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
() C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(forum.viry.cz) C:\Users\Denisa\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2864016 2012-08-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\Run: [Yahoo! Search] => C:\Users\Denisa\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_169_Plugin.exe -update plugin
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [788480 2014-10-29] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2013-11-13]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2013-02-04]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkID= ... chTerms%7D
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3159269895-1553210932-1442943132-1002 -> OldSearch URL = http://www.bing.com/search?q={searchTer ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-3159269895-1553210932-1442943132-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.30.1

FireFox:
========
FF ProfilePath: C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default
FF NewTab: hxxp://search.yahoo.com/?fr=hp-ddc-bd-tab&type=999_pr__alt__ddc_dsssyctab_bd_com
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=999_pr__alt__ddc_dsssyc_bd_com
FF Keyword.URL: hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=999_pr__alt__ddc_dss_bd_com&p=
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-11] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-11] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-05-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Extension: yellow cabs - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\ajtNoaD@gmail.com [2015-04-05]
FF Extension: Deal 4 Us - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\NUtclJdk@gmail.com [2015-05-28]
FF Extension: openbookmarkintabpirosakuranejp - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\openbookmarkintab@piro.sakura.ne.jp [2015-04-05]
FF Extension: 95322c0805ff4f3c85fd8ceb821988dd - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\{95322c08-05ff-4f3c-85fd-8ceb821988dd} [2015-05-28]

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\pdf.dll No File
CHR Plugin: (Norton Identity Safe) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.2.1.36_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
CHR Profile: C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-02-01]
CHR Extension: (Google Drive) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-02-01]
CHR Extension: (YouTube) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-01]
CHR Extension: (Google Search) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-02-01]
CHR Extension: (dbepggeogbaibhgnhhndojpepiihcmeb) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbepggeogbaibhgnhhndojpepiihcmeb [2015-04-05]
CHR Extension: (gpgehjabcocfbddmjickonnjpjnjafcj) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgehjabcocfbddmjickonnjpjnjafcj [2015-04-11]
CHR Extension: (mpajngnpcmjjeoflljdjpnehcfaldcia) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpajngnpcmjjeoflljdjpnehcfaldcia [2015-05-28]
CHR Extension: (Google Wallet) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-21]
CHR Extension: (Gmail) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-02-01]

Opera:
=======
OPR Extension: (No Name) - C:\Users\Denisa\AppData\Roaming\Opera Software\Opera Stable\Extensions\mpajngnpcmjjeoflljdjpnehcfaldcia [2015-05-28]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S3 DeviceFastLaneService; C:\Program Files\Packard Bell\Packard Bell Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-03-08] ()
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [658576 2012-08-23] (Acer Incorporated)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-09-17] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-09-25] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-10-10] (ESET)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-09-17] (Dritek System Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 cpuz135; \??\C:\Users\Denisa\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-11 22:03 - 2015-06-11 22:04 - 00018494 _____ C:\Users\Denisa\Desktop\FRST.txt
2015-06-11 22:01 - 2015-06-11 22:03 - 00000000 ____D C:\FRST
2015-06-11 22:00 - 2015-06-11 22:00 - 00112640 _____ (forum.viry.cz) C:\Users\Denisa\Desktop\FRSTLauncher.exe
2015-06-11 21:57 - 2015-06-11 21:57 - 02108928 _____ (Farbar) C:\Users\Denisa\Desktop\FRST64.exe
2015-06-11 21:13 - 2015-06-11 21:13 - 18169520 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2015-06-04 01:00 - 2015-06-11 21:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-01 12:47 - 2015-06-01 12:47 - 00113759 _____ C:\Users\Denisa\Desktop\dejiny.zip
2015-06-01 12:47 - 2015-06-01 12:47 - 00040299 _____ C:\Users\Denisa\Desktop\testy.zip
2015-06-01 11:46 - 2015-06-01 11:46 - 00016762 _____ C:\Users\Denisa\Desktop\zoek-results.rar
2015-06-01 11:44 - 2015-06-01 11:44 - 00112061 _____ C:\Users\Denisa\Desktop\zoek-results.txt
2015-06-01 11:27 - 2015-06-01 11:06 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-06-01 11:07 - 2015-06-01 11:40 - 00112061 _____ C:\zoek-results.log
2015-06-01 11:06 - 2015-06-01 11:26 - 00000000 ____D C:\zoek_backup
2015-06-01 11:04 - 2015-06-01 11:05 - 01308672 _____ C:\Users\Denisa\Desktop\zoek.exe
2015-06-01 10:49 - 2015-06-01 10:55 - 00000000 ____D C:\AdwCleaner
2015-06-01 10:48 - 2015-06-01 10:48 - 02231296 _____ C:\Users\Denisa\Desktop\adwcleaner_4.206.exe
2015-05-29 08:54 - 2015-05-08 10:15 - 00000000 ____D C:\Users\Denisa\Desktop\Majk Spirit - Y White (2015)
2015-05-29 08:54 - 2015-05-06 21:01 - 00000000 ____D C:\Users\Denisa\Desktop\Majk Spirit - Y
2015-05-29 08:50 - 2015-05-29 08:51 - 130842941 _____ C:\Users\Denisa\Desktop\Majk-Spirit---Y-Black-(Full-Album-MP3).rar
2015-05-29 08:44 - 2015-05-29 08:52 - 132278310 _____ C:\Users\Denisa\Desktop\Majk-Spirit---Y-White-(2015)-320kbps-.rar
2015-05-25 00:06 - 2015-05-25 00:06 - 02834212 _____ C:\Users\Denisa\Desktop\prilohy_15838.zip
2015-05-24 18:47 - 2015-05-24 18:48 - 00000000 ____D C:\rsit
2015-05-24 18:47 - 2015-05-24 18:48 - 00000000 ____D C:\Program Files (x86)\trend micro
2015-05-24 18:47 - 2015-05-24 18:47 - 01107968 _____ C:\Users\Denisa\Desktop\RSIT.exe
2015-05-14 00:59 - 2015-05-05 19:59 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-14 00:59 - 2015-05-05 19:59 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-14 00:39 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 00:39 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 00:19 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-05-14 00:19 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-05-14 00:19 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-05-14 00:19 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-05-14 00:18 - 2015-04-24 23:32 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-05-14 00:18 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-05-14 00:18 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-05-14 00:18 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-05-14 00:18 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-05-14 00:18 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-05-14 00:18 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-14 00:18 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-05-14 00:18 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-05-14 00:18 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-14 00:18 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-05-14 00:18 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-05-14 00:18 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-05-14 00:18 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-05-14 00:18 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-05-14 00:18 - 2015-03-13 02:29 - 00410017 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-05-14 00:18 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-05-14 00:18 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-05-14 00:18 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-05-14 00:18 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-05-14 00:18 - 2015-03-05 01:09 - 01429504 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-05-14 00:18 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-05-14 00:18 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-14 00:18 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-05-14 00:18 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-05-14 00:17 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-14 00:17 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-05-14 00:17 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-14 00:17 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-14 00:17 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-14 00:17 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-14 00:17 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-05-14 00:17 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-14 00:17 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-14 00:17 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-14 00:17 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-05-14 00:17 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-14 00:17 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-14 00:17 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-14 00:17 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-14 00:17 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-14 00:17 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-14 00:17 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-14 00:17 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-14 00:17 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-14 00:17 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-14 00:17 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-14 00:17 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-14 00:17 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-14 00:17 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-14 00:17 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-14 00:17 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-14 00:17 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-14 00:17 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-14 00:17 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-14 00:17 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-14 00:17 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-14 00:17 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-14 00:17 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-14 00:17 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-14 00:17 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-14 00:17 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-14 00:17 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-14 00:17 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-14 00:17 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-14 00:17 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-14 00:17 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-14 00:17 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-14 00:17 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-14 00:17 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-14 00:17 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-05-14 00:17 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-05-14 00:17 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-05-14 00:17 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-05-14 00:17 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-11 22:01 - 2014-08-30 19:04 - 01436442 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-11 22:01 - 2013-01-31 08:40 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-11 22:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-11 21:54 - 2013-02-05 03:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-11 21:54 - 2013-02-02 15:21 - 01762816 ___SH C:\Users\Denisa\Desktop\Thumbs.db
2015-06-11 21:51 - 2014-10-05 00:20 - 00000000 ____D C:\Users\Denisa\AppData\Roaming\vlc
2015-06-11 21:31 - 2013-01-30 21:13 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3159269895-1553210932-1442943132-1002
2015-06-11 21:26 - 2013-01-31 08:40 - 00002215 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-11 21:16 - 2014-03-18 17:33 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-11 21:16 - 2014-03-18 16:54 - 00739924 _____ C:\WINDOWS\system32\perfh005.dat
2015-06-11 21:16 - 2014-03-18 16:54 - 00151610 _____ C:\WINDOWS\system32\perfc005.dat
2015-06-11 21:14 - 2013-06-19 01:55 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-06-11 21:14 - 2013-06-19 01:55 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-06-11 21:08 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-11 21:08 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-11 20:41 - 2014-09-06 12:28 - 00003966 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4E644EE7-3982-4E6A-B13F-39069A71615D}
2015-06-09 15:13 - 2013-08-22 16:46 - 00345023 _____ C:\WINDOWS\setupact.log
2015-06-08 16:01 - 2013-01-31 08:40 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-02 11:48 - 2015-04-06 23:46 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-06-02 11:48 - 2015-04-06 23:46 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-06-02 00:44 - 2013-03-21 00:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-01 11:40 - 2014-11-05 18:44 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-06-01 11:40 - 2014-08-30 22:52 - 00000000 ___RD C:\Users\Denisa\OneDrive
2015-06-01 11:39 - 2014-03-18 09:20 - 00034152 _____ C:\WINDOWS\PFRO.log
2015-06-01 11:39 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-01 11:39 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-06-01 11:25 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-06-01 10:15 - 2015-04-07 01:03 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-01 10:15 - 2012-07-26 07:26 - 00000325 _____ C:\WINDOWS\win.ini
2015-05-29 15:36 - 2014-08-30 19:19 - 00000000 ____D C:\Users\Denisa
2015-05-26 13:59 - 2013-07-22 02:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-05-26 07:13 - 2013-08-22 16:44 - 00484560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-16 21:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-05-16 15:56 - 2013-01-31 08:40 - 00003946 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-16 15:56 - 2013-01-31 08:40 - 00003710 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-14 13:59 - 2013-02-26 07:11 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-14 00:53 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-05-14 00:53 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-05-14 00:33 - 2013-02-02 04:43 - 140425016 ____N (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-05-14 00:25 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal

==================== Files in the root of some directories =======

2013-05-09 17:56 - 2013-05-09 17:56 - 0003252 _____ () C:\Users\Denisa\AppData\Local\recently-used.xbel
2013-11-13 00:26 - 2014-09-14 14:18 - 0001328 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-06-01 12:55

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (Packard Bell) (Fixed) (Total:678.75 GB) (Free:311.37 GB) NTFS

Available physical RAM: 2152.93 MB
Total physical RAM: 3911.27 MB
Percentage of memory in use: 44%

==================== MBR and Partition Table ==================

Disk: 0 (Size: 698.6 GB) (Disk ID: 429814A8)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\simplitec Power Suite.job => C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
Task: C:\WINDOWS\Tasks\WebReg HP PSC 1310 series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Denisa\OneDrive:ms-properties

==================== Security Center ==================

AV: ESET NOD32 Antivirus 8.0 (Disabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: ESET NOD32 Antivirus 8.0 (Disabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Denisa\Desktop" je 9154 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

fasirek · #11 Příspěvek od **fasirek** » 11 čer 2015 21:08

Additional scan result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
Ran by Denisa at 2015-06-11 22:04:46
Running from C:\Users\Denisa\Desktop
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3159269895-1553210932-1442943132-500 - Administrator - Disabled)
Denisa (S-1-5-21-3159269895-1553210932-1442943132-1002 - Administrator - Enabled) => C:\Users\Denisa
Guest (S-1-5-21-3159269895-1553210932-1442943132-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3159269895-1553210932-1442943132-1006 - Limited - Enabled)
UpdatusUser (S-1-5-21-3159269895-1553210932-1442943132-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET NOD32 Antivirus 8.0 (Disabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: ESET NOD32 Antivirus 8.0 (Disabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

1310 (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
1310_Help (x32 Version: 82.0.58.000 - Hewlett-Packard) Hidden
1310Trb (x32 Version: 82.0.242.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
AIO_CDB_ProductContext (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B678797F-DF38-4556-8A31-8B818E261868}) (Version: 8.0.0.23 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.7955 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
BleachBit (HKLM-x32\...\BleachBit) (Version: 1.6 - BleachBit)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.4.2 - Broadcom Corporation)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CollageIt 1.9.2 (HKLM-x32\...\{D9757258-30B2-496E-86F2-84920C5858E1}_is1) (Version: 1.9.2 - PearlMountain Technology Co., Ltd)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 31.1.2.0 - COMODO)
Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4220.52 - CyberLink Corp.)
Delicious: Emily's True Love Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Hidden
ETDWare PS/2-X64 11.6.4.001_WHQL (HKLM\...\Elantech) (Version: 11.6.4.001 - ELAN Microelectronic Corp.)
Fax (x32 Version: 140.0.307.000 - Hewlett-Packard) Hidden
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Packard Bell)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
iTunes (HKLM\...\{F46AA0F1-E284-4878-A462-5F11B9166C0E}) (Version: 11.4.0.18 - Apple Inc.)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.4 - Packard Bell)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
MarketResearch (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office XP Professional s aplikací FrontPage (HKLM-x32\...\{90280405-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.11 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Player 1.0.5 (HKLM-x32\...\Movie Player_is1) (Version: - prvsoft.com)
Mozilla Firefox 38.0.5 (x86 cs) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 cs)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Nero 12 Essentials OEM.a01 (HKLM-x32\...\{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}) (Version: 12.5.00000 - Nero AG)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{B2B0EC73-AD4A-4716-A3DE-CEA8440B309B}) (Version: 12.5.00000 - Nero AG)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
NVIDIA Ovladače grafiky 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation)
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Ovládací panel NVIDIA 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
Packard Bell Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3007 - Packard Bell)
Packard Bell Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3006 - Packard Bell)
Packard Bell Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3011 - Packard Bell)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.05 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.9.0.125 - PandoraTV)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Webcam Protector (HKLM-x32\...\webcamprotector) (Version: 1.00 - MicroSmarts LLC)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.3 - WildTangent) Hidden
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3159269895-1553210932-1442943132-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

14-05-2015 00:22:46 Windows Update
21-05-2015 19:19:00 Naplánovaný kontrolní bod
01-06-2015 11:08:01 zoek.exe restore point
11-06-2015 20:52:14 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {033A077A-1EA8-4AB9-B5FB-2F3050D76C2B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-11] (Adobe Systems Incorporated)
Task: {08C179E3-2981-4BC7-88ED-19E8FE96FD1E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {388A9EF3-42B8-47D6-B918-3D3CD0DD399A} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {3D9E8703-855E-44A5-8DD5-05A1197D7B7F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-05-14] (Microsoft Corporation)
Task: {4542F2AD-D8E3-496F-9626-020EF0AA429C} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2012-08-23] (Acer Incorporated)
Task: {45CD0AB2-B4EA-404E-B0FF-76B6A0D09287} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe
Task: {4C76F6C2-60F7-4014-BBEE-EEEABA4BBBCA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {4DABD742-6BD9-4D48-87D3-98FAF1D5EEDF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31] (Google Inc.)
Task: {57B797F3-2FE1-4B03-B71D-B5C2615821C2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {5ACC164D-8B6F-432C-9BBA-A96499DC555A} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {62558A2F-6134-4E7D-9911-BBA2419BE712} - \Advanced System~Protector No Task File <==== ATTENTION
Task: {683E34D8-320A-417F-982B-E59AEBC9145D} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [2012-06-22] ()
Task: {6885200E-E05F-4AE8-B095-2DAC556FF772} - System32\Tasks\simplitec Power Suite => C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
Task: {713B337E-4AA8-48CC-A446-B15C063B2F4C} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [2012-08-24] ()
Task: {72F092C9-ECCD-4E8E-81BE-7366DC43B5C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-31] (Google Inc.)
Task: {90A764A2-EFDD-4B8E-8F64-10C08143DE10} - System32\Tasks\{E0875882-AFA0-4BE5-9971-6284D2AA0FBE} => pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {A564A10D-41B0-416D-8265-4B45B4CDA61B} - \Advanced System~Protector_startup No Task File <==== ATTENTION
Task: {CE17A948-7234-473B-B99A-E21247C7B84B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\simplitec Power Suite.job => C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
Task: C:\WINDOWS\Tasks\WebReg HP PSC 1310 series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe

==================== Loaded Modules (Whitelisted) ==============

2013-09-05 02:36 - 2013-09-05 02:36 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-03-08 00:47 - 2014-03-08 00:47 - 02135232 _____ () C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
2012-08-24 20:31 - 2012-08-24 20:31 - 03331216 _____ () C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00835584 _____ () C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00093696 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00094208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00057344 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00096256 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00062976 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00067072 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00158208 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00312832 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00038912 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00073728 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll
2013-01-30 22:23 - 2015-01-06 23:17 - 00101888 _____ () C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll
2012-09-17 12:10 - 2012-06-25 19:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2010-01-30 03:41 - 2010-01-30 03:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2012-09-23 21:43 - 2012-09-23 21:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Denisa\OneDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Denisa\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.30.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{0A73E702-A315-4C98-9806-2527D210E05E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9DDA4810-7F27-4B2D-9D26-612175FE9DFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{33D2B398-396C-4658-B2AB-F44DD2FDD7DA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{29D4ACB7-9CB8-4C63-99D9-063C6987D9EB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{1120FEE7-E9BC-4ED0-B11C-86BEDD2185D3}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [TCP Query User{7ED298B8-D854-4A2A-BD07-CC63841B0460}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{AE0601BE-0541-47E2-847D-416434208DD8}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{2ACA14A9-96F1-4E8D-BA1B-7676C1051FE9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{4B80FEE1-DB0C-488B-833F-9369F286D4CE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{4F863DA9-5095-4969-B991-09CE74D4EF1F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{F4827371-1458-4657-B2C4-3A4ED116D907}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{697221D8-FAB1-4F31-AD44-5C32BFB7D516}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqfxt08.exe
FirewallRules: [{3718AD12-9711-4EF6-B33D-88C876CFEE6A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxs08.exe
FirewallRules: [{C0541CDC-3B65-43A5-A1C2-81FA20DD1276}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{44DA20EA-FC48-4B70-BE74-B31A89016E4A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{6E3304BC-D96F-4A47-83DC-8D767BE0FD13}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{E70748BF-E149-4C7D-859E-ACB1AEC9E3F1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpzwiz01.exe
FirewallRules: [{3BDE594E-A2F8-405A-8C10-5AFCF183FC55}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{8E6DA0B2-A469-43CB-BFEA-A1EA6B457EE2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{746C9AA8-E8B2-4B7C-8388-FD6E7C530F5A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{D6EC2A7C-68C2-4AED-BDE9-8F24862C7F61}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{A01CAB4C-3A9A-435A-94A0-087647F5404D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposfx08.exe
FirewallRules: [{32BEC8FC-E492-4F9D-866C-8749E0EEC3BA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpofxm08.exe
FirewallRules: [{1CEA03AC-973A-47E3-9D8C-3284A31BB859}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{29BF6E07-A88B-4C84-AF3D-62D876AC6823}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{3158988E-7D3C-41E6-A6EE-DCFB483E1CD3}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{29BCE352-A6A6-403A-BDBD-F230BCE4244D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{AFC2CF18-39FF-466D-B05E-34A62319A519}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{CB8E2454-0CA6-48B4-ADBC-426267411CA9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{EADDE8A4-F496-4BE5-BCFF-47C8AF1E7617}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{638AE295-EC80-44DF-BD02-97FD3FE13042}] => (Allow) C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe
FirewallRules: [{F93818B6-67AB-4453-9FDD-6BCDAEBBE612}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{223A6F58-3C04-4849-99E3-9E53EE1DE687}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
FirewallRules: [{A4470BD2-B7E1-4980-811E-4CC101FFD37B}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
FirewallRules: [{291CDEA1-3E9E-49AE-91C9-4CE09461518D}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{E88A91C0-4779-4F09-B7CF-672538D614DE}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{6D141969-057A-44F2-90FC-5EE572B5D337}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{762505F0-DCC6-4DD6-AF4B-805ABD9E65EB}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{7542FF4B-2023-40F0-BC4E-B4279181A0D3}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{579F74FA-0B1B-4887-BC19-70EABC95C5FF}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{2DEBCE68-472A-402F-98BD-449CE76B8B6D}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{9E663015-A312-4E64-B1D2-EABFFE060B6B}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{E507D9B3-DB5E-41A7-A0B6-BFB52F0182E3}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [{C4A02568-BEAB-46B1-9E6A-5187A38F3611}] => (Allow) C:\Program Files (x86)\simplitec\simplisafe\ServiceProvider.exe
FirewallRules: [TCP Query User{57B26116-EC05-461C-8D29-3CABCE2F02DC}C:\program files (x86)\simplitec\simplisafe\serviceprovider.exe] => (Block) C:\program files (x86)\simplitec\simplisafe\serviceprovider.exe
FirewallRules: [UDP Query User{26A72B1F-927C-4CD9-9CEB-F750E21CC861}C:\program files (x86)\simplitec\simplisafe\serviceprovider.exe] => (Block) C:\program files (x86)\simplitec\simplisafe\serviceprovider.exe
FirewallRules: [{E47F80CD-243D-40DB-AE1F-E2DDAD74DE90}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{814D9E17-9B22-4631-8E79-F1276E024B14}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1A4BBEA3-3852-4575-A798-3102CD99F93F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{082AC824-D8D3-47AA-82FC-04E3622B0C18}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{0A597592-B398-419A-BADF-B5342EF80D48}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (06/11/2015 09:37:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: af4

Čas spuštění: 01d0a47d5bbc2406

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 4f34aba2-1071-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/11/2015 09:07:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: de8

Čas spuštění: 01d0a4792ae39a91

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 1f787db7-106d-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/11/2015 08:57:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wwahost.exe verze 6.3.9600.17415 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: d20

Čas spuštění: 01d0a477b6d6a6e6

Čas ukončení: 4294967295

Cesta k aplikaci: C:\WINDOWS\system32\wwahost.exe

ID hlášení: aeacd2d4-106b-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: CyberLinkCorp.ac.SocialNetworks_1.0.2228.0_neutral__ypz87dpxkv292

ID aplikace související s chybujícím balíčkem: App

Error: (06/09/2015 03:30:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: db0

Čas spuštění: 01d0a2b7c558dd60

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: b8da0a95-0eab-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 03:19:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 116c

Čas spuštění: 01d0a2b62da3cadd

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 211fcd78-0eaa-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 03:08:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1af0

Čas spuštění: 01d0a2b4a65d66bf

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 9a445efc-0ea8-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 02:38:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1a24

Čas spuštění: 01d0a2b07579b451

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 695d843a-0ea4-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 02:09:56 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (06/09/2015 02:08:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1f9c

Čas spuštění: 01d0a2ac449b36bf

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 3826111b-0ea0-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 01:38:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LiveComm.exe verze 17.5.9600.20856 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 6ec

Čas spuštění: 01d0a2a813b372bf

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

ID hlášení: 07397a8d-0e9c-11e5-bf28-b888e3c4485c

Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

System errors:
=============
Error: (06/01/2015 11:42:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (06/01/2015 11:42:09 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%1326

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (06/01/2015 11:38:48 AM) (Source: DCOM) (EventID: 10010) (User: DENISA)
Description: {D63B10C5-BB46-4990-A94F-E40B9D520160}

Error: (06/01/2015 11:24:58 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (06/01/2015 11:24:58 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (06/01/2015 11:24:58 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (06/01/2015 11:24:57 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (06/01/2015 11:24:57 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (06/01/2015 10:59:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (06/01/2015 10:59:20 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%1326

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Microsoft Office:
=========================
Error: (06/11/2015 09:37:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20856af401d0a47d5bbc24064294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe4f34aba2-1071-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/11/2015 09:07:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20856de801d0a4792ae39a914294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe1f787db7-106d-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/11/2015 08:57:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.17415d2001d0a477b6d6a6e64294967295C:\WINDOWS\system32\wwahost.exeaeacd2d4-106b-11e5-bf28-b888e3c4485cCyberLinkCorp.ac.SocialNetworks_1.0.2228.0_neutral__ypz87dpxkv292App

Error: (06/09/2015 03:30:43 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20856db001d0a2b7c558dd604294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exeb8da0a95-0eab-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 03:19:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20856116c01d0a2b62da3cadd4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe211fcd78-0eaa-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 03:08:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.208561af001d0a2b4a65d66bf4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe9a445efc-0ea8-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 02:38:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.208561a2401d0a2b07579b4514294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe695d843a-0ea4-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 02:09:56 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (06/09/2015 02:08:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.208561f9c01d0a2ac449b36bf4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe3826111b-0ea0-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (06/09/2015 01:38:22 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.208566ec01d0a2a813b372bf4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe07397a8d-0e9c-11e5-bf28-b888e3c4485cmicrosoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Percentage of memory in use: 44%
Total physical RAM: 3911.27 MB
Available physical RAM: 2152.93 MB
Total Pagefile: 5255.27 MB
Available Pagefile: 2501.8 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:678.75 GB) (Free:311.37 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 429814A8)

Partition: GPT Partition Type.

==================== End of log ============================

#12 Příspěvek od **altrok** » 11 čer 2015 21:53

Velikost plochy by nemela presahovat 200 MB. Zpomaluje se pak start i samotny chod celeho PC.

Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
znovu spustte FRST a kliknete na Fix

po restartu bude na plose ulozen fixlog, jehoz obsah mi vlozte do pristi odpovedi

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\Run: [Yahoo! Search] => C:\Users\Denisa\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\Program Files (x86)\SpeedItup Free
C:\Users\Denisa\AppData\Local\Pay-By-Ads

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF NewTab: hxxp://search.yahoo.com/?fr=hp-ddc-bd-t ... tab_bd_com
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://search.yahoo.com/?fr=hp-ddc-bd&t ... syc_bd_com
FF Keyword.URL: hxxp://search.yahoo.com/yhs/search?hspa ... _bd_com&p=
FF Extension: yellow cabs - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\ajtNoaD@gmail.com [2015-04-05]
FF Extension: Deal 4 Us - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\NUtclJdk@gmail.com [2015-05-28]
FF Extension: openbookmarkintabpirosakuranejp - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\openbookmarkintab@piro.sakura.ne.jp [2015-04-05]
FF Extension: 95322c0805ff4f3c85fd8ceb821988dd - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\{95322c08-05ff-4f3c-85fd-8ceb821988dd} [2015-05-28]

CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\pdf.dll No File
CHR Plugin: (Norton Identity Safe) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.2.1.36_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Extension: (dbepggeogbaibhgnhhndojpepiihcmeb) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbepggeogbaibhgnhhndojpepiihcmeb [2015-04-05]
CHR Extension: (gpgehjabcocfbddmjickonnjpjnjafcj) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgehjabcocfbddmjickonnjpjnjafcj [2015-04-11]
CHR Extension: (mpajngnpcmjjeoflljdjpnehcfaldcia) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpajngnpcmjjeoflljdjpnehcfaldcia [2015-05-28]

S3 cpuz135; \??\C:\Users\Denisa\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]

2015-06-11 22:00 - 2015-06-11 22:00 - 00112640 _____ (forum.viry.cz) C:\Users\Denisa\Desktop\FRSTLauncher.exe
2015-06-01 11:46 - 2015-06-01 11:46 - 00016762 _____ C:\Users\Denisa\Desktop\zoek-results.rar
2015-06-01 11:44 - 2015-06-01 11:44 - 00112061 _____ C:\Users\Denisa\Desktop\zoek-results.txt
2015-06-01 11:27 - 2015-06-01 11:06 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-06-01 11:07 - 2015-06-01 11:40 - 00112061 _____ C:\zoek-results.log
2015-06-01 11:06 - 2015-06-01 11:26 - 00000000 ____D C:\zoek_backup
2015-06-01 11:04 - 2015-06-01 11:05 - 01308672 _____ C:\Users\Denisa\Desktop\zoek.exe
2015-06-01 10:49 - 2015-06-01 10:55 - 00000000 ____D C:\AdwCleaner
2015-06-01 10:48 - 2015-06-01 10:48 - 02231296 _____ C:\Users\Denisa\Desktop\adwcleaner_4.206.exe
2015-05-24 18:47 - 2015-05-24 18:48 - 00000000 ____D C:\rsit
2015-05-24 18:47 - 2015-05-24 18:48 - 00000000 ____D C:\Program Files (x86)\trend micro
2015-05-24 18:47 - 2015-05-24 18:47 - 01107968 _____ C:\Users\Denisa\Desktop\RSIT.exe

Task: {45CD0AB2-B4EA-404E-B0FF-76B6A0D09287} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe
Task: {62558A2F-6134-4E7D-9911-BBA2419BE712} - \Advanced System~Protector No Task File <==== ATTENTION
Task: {90A764A2-EFDD-4B8E-8F64-10C08143DE10} - System32\Tasks\{E0875882-AFA0-4BE5-9971-6284D2AA0FBE} => pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {A564A10D-41B0-416D-8265-4B45B4CDA61B} - \Advanced System~Protector_startup No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\simplitec Power Suite.job => C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End

fasirek · #13 Příspěvek od **fasirek** » 12 čer 2015 12:16

vkladam

Fix result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
Ran by Denisa at 2015-06-12 12:59:59 Run:1
Running from C:\Users\Denisa\Desktop
Loaded Profiles: Denisa (Available Profiles: UpdatusUser & Denisa)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe"
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\...\Run: [Yahoo! Search] => C:\Users\Denisa\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
C:\Program Files (x86)\SpeedItup Free
C:\Users\Denisa\AppData\Local\Pay-By-Ads

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NewTab: hxxp://search.yahoo.com/?fr=hp-ddc-bd-t ... tab_bd_com
FF SelectedSearchEngine: Yahoo! Search
FF Homepage: hxxp://search.yahoo.com/?fr=hp-ddc-bd&t ... syc_bd_com
FF Keyword.URL: hxxp://search.yahoo.com/yhs/search?hspa ... _bd_com&p=
FF Extension: yellow cabs - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\ajtNoaD@gmail.com [2015-04-05]
FF Extension: Deal 4 Us - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\NUtclJdk@gmail.com [2015-05-28]
FF Extension: openbookmarkintabpirosakuranejp - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\openbookmarkintab@piro.sakura.ne.jp [2015-04-05]
FF Extension: 95322c0805ff4f3c85fd8ceb821988dd - C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\{95322c08-05ff-4f3c-85fd-8ceb821988dd} [2015-05-28]

CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\pdf.dll No File
CHR Plugin: (Norton Identity Safe) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.2.1.36_0\npcoplgn.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Extension: (dbepggeogbaibhgnhhndojpepiihcmeb) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbepggeogbaibhgnhhndojpepiihcmeb [2015-04-05]
CHR Extension: (gpgehjabcocfbddmjickonnjpjnjafcj) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgehjabcocfbddmjickonnjpjnjafcj [2015-04-11]
CHR Extension: (mpajngnpcmjjeoflljdjpnehcfaldcia) - C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpajngnpcmjjeoflljdjpnehcfaldcia [2015-05-28]

S3 cpuz135; \??\C:\Users\Denisa\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]

2015-06-11 22:00 - 2015-06-11 22:00 - 00112640 _____ (forum.viry.cz) C:\Users\Denisa\Desktop\FRSTLauncher.exe
2015-06-01 11:46 - 2015-06-01 11:46 - 00016762 _____ C:\Users\Denisa\Desktop\zoek-results.rar
2015-06-01 11:44 - 2015-06-01 11:44 - 00112061 _____ C:\Users\Denisa\Desktop\zoek-results.txt
2015-06-01 11:27 - 2015-06-01 11:06 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-06-01 11:07 - 2015-06-01 11:40 - 00112061 _____ C:\zoek-results.log
2015-06-01 11:06 - 2015-06-01 11:26 - 00000000 ____D C:\zoek_backup
2015-06-01 11:04 - 2015-06-01 11:05 - 01308672 _____ C:\Users\Denisa\Desktop\zoek.exe
2015-06-01 10:49 - 2015-06-01 10:55 - 00000000 ____D C:\AdwCleaner
2015-06-01 10:48 - 2015-06-01 10:48 - 02231296 _____ C:\Users\Denisa\Desktop\adwcleaner_4.206.exe
2015-05-24 18:47 - 2015-05-24 18:48 - 00000000 ____D C:\rsit
2015-05-24 18:47 - 2015-05-24 18:48 - 00000000 ____D C:\Program Files (x86)\trend micro
2015-05-24 18:47 - 2015-05-24 18:47 - 01107968 _____ C:\Users\Denisa\Desktop\RSIT.exe

Task: {45CD0AB2-B4EA-404E-B0FF-76B6A0D09287} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe
Task: {62558A2F-6134-4E7D-9911-BBA2419BE712} - \Advanced System~Protector No Task File <==== ATTENTION
Task: {90A764A2-EFDD-4B8E-8F64-10C08143DE10} - System32\Tasks\{E0875882-AFA0-4BE5-9971-6284D2AA0FBE} => pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
Task: {A564A10D-41B0-416D-8265-4B45B4CDA61B} - \Advanced System~Protector_startup No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\simplitec Power Suite.job => C:\Program Files (x86)\simplitec\simplisafe\PowerSuite.exe
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\LManager => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\Software\Microsoft\Windows\CurrentVersion\Run\\SpeedItupFree => value removed successfully
HKU\S-1-5-21-3159269895-1553210932-1442943132-1002\Software\Microsoft\Windows\CurrentVersion\Run\\Yahoo! Search => value removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"C:\Program Files (x86)\SpeedItup Free" => File/Folder not found.
"C:\Users\Denisa\AppData\Local\Pay-By-Ads" => File/Folder not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
Firefox newtab removed successfully
Firefox SelectedSearchEngine removed successfully
Firefox homepage removed successfully
Firefox Keyword.URL removed successfully
C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\ajtNoaD@gmail.com => moved successfully.
C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\NUtclJdk@gmail.com => moved successfully.
C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\openbookmarkintab@piro.sakura.ne.jp => moved successfully.
C:\Users\Denisa\AppData\Roaming\Mozilla\Firefox\Profiles\v3ivcapf.default\Extensions\{95322c08-05ff-4f3c-85fd-8ceb821988dd} => moved successfully.
C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\PepperFlash\pepflashplayer.dll not found.
C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\ppGoogleNaClPluginChrome.dll not found.
C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\pdf.dll not found.
C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.2.1.36_0\npcoplgn.dll not found.
C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll not found.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll not found.
C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbepggeogbaibhgnhhndojpepiihcmeb => moved successfully.
C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpgehjabcocfbddmjickonnjpjnjafcj => moved successfully.
C:\Users\Denisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpajngnpcmjjeoflljdjpnehcfaldcia => moved successfully.
cpuz135 => Service removed successfully
C:\Users\Denisa\Desktop\FRSTLauncher.exe => moved successfully.
C:\Users\Denisa\Desktop\zoek-results.rar => moved successfully.
C:\Users\Denisa\Desktop\zoek-results.txt => moved successfully.
C:\WINDOWS\zoek-delete.exe => moved successfully.
C:\zoek-results.log => moved successfully.
C:\zoek_backup => moved successfully.
C:\Users\Denisa\Desktop\zoek.exe => moved successfully.
C:\AdwCleaner => moved successfully.
"C:\Users\Denisa\Desktop\adwcleaner_4.206.exe" => File/Folder not found.
C:\rsit => moved successfully.
C:\Program Files (x86)\trend micro => moved successfully.
C:\Users\Denisa\Desktop\RSIT.exe => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{45CD0AB2-B4EA-404E-B0FF-76B6A0D09287}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45CD0AB2-B4EA-404E-B0FF-76B6A0D09287}" => key removed successfully
C:\Windows\System32\Tasks\AutoKMS => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{62558A2F-6134-4E7D-9911-BBA2419BE712}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62558A2F-6134-4E7D-9911-BBA2419BE712}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System~Protector" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{90A764A2-EFDD-4B8E-8F64-10C08143DE10}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{90A764A2-EFDD-4B8E-8F64-10C08143DE10}" => key removed successfully
C:\Windows\System32\Tasks\{E0875882-AFA0-4BE5-9971-6284D2AA0FBE} => moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E0875882-AFA0-4BE5-9971-6284D2AA0FBE}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A564A10D-41B0-416D-8265-4B45B4CDA61B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A564A10D-41B0-416D-8265-4B45B4CDA61B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Advanced System~Protector_startup" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.
C:\WINDOWS\Tasks\simplitec Power Suite.job => moved successfully.

========= dir "C:\PROGRA~1" =========

Volume in drive C is Packard Bell
Volume Serial Number is BC53-AF88

Directory of C:\PROGRA~1

01. 06. 2015 10:54 <DIR> .
01. 06. 2015 10:54 <DIR> ..
13. 03. 2014 10:37 <DIR> Bonjour
17. 09. 2012 12:09 <DIR> Broadcom
30. 08. 2014 19:25 <DIR> Common Files
30. 08. 2014 19:02 <DIR> Elantech
26. 11. 2014 15:29 <DIR> ESET
17. 09. 2012 12:10 <DIR> Intel
14. 05. 2015 00:53 <DIR> Internet Explorer
30. 09. 2014 15:24 <DIR> iPod
30. 09. 2014 15:24 <DIR> iTunes
21. 03. 2013 00:36 <DIR> Microsoft Office
30. 08. 2014 19:24 <DIR> MSBuild
30. 08. 2014 19:06 <DIR> NVIDIA Corporation
03. 08. 2012 14:05 <DIR> Packard Bell
30. 08. 2014 19:02 <DIR> Realtek
30. 08. 2014 19:24 <DIR> Reference Assemblies
17. 03. 2015 03:24 <DIR> Windows Defender
14. 05. 2015 00:25 <DIR> Windows Journal
02. 05. 2015 19:46 <DIR> Windows Mail
02. 05. 2015 19:46 <DIR> Windows Media Player
02. 05. 2015 19:46 <DIR> Windows Multimedia Platform
30. 08. 2014 19:43 <DIR> Windows NT
02. 05. 2015 19:46 <DIR> Windows Photo Viewer
02. 05. 2015 19:46 <DIR> Windows Portable Devices
02. 05. 2015 19:43 <DIR> WindowsPowerShell
0 File(s) 0 bytes
26 Dir(s) 332�716�662�784 bytes free

========= End of CMD: =========

========= dir "C:\PROGRA~2" =========

Volume in drive C is Packard Bell
Volume Serial Number is BC53-AF88

Directory of C:\PROGRA~2

12. 06. 2015 13:01 <DIR> .
12. 06. 2015 13:01 <DIR> ..
29. 04. 2013 19:27 <DIR> Adobe
13. 03. 2014 10:37 <DIR> Apple Software Update
26. 11. 2014 15:27 <DIR> BleachBit
13. 03. 2014 10:37 <DIR> Bonjour
27. 10. 2013 15:01 <DIR> CollageIt
01. 06. 2015 11:09 <DIR> Common Files
10. 04. 2014 07:40 <DIR> Comodo
17. 09. 2012 12:19 <DIR> CyberLink
31. 01. 2013 10:01 <DIR> DsNET Corp
31. 01. 2013 08:40 <DIR> Google
13. 11. 2013 00:31 <DIR> HP
30. 08. 2014 19:25 <DIR> Intel
14. 05. 2015 00:53 <DIR> Internet Explorer
30. 09. 2014 15:24 <DIR> iTunes
17. 09. 2012 12:14 <DIR> Launch Manager
25. 02. 2014 13:45 <DIR> Microsoft
21. 03. 2013 00:36 <DIR> Microsoft Analysis Services
21. 03. 2013 00:38 <DIR> Microsoft Office
31. 01. 2013 10:03 <DIR> Microsoft Silverlight
21. 03. 2013 00:38 <DIR> Microsoft SQL Server Compact Edition
21. 03. 2013 00:38 <DIR> Microsoft Synchronization Services
21. 03. 2013 00:37 <DIR> Microsoft Visual Studio 8
30. 08. 2014 19:25 <DIR> Microsoft.NET
22. 01. 2014 06:07 <DIR> Movie Player
11. 06. 2015 21:54 <DIR> Mozilla Firefox
11. 06. 2015 21:54 <DIR> Mozilla Maintenance Service
30. 08. 2014 19:31 <DIR> MSBuild
03. 08. 2012 14:02 <DIR> Nero
30. 08. 2014 19:25 <DIR> NVIDIA Corporation
06. 01. 2015 23:17 <DIR> Opera
17. 09. 2012 12:12 <DIR> Packard Bell
18. 08. 2014 00:49 <DIR> PokerStars
17. 09. 2012 12:06 <DIR> Realtek
30. 08. 2014 19:24 <DIR> Reference Assemblies
25. 11. 2014 03:30 <DIR> Software Display
17. 09. 2012 12:31 <DIR> Symantec
03. 08. 2012 14:05 <DIR> SymSilent
05. 10. 2014 00:19 <DIR> VideoLAN
03. 08. 2012 14:01 <DIR> WildGames
03. 08. 2012 14:01 <DIR> WildTangent Games
17. 03. 2015 03:24 <DIR> Windows Defender
02. 05. 2015 19:43 <DIR> Windows Mail
02. 05. 2015 19:43 <DIR> Windows Media Player
02. 05. 2015 19:43 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
02. 05. 2015 19:43 <DIR> Windows Photo Viewer
02. 05. 2015 19:43 <DIR> Windows Portable Devices
22. 08. 2013 17:36 <DIR> WindowsPowerShell
21. 03. 2013 00:32 <DIR> WinRAR
0 File(s) 0 bytes
51 Dir(s) 332�716�650�496 bytes free

========= End of CMD: =========

========= dir "C:\PROGRA~3" =========

Volume in drive C is Packard Bell
Volume Serial Number is BC53-AF88

Directory of C:\PROGRA~3

30. 09. 2014 15:24 <DIR> 34BE82C4-E596-4e99-A191-52C6199EBF69
26. 02. 2013 07:11 <DIR> Adobe
13. 03. 2014 10:37 <DIR> Apple
13. 03. 2014 10:38 <DIR> Apple Computer
25. 02. 2014 13:41 <DIR> AVAST Software
17. 09. 2012 12:31 <DIR> boost_interprocess
17. 09. 2012 12:20 <DIR> CLSK
19. 05. 2013 00:35 <DIR> CyberLink
26. 11. 2014 15:29 <DIR> ESET
13. 11. 2013 00:33 <DIR> HP
13. 11. 2013 00:31 <DIR> HP Product Assistant
14. 09. 2014 14:18 1�328 hpzinstall.log
17. 09. 2012 12:10 <DIR> Intel
08. 10. 2014 16:58 <DIR> MAGIX
02. 06. 2015 00:44 <DIR> Microsoft Help
05. 02. 2013 03:08 <DIR> Mozilla
12. 07. 2014 19:56 <DIR> Nero
04. 04. 2013 06:28 <DIR> Norton
04. 04. 2013 06:23 <DIR> NortonInstaller
11. 02. 2013 15:56 <DIR> NVIDIA
30. 08. 2014 19:03 <DIR> NVIDIA Corporation
30. 01. 2013 21:05 <DIR> OEM
03. 08. 2012 14:01 <DIR> Packard Bell
27. 10. 2013 15:01 <DIR> PearlMountain
30. 08. 2014 19:25 <DIR> PRICache
17. 09. 2012 12:12 <DIR> Qualcomm Atheros
02. 05. 2015 19:43 <DIR> regid.1991-06.com.microsoft
17. 09. 2012 12:31 <DIR> Symantec
17. 09. 2012 12:19 <DIR> Temp
13. 11. 2013 00:33 <DIR> WEBREG
03. 08. 2012 14:01 <DIR> WildTangent
03. 02. 2013 16:06 <DIR> Zoner
1 File(s) 1�328 bytes
31 Dir(s) 332�716�650�496 bytes free

========= End of CMD: =========

========= dir "%localappdata%" =========

Volume in drive C is Packard Bell
Volume Serial Number is BC53-AF88

Directory of C:\Users\Denisa\AppData\Local

12. 06. 2015 12:59 <DIR> .
12. 06. 2015 12:59 <DIR> ..
19. 06. 2013 01:55 <DIR> Adobe
13. 03. 2014 10:37 <DIR> Apple
13. 03. 2014 10:40 <DIR> Apple Computer
10. 04. 2014 07:40 <DIR> Comodo
29. 08. 2014 00:58 <DIR> CrashDumps
19. 07. 2014 18:16 <DIR> Diagnostics
11. 02. 2013 01:35 <DIR> fontconfig
11. 02. 2013 01:35 <DIR> gegl-0.2
01. 02. 2013 22:23 <DIR> Google
13. 11. 2013 00:43 <DIR> HP
15. 02. 2013 11:36 <DIR> Macromedia
26. 11. 2014 15:19 <DIR> Microsoft
11. 02. 2014 05:54 <DIR> Microsoft Help
12. 07. 2014 19:56 <DIR> Mozilla
12. 06. 2015 12:59 29�696 MSGBOX.EXE
06. 02. 2013 02:03 <DIR> Nero_AG
30. 01. 2013 22:23 <DIR> Opera
02. 09. 2014 04:14 <DIR> Packages
18. 08. 2014 00:49 <DIR> PokerStars
11. 02. 2013 01:03 <DIR> Programs
09. 05. 2013 17:56 3�252 recently-used.xbel
12. 06. 2015 13:01 <DIR> Temp
22. 01. 2014 06:09 <DIR> VirtualStore
03. 02. 2013 16:09 <DIR> Zoner
2 File(s) 32�948 bytes
24 Dir(s) 332�716�650�496 bytes free

========= End of CMD: =========

========= dir "%appdata%" =========

Volume in drive C is Packard Bell
Volume Serial Number is BC53-AF88

Directory of C:\Users\Denisa\AppData\Roaming

01. 06. 2015 11:09 <DIR> .
01. 06. 2015 11:09 <DIR> ..
12. 02. 2015 13:52 <DIR> Adobe
13. 03. 2014 13:57 <DIR> Apple Computer
26. 11. 2014 15:27 <DIR> BleachBit
19. 05. 2013 00:35 <DIR> CyberLink
13. 11. 2013 00:43 <DIR> HP
01. 11. 2014 16:02 <DIR> HpUpdate
04. 02. 2013 12:47 <DIR> Identities
30. 01. 2013 21:05 <DIR> lm
30. 01. 2013 22:20 <DIR> Macromedia
08. 10. 2014 16:58 <DIR> MAGIX
12. 07. 2014 19:56 <DIR> Mozilla
06. 02. 2013 02:02 <DIR> Nero
30. 01. 2013 22:23 <DIR> Opera
18. 04. 2015 01:26 <DIR> Opera Software
27. 10. 2013 15:01 <DIR> PearlMountain
03. 07. 2014 05:56 <DIR> QuickScan
30. 04. 2013 06:34 <DIR> Softland
11. 06. 2015 21:51 <DIR> vlc
26. 02. 2013 06:23 <DIR> WildTangent
21. 03. 2013 00:32 <DIR> WinRAR
0 File(s) 0 bytes
22 Dir(s) 332�716�646�400 bytes free

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 683.9 MB temporary data Removed.

The system needed a reboot..

==== End of Fixlog 13:02:32 ====

#14 Příspěvek od **altrok** » 12 čer 2015 14:03

Log je ted cisty. Pozorujete nejake problemy nebo zacneme uklizet?

fasirek · #15 Příspěvek od **fasirek** » 12 čer 2015 16:56

Nepozoruji zadny problem, ba naopak

uz se da i brouzdat po internetu celkem rychle

takze muzeme cistit

VIRY.CZ

zavirovany pocitac

zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac

Re: zavirovany pocitac