Malware/ nainstalovani nepotrebnych aplikací downolander

[Pajinek88]

Ahoj, tak jsem opět tady jelikož si nevím rady nedávno jsem v lítl po delší době na piratský SW jelikož jsem potřeboval licenci pro PTGui. Na místo tohoto programu jsem si stahl downolander aplikaci který mi instaluje nepotřebný bordel. Něco málo jsem už odstranil, ale tu hlavní ne a ne najít tu která to má za následek.

Prosím můžete mi pomoci?

Děkuji

--------------------------
Přikládám Log s FRST 1 cast zde
---------------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
Ran by pabuk_000 (administrator) on LENOVO-Z500 (17-09-2015 07:59:34)
Running from C:\Users\pabuk_000\Desktop
Loaded Profiles: pabuk_000 (Available Profiles: pabuk_000)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "D:\Programky\Maxthon\Bin\Maxthon.exe" "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe
(Maxthon) D:\Programky\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Crawler Group) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(CyberLink) D:\Programky\Cyberlink\Power2Go9\Power2Go9\CLMLSvc_P2G9.exe
(Apple Inc.) D:\Programky\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\MSOSYNC.EXE
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(forum.viry.cz) C:\Users\pabuk_000\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [5473104 2015-09-03] (Crawler Group, LLC)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3743648 2015-08-26] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Vimicro)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [CLMLServer_For_P2G9] => D:\Programky\Cyberlink\Power2Go9\Power2Go9\CLMLSvc_P2G9.exe [110344 2014-07-08] (CyberLink)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => D:\Programky\iTunes\iTunesHelper.exe [157968 2015-08-13] (Apple Inc.)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [Zoner Photo Studio Autoupdate] => D:\Programky\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [CCleaner Monitoring] => D:\Programky\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [CrashService] => "C:\Users\pabuk_000\AppData\Local\BoBrowser\Application\crash_service.exe" --max-reports=50 --no-window
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{04daeeda-b352-4d20-b011-bb6aa1a7526c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4d4c7315-c436-4a7e-9524-376c11820ab4}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{f89c8e53-6781-4c55-a3fd-5635c82780d8}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

Internet Explorer:
==================
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3920955446-1667830888-1854160742-1001 -> {D2780AD2-CFE8-4E0B-8469-37CB347A4C0B} URL = hxxp://www-searching.com/search.aspx?s=F9Czamobl011652,3ef33c64-001d-4749-8c72-7e6fcc182123&site=shyosie&prd=set&q={searchTerms}
BHO: No Name -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> No File
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2015-07-29] (Crawler Group, LLC)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2015-07-29] (Crawler Group, LLC)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2015-09-05] (Microsoft Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default
FF NewTab: about:blank
FF DefaultSearchEngine: Bing®
FF SelectedSearchEngine: Bing®
FF Homepage: about:blank
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-09-13] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2015-09-05] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-13] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Programky\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2015-09-05] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> D:\Programky\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-04-22] (Microsoft Corporation)
FF SearchPlugin: C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default\searchplugins\bing-lavasoft.xml [2015-09-13]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default\Extensions\iobitascsurfingprotection@iobit.com [2015-09-14]
FF Extension: Text to Voice - C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default\Extensions\text2voice@vik.josh.xpi [2015-07-09]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox [2015-09-14]
FF Extension: No Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [not found]

Chrome:
=======
CHR HomePage: Default -> hxxp://start.iminent.com/?appId=f8ad5087-5ed3-4d70-a6c7-5cc4a8364f35
CHR StartupUrls: Default -> "hxxp://start.iminent.com/?appId=f8ad5087-5ed3-4d70-a6c7-5cc4a8364f35"

CHR DefaultSearchURL: Default -> hxxp://start.iminent.com/?appId=f8ad5087-5ed3-4d70-a6c7-5cc4a8364f35&ref=toolbox&q={searchTerms}
CHR DefaultSearchKeyword: Default -> start.iminent.com
CHR Profile: C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-09]
CHR Extension: (Google Docs) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-09]
CHR Extension: (Google Drive) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-09]
CHR Extension: (YouTube) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-09]
CHR Extension: (No Name) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2015-07-09]
CHR Extension: (Google Search) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-09]
CHR Extension: (Google Sheets) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-09]
CHR Extension: (Norton Identity Safe) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-07-09]
CHR Extension: (Google Wallet) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-09]
CHR Extension: (SpeakIt!) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2015-07-09]
CHR Extension: (Gmail) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-09]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/deta ... ihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/deta ... ihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000 2015-08-21] (Kaspersky Lab ZAO)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2826328 2015-08-30] (Microsoft Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [135072 2015-08-26] (ELAN Microelectronics Corp.)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [762272 2015-09-11] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation)
R2 MaxthonUpdateSvc; D:\Programky\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1871784 2015-09-16] (Maxthon)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3037520 2015-07-29] (Crawler Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S2 UnsignedThemes; C:\WINDOWS\unsignedthemes.exe [13824 2013-09-23] (The Within Network, LLC) [File not signed]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 CLVirtualBus01; C:\Windows\System32\drivers\CLVirtualBus01.sys [103176 2014-03-12] (CyberLink)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-14] (REALiX(tm))
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [171192 2015-06-30] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227000 2015-07-04] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [937656 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [30392 2015-06-08] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [78008 2015-06-26] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-09-14] (Intel Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R1 ppfd_vw_1_10_0_21; C:\Windows\System32\drivers\ppfd_vw_1_10_0_21.sys [57744 2015-07-28] (PhraseProfessor)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-09-14] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402136 2015-09-14] (Realsil Semiconductor Corporation)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S2 uxstyle; C:\WINDOWS\system32\Drivers\uxstyle.sys [31440 2013-09-23] (The Within Network, LLC)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Vimicro Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R1 ywiwm2j2znmybdf; C:\Windows\System32\drivers\ywiwm2j2znmybdf.sys [53080 2015-09-12] (Windows (R) Win 7 DDK provider)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-17 07:59 - 2015-09-17 07:59 - 00023744 _____ C:\Users\pabuk_000\Desktop\FRST.txt
2015-09-17 07:52 - 2015-09-17 07:59 - 00000000 ____D C:\FRST
2015-09-17 07:49 - 2015-09-17 07:49 - 00112640 _____ (forum.viry.cz) C:\Users\pabuk_000\Desktop\FRSTLauncher.exe
2015-09-17 07:48 - 2015-09-17 07:48 - 02191360 _____ (Farbar) C:\Users\pabuk_000\Desktop\FRST64.exe
2015-09-17 07:44 - 2015-09-17 07:44 - 00016148 _____ C:\WINDOWS\system32\LENOVO-Z500_pabuk_000_HistoryPrediction.bin
2015-09-17 07:44 - 2015-09-17 07:44 - 00000000 ___HD C:\OneDriveTemp
2015-09-17 07:43 - 2015-09-17 07:43 - 00001078 _____ C:\WINDOWS\PFRO.log
2015-09-16 15:31 - 2015-09-16 15:32 - 00000000 ____D C:\Program Files (x86)\DriverRestore
2015-09-16 15:31 - 2015-09-16 15:31 - 00001140 _____ C:\Users\Public\Desktop\DriverRestore.lnk
2015-09-16 15:31 - 2015-09-16 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
2015-09-16 15:31 - 2014-11-24 22:09 - 00020872 _____ (Phoenix Technologies) C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS
2015-09-16 07:27 - 2015-09-16 07:27 - 00000000 ___RD C:\Users\pabuk_000\3D Objects
2015-09-16 07:14 - 2015-09-16 07:14 - 00003674 _____ C:\WINDOWS\System32\Tasks\Maxthon Update
2015-09-16 07:14 - 2015-09-16 07:14 - 00000781 _____ C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2015-09-16 07:14 - 2015-09-16 07:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxthon Cloud Browser
2015-09-15 16:17 - 2015-09-17 07:44 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-15 14:27 - 2015-09-15 14:27 - 00008621 _____ C:\claraInstaller.txt
2015-09-15 14:27 - 2015-09-15 14:27 - 00004192 _____ C:\WINDOWS\System32\Tasks\PostPoneInstall
2015-09-15 14:27 - 2015-09-15 14:27 - 00003310 _____ C:\WINDOWS\System32\Tasks\crash_service
2015-09-15 14:27 - 2015-09-15 14:27 - 00003286 _____ C:\WINDOWS\System32\Tasks\Run_Bobby_Browser
2015-09-14 15:16 - 2015-09-14 15:16 - 00002182 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2015-09-14 15:16 - 2015-09-14 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2015-09-14 15:15 - 2015-09-14 15:15 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-09-14 15:15 - 2015-07-04 02:18 - 00227000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2015-09-14 15:15 - 2015-06-30 01:05 - 00937656 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2015-09-14 15:15 - 2015-06-30 01:05 - 00171192 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2015-09-14 15:15 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2015-09-14 14:54 - 2015-09-14 14:54 - 01917824 _____ (Kaspersky Lab) C:\Users\pabuk_000\Desktop\kav16.0.0.614acs_8658.exe
2015-09-14 14:50 - 2015-09-14 14:50 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2015-09-14 14:16 - 2015-08-30 23:47 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-09-14 14:16 - 2015-08-25 19:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-14 14:13 - 2015-09-15 14:49 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Nosibay
2015-09-14 14:13 - 2015-09-15 14:48 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Store
2015-09-14 14:11 - 2015-09-14 14:17 - 00000000 ____D C:\WINDOWS\LastGood
2015-09-14 14:11 - 2015-08-11 05:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-14 14:10 - 2015-09-14 14:14 - 00001266 _____ C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.boostrap.log
2015-09-14 13:21 - 2015-09-14 13:21 - 09890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2015-09-14 13:21 - 2015-09-14 13:21 - 00895256 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-09-14 13:21 - 2015-09-14 13:21 - 00091272 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-09-14 13:19 - 2015-09-14 13:21 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-09-14 13:19 - 2015-09-14 13:19 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-09-14 13:17 - 2015-09-14 13:17 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-09-14 13:17 - 2015-09-14 13:17 - 35222128 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-09-14 13:17 - 2015-09-14 13:17 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 06255888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 02702552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-09-14 13:17 - 2015-09-14 13:17 - 02461528 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01749208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01310936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00349968 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00298768 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00184608 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-09-14 13:17 - 2015-09-14 13:17 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-09-14 13:12 - 2015-09-14 13:12 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-09-14 13:12 - 2015-09-14 13:12 - 00003084 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (pabuk_000)
2015-09-14 13:12 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-09-14 13:12 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-09-13 13:51 - 2015-09-14 13:50 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-13 13:44 - 2015-09-13 13:44 - 00004106 _____ C:\WINDOWS\System32\Tasks\LaunchPreSignup
2015-09-13 09:32 - 2015-09-13 09:32 - 00002872 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2015-09-13 09:32 - 2015-09-13 09:32 - 00002872 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-09-13 09:32 - 2015-09-08 13:16 - 00425744 ____R (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2015-09-13 09:32 - 2015-09-08 13:16 - 00345360 ____R (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2015-09-13 09:23 - 2015-09-13 09:23 - 00003398 _____ C:\WINDOWS\System32\Tasks\{9AA498CC-C350-4414-B784-75B4C14FB2CF}
2015-09-12 08:58 - 2015-09-12 08:58 - 00613255 _____ (CMI Limited) C:\Users\pabuk_000\AppData\Local\nso9E14.tmp
2015-09-12 08:33 - 2015-09-12 08:33 - 86323200 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 05242880 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 00479232 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 00069632 _____ C:\WINDOWS\system32\config\SAM.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2015-09-12 08:24 - 2015-09-15 14:43 - 00000000 ____D C:\Program Files (x86)\AD5257FE-1442042670-E211-A312-2089849AE681
2015-09-12 08:24 - 2015-08-11 20:11 - 00349584 _____ (Abengine) C:\WINDOWS\system32\acengine64.dll
2015-09-12 08:24 - 2013-08-22 14:25 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-09-12 08:23 - 2015-09-13 09:29 - 00000000 ____D C:\Program Files\Common Files\Goobzo
2015-09-12 08:23 - 2015-09-12 09:20 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\BrowserAir
2015-09-12 08:22 - 2015-09-17 07:44 - 00000374 ____H C:\WINDOWS\Tasks\GLJGHEPCNHSTLKGR.job
2015-09-12 08:22 - 2015-09-14 14:13 - 00000156 _____ C:\Users\pabuk_000\AppData\Roaming\WindApp.installation.log
2015-09-12 08:22 - 2015-09-14 14:13 - 00000156 _____ C:\Users\pabuk_000\AppData\Roaming\Selection Tools.installation.log
2015-09-12 08:22 - 2015-09-12 08:22 - 00004352 _____ C:\WINDOWS\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Pending Update
2015-09-12 08:22 - 2015-09-12 08:22 - 00004322 _____ C:\WINDOWS\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Core
2015-09-12 08:22 - 2015-09-12 08:22 - 00003458 _____ C:\WINDOWS\System32\Tasks\GLJGHEPCNHSTLKGR
2015-09-12 08:22 - 2015-09-12 08:22 - 00000000 ____D C:\ProgramData\Service7609
2015-09-12 08:21 - 2015-09-14 14:13 - 00011475 _____ C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.installation.log
2015-09-12 08:21 - 2015-09-14 14:10 - 00000194 _____ C:\Users\pabuk_000\AppData\Roaming\WindApp.boostrap.log
2015-09-12 08:00 - 2015-09-12 08:00 - 05157900 _____ C:\Users\pabuk_000\Desktop\sigma8.zip
2015-09-12 07:28 - 2015-09-12 07:28 - 00000699 _____ C:\Users\Public\Desktop\PTGui.lnk
2015-09-12 07:28 - 2015-09-12 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTGui
2015-09-12 05:36 - 2015-09-12 05:36 - 00053080 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\ywiwm2j2znmybdf.sys
2015-09-11 11:48 - 2015-09-11 11:48 - 00000000 _____ C:\Users\pabuk_000\Desktop\Nový textový dokument.txt
2015-09-11 10:49 - 2015-09-11 10:49 - 00000000 ____D C:\Users\pabuk_000\Desktop\html5
2015-09-10 15:05 - 2015-09-02 02:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-10 15:05 - 2015-09-02 01:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-10 15:05 - 2015-09-02 01:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-10 15:05 - 2015-08-27 07:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-10 15:05 - 2015-08-27 07:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 15:05 - 2015-08-27 07:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-10 15:05 - 2015-08-27 06:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-10 15:05 - 2015-08-27 06:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-10 15:05 - 2015-08-27 06:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-10 15:05 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-10 15:05 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-10 15:05 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 15:05 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-10 15:05 - 2015-08-27 06:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-10 15:05 - 2015-08-27 06:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-10 15:05 - 2015-08-27 06:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-10 15:05 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-10 15:05 - 2015-08-27 06:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-10 15:05 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 15:05 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-10 15:05 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-10 15:05 - 2015-08-27 06:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-10 15:05 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-10 15:05 - 2015-08-27 06:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-10 15:05 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-10 15:05 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-10 15:05 - 2015-08-27 06:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-10 15:05 - 2015-08-27 06:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-10 15:05 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-10 15:05 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-10 15:05 - 2015-08-27 06:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-10 15:05 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-05 08:31 - 2015-09-05 08:31 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\CEF
2015-09-05 08:30 - 2015-09-07 14:43 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-09-05 08:30 - 2015-09-05 08:30 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-09-05 06:35 - 2015-09-12 08:36 - 00000000 ____D C:\WINDOWS\Panther
2015-09-05 05:59 - 2015-09-05 05:59 - 00002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2015-09-05 05:53 - 2015-09-12 09:07 - 00000000 ____D C:\ProgramData\SUPERSetup
2015-09-02 14:30 - 2015-09-17 06:57 - 00004212 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8E06957E-5083-4972-AAC0-34C32F98D0AE}
2015-09-02 14:30 - 2015-09-02 14:30 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\MicrosoftEdge
2015-09-02 13:54 - 2015-09-02 13:54 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\NetworkTiles
2015-08-31 02:30 - 2015-08-31 02:30 - 00625848 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00431704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00382560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00325232 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00257736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00235632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00079544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2015-08-29 10:36 - 2015-08-29 10:36 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Jpeg Resampler
2015-08-29 08:58 - 2015-08-20 07:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 08:58 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-29 08:58 - 2015-08-20 07:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-29 08:58 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 08:58 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 08:58 - 2015-08-20 06:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-29 08:58 - 2015-08-20 06:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-29 08:58 - 2015-08-20 06:09 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-08-29 08:58 - 2015-08-18 08:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 08:58 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-29 08:58 - 2015-08-18 08:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 08:58 - 2015-08-18 08:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-29 08:58 - 2015-08-18 08:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-29 08:58 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 08:58 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 08:58 - 2015-08-18 08:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 08:58 - 2015-08-18 08:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-29 08:58 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-29 08:58 - 2015-08-18 08:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 08:58 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 08:58 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 08:58 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-29 08:58 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 08:58 - 2015-08-18 07:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 08:58 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 08:58 - 2015-08-18 07:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 08:58 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-29 08:58 - 2015-08-18 07:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-29 08:58 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-29 08:58 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-29 08:58 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 08:58 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-29 08:58 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-29 08:58 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-29 08:58 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-29 08:58 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-29 08:58 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-29 08:58 - 2015-08-18 05:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-26 08:58 - 2013-10-22 14:28 - 00000000 ____D C:\D5100Update
2015-08-26 08:03 - 2015-08-26 08:03 - 00057064 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01001.dll
2015-08-21 11:11 - 2015-08-21 11:11 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-08-19 16:44 - 2015-09-14 15:00 - 00000470 __RSH C:\ProgramData\ntuser.pol
2015-08-19 15:16 - 2015-08-19 15:16 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\PeerDistRepub
2015-08-19 14:25 - 2015-08-19 14:25 - 00001051 _____ C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Volitelné funkce.lnk
2015-08-19 14:21 - 2015-09-15 13:45 - 00002374 _____ C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-08-19 14:14 - 2015-08-19 14:14 - 00042328 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2015-08-19 14:13 - 2015-08-26 08:03 - 00467032 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2015-08-19 14:13 - 2015-08-19 14:13 - 00047288 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-08-19 14:11 - 2015-08-19 14:11 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Publishers
2015-08-19 14:10 - 2015-08-26 20:40 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Comms
2015-08-19 14:10 - 2015-08-19 14:10 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\TileDataLayer
2015-08-19 14:09 - 2015-08-19 14:09 - 00000020 ___SH C:\Users\pabuk_000\ntuser.ini
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Šablony
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Poslední
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 13:50 - 2015-08-19 13:50 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-08-19 13:47 - 2015-08-19 13:47 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-08-19 13:46 - 2015-09-17 07:49 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-19 13:39 - 2015-07-10 11:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-08-19 13:36 - 2015-08-19 13:36 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-08-19 13:36 - 2015-08-19 13:36 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-08-19 13:36 - 2015-08-19 13:36 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2015-08-19 13:36 - 2015-08-19 13:36 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-08-19 13:36 - 2015-08-19 13:36 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-08-19 13:36 - 2015-08-19 13:36 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2015-08-19 13:35 - 2015-08-19 13:35 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-08-19 13:32 - 2015-08-19 13:32 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-08-19 13:31 - 2015-09-16 07:27 - 00000000 ____D C:\Users\pabuk_000
2015-08-19 13:31 - 2015-09-13 13:43 - 00000000 ___RD C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Šablony
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Soubory cookie
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Poslední
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Okolní tiskárny
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Okolní síť
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Nabídka Start
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Dokumenty
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\Data aplikací
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 13:31 - 2015-08-19 13:31 - 00000000 _SHDL C:\Users\pabuk_000\AppData\Local\Data aplikací
2015-08-19 13:31 - 2015-07-10 12:04 - 00000000 __RSD C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-08-19 13:31 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-19 13:31 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-08-19 13:31 - 2015-07-10 12:04 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-19 13:26 - 2015-09-14 13:21 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-08-19 13:26 - 2015-09-14 13:19 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-08-19 13:26 - 2015-08-19 13:26 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-08-19 13:26 - 2015-08-19 13:26 - 00000000 ____D C:\Program Files\Realtek
2015-08-19 13:26 - 2015-08-19 13:26 - 00000000 ____D C:\Program Files (x86)\USB Camera
2015-08-19 13:25 - 2015-09-14 14:17 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-19 13:25 - 2015-08-25 16:57 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 01062520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-19 13:25 - 2015-08-25 16:57 - 00582448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-08-19 13:25 - 2015-08-25 16:57 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-19 13:25 - 2015-08-25 14:02 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-19 13:25 - 2015-08-19 13:33 - 00000000 ____D C:\Program Files\Intel
2015-08-19 13:25 - 2015-07-30 22:45 - 00072688 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-08-19 13:25 - 2015-07-30 22:45 - 00069104 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-08-19 13:24 - 2015-09-14 14:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-19 13:24 - 2015-08-19 13:33 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-08-19 13:24 - 2015-08-19 13:33 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-08-19 13:21 - 2015-08-19 13:22 - 00035096 _____ C:\WINDOWS\system32\NetSetupMig.log
2015-08-19 13:15 - 2015-08-19 13:15 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-08-19 13:15 - 2015-08-19 13:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-08-19 13:15 - 2015-08-19 13:15 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2015-08-19 13:15 - 2015-08-19 13:15 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-08-19 13:15 - 2015-08-19 13:15 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll

Addition.rar

(10.6 KiB) Staženo 108 x

[Pajinek88]

-------------------------------
Přikládám Log s FRST 2 cast zde
-------------------------------
2015-08-19 13:15 - 2015-08-19 13:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys
2015-08-19 13:15 - 2015-08-19 13:15 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-08-19 13:15 - 2015-08-19 13:15 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-19 13:15 - 2015-08-19 13:15 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-19 13:11 - 2015-08-19 13:11 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-08-19 13:11 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2015-08-19 13:11 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2015-08-19 13:11 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-08-19 13:11 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-08-19 13:11 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-19 13:04 - 2015-08-19 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-08-19 13:04 - 2015-08-19 13:04 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-19 13:04 - 2015-08-19 13:04 - 00000000 ____D C:\Program Files\MSBuild
2015-08-19 13:04 - 2015-08-19 13:04 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-19 13:04 - 2015-08-19 13:04 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-19 13:04 - 2015-06-17 18:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-19 13:04 - 2015-06-17 18:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-19 13:04 - 2015-06-17 18:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-19 13:04 - 2015-05-29 21:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-08-19 13:04 - 2015-05-29 21:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-19 13:04 - 2015-05-29 21:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-17 07:59 - 2015-06-30 17:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-17 07:54 - 2015-07-27 20:12 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-09-17 07:49 - 2015-07-10 17:02 - 00746648 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-17 07:49 - 2015-07-10 17:02 - 00149550 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-17 07:44 - 2015-07-27 19:17 - 00000374 ____H C:\WINDOWS\Tasks\GQSLIUFXMWRJSNFO.job
2015-09-17 07:44 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-17 07:44 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-17 07:44 - 2015-06-26 11:08 - 00000000 ___DO C:\Users\pabuk_000\SkyDrive
2015-09-17 07:43 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-17 07:43 - 2015-07-10 10:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-09-16 15:32 - 2015-07-03 22:24 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\uTorrent
2015-09-16 14:22 - 2015-08-03 14:22 - 00000598 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 5ca09460-739b-4834-91e0-15134cad3a3d.job
2015-09-16 07:18 - 2015-06-26 11:04 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Packages
2015-09-15 15:02 - 2015-07-01 14:04 - 00000000 ____D C:\ProgramData\Temp
2015-09-15 14:55 - 2015-07-27 19:18 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\WTools
2015-09-15 14:49 - 2015-07-27 19:23 - 00002637 _____ C:\WINDOWS\SysWOW64\${LOGFILE}
2015-09-15 14:45 - 2015-08-03 14:15 - 00000000 ____D C:\ProgramData\Spyware Terminator
2015-09-15 12:17 - 2015-08-03 10:17 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\iSpy
2015-09-15 09:34 - 2015-07-20 13:27 - 00003624 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2015-09-15 09:34 - 2015-07-20 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2015-09-15 09:34 - 2015-07-20 13:27 - 00000000 ____D C:\Program Files (x86)\Garmin
2015-09-15 09:34 - 2015-06-29 09:45 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-14 15:16 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-14 15:15 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-14 14:37 - 2015-07-01 13:48 - 00000924 _____ C:\Users\pabuk_000\Desktop\SW Product Key.txt
2015-09-14 14:17 - 2013-06-18 17:59 - 00000000 ____D C:\temp
2015-09-14 14:08 - 2015-07-28 13:50 - 00000000 ____D C:\AdwCleaner
2015-09-14 14:02 - 2015-06-29 08:14 - 00000000 ___RD C:\Users\pabuk_000\Desktop\Ikony
2015-09-14 14:00 - 2015-06-29 23:01 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\IObit
2015-09-14 13:21 - 2015-05-14 12:10 - 00402136 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2015-09-14 13:21 - 2015-05-14 12:10 - 00083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2015-09-14 13:18 - 2015-07-25 08:05 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\TeamViewer
2015-09-14 13:18 - 2015-06-29 11:01 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\CrashDumps
2015-09-14 13:17 - 2015-06-24 22:59 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-09-14 13:17 - 2015-06-24 22:59 - 00184688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-09-14 13:17 - 2015-06-24 22:57 - 04514008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-09-14 13:17 - 2015-06-24 22:57 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-09-14 13:16 - 2015-06-29 23:01 - 00000000 ____D C:\ProgramData\ProductData
2015-09-14 13:16 - 2015-06-29 23:01 - 00000000 ____D C:\ProgramData\IObit
2015-09-14 13:12 - 2015-07-09 14:42 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\ProductData
2015-09-14 13:12 - 2015-07-03 23:26 - 00002838 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-09-14 13:12 - 2015-07-01 18:27 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Apple Computer
2015-09-14 11:51 - 2015-07-28 13:30 - 00001606 _____ C:\ProgramData\tempimage.bmp
2015-09-13 13:54 - 2015-07-01 13:59 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Adobe
2015-09-13 13:54 - 2015-06-30 17:13 - 00003890 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-12 09:35 - 2015-08-03 09:39 - 00000000 ____D C:\Program Files\Common Files\vbsawovq
2015-09-12 09:35 - 2015-08-03 09:39 - 00000000 ____D C:\Program Files\Common Files\3vmaxa3c
2015-09-12 09:12 - 2015-07-10 13:20 - 00342800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-12 09:10 - 2015-07-10 17:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-12 09:10 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-12 09:07 - 2013-08-22 14:36 - 00000000 ____D C:\Users\Default.migrated
2015-09-12 08:36 - 2015-06-29 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2015-09-12 08:34 - 2015-07-01 13:41 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\PTGui
2015-09-12 07:26 - 2015-07-01 13:53 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\krpano
2015-09-11 08:47 - 2015-07-25 08:19 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-11 08:47 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-07 07:02 - 2015-08-03 14:22 - 00000598 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 8bd6cfcd-4b68-4b02-8dc4-b2f446eef4e8.job
2015-09-05 08:31 - 2015-07-01 13:32 - 00000000 ____D C:\ProgramData\Adobe
2015-09-05 08:30 - 2015-07-11 04:15 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Adobe
2015-09-05 08:29 - 2015-06-29 09:34 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-09-05 06:12 - 2015-07-08 01:16 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-09-05 05:59 - 2015-07-08 01:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2015-09-05 05:50 - 2015-07-08 01:05 - 00000000 ____D C:\Program Files\Microsoft Office
2015-09-04 17:40 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-04 17:10 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-04 09:24 - 2015-08-03 14:15 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2015-09-02 14:54 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-30 23:47 - 2015-07-23 04:02 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-27 21:45 - 2015-06-29 10:05 - 00000000 ____D C:\WINDOWS\KJ
2015-08-27 01:37 - 2015-07-13 09:16 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 01:37 - 2015-07-13 09:16 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 01:36 - 2015-07-13 09:16 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 01:36 - 2015-07-13 09:16 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 08:04 - 2015-06-29 09:31 - 00000000 ____D C:\Program Files\Elantech
2015-08-25 19:38 - 2015-07-23 04:02 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 19:38 - 2015-07-23 04:02 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 19:38 - 2015-07-23 04:02 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-22 10:29 - 2015-08-03 09:54 - 00000000 ____D C:\ProgramData\ITHelper
2015-08-20 10:29 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\appcompat
2015-08-19 14:25 - 2015-07-10 17:03 - 00000000 ____D C:\WINDOWS\OCR
2015-08-19 14:21 - 2015-07-08 01:16 - 00000000 ___RD C:\Users\pabuk_000\OneDrive
2015-08-19 14:11 - 2015-07-11 04:17 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\PackageStaging
2015-08-19 14:10 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-08-19 14:10 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-08-19 14:10 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-08-19 14:10 - 2015-07-10 12:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-08-19 14:10 - 2015-06-29 09:44 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-08-19 13:50 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows NT
2015-08-19 13:50 - 2015-07-10 10:05 - 00000000 __RHD C:\Users\Default
2015-08-19 13:49 - 2015-07-11 04:12 - 00022863 _____ C:\WINDOWS\diagwrn.xml
2015-08-19 13:49 - 2015-07-11 04:12 - 00022863 _____ C:\WINDOWS\diagerr.xml
2015-08-19 13:48 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Registration
2015-08-19 13:47 - 2015-08-03 14:22 - 00003776 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 8bd6cfcd-4b68-4b02-8dc4-b2f446eef4e8
2015-08-19 13:47 - 2015-08-03 14:22 - 00003694 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 5ca09460-739b-4834-91e0-15134cad3a3d
2015-08-19 13:47 - 2015-07-27 19:17 - 00003500 _____ C:\WINDOWS\System32\Tasks\GQSLIUFXMWRJSNFO
2015-08-19 13:47 - 2015-07-11 12:18 - 00003442 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2015-08-19 13:47 - 2015-07-11 04:25 - 00003710 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3920955446-1667830888-1854160742-1001
2015-08-19 13:45 - 2015-07-10 12:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-19 13:37 - 2015-08-15 13:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-08-19 13:37 - 2015-08-05 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPCA1528 PC Driver
2015-08-19 13:37 - 2015-08-04 08:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-08-19 13:37 - 2015-08-03 14:22 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-08-19 13:37 - 2015-08-03 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015
2015-08-19 13:37 - 2015-08-03 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-19 13:37 - 2015-08-03 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iSpy
2015-08-19 13:37 - 2015-08-02 09:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2015-08-19 13:37 - 2015-07-25 11:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ophcrack
2015-08-19 13:37 - 2015-07-25 11:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2015-08-19 13:37 - 2015-07-25 10:36 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2015-08-19 13:37 - 2015-07-13 13:46 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kolor Panotour Pro 2.3
2015-08-19 13:37 - 2015-07-13 09:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-08-19 13:37 - 2015-07-13 09:08 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-19 13:37 - 2015-07-13 09:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-19 13:37 - 2015-07-11 12:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-19 13:37 - 2015-07-10 17:05 - 00000000 ____D C:\WINDOWS\ShellNew
2015-08-19 13:37 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-08-19 13:37 - 2015-07-03 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-08-19 13:37 - 2015-07-03 19:52 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kolor Panotour Viewer 1.0
2015-08-19 13:37 - 2015-07-01 21:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-08-19 13:37 - 2015-07-01 17:42 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup
2015-08-19 13:37 - 2015-07-01 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI OneKey Recovery 1.2
2015-08-19 13:37 - 2015-07-01 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-08-19 13:37 - 2015-07-01 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Advisor
2015-08-19 13:37 - 2015-07-01 14:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 14
2015-08-19 13:37 - 2015-07-01 14:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
2015-08-19 13:37 - 2015-07-01 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso 7
2015-08-19 13:37 - 2015-07-01 14:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink LabelPrint 2.5
2015-08-19 13:37 - 2015-07-01 14:12 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Power2Go 9
2015-08-19 13:37 - 2015-07-01 14:11 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-08-19 13:37 - 2015-06-29 10:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-19 13:37 - 2015-06-29 09:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clover
2015-08-19 13:37 - 2015-06-29 09:31 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2015-08-19 13:34 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\spool
2015-08-19 13:34 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-08-19 13:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-08-19 13:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-08-19 13:33 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\InputMethod
2015-08-19 13:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-19 13:33 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-08-19 13:33 - 2015-07-01 15:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-19 13:33 - 2015-07-01 14:13 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink WaveEditor 2
2015-08-19 13:33 - 2015-06-29 09:32 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-19 13:33 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-08-19 13:32 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-08-19 13:32 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2015-08-19 13:28 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-08-19 13:28 - 2015-06-26 10:47 - 00000000 __SHD C:\Recovery
2015-08-19 13:26 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\System
2015-08-19 13:25 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Help
2015-08-19 13:19 - 2015-07-10 12:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-08-19 13:15 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 13:15 - 2015-07-10 12:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 13:15 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2015-08-19 13:15 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-08-19 13:15 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-08-19 13:15 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Provisioning
2015-08-19 13:15 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2015-08-19 13:15 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-08-19 13:04 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-08-19 13:04 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-08-19 12:28 - 2014-05-16 09:36 - 00008192 __RSH C:\BOOTSECT.BAK
2015-08-19 12:18 - 2015-07-25 11:10 - 00000000 ____D C:\Users\pabuk_000\.VirtualBox

==================== Files in the root of some directories =======

2015-08-03 09:54 - 2015-08-03 09:54 - 3399702 _____ (Dongphase) C:\Program Files\Common Files\mrypcb4k.exe
2015-08-03 09:54 - 2015-08-03 09:54 - 3399702 _____ (Dongphase) C:\Program Files\Common Files\ybzgxdwd.exe
2015-09-14 14:10 - 2015-09-14 14:14 - 0001266 _____ () C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.boostrap.log
2015-09-12 08:21 - 2015-09-14 14:13 - 0011475 _____ () C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.installation.log
2015-09-12 08:22 - 2015-09-14 14:13 - 0000156 _____ () C:\Users\pabuk_000\AppData\Roaming\Selection Tools.installation.log
2015-09-12 08:21 - 2015-09-14 14:10 - 0000194 _____ () C:\Users\pabuk_000\AppData\Roaming\WindApp.boostrap.log
2015-09-12 08:22 - 2015-09-14 14:13 - 0000156 _____ () C:\Users\pabuk_000\AppData\Roaming\WindApp.installation.log
2015-09-12 08:58 - 2015-09-12 08:58 - 0613255 _____ (CMI Limited) C:\Users\pabuk_000\AppData\Local\nso9E14.tmp
2015-07-03 20:36 - 2015-07-03 22:55 - 0000600 _____ () C:\Users\pabuk_000\AppData\Local\PUTTY.RND
2015-07-09 14:06 - 2015-07-09 14:06 - 0007597 _____ () C:\Users\pabuk_000\AppData\Local\Resmon.ResmonCfg
2015-08-19 13:26 - 2015-08-19 13:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-07-28 13:43 - 2015-07-28 13:44 - 0083501 _____ () C:\ProgramData\JkWKrN2T.dat
2015-07-28 13:30 - 2015-09-14 11:51 - 0001606 _____ () C:\ProgramData\tempimage.bmp

Files to move or delete:
====================
C:\ProgramData\JkWKrN2T.dat


Some files in TEMP:
====================
C:\Users\pabuk_000\AppData\Local\Temp\DRHelper_installFinish.exe
C:\Users\pabuk_000\AppData\Local\Temp\DRHelper_installStart.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-14 19:12

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:78.63 GB) (Free:24.02 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:596.49 GB) (Free:323.43 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive g: (Downloands) (Fixed) (Total:255.26 GB) (Free:60.68 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:0.34 GB) (Free:0.33 GB) NTFS

Available physical RAM: 5561.22 MB
Total physical RAM: 8053.6 MB
Percentage of memory in use: 30%

==================== MBR and Partition Table ==================

AlternateDataStreams: C:\Users\pabuk_000\Desktop\resizey_vert.png:com.dropbox.attributes
Disk: 0 (Size: 931.5 GB) (Disk ID: 9ED40981)
Partition 1: (Not Active) - (Size=349 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=78.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=596.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=256 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GLJGHEPCNHSTLKGR.job => C:\ProgramData\Service7609\Service7609.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3920955446-1667830888-1854160742-1001Core.job => C:\Users\pabuk_000\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3920955446-1667830888-1854160742-1001UA.job => C:\Users\pabuk_000\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GQSLIUFXMWRJSNFO.job => C:\ProgramData\Service1198\Service1198.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 5ca09460-739b-4834-91e0-15134cad3a3d.job => F:\Antiviry, spywery, firewall\portable\Antispy\SASTask.exerF:\Antiviry, spywery, firewall\portable\Antispy\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 8bd6cfcd-4b68-4b02-8dc4-b2f446eef4e8.job => F:\Antiviry, spywery, firewall\portable\Antispy\SASTask.exerF:\Antiviry, spywery, firewall\portable\Antispy\SUPERAntiSpyware.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\pabuk_000\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\pabuk_000\Desktop\resizey_vert.png:com.dropbox.attributes

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\pabuk_000\Desktop" je 469 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

[Pajinek88]

Ahoj,
Prosím Prosím To mi nikdo nepomůže tady .

[altrok]

Krasny den Vam preju



V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

• ukoncete vsechny programy
• kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
• kliknete na Scan, pote na Cleaning
• po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

[Pajinek88]

Moc se omlouvá že to tak trvalo, teď už to půjde rychlejí.
# AdwCleaner v5.008 - Logfile created 22/09/2015 at 11:38:02
# Updated 18/09/2015 by Xplode
# Database : 2015-09-20.1 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : pabuk_000 - LENOVO-Z500
# Running from : C:\Users\pabuk_000\Desktop\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : sp_rsdrv2
[-] Service Deleted : ppfd_vw_1_10_0_21

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Super Optimizer
[-] Folder Deleted : C:\Program Files (x86)\Exploremedia
[-] Folder Deleted : C:\Program Files (x86)\AD5257FE-1442042670-E211-A312-2089849AE681
[-] Folder Deleted : C:\Program Files\Common Files\Goobzo
[-] Folder Deleted : C:\ProgramData\PlayGemConfig
[-] Folder Deleted : C:\ProgramData\productdata
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Optimizer
[-] Folder Deleted : C:\Users\pabuk_000\AppData\Local\BrowserAir
[-] Folder Deleted : C:\Users\pabuk_000\AppData\LocalLow\SmartWeb
[-] Folder Deleted : C:\Users\pabuk_000\AppData\Roaming\Nosibay
[-] Folder Deleted : C:\Users\pabuk_000\AppData\Roaming\Store
[-] Folder Deleted : C:\Users\pabuk_000\AppData\Roaming\WTools
[-] Folder Deleted : C:\Users\pabuk_000\AppData\Roaming\productdata

***** [ Files ] *****

[-] File Deleted : C:\claraInstaller.txt
[-] File Deleted : C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nociobghckdhokecfeajdpimjeapnopn_0.localstorage
[-] File Deleted : C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_adpeheiliennogfclcgmchdfdmafjegc_0.localstorage
[-] File Deleted : C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.boostrap.log
[-] File Deleted : C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.installation.log
[-] File Deleted : C:\Users\pabuk_000\AppData\Roaming\Selection Tools.installation.log
[-] File Deleted : C:\Users\pabuk_000\AppData\Roaming\WindApp.boostrap.log
[-] File Deleted : C:\Users\pabuk_000\AppData\Roaming\WindApp.installation.log
[-] File Deleted : C:\Users\pabuk_000\Desktop\Super Optimizer.lnk
[-] File Deleted : C:\WINDOWS\Sysnative\acengine64.dll
[-] File Deleted : C:\WINDOWS\Sysnative\drivers\ppfd_vw_1_10_0_21.sys
[-] File Deleted : C:\WINDOWS\Sysnative\drivers\wsafd_1_10_0_19.sys

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : PostPoneInstall
[-] Task Deleted : Run_Bobby_Browser
[-] Task Deleted : LaunchPreSignup
[-] Task Deleted : SushiLeads
[-] Task Deleted : WordSurfer Auto Updater 1.10.0.19 Pending Update
[-] Task Deleted : WordSurfer Auto Updater 1.10.0.19 Core
[-] Task Deleted : crash_service
[-] Task Deleted : PhraseProfessor Auto Updater 1.10.0.21 Core
[-] Task Deleted : PhraseProfessor Auto Updater 1.10.0.21 Pending Update

***** [ Registry ] *****

[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Super Optimizer]
[-] Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [CrashService]
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\acwfp
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}
[-] Key Deleted : HKCU\Software\eSupport.com
[-] Key Deleted : HKCU\Software\Nosibay
[-] Key Deleted : HKCU\Software\Store
[-] Key Deleted : HKCU\Software\DriverRestore
[-] Key Deleted : HKCU\Software\BoBrowser
[-] Key Deleted : HKCU\Software\WTools
[-] Key Deleted : HKCU\Software\Super Optimizer
[-] Key Deleted : HKCU\Software\Crossbrowse
[-] Key Deleted : HKCU\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
[-] Key Deleted : HKCU\Software\MyBrowser
[-] Key Deleted : HKCU\Software\OB
[-] Key Deleted : HKCU\Software\AppDataLow\Software\SmartWeb
[-] Key Deleted : HKCU\Software\AppDataLow\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
[-] Key Deleted : HKLM\SOFTWARE\Clara
[-] Key Deleted : HKLM\SOFTWARE\LolliScan
[-] Key Deleted : HKLM\SOFTWARE\Hades
[-] Key Deleted : HKLM\SOFTWARE\{AA2C4D29-36C3-48AB-8A25-181CF7483597}
[-] Key Deleted : HKLM\SOFTWARE\downchecker
[-] Key Deleted : HKLM\SOFTWARE\BrowserAir
[-] Key Deleted : HKLM\SOFTWARE\PlayGem
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Super Optimizer_is1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SU
[!] Key Not Deleted : [x64] HKCU\Software\eSupport.com
[!] Key Not Deleted : [x64] HKCU\Software\Nosibay
[!] Key Not Deleted : [x64] HKCU\Software\Store
[!] Key Not Deleted : [x64] HKCU\Software\DriverRestore
[!] Key Not Deleted : [x64] HKCU\Software\BoBrowser
[!] Key Not Deleted : [x64] HKCU\Software\WTools
[!] Key Not Deleted : [x64] HKCU\Software\Super Optimizer
[!] Key Not Deleted : [x64] HKCU\Software\Crossbrowse
[!] Key Not Deleted : [x64] HKCU\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
[!] Key Not Deleted : [x64] HKCU\Software\MyBrowser
[!] Key Not Deleted : [x64] HKCU\Software\OB
[-] Key Deleted : [x64] HKLM\SOFTWARE\WebBar
[-] Key Deleted : [x64] HKLM\SOFTWARE\LolliScan
[!] Key Not Deleted : HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\Software\AppDataLow\Software\SmartWeb
[!] Key Not Deleted : HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\Software\AppDataLow\Software\{3BDFD1D7-7A9B-4D29-80B3-D00E66E62885}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D2780AD2-CFE8-4E0B-8469-37CB347A4C0B}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D2780AD2-CFE8-4E0B-8469-37CB347A4C0B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[!] Key Not Deleted : HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\Software\Microsoft\Internet Explorer\SearchScopes\{D2780AD2-CFE8-4E0B-8469-37CB347A4C0B}

***** [ Web browsers ] *****

[-] [C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://start.iminent.com/?appId=f8ad5087-5ed3-4d70-a6c7-5cc4a8364f35
[-] [C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider_Data] Deleted : hxxp://start.iminent.com/?appId=f8ad5087-5ed3-4d70-a6c7-5cc4a8364f35&ref=toolbox&q={searchTerms}
[-] [C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://start.iminent.com/?appId=f8ad5087-5ed3-4d70-a6c7-5cc4a8364f35

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [7277 bytes] ##########

[altrok]

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=144868

• Upozorneni: tento sken zabere od 30 minut po nekolik hodin

[Pajinek88]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 22.09.2015
Čas skenování: 15:10
Protokol: mbam.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.22.05
Databáze rootkitů: v2015.09.18.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: pabuk_000

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 927141
Uplynulý čas: 4 hod, 44 min, 47 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Varovat
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 15
PUP.Optional.Deskbar, HKLM\SOFTWARE\MICROSOFT\TRACING\DeskBar_RASAPI32, , [2cc129096724e3533f5dd2020ef6946c],
PUP.Optional.Deskbar, HKLM\SOFTWARE\MICROSOFT\TRACING\DeskBar_RASMANCS, , [f9f48ca65d2e80b67a22a72df113d030],
PUP.Optional.WombatUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\SERVICE1198.EXE, , [ad401b17a4e73204b88de7e2f311f010],
PUP.Optional.FastSearch, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\cfr3011, , [2cc1b47e4843b38377e1ecaecb39c63a],
PUP.Optional.Linkury, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Stpro.exe, , [e40975bde0ab87affb50b1234db7837d],
PUP.Optional.PhraseProfessor, HKLM\SOFTWARE\WOW6432NODE\PhraseProfessor_1.10.0.21, , [36b75ad84b40ff37a2175c5526de27d9],
PUP.Optional.WordSurfer, HKLM\SOFTWARE\WOW6432NODE\WordSurfer_1.10.0.19, , [b5383bf77a11cf6759260dbc5ca808f8],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\SpeedCheckerService_RASAPI32, , [d31a3df546451422b1f0d2022fd505fb],
PUP.Optional.PCSpeedUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\SpeedCheckerService_RASMANCS, , [21cc7fb3b8d3e2540998c113f410a957],
PUP.Optional.SushiLeads, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\SushiLeadsApplication_RASAPI32, , [2ac35bd7cbc0171f3b2b9f21bb490bf5],
PUP.Optional.SushiLeads, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\SushiLeadsApplication_RASMANCS, , [12db6bc7701bb383acbaa11f3aca758b],
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\APP PATHS\Stpro.exe, , [dd10052d7219979f66e5bd1763a1aa56],
PUP.Optional.Nosibay, HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\SOFTWARE\Nosibay, , [e508042ea4e7300640dc3c7328dc28d8],
PUP.Optional.WindApp, HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\SOFTWARE\STORE\WindApp Tag, , [688511216724af87dde85b6d8a7a17e9],
PUP.Optional.SelectionTool, HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\SOFTWARE\WTOOLS\Selection Tools Tag, , [f4f90b27f29940f6c9a2c7f37b8926da],

Hodnoty registru: 3
PUP.Optional.WombatUpdater, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\Service1198.exe|{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb, 130824946555566898, , [ad401b17a4e73204b88de7e2f311f010]
PUP.Optional.WindApp, HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|WindApp, "C:\Users\pabuk_000\AppData\Roaming\Store\WindApp\WindApp.exe" /winstartup, , [31bc46ec83084fe7c5fe2b9d64a02dd3]
PUP.Optional.SelectionTools, HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Selection Tools, "C:\Users\pabuk_000\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe" /winstartup, , [c825c36fc6c5b38382f6c5f50bf9b24e]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 2
PUP.Optional.WombatService, C:\ProgramData\Service7609, , [9c514ee4276457dfe55e953447bdd22e],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Roaming\Nosibay, , [ba3368ca4744b4828320f32e689b7f81],

Soubory: 54
PUP.Optional.PrxySvrRST, C:\WINDOWS\SYSTEM32\drivers\ywiwm2j2znmybdf.sys, , [2c06faab280778dd666f80cd527e429e],
RiskWare.Hack, C:\$Recycle.Bin\S-1-5-21-3920955446-1667830888-1854160742-1001\$R6ARIHV.zip, , [29c441f17912092d2ebff3a23ec4c43c],
PUP.Optional.OptimizerPro, C:\AdwCleaner\Quarantine\C\Program Files (x86)\Super Optimizer\SuperOptimizer.exe.vir, , [ac411a18e6a5102649df2d655ea3f50b],
PUP.Optional.BrowserAir, C:\AdwCleaner\Quarantine\C\Users\pabuk_000\AppData\Local\BrowserAir\Application\Updater.exe.vir, , [de0f48ea345763d3eabd9812c93c1ce4],
PUP.Optional.Winsock.HijackBoot, C:\AdwCleaner\Quarantine\C\WINDOWS\Sysnative\acengine64.dll.vir, , [1bd26ac8e0ab83b3bd8aa62922df4eb2],
PUP.Optional.PhraseProfessor, C:\AdwCleaner\Quarantine\C\WINDOWS\Sysnative\drivers\ppfd_vw_1_10_0_21.sys.vir, , [1ecf38fa3c4f68cef980fcafb74e966a],
PUP.Optional.WordSurfer, C:\AdwCleaner\Quarantine\C\WINDOWS\Sysnative\drivers\wsafd_1_10_0_19.sys.vir, , [1cd164cec2c9310526caf3b85aabf10f],
PUP.Optional.AnyProtect, C:\Users\pabuk_000\AppData\Local\nso9E14.tmp, , [6a839d95513a3bfb7638addfd032ad53],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\JHQAI7SV\downloader.63399[1].exe, , [34b944eebad102345713604bee17cf31],
PUP.Optional.BubbleDock, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\OQD6T2TC\Install_BubbleDock[1].exe, , [f0fdc0726c1fbf7776ba02b856ab867a],
PUP.Optional.BubbleDock, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\OQD6T2TC\63100.Bubble_Dock.BBD023.no[1].exe, , [30bdc86a4843251193c91ca706fb1de3],
PUP.Optional.WebBar, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\WB0HQ9AD\Web_Bar_Setup_2.0.5659.26749_3e16a056d[1].exe, , [995484ae24670531825f78487d840000],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\WB0HQ9AD\62793.WindApp.MON001.no[1].exe, , [c924fb3754379b9bda9001aa36cf748c],
PUP.Optional.SuperOptimizer, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\WB0HQ9AD\SuperOptimizer[1].exe, , [935ac76bf992072fc788546c21e032ce],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\IE\WJ61Y4I5\63439.Selection_Tools.ALT001.no[1].exe, , [7a7361d16328bb7b53174368ec1917e9],
PUP.Optional.SuperOptimizer, C:\Users\pabuk_000\AppData\Local\Temp\supoptsetup.exe, , [c32a8da50d7e1d19fd51e6da09f85ba5],
RiskWare.Hack, C:\Users\pabuk_000\AppData\Local\Temp\Maxthon3Cache\Temp\Webkit\FSProfile\File System\000\t\00\00000000, , [2ebff14148433501a6474055cc363ec2],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Local\Temp\2292015142917\Bubble Dock Uninstall.exe, , [07e6ad85fc8fb77f8bdfacff61a4d32d],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Local\Temp\2292015143050\Selection Tools Uninstall.exe, , [7b72ab8797f43402c4a65853ab5add23],
PUP.Optional.Nosibay, C:\Users\pabuk_000\AppData\Local\Temp\2292015143134\WindApp Uninstall.exe, , [2bc25cd6dead5ed8fe6c1f8c50b5d52b],
PUP.Optional.InstallCore, D:\Downloads\total_speech.exe, , [15d8de54eba068ce26c38557e819936d],
PUP.Optional.InstallCore, D:\Downloads\voicemate_professional.exe, , [07e654de701bc86e9c4d36a655acf40c],
RiskWare.Tool.CK, D:\Hudba\milašek\legalizator xp.rar, , [5f8ed2600d7e73c322e86ead18eaf10f],
PUP.RiskWare.Tool.CK, D:\Instalačky programu\Adobe\Adobe Dreamweaver CS6 CZ\amtlib.dll\32bit\amtlib.dll, , [06e73af8c9c25ed8bc0e524efc061fe1],
PUP.RiskWare.Tool.CK, D:\Instalačky programu\Adobe\Adobe Dreamweaver CS6 CZ\amtlib.dll\original\amtlib.dll, , [dd10c66c3b501f179832fea241c1fe02],
Malware.Gen, D:\Instalačky programu\Adobe\Adobe Flash Professional CS5 Windows LS6 (CZ)\Keymaker-EMBRACE.zip, , [e20b1a18820983b31e7ff977649ccf31],
Malware.Gen, D:\Instalačky programu\Adobe\Adobe Flash Professional CS5 Windows LS6 (CZ)\Keymaker-EMBRACE\Adobe.Flash.Professional.CS5.Keymaker-EMBRACE.exe, , [45a81b176b20bb7baaf3b3bd5ca403fd],
PUP.RiskWare.Tool.CK, D:\Instalačky programu\Adobe\Adobe Illustrator CS6\DLL FILE\32bit\amtlib.dll, , [9459062c4d3e67cf36946f31a95941bf],
PUP.RiskWare.Tool.CK, D:\Instalačky programu\Adobe\Adobe Illustrator CS6\DLL FILE\64bit\amtlib.dll, , [18d56bc7e4a7be7837bcdfc1fe04a957],
CrackTool.Agent, D:\Instalačky programu\virtualky\sw inst\viktor sw\Adobe-Dreamweaver-CS6-+-crack\Adobe Dreamweaver CS6\C.R. Patch\Adobe CS6 Multi Product Activator [C.R.].zip, , [41ace84aee9dff37719500f009f7b14f],
CrackTool.Agent, D:\Instalačky programu\virtualky\sw inst\viktor sw\Adobe-Dreamweaver-CS6-+-crack\Adobe Dreamweaver CS6\C.R. Patch\Adobe CS6 All Products Activator Method\Adobe CS6 Activator.zip, , [03ea7bb7692281b5d92d539dff016a96],
PUP.RiskWare.Tool.CK, D:\Instalačky programu\virtualky\sw inst\viktor sw\Adobe-Dreamweaver-CS6-+-crack\Adobe Dreamweaver CS6\C.R. Patch\Keygen Method\Keygen.zip, , [42ab83af8dfe4ee8eaed4680ef128a76],
PUP.RiskWare.Patcher, D:\Instalačky programu\drivery updates\Patch.rar, , [eeffee4414775adc8b139318659c926e],
PUP.Optional.DriverReviver, D:\Instalačky programu\drivery updates\Driver Reviver [CrackerMK C]\DriverReviverSetup.exe, , [fbf29f93cfbce056820ad2e9d52ccd33],
PUP.Optional.DriverReviver, D:\Instalačky programu\drivery updates\Driver Reviver [CrackerMK C]\Crack 32-bit • [CrackerMK C]\DriverReviver.exe, , [896466cced9e49ede3a9922912ef55ab],
PUP.RiskWare.Patcher, D:\Instalačky programu\drivery updates\Patch\Patch.exe, , [ab42c76b1f6c55e1bfdfc4e7af5247b9],
Trojan.Dropper.SFX, D:\Programky\Activace win 8\Activator\P8_v25.exe, , [7d70cb67cfbc5ed8e31014fad233946c],
PUP.RiskWare.Tool.CK, D:\Programky\Adobe\Adobe Dreamweaver CS6\amtlib.dll, , [f4f965cd355646f0e40f237d5ba76d93],
PUP.RiskWare.Tool.CK, D:\Programky\Adobe\Adobe Dreamweaver CS6\Adobe Dreamweaver CS6\amtlib.dll, , [d617171b67242412d3f7544c2ed4619f],
PUP.RiskWare.Tool.CK, D:\Programky\Adobe\Adobe Illustrator CS6 (64 Bit)\Support Files\Contents\Windows\amtlib.dll, , [ac41989ab7d45ed80be83b653ec4e41c],
PUP.RiskWare.Tool.CK, D:\Programky\Adobe\Adobe Photoshop CS6 (64 Bit)\amtlib.dll, , [c92431012a6126104ca7f3ad31d1fc04],
PUP.Optional.APNToolBar, D:\Programky\FormatFactory\FFModules\Package\Ask\AskPIP_FF_.exe, , [bd30ac861f6ca393dffe645520e115eb],
PUP.Optional.APNToolBar, D:\Programky\Avira\AntiVir Desktop\offercast_avirav7_.exe, , [f2fb240e5e2df145deffc1f821e07b85],
PUP.Optional.Acengine, C:\Windows\Temp\acengine.log, , [d81567cb4447c76f37689bea6d977b85],
PUP.Optional.BubbleDock, C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.boostrap.log, , [6e7fd85acebdb5812690612bd92b6a96],
PUP.Optional.BubbleDock, C:\Users\pabuk_000\AppData\Roaming\Bubble Dock.installation.log, , [d7169f93593270c6892da8e4ef15ba46],
PUP.Optional.BubbleDock, C:\Users\pabuk_000\AppData\Local\Temp\Bubble Dock.txt, , [06e777bbed9efb3bf6c28903b74d2dd3],
PUP.Optional.BubbleDock, C:\Users\pabuk_000\AppData\Local\Temp\LBubble Dock.txt, , [cf1e92a0e3a8fd39209ad0bc0ef6c43c],
PUP.Optional.SearchModule, C:\Windows\Temp\SM_cache_firefox.exe.cache, , [a54863cfaae1fc3a7893edcca163d828],
PUP.Optional.SelectionTools, C:\Users\pabuk_000\AppData\Roaming\Selection Tools.installation.log, , [8c615cd6f19ae5511c58f9c19470a15f],
PUP.Optional.WindApp, C:\Users\pabuk_000\AppData\Roaming\WindApp.boostrap.log, , [4e9f3bf78b003ff70bb7f5d354b05ca4],
PUP.Optional.WindApp, C:\Users\pabuk_000\AppData\Roaming\WindApp.installation.log, , [0ae399994942c472ebd72b9db94b956b],
PUP.Optional.WombatService, C:\ProgramData\Service7609\Service7609.exe, , [9c514ee4276457dfe55e953447bdd22e],
PUP.Optional.WombatUpdater, C:\Windows\AppPatch\Custom\{a53dd3e5-0283-4ab3-b77c-7bd1bc7550c6}.sdb, , [c8253ff3008b40f62e16ac1dbb498f71],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[altrok]

Vsechny nalezy smazte/presunte do karanteny.


Je tento operacni system legalni?


Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

[Pajinek88]

win 8.1 legalní nebyl win 10 mi nabidl sám ale pořad to asi není uplně legalní jelikož jsem provádl aktivaci. ale tak mám to doma že

log is here
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
Ran by pabuk_000 (administrator) on LENOVO-Z500 (23-09-2015 08:06:35)
Running from C:\Users\pabuk_000\Desktop
Loaded Profiles: pabuk_000 (Available Profiles: pabuk_000)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "D:\Programky\Maxthon\Bin\Maxthon.exe" "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Crawler Group) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Maxthon) D:\Programky\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(CyberLink) D:\Programky\Cyberlink\Power2Go9\Power2Go9\CLMLSvc_P2G9.exe
(Apple Inc.) D:\Programky\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\MSOSYNC.EXE
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Maxthon International ltd.) D:\Programky\Maxthon\Bin\Maxthon.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(forum.viry.cz) C:\Users\pabuk_000\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16464_none_116100d161f6ab1d\TiWorker.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-09-14] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634872 2015-08-27] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [5473104 2015-09-03] (Crawler Group, LLC)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3743648 2015-08-26] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Vimicro)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [CLMLServer_For_P2G9] => D:\Programky\Cyberlink\Power2Go9\Power2Go9\CLMLSvc_P2G9.exe [110344 2014-07-08] (CyberLink)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => D:\Programky\iTunes\iTunesHelper.exe [157456 2015-09-15] (Apple Inc.)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [Zoner Photo Studio Autoupdate] => D:\Programky\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\...\Run: [CCleaner Monitoring] => D:\Programky\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403192 2015-09-11] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176904 2015-08-25] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{04daeeda-b352-4d20-b011-bb6aa1a7526c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4d4c7315-c436-4a7e-9524-376c11820ab4}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{f89c8e53-6781-4c55-a3fd-5635c82780d8}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1

Internet Explorer:
==================
HKU\S-1-5-21-3920955446-1667830888-1854160742-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2015-07-29] (Crawler Group, LLC)
BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2015-07-29] (Crawler Group, LLC)
BHO-x32: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2015-09-05] (Microsoft Corporation)
Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll [2015-07-08] (AO Kaspersky Lab)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2015-09-05] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default
FF NewTab: about:blank
FF DefaultSearchEngine: Bing®
FF SelectedSearchEngine: Bing®
FF Homepage: about:blank
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_185.dll [2015-09-22] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2015-09-05] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll [2015-09-22] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> D:\Programky\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2015-09-05] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> D:\Programky\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-04-22] (Microsoft Corporation)
FF SearchPlugin: C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default\searchplugins\bing-lavasoft.xml [2015-09-13]
FF Extension: Advanced SystemCare Surfing Protection - C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default\Extensions\iobitascsurfingprotection@iobit.com [2015-09-14]
FF Extension: Text to Voice - C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\w284ln9k.default\Extensions\text2voice@vik.josh.xpi [2015-07-09]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox
FF Extension: Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\FFExt\light_plugin_firefox [2015-09-14]
FF Extension: No Name - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\FFExt\light_plugin_firefox [not found]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Profile: C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-09]
CHR Extension: (Dokumenty Google) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-09]
CHR Extension: (Disk Google) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-09]
CHR Extension: (YouTube) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-09]
CHR Extension: (Norton Security Toolbar) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2015-07-09]
CHR Extension: (Vyhledávání Google) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-09]
CHR Extension: (Tabulky Google) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-09]
CHR Extension: (Norton Identity Safe) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-07-09]
CHR Extension: (Peněženka Google) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-09]
CHR Extension: (SpeakIt!) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgeolalilifpodheeocdmbhehgnkkbak [2015-07-09]
CHR Extension: (Gmail) - C:\Users\pabuk_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-09]
CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/deta ... ihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - https://chrome.google.com/webstore/deta ... ihfajigkka
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP16.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000 2015-08-21] (Kaspersky Lab ZAO)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2826328 2015-08-30] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; D:\Programky\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [135072 2015-08-26] (ELAN Microelectronics Corp.)
S3 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [762272 2015-09-11] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155192 2015-08-27] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328608 2015-07-30] (Intel Corporation)
R2 MaxthonUpdateSvc; D:\Programky\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1871784 2015-09-16] (Maxthon)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1872504 2015-08-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544568 2015-08-27] (NVIDIA Corporation)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3037520 2015-07-29] (Crawler Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
S2 UnsignedThemes; C:\WINDOWS\unsignedthemes.exe [13824 2013-09-23] (The Within Network, LLC) [File not signed]
S3 vssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe [144640 2015-07-09] (AO Kaspersky Lab)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 CLVirtualBus01; C:\Windows\System32\drivers\CLVirtualBus01.sys [103176 2014-03-12] (CyberLink)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-09-22] (Disc Soft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-09-14] (REALiX(tm))
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-22] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [70512 2015-06-27] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [68280 2015-06-06] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [171192 2015-06-30] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [227000 2015-07-04] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [937656 2015-06-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39608 2015-06-11] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [41656 2015-06-06] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [30392 2015-06-08] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [78008 2015-06-26] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [102584 2015-06-16] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [187056 2015-06-23] (Kaspersky Lab ZAO)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-09-14] (Intel Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19576 2015-08-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [50472 2015-08-11] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-09-14] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402136 2015-09-14] (Realsil Semiconductor Corporation)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S2 uxstyle; C:\WINDOWS\system32\Drivers\uxstyle.sys [31440 2013-09-23] (The Within Network, LLC)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Vimicro Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
S1 ywiwm2j2znmybdf; system32\drivers\ywiwm2j2znmybdf.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-23 08:06 - 2015-09-23 08:06 - 00023194 _____ C:\Users\pabuk_000\Desktop\FRST.txt
2015-09-23 08:01 - 2015-09-23 08:01 - 00016148 _____ C:\WINDOWS\system32\LENOVO-Z500_pabuk_000_HistoryPrediction.bin
2015-09-23 00:29 - 2015-09-23 00:29 - 00011631 _____ C:\Users\pabuk_000\Desktop\mbam.txt
2015-09-22 15:06 - 2015-09-22 15:07 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-22 15:06 - 2015-09-22 15:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-22 15:06 - 2015-09-22 15:07 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-22 15:06 - 2015-06-18 09:48 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-22 15:06 - 2015-06-18 09:47 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-22 15:06 - 2015-06-18 09:47 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-22 14:28 - 2015-09-22 14:31 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\WTools
2015-09-22 14:28 - 2015-09-22 14:31 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Store
2015-09-22 11:32 - 2015-09-23 08:05 - 00065536 _____ C:\WINDOWS\system32\edb.log
2015-09-22 11:32 - 2015-09-23 08:05 - 00008192 _____ C:\WINDOWS\system32\edb.chk
2015-09-22 11:32 - 2015-09-22 11:32 - 00065536 _____ C:\WINDOWS\system32\edbtmp.log
2015-09-22 11:32 - 2015-09-22 11:32 - 00065536 _____ C:\WINDOWS\system32\edbres00002.jrs
2015-09-22 11:32 - 2015-09-22 11:32 - 00065536 _____ C:\WINDOWS\system32\edbres00001.jrs
2015-09-22 11:23 - 2015-09-22 11:23 - 01662976 _____ C:\Users\pabuk_000\Desktop\adwcleaner_5.008.exe
2015-09-22 11:22 - 2015-09-22 11:22 - 00000000 ___HD C:\OneDriveTemp
2015-09-22 11:07 - 2015-09-22 11:07 - 00000000 __SHD C:\found.000
2015-09-22 09:38 - 2015-09-22 10:55 - 00000000 __RHD C:\ESD
2015-09-22 09:37 - 2015-09-22 09:37 - 01483336 _____ (Microsoft Corporation) C:\Users\pabuk_000\Desktop\mediacreationtool.exe
2015-09-22 09:27 - 2015-09-22 09:53 - 3852142592 _____ C:\Users\pabuk_000\Desktop\en_windows_8_1_pro_vl_x64_dvd_2971948.iso
2015-09-22 09:22 - 2015-09-22 09:22 - 01095461 _____ (pendrivelinux.com) C:\Users\pabuk_000\Desktop\Universal-USB-Installer-1.9.5.2.exe
2015-09-22 08:57 - 2015-09-22 08:57 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Disc_Soft_Ltd
2015-09-22 08:56 - 2015-09-22 08:58 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
2015-09-22 08:56 - 2015-09-22 08:57 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2015-09-22 07:51 - 2015-09-22 08:09 - 00000000 ____D C:\Users\pabuk_000\Desktop\notebook HP
2015-09-19 09:33 - 2015-09-22 14:36 - 00003328 _____ C:\WINDOWS\setupact.log
2015-09-19 09:33 - 2015-09-19 09:33 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-17 08:30 - 2015-09-17 08:30 - 00001583 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-09-17 08:30 - 2015-09-17 08:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-09-17 08:28 - 2015-09-17 08:28 - 00000000 ____D C:\WINDOWS\System32\Tasks\Apple
2015-09-17 08:02 - 2015-09-17 08:20 - 00010851 _____ C:\Users\pabuk_000\Desktop\Addition.rar
2015-09-17 07:52 - 2015-09-23 08:06 - 00000000 ____D C:\FRST
2015-09-17 07:49 - 2015-09-17 07:49 - 00112640 _____ (forum.viry.cz) C:\Users\pabuk_000\Desktop\FRSTLauncher.exe
2015-09-17 07:48 - 2015-09-17 07:48 - 02191360 _____ (Farbar) C:\Users\pabuk_000\Desktop\FRST64.exe
2015-09-17 07:43 - 2015-09-23 08:00 - 00013434 _____ C:\WINDOWS\PFRO.log
2015-09-16 15:31 - 2014-11-24 22:09 - 00020872 _____ (Phoenix Technologies) C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS
2015-09-16 07:27 - 2015-09-16 07:27 - 00000000 ___RD C:\Users\pabuk_000\3D Objects
2015-09-16 07:14 - 2015-09-16 07:14 - 00003674 _____ C:\WINDOWS\System32\Tasks\Maxthon Update
2015-09-16 07:14 - 2015-09-16 07:14 - 00000781 _____ C:\Users\Public\Desktop\Maxthon Cloud Browser.lnk
2015-09-16 07:14 - 2015-09-16 07:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxthon Cloud Browser
2015-09-15 16:17 - 2015-09-23 08:01 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-14 15:16 - 2015-09-14 15:16 - 00002182 _____ C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
2015-09-14 15:16 - 2015-09-14 15:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2015-09-14 15:15 - 2015-09-14 15:15 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2015-09-14 15:15 - 2015-07-04 02:18 - 00227000 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2015-09-14 15:15 - 2015-06-30 01:05 - 00937656 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2015-09-14 15:15 - 2015-06-30 01:05 - 00171192 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys
2015-09-14 15:15 - 2013-05-06 08:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2015-09-14 14:54 - 2015-09-14 14:54 - 01917824 _____ (Kaspersky Lab) C:\Users\pabuk_000\Desktop\kav16.0.0.614acs_8658.exe
2015-09-14 14:50 - 2015-09-14 14:50 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2015-09-14 14:16 - 2015-08-30 23:47 - 00040264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-09-14 14:16 - 2015-08-25 19:38 - 42840184 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 22559352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 18569336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 17932648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 16646624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 15630616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 15334976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 14945552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 13667032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 12611824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 12192048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 02354808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 02105976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01178576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 01001440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00945272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00787200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00632848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00408368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00387536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00364152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00316120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00155976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-14 14:16 - 2015-08-25 19:38 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-14 14:11 - 2015-08-11 05:52 - 00069416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-14 13:21 - 2015-09-14 13:21 - 09890008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2015-09-14 13:21 - 2015-09-14 13:21 - 00895256 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2015-09-14 13:21 - 2015-09-14 13:21 - 00091272 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2015-09-14 13:19 - 2015-09-14 13:19 - 00000000 ____D C:\WINDOWS\system32\DAX2
2015-09-14 13:17 - 2015-09-14 13:17 - 72113152 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-09-14 13:17 - 2015-09-14 13:17 - 35222128 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-09-14 13:17 - 2015-09-14 13:17 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 07087448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 06255888 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 03234520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 03195416 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 02918104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 02702552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-09-14 13:17 - 2015-09-14 13:17 - 02461528 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01933584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01749208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 01310936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00944984 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00631000 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00560328 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00349968 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00349528 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00298768 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00184608 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2015-09-14 13:17 - 2015-09-14 13:17 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-09-14 13:17 - 2015-09-14 13:17 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-09-14 13:12 - 2015-09-14 13:12 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-09-14 13:12 - 2015-09-14 13:12 - 00003084 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (pabuk_000)
2015-09-14 13:12 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-09-14 13:12 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-09-13 13:51 - 2015-09-22 15:10 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-13 09:32 - 2015-09-13 09:32 - 00002872 _____ C:\WINDOWS\SysWOW64\LavasoftTcpServiceOff.ini
2015-09-13 09:32 - 2015-09-13 09:32 - 00002872 _____ C:\WINDOWS\system32\LavasoftTcpServiceOff.ini
2015-09-13 09:32 - 2015-09-08 13:16 - 00425744 ____R (Lavasoft Limited) C:\WINDOWS\system32\LavasoftTcpService64.dll
2015-09-13 09:32 - 2015-09-08 13:16 - 00345360 ____R (Lavasoft Limited) C:\WINDOWS\SysWOW64\LavasoftTcpService.dll
2015-09-13 09:23 - 2015-09-13 09:23 - 00003398 _____ C:\WINDOWS\System32\Tasks\{9AA498CC-C350-4414-B784-75B4C14FB2CF}
2015-09-12 08:33 - 2015-09-12 08:33 - 86323200 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 05242880 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 00479232 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 00069632 _____ C:\WINDOWS\system32\config\SAM.iobit
2015-09-12 08:33 - 2015-09-12 08:33 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2015-09-12 08:24 - 2013-08-22 14:25 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-09-12 08:22 - 2015-09-23 08:01 - 00000374 ____H C:\WINDOWS\Tasks\GLJGHEPCNHSTLKGR.job
2015-09-12 08:22 - 2015-09-12 08:22 - 00003458 _____ C:\WINDOWS\System32\Tasks\GLJGHEPCNHSTLKGR
2015-09-12 08:00 - 2015-09-12 08:00 - 05157900 _____ C:\Users\pabuk_000\Desktop\sigma8.zip
2015-09-12 07:28 - 2015-09-12 07:28 - 00000699 _____ C:\Users\Public\Desktop\PTGui.lnk
2015-09-12 07:28 - 2015-09-12 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTGui
2015-09-11 11:48 - 2015-09-11 11:48 - 00000000 _____ C:\Users\pabuk_000\Desktop\Nový textový dokument.txt
2015-09-11 10:49 - 2015-09-11 10:49 - 00000000 ____D C:\Users\pabuk_000\Desktop\html5

[Pajinek88]

part 2 log
2015-09-10 15:05 - 2015-09-02 02:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-10 15:05 - 2015-09-02 01:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-10 15:05 - 2015-09-02 01:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-10 15:05 - 2015-08-27 07:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-10 15:05 - 2015-08-27 07:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-10 15:05 - 2015-08-27 07:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-10 15:05 - 2015-08-27 06:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-10 15:05 - 2015-08-27 06:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-10 15:05 - 2015-08-27 06:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-10 15:05 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-10 15:05 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-10 15:05 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-10 15:05 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-10 15:05 - 2015-08-27 06:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-10 15:05 - 2015-08-27 06:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-10 15:05 - 2015-08-27 06:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-10 15:05 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-10 15:05 - 2015-08-27 06:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-10 15:05 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-10 15:05 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-10 15:05 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-10 15:05 - 2015-08-27 06:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-10 15:05 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-10 15:05 - 2015-08-27 06:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-10 15:05 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-10 15:05 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-10 15:05 - 2015-08-27 06:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-10 15:05 - 2015-08-27 06:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-10 15:05 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-10 15:05 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-10 15:05 - 2015-08-27 06:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-10 15:05 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-05 08:31 - 2015-09-05 08:31 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\CEF
2015-09-05 08:30 - 2015-09-07 14:43 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-09-05 08:30 - 2015-09-05 08:30 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-09-05 06:35 - 2015-09-12 08:36 - 00000000 ____D C:\WINDOWS\Panther
2015-09-05 05:59 - 2015-09-05 05:59 - 00002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2015-09-05 05:59 - 2015-09-05 05:59 - 00002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2015-09-05 05:53 - 2015-09-12 09:07 - 00000000 ____D C:\ProgramData\SUPERSetup
2015-09-02 14:30 - 2015-09-23 06:50 - 00004212 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8E06957E-5083-4972-AAC0-34C32F98D0AE}
2015-09-02 14:30 - 2015-09-02 14:30 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\MicrosoftEdge
2015-09-02 13:54 - 2015-09-02 13:54 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\NetworkTiles
2015-08-31 02:30 - 2015-08-31 02:30 - 00625848 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00431704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00382560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vccorlib140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00325232 _____ (Microsoft Corporation) C:\WINDOWS\system32\concrt140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00257736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vccorlib140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00235632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\concrt140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00079544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140.dll
2015-08-31 02:30 - 2015-08-31 02:30 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140.dll
2015-08-29 10:36 - 2015-08-29 10:36 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Jpeg Resampler
2015-08-29 08:58 - 2015-08-20 07:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-29 08:58 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-29 08:58 - 2015-08-20 07:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-29 08:58 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-29 08:58 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-29 08:58 - 2015-08-20 06:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-29 08:58 - 2015-08-20 06:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-29 08:58 - 2015-08-20 06:09 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-08-29 08:58 - 2015-08-18 08:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 08:58 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-29 08:58 - 2015-08-18 08:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-29 08:58 - 2015-08-18 08:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-29 08:58 - 2015-08-18 08:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-29 08:58 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-29 08:58 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-29 08:58 - 2015-08-18 08:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-29 08:58 - 2015-08-18 08:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-29 08:58 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-29 08:58 - 2015-08-18 08:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-29 08:58 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-29 08:58 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-29 08:58 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-29 08:58 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-29 08:58 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-29 08:58 - 2015-08-18 07:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-29 08:58 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-29 08:58 - 2015-08-18 07:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-29 08:58 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-29 08:58 - 2015-08-18 07:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-29 08:58 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-29 08:58 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-29 08:58 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-29 08:58 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-29 08:58 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-29 08:58 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-29 08:58 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-29 08:58 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-29 08:58 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-29 08:58 - 2015-08-18 05:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-26 08:58 - 2013-10-22 14:28 - 00000000 ____D C:\D5100Update
2015-08-26 08:03 - 2015-08-26 08:03 - 00057064 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\ETDCoInstaller01001.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-23 08:02 - 2015-06-26 11:08 - 00000000 ___DO C:\Users\pabuk_000\SkyDrive
2015-09-23 08:01 - 2015-07-27 20:12 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-09-23 08:01 - 2015-07-27 19:17 - 00000374 ____H C:\WINDOWS\Tasks\GQSLIUFXMWRJSNFO.job
2015-09-23 08:00 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-23 08:00 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-23 08:00 - 2015-07-10 10:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-09-23 07:59 - 2015-06-30 17:13 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-23 06:47 - 2015-08-03 14:22 - 00000598 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 5ca09460-739b-4834-91e0-15134cad3a3d.job
2015-09-22 16:59 - 2015-06-30 17:13 - 00003900 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-22 15:14 - 2015-08-19 13:46 - 01789256 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-22 15:14 - 2015-07-10 17:02 - 00749866 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-22 15:14 - 2015-07-10 17:02 - 00150796 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-22 14:29 - 2015-07-27 19:23 - 00003506 _____ C:\WINDOWS\SysWOW64\${LOGFILE}
2015-09-22 13:03 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-22 12:36 - 2015-07-25 08:19 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-22 11:48 - 2015-07-28 09:35 - 00001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-09-22 11:38 - 2015-07-28 13:50 - 00000000 ____D C:\AdwCleaner
2015-09-22 11:31 - 2015-07-10 11:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-22 10:56 - 2015-07-03 22:24 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\uTorrent
2015-09-22 08:56 - 2015-06-26 20:26 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2015-09-19 08:21 - 2015-08-03 14:15 - 00000000 ____D C:\ProgramData\Spyware Terminator
2015-09-17 08:30 - 2015-06-29 10:02 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-17 08:30 - 2015-06-29 09:33 - 00000000 ____D C:\Program Files\iTunes
2015-09-17 08:30 - 2015-06-29 09:32 - 00000000 ____D C:\Program Files\iPod
2015-09-17 08:28 - 2015-07-01 18:26 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-09-17 08:28 - 2015-06-29 09:35 - 00000000 ____D C:\Program Files (x86)\Bonjour
2015-09-17 08:28 - 2015-06-29 09:35 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2015-09-17 08:28 - 2015-06-29 09:29 - 00000000 ____D C:\Program Files\Bonjour
2015-09-16 07:27 - 2015-08-19 13:31 - 00000000 ____D C:\Users\pabuk_000
2015-09-16 07:18 - 2015-06-26 11:04 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Packages
2015-09-15 15:02 - 2015-07-01 14:04 - 00000000 ____D C:\ProgramData\Temp
2015-09-15 13:45 - 2015-08-19 14:21 - 00002374 _____ C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 12:17 - 2015-08-03 10:17 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\iSpy
2015-09-15 09:34 - 2015-07-20 13:27 - 00003624 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2015-09-15 09:34 - 2015-07-20 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2015-09-15 09:34 - 2015-07-20 13:27 - 00000000 ____D C:\Program Files (x86)\Garmin
2015-09-15 09:34 - 2015-06-29 09:45 - 00000000 ____D C:\ProgramData\Package Cache
2015-09-14 15:16 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-09-14 15:15 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-09-14 15:00 - 2015-08-19 16:44 - 00000470 __RSH C:\ProgramData\ntuser.pol
2015-09-14 14:37 - 2015-07-01 13:48 - 00000924 _____ C:\Users\pabuk_000\Desktop\SW Product Key.txt
2015-09-14 14:17 - 2015-08-19 13:25 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-14 14:17 - 2013-06-18 17:59 - 00000000 ____D C:\temp
2015-09-14 14:11 - 2015-08-19 13:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-14 14:02 - 2015-06-29 08:14 - 00000000 ___RD C:\Users\pabuk_000\Desktop\Ikony
2015-09-14 14:00 - 2015-06-29 23:01 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\IObit
2015-09-14 13:21 - 2015-08-19 13:26 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-09-14 13:21 - 2015-05-14 12:10 - 00402136 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys
2015-09-14 13:21 - 2015-05-14 12:10 - 00083160 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll
2015-09-14 13:19 - 2015-08-19 13:26 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-09-14 13:18 - 2015-07-25 08:05 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\TeamViewer
2015-09-14 13:18 - 2015-06-29 11:01 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\CrashDumps
2015-09-14 13:17 - 2015-06-24 22:59 - 02930904 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2015-09-14 13:17 - 2015-06-24 22:59 - 00184688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-09-14 13:17 - 2015-06-24 22:57 - 04514008 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-09-14 13:17 - 2015-06-24 22:57 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-09-14 13:16 - 2015-06-29 23:01 - 00000000 ____D C:\ProgramData\IObit
2015-09-14 13:12 - 2015-07-03 23:26 - 00002838 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-09-14 13:12 - 2015-07-01 18:27 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Apple Computer
2015-09-14 11:51 - 2015-07-28 13:30 - 00001606 _____ C:\ProgramData\tempimage.bmp
2015-09-13 13:54 - 2015-07-01 13:59 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Adobe
2015-09-13 13:43 - 2015-08-19 13:31 - 00000000 ___RD C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-12 09:35 - 2015-08-03 09:39 - 00000000 ____D C:\Program Files\Common Files\vbsawovq
2015-09-12 09:35 - 2015-08-03 09:39 - 00000000 ____D C:\Program Files\Common Files\3vmaxa3c
2015-09-12 09:12 - 2015-07-10 13:20 - 00342800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-12 09:10 - 2015-07-10 17:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-12 09:10 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-12 09:07 - 2013-08-22 14:36 - 00000000 ____D C:\Users\Default.migrated
2015-09-12 08:36 - 2015-06-29 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2015-09-12 08:34 - 2015-07-01 13:41 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\PTGui
2015-09-12 07:26 - 2015-07-01 13:53 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\krpano
2015-09-07 07:02 - 2015-08-03 14:22 - 00000598 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 8bd6cfcd-4b68-4b02-8dc4-b2f446eef4e8.job
2015-09-05 08:31 - 2015-07-01 13:32 - 00000000 ____D C:\ProgramData\Adobe
2015-09-05 08:30 - 2015-07-11 04:15 - 00000000 ____D C:\Users\pabuk_000\AppData\Roaming\Adobe
2015-09-05 08:29 - 2015-06-29 09:34 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-09-05 06:12 - 2015-07-08 01:16 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-09-05 05:59 - 2015-07-08 01:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2015-09-05 05:50 - 2015-07-08 01:05 - 00000000 ____D C:\Program Files\Microsoft Office
2015-09-04 17:40 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\rescache
2015-09-04 17:10 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-04 09:24 - 2015-08-03 14:15 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2015-09-02 14:54 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-30 23:47 - 2015-07-23 04:02 - 11188880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-08-27 21:45 - 2015-06-29 10:05 - 00000000 ____D C:\WINDOWS\KJ
2015-08-27 01:37 - 2015-07-13 09:16 - 01423120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-08-27 01:37 - 2015-07-13 09:16 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-08-27 01:36 - 2015-07-13 09:16 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-08-27 01:36 - 2015-07-13 09:16 - 01710568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-08-26 20:40 - 2015-08-19 14:10 - 00000000 ____D C:\Users\pabuk_000\AppData\Local\Comms
2015-08-26 18:37 - 2015-07-11 11:54 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-26 08:04 - 2015-06-29 09:31 - 00000000 ____D C:\Program Files\Elantech
2015-08-26 08:03 - 2015-08-19 14:13 - 00467032 _____ (ELAN Microelectronics Corp.) C:\WINDOWS\system32\Drivers\ETD.sys
2015-08-25 19:38 - 2015-07-23 04:02 - 03480792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 19:38 - 2015-07-23 04:02 - 03074776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 19:38 - 2015-07-23 04:02 - 00034044 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 16:57 - 2015-08-19 13:25 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 01062520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 00937592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 16:57 - 2015-08-19 13:25 - 00582448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 00075056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-08-25 16:57 - 2015-08-19 13:25 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-25 14:02 - 2015-08-19 13:25 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin

==================== Files in the root of some directories =======

2015-08-03 09:54 - 2015-08-03 09:54 - 3399702 _____ (Dongphase) C:\Program Files\Common Files\mrypcb4k.exe
2015-08-03 09:54 - 2015-08-03 09:54 - 3399702 _____ (Dongphase) C:\Program Files\Common Files\ybzgxdwd.exe
2015-07-03 20:36 - 2015-07-03 22:55 - 0000600 _____ () C:\Users\pabuk_000\AppData\Local\PUTTY.RND
2015-07-09 14:06 - 2015-07-09 14:06 - 0007597 _____ () C:\Users\pabuk_000\AppData\Local\Resmon.ResmonCfg
2015-08-19 13:26 - 2015-08-19 13:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-07-28 13:43 - 2015-07-28 13:44 - 0083501 _____ () C:\ProgramData\JkWKrN2T.dat
2015-07-28 13:30 - 2015-09-14 11:51 - 0001606 _____ () C:\ProgramData\tempimage.bmp

Files to move or delete:
====================
C:\ProgramData\JkWKrN2T.dat


Some files in TEMP:
====================
C:\Users\pabuk_000\AppData\Local\Temp\DRHelper_installFinish.exe
C:\Users\pabuk_000\AppData\Local\Temp\DRHelper_installStart.exe
C:\Users\pabuk_000\AppData\Local\Temp\DRHelper_uninstallComplete.exe
C:\Users\pabuk_000\AppData\Local\Temp\sqlite3.dll
C:\Users\pabuk_000\AppData\Local\Temp\vcredist_x86.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-14 19:12

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:78.63 GB) (Free:15.7 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:596.49 GB) (Free:317.23 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive g: (Downloands) (Fixed) (Total:255.26 GB) (Free:47.15 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:0.34 GB) (Free:0.33 GB) NTFS

Available physical RAM: 5665.57 MB
Total physical RAM: 8053.6 MB
Percentage of memory in use: 29%

==================== MBR and Partition Table ==================

AlternateDataStreams: C:\Users\pabuk_000\Desktop\resizey_vert.png:com.dropbox.attributes
Disk: 0 (Size: 931.5 GB) (Disk ID: 9ED40981)
Partition 1: (Not Active) - (Size=349 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=78.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=596.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=256 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GLJGHEPCNHSTLKGR.job => C:\ProgramData\Service7609\Service7609.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3920955446-1667830888-1854160742-1001Core.job => C:\Users\pabuk_000\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3920955446-1667830888-1854160742-1001UA.job => C:\Users\pabuk_000\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GQSLIUFXMWRJSNFO.job => C:\ProgramData\Service1198\Service1198.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 5ca09460-739b-4834-91e0-15134cad3a3d.job => F:\Antiviry, spywery, firewall\portable\Antispy\SASTask.exerF:\Antiviry, spywery, firewall\portable\Antispy\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 8bd6cfcd-4b68-4b02-8dc4-b2f446eef4e8.job => F:\Antiviry, spywery, firewall\portable\Antispy\SASTask.exerF:\Antiviry, spywery, firewall\portable\Antispy\SUPERAntiSpyware.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\pabuk_000\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\pabuk_000\Desktop\resizey_vert.png:com.dropbox.attributes

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\pabuk_000\Desktop" je 2065 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

[altrok]

Pak mi bohuzel pravidla fora, ktera jsme Vy i ja povinni dodrzovat, nedovoluji pokracovat.

Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.

[Pajinek88]

to jako pro vlastni potřebu člověk nemůže mít nějaký ten piratský softare? Abtivir si platím. jako další spoustu programu. Co jsem pouze u pyratil jsou Windows 8.1 a Producty Adobe nešiřím to dále. nikdy v minulosti to nevadilo to jsou nové pravidla?

[altrok]

Spolupracujeme s nekolika zahranicnimi fory, podilime se na vyvoji antimalwarovych utilit, jsme cleny mezinarodni aliance ASAP a softwarove piratstvi zde zkratka netolerujeme.