Dobrý večer počítač se neustále seká díky za kontrolu
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; D:\Windows\system32\drivers\aswRvrt.sys [2016-06-26 60424]
R0 aswVmm;avast! VM Monitor; D:\Windows\system32\drivers\aswVmm.sys [2016-06-26 222056]
R0 rdyboost;ReadyBoost; D:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; D:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; D:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswKbd;aswKbd; D:\Windows\system32\drivers\aswKbd.sys [2016-06-26 35096]
R1 aswRdr;aswRdr; D:\Windows\system32\drivers\aswRdr2.sys [2016-06-26 91232]
R1 aswSnx;aswSnx; D:\Windows\system32\drivers\aswSnx.sys [2016-06-26 816304]
R1 aswSP;aswSP; D:\Windows\system32\drivers\aswSP.sys [2016-06-27 438296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; D:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; D:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; D:\Windows\system32\drivers\aswHwid.sys [2016-06-26 34008]
R2 aswMonFlt;aswMonFlt; D:\Windows\system32\drivers\aswMonFlt.sys [2016-06-26 91680]
R2 aswStm;aswStm; D:\Windows\system32\drivers\aswStm.sys [2016-06-26 118152]
R3 atikmdag;atikmdag; D:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 RTL8167;Ovladač Realtek 8167 NT; D:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; D:\Windows\system32\DRIVERS\rtl8192se.sys [2009-08-27 859136]
S2 Parvdm;Parvdm; D:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; D:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; D:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; D:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 pciide;pciide; D:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; D:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; D:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; D:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; D:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; D:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; D:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; D:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; D:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; D:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; D:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; D:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; D:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 wdm_usb;wdm_usb; D:\Windows\system32\DRIVERS\usb2ser.sys [2016-03-10 119952]
S3 WinUsb;WinUsb; D:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;Avast Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-06-26 197128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; D:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ssinstall;SInstalátor; D:\Windows\System32\ssins.exe [2016-06-26 2324216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-27 270016]
S3 AppMgmt;@appmgmts.dll,-3250; D:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service; D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [2015-12-02 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-05 146888]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
PC se seká
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Zdravím!
Toto je log z čeho?
Toto je log z čeho?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
jsem to udělal asi blbě .. co ?
Re: PC se seká
Logfile of random's system information tool 1.10 (written by random/random)
Run by pepa at 2016-07-05 20:46:30
Microsoft Windows 7 Ultimate Service Pack 1
System drive D: has 162 GB (68%) free of 238 GB
Total RAM: 2043 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:26, on 5.7.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
D:\Windows\system32\Dwm.exe
D:\Windows\Explorer.EXE
D:\Windows\system32\taskhost.exe
D:\Program Files\AVAST Software\Avast\AvastUI.exe
D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
D:\Windows\system32\wbem\unsecapp.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Users\pepa\Downloads\RSIT.exe
D:\Program Files\trend micro\pepa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "D:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "D:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "D:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "D:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = D:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - D:\Windows\system32\atiesrxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - D:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - D:\Windows\System32\ssins.exe
--
End of file - 4937 bytes
======Scheduled tasks folder======
D:\Windows\tasks\Adobe Flash Player Updater.job - D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=D:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=D:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll
D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-26 716632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=D:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-06-26 8897712]
"GrooveMonitor"=D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"seznam-listicka-distribuce"=D:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Skype"=D:\Program Files\Skype\Phone\Skype.exe [2016-06-29 26424960]
D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - D:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=D:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - D:\Windows\System32\Notepad.exe %1
.js - open - D:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-05 20:46:30 ----D---- D:\rsit
2016-07-05 20:46:30 ----D---- D:\Program Files\trend micro
2016-07-03 09:37:43 ----D---- D:\Windows\EOONotify
2016-07-03 09:19:51 ----A---- D:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-02 16:29:00 ----A---- D:\Windows\system32\shell32.dll
2016-07-02 16:28:58 ----A---- D:\Windows\system32\shdocvw.dll
2016-07-02 15:24:23 ----A---- D:\Windows\system32\winhttp.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\ws2_32.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\netbtugc.exe
2016-07-02 15:24:22 ----A---- D:\Windows\system32\mswsock.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\drivers\netbt.sys
2016-07-02 15:24:18 ----A---- D:\Windows\system32\WMVDECOD.DLL
2016-07-02 15:24:16 ----A---- D:\Windows\system32\msmpeg2adec.dll
2016-07-02 15:24:16 ----A---- D:\Windows\system32\mf.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMVSDECD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMSPDMOD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMADMOE.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMADMOD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\quartz.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\qdvd.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\MSMPEG2ENC.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\evr.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\COLORCNV.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVXENCD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVSENCD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVENCOD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\wmpmde.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMALFXGFXDSP.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\qasf.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MPG4DECD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MP43DECD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MFWMAAEC.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\mfplat.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\mcmde.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\devenum.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\WMSPDMOE.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\VIDRESZR.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\SysFxUI.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\rrinstaller.exe
2016-07-02 15:24:13 ----A---- D:\Windows\system32\RESAMPLEDMO.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\MP4SDECD.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\MP3DMOD.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfvdsp.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfps.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfpmp.exe
2016-07-02 15:24:13 ----A---- D:\Windows\system32\drivers\portcls.sys
2016-07-02 15:24:12 ----A---- D:\Windows\system32\mferror.dll
2016-07-02 15:24:12 ----A---- D:\Windows\system32\ksuser.dll
2016-07-02 15:24:12 ----A---- D:\Windows\system32\drivers\drmkaud.sys
2016-07-02 15:24:12 ----A---- D:\Windows\system32\drivers\drmk.sys
2016-07-02 15:24:04 ----A---- D:\Windows\system32\Wdfres.dll
2016-07-02 15:24:04 ----A---- D:\Windows\system32\drivers\WdfLdr.sys
2016-07-02 15:24:04 ----A---- D:\Windows\system32\drivers\Wdf01000.sys
2016-07-02 15:24:02 ----A---- D:\Windows\system32\WMPhoto.dll
2016-07-02 15:24:00 ----A---- D:\Windows\system32\msi.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msimsg.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msihnd.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msiexec.exe
2016-07-02 15:23:59 ----A---- D:\Windows\system32\consent.exe
2016-07-02 15:23:59 ----A---- D:\Windows\system32\authui.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\appinfo.dll
2016-07-02 15:23:52 ----A---- D:\Windows\system32\wmp.dll
2016-07-02 15:23:51 ----A---- D:\Windows\system32\wmploc.DLL
2016-07-02 15:23:51 ----A---- D:\Windows\system32\spwmp.dll
2016-07-02 15:23:51 ----A---- D:\Windows\system32\dxmasf.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml6r.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml6.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml3r.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml3.dll
2016-07-02 15:23:32 ----A---- D:\Windows\system32\drivers\usbehci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbuhci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbport.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbohci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbhub.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbd.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbccgp.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\drivers\dxgmms1.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\drivers\dxgkrnl.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\cdd.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\wmdrmsdk.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\msmpeg2vdec.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\drmv2clt.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\blackbox.dll
2016-07-02 15:23:16 ----A---- D:\Windows\system32\ntkrnlpa.exe
2016-07-02 15:23:15 ----A---- D:\Windows\system32\schannel.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\ntoskrnl.exe
2016-07-02 15:23:15 ----A---- D:\Windows\system32\lsasrv.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\kerberos.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\drmmgrtn.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\AUDIOKSE.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\wintrust.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\msv1_0.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\drivers\PEAuth.sys
2016-07-02 15:23:14 ----A---- D:\Windows\system32\crypt32.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\ci.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\winresume.exe
2016-07-02 15:23:13 ----A---- D:\Windows\system32\winload.exe
2016-07-02 15:23:13 ----A---- D:\Windows\system32\cryptsvc.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\audiosrv.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\adtschema.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\srcore.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\pcasvc.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\ncrypt.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\drivers\ksecpkg.sys
2016-07-02 15:23:12 ----A---- D:\Windows\system32\drivers\cng.sys
2016-07-02 15:23:12 ----A---- D:\Windows\system32\cryptui.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\cryptnet.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\wdigest.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\TSpkg.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\EncDump.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\drivers\mountmgr.sys
2016-07-02 15:23:11 ----A---- D:\Windows\system32\drivers\ksecdd.sys
2016-07-02 15:23:11 ----A---- D:\Windows\system32\csrsrv.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\cryptsp.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\AudioSes.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\AudioEng.dll
2016-07-02 15:23:10 ----A---- D:\Windows\system32\rstrui.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\smss.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\msscp.dll
2016-07-02 15:23:09 ----A---- D:\Windows\system32\msnetobj.dll
2016-07-02 15:23:09 ----A---- D:\Windows\system32\lsass.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\audiodg.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\appidapi.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\sspicli.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\pcadm.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\auditpol.exe
2016-07-02 15:23:08 ----A---- D:\Windows\system32\appidsvc.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\appidpolicyconverter.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\sspisrv.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\srclient.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\setbcdlocale.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\secur32.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\pcawrk.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\pcalua.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\msmmsp.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\msaudite.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\drivers\appid.sys
2016-07-02 15:23:07 ----A---- D:\Windows\system32\credssp.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\appidcertstorecheck.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\apisetschema.dll
2016-07-02 15:23:06 ----A---- D:\Windows\system32\pcaevts.dll
2016-07-02 15:23:06 ----A---- D:\Windows\system32\msobjs.dll
2016-07-02 15:22:16 ----A---- D:\Windows\system32\rdpcorets.dll
2016-07-02 15:22:12 ----A---- D:\Windows\system32\RMActivate_isv.exe
2016-07-02 15:22:12 ----A---- D:\Windows\system32\RMActivate.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_ssp_isv.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_ssp.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_isv.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\RMActivate_ssp_isv.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\RMActivate_ssp.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\msdrm.dll
2016-07-02 15:21:32 ----A---- D:\Windows\system32\termsrv.dll
2016-07-02 15:21:06 ----A---- D:\Windows\system32\comctl32.dll
2016-07-02 15:21:04 ----A---- D:\Windows\system32\scesrv.dll
2016-07-02 15:21:02 ----A---- D:\Windows\system32\drivers\ntfs.sys
2016-07-02 15:21:00 ----A---- D:\Windows\system32\WsmSvc.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WsmWmiPl.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WsmAuto.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WSManMigrationPlugin.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WSManHTTPConfig.exe
2016-07-02 15:20:30 ----A---- D:\Windows\system32\gdi32.dll
2016-07-02 13:00:44 ----D---- D:\Windows\Minidump
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wups2.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wucltux.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wuaueng.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wuauclt.exe
2016-07-02 09:52:01 ----A---- D:\Windows\system32\wuwebv.dll
2016-07-02 09:52:01 ----A---- D:\Windows\system32\wuapp.exe
2016-07-02 03:02:15 ----D---- D:\Windows\system32\SPReview
2016-07-02 03:00:44 ----D---- D:\Windows\Migration
2016-07-02 00:22:14 ----A---- D:\Windows\system32\EOSNotify.exe
2016-07-01 15:35:50 ----D---- D:\Users\pepa\AppData\Roaming\BitTorrent
2016-06-30 12:50:29 ----D---- D:\Windows\system32\EventProviders
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmictimeprovider.dll
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmicsvc.exe
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmicres.dll
2016-06-29 13:01:09 ----A---- D:\Windows\system32\IcCoinstall.dll
2016-06-29 13:01:08 ----A---- D:\Windows\system32\drivers\VMBusHID.sys
2016-06-29 13:01:07 ----A---- D:\Windows\system32\vmbusres.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\vmbuspipe.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\VmbusCoinstaller.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\drivers\winhv.sys
2016-06-29 13:01:06 ----A---- D:\Windows\system32\drivers\vmbus.sys
2016-06-29 13:01:06 ----A---- D:\Windows\system32\drivers\storvsc.sys
2016-06-29 13:01:05 ----A---- D:\Windows\system32\WSDApi.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\vmstorfltres.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\VmdCoinstall.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\PresentationHostProxy.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\PresentationHost.exe
2016-06-29 13:01:05 ----A---- D:\Windows\system32\drivers\vmstorfl.sys
2016-06-29 13:01:05 ----A---- D:\Windows\system32\drivers\vms3cap.sys
2016-06-29 13:01:03 ----A---- D:\Windows\system32\tquery.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\StructuredQuery.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssvp.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssrch.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssphtb.dll
2016-06-29 13:00:56 ----A---- D:\Windows\system32\drivers\volsnap.sys
2016-06-29 13:00:56 ----A---- D:\Windows\system32\drivers\vhdmp.sys
2016-06-29 13:00:55 ----A---- D:\Windows\system32\drivers\usbvideo.sys
2016-06-29 13:00:55 ----A---- D:\Windows\system32\drivers\USBSTOR.SYS
2016-06-29 13:00:54 ----A---- D:\Windows\system32\umb.dll
2016-06-29 13:00:54 ----A---- D:\Windows\system32\drivers\umbus.sys
2016-06-29 13:00:53 ----A---- D:\Windows\system32\drivers\winusb.sys
2016-06-29 13:00:50 ----A---- D:\Windows\system32\drivers\sffp_sd.sys
2016-06-29 13:00:45 ----A---- D:\Windows\system32\drivers\sbp2port.sys
2016-06-29 13:00:42 ----A---- D:\Windows\system32\drivers\nvstor.sys
2016-06-29 13:00:42 ----A---- D:\Windows\system32\drivers\nvraid.sys
2016-06-29 13:00:41 ----A---- D:\Windows\system32\MPSSVC.dll
2016-06-29 13:00:41 ----A---- D:\Windows\system32\FirewallControlPanel.dll
2016-06-29 13:00:40 ----A---- D:\Windows\system32\AuthFWSnapin.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\netfxperf.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscories.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscorier.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscoree.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\dfshim.dll
2016-06-29 13:00:35 ----A---- D:\Windows\system32\Narrator.exe
2016-06-29 13:00:35 ----A---- D:\Windows\system32\NAPHLPR.DLL
2016-06-29 13:00:35 ----A---- D:\Windows\system32\NAPCRYPT.DLL
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\msdsm.sys
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\msahci.sys
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\ataport.sys
2016-06-29 13:00:33 ----A---- D:\Windows\system32\wpd_ci.dll
2016-06-29 13:00:33 ----A---- D:\Windows\system32\drivers\scsiport.sys
2016-06-29 13:00:33 ----A---- D:\Windows\system32\drivers\mpio.sys
2016-06-29 13:00:31 ----A---- D:\Windows\system32\zipfldr.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wwanprotdim.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wwanconn.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wusa.exe
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wsdchngr.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\CertEnroll.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\WPDShServiceObj.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wpdshext.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wpdbusenum.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wkssvc.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\PortableDeviceStatus.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\PortableDeviceApi.dll
2016-06-29 13:00:29 ----A---- D:\Windows\system32\framedynos.dll
2016-06-29 13:00:29 ----A---- D:\Windows\system32\framedyn.dll
2016-06-29 13:00:28 ----A---- D:\Windows\system32\wbemcomn.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wmicmiplugin.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanui.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanpref.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanmsm.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlangpui.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\winsrv.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\winlogon.exe
2016-06-29 13:00:27 ----A---- D:\Windows\system32\WindowsCodecs.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\ReAgentc.exe
2016-06-29 13:00:27 ----A---- D:\Windows\system32\ReAgent.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\drivers\afd.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\win32k.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wimserv.exe
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wimgapi.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\webservices.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\webio.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\WebClnt.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wcncsvc.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\fphc.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\drivers\mrxdav.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\davclnt.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\WinSAT.exe
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiaservc.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiarpc.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiadefui.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\audiodev.dll
2016-06-29 13:00:23 ----A---- D:\Windows\twain_32.dll
2016-06-29 13:00:23 ----A---- D:\Windows\system32\wpdwcn.dll
2016-06-29 13:00:21 ----A---- D:\Windows\system32\WinSATAPI.dll
2016-06-29 13:00:21 ----A---- D:\Windows\system32\wiavideo.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\WPDSp.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\wkscli.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\VSSVC.exe
2016-06-29 13:00:19 ----A---- D:\Windows\system32\vssapi.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\drivers\usbrpm.sys
2016-06-29 13:00:18 ----A---- D:\Windows\system32\vdsutil.dll
2016-06-29 13:00:18 ----A---- D:\Windows\system32\vds.exe
2016-06-29 13:00:17 ----A---- D:\Windows\system32\VAN.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\MSVidCtl.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msvidc32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msvfw32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msrle32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\mciavi32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\iccvid.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\cca.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\avifil32.dll
2016-06-29 13:00:15 ----A---- D:\Windows\system32\vdsbas.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\usp10.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\userinit.exe
2016-06-29 13:00:11 ----A---- D:\Windows\system32\userenv.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\usercpl.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\user32.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\umpo.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\upnp.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\unimdmat.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\drivers\USBCAMD2.sys
2016-06-29 13:00:10 ----A---- D:\Windows\system32\drivers\USBCAMD.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UserAccountControlSettings.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UIRibbonRes.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UIRibbon.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\tzutil.exe
2016-06-29 13:00:09 ----A---- D:\Windows\system32\twext.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\EncDec.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\drivers\udfs.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\drivers\tunnel.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\djoin.exe
2016-06-29 13:00:08 ----A---- D:\Windows\system32\w32tm.exe
2016-06-29 13:00:08 ----A---- D:\Windows\system32\TRAPI.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\thumbcache.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\themeui.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\themecpl.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\drivers\rdpdr.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\termmgr.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\tcpipcfg.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\taskschd.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\taskeng.exe
2016-06-29 13:00:07 ----A---- D:\Windows\system32\schedsvc.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\schedcli.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\netiougc.exe
2016-06-29 13:00:07 ----A---- D:\Windows\system32\netiohlp.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tdx.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tdi.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tcpip.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\FWPKCLNT.SYS
2016-06-29 13:00:06 ----A---- D:\Windows\system32\wavemsp.dll
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskmgr.exe
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskhost.exe
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskbarcpl.dll
2016-06-29 13:00:06 ----A---- D:\Windows\system32\tapisrv.dll
2016-06-29 13:00:05 ----A---- D:\Windows\system32\takeown.exe
2016-06-29 13:00:05 ----A---- D:\Windows\system32\tabcal.exe
2016-06-29 13:00:05 ----A---- D:\Windows\system32\MultiDigiMon.exe
2016-06-29 13:00:04 ----A---- D:\Windows\system32\drivers\TsUsbFlt.sys
2016-06-29 13:00:03 ----A---- D:\Windows\system32\wtsapi32.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\tsgqec.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\SessEnv.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\remotepg.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\regapi.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpencom.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpdd.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpd3d.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\perfts.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\mstscax.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\input.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\aaclient.dll
2016-06-29 13:00:02 ----A---- D:\Windows\system32\wisptis.exe
2016-06-29 13:00:02 ----A---- D:\Windows\system32\TabSvc.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\winsta.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\utildll.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\TSWorkspace.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\tspubwmi.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpsign.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpshell.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\RDPENCDD.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpclip.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\mstsc.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\mstask.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\lsm.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\icaapi.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\drivers\tssecsrv.sys
2016-06-29 13:00:01 ----A---- D:\Windows\system32\drivers\RDPCDD.sys
2016-06-29 13:00:00 ----A---- D:\Windows\system32\rdpinit.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\wksprt.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\umrdp.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tssrvlic.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tskill.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tsdiscon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tscon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tscfgwmi.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\shadow.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rwinsta.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\reset.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpwsx.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdprefdrvapi.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\RDPREFDD.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpendp.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpcorekmts.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\query.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\qprocess.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\qappsrv.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\msutb.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\LSCSHostPolicy.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\logoff.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chgusr.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chgport.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chglogon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\change.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\drivers\tdtcp.sys
2016-06-29 12:59:59 ----A---- D:\Windows\system32\drivers\tdpipe.sys
2016-06-29 12:59:58 ----A---- D:\Windows\system32\tsmf.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\taskcomp.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\rdpcfgex.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\qwinsta.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\quser.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\msg.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\DShowRdpFilter.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\drivers\rdpwd.sys
2016-06-29 12:59:57 ----A---- D:\Windows\system32\tlscsp.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\systemcpl.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\syssetup.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\sysclass.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\spopk.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\spbcd.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\rdpcore.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\lsmproxy.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\IPHLPAPI.DLL
2016-06-29 12:59:56 ----A---- D:\Windows\system32\syncui.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sxs.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sud.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sbe.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\PortableDeviceSyncProvider.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\wsqmcons.exe
2016-06-29 12:59:55 ----A---- D:\Windows\system32\stobject.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\ssText3d.scr
2016-06-29 12:59:55 ----A---- D:\Windows\system32\sqmapi.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\sqlcese30.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\drivers\storport.sys
2016-06-29 12:59:54 ----A---- D:\Windows\system32\spp.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\wsnmp32.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\WavDest.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\sscore.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\srvsvc.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\SmiEngine.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\inetmib1.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\drivers\srv2.sys
2016-06-29 12:59:53 ----A---- D:\Windows\system32\drivers\srv.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\srvcli.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\sisbkup.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\srvnet.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\scfilter.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb20.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb10.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\certprop.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\basecsp.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shwebsvc.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shunimpl.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shsvcs.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shlwapi.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shimgvw.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shgina.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\unattend.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\shsetup.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\shacct.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\setupcl.exe
2016-06-29 12:59:50 ----A---- D:\Windows\system32\setupapi.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\prevhost.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spwizui.dll
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spreview.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spinstall.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\setupcln.dll
2016-06-29 12:59:49 ----A---- D:\Windows\system32\sethc.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\ActionQueue.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\wscapi.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\vaultsvc.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\Vault.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppuinotify.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppsvc.exe
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppinst.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppcomapi.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppc.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\slwga.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\slui.exe
2016-06-29 12:59:48 ----A---- D:\Windows\system32\nltest.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\vbscript.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sppobjs.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\schtasks.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\SearchFolder.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdrsvc.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdengin2.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdclt.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\scavengeui.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\scansetting.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\netlogon.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\manage-bde.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\jscript.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\fvecpl.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\fveapi.dll
2016-06-29 12:59:45 ----A---- D:\Windows\system32\scecli.dll
2016-06-29 12:59:45 ----A---- D:\Windows\system32\repair-bde.exe
2016-06-29 12:59:45 ----A---- D:\Windows\system32\drivers\fvevol.sys
2016-06-29 12:59:45 ----A---- D:\Windows\system32\BdeHdCfg.exe
2016-06-29 12:59:43 ----A---- D:\Windows\system32\uxlib.dll
2016-06-29 12:59:43 ----A---- D:\Windows\system32\spwizres.dll
2016-06-29 12:59:43 ----A---- D:\Windows\system32\spwizeng.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\sysmain.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\logoncli.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\CertPolEng.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\WinSCard.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\srrstr.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\sharemediacpl.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\sppwinob.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\runonce.exe
2016-06-29 12:59:40 ----A---- D:\Windows\system32\rpchttp.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\RpcRtRemote.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\rpcrt4.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\Robocopy.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\riched32.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\riched20.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\Ribbons.scr
2016-06-29 12:59:39 ----A---- D:\Windows\system32\RelPost.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\recovery.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\recdisc.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\rastls.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\rastapi.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rmcast.sys
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rdyboost.sys
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rdbss.sys
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rtutils.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rasppp.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rasmans.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\mprddm.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\iprtrmgr.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\cmstp.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\vpnikeapi.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\vpnike.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbGDCoInstaller.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\RDVGHelper.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\rdpudd.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\raschap.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\wanarp.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\rdpvideominiport.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\ndproxy.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\ndiswan.sys
2016-06-29 12:59:36 ----A---- D:\Windows\system32\RacEngn.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\XpsPrint.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\spoolsv.exe
2016-06-29 12:59:35 ----A---- D:\Windows\system32\qedit.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\proquota.exe
2016-06-29 12:59:35 ----A---- D:\Windows\system32\propsys.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\profsvc.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\profprov.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\prncache.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\hgprint.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\sppnp.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\powercpl.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\pifmgr.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\PhotoScreensaver.scr
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wvc.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wpccpl.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wdscore.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wdc.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\unlodctr.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PrintBrmUi.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PnPUnattend.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PkgMgr.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\photowiz.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\perfmon.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PerfCenterCPL.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\pdhui.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\drivers\partmgr.sys
2016-06-29 12:59:32 ----A---- D:\Windows\system32\win32spl.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\prnfldr.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\printui.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\pla.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\pdh.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\ntprint.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\inetpp.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\relog.exe
2016-06-29 12:59:31 ----A---- D:\Windows\system32\puiobj.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\PrintIsolationProxy.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\logman.exe
2016-06-29 12:59:31 ----A---- D:\Windows\system32\localspl.dll
2016-06-29 12:59:27 ----A---- D:\Windows\system32\PushPrinterConnections.exe
2016-06-29 12:59:27 ----A---- D:\Windows\system32\prntvpt.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\OnLineIDCpl.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\onexui.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\onex.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\olepro32.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\oleaut32.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\ocsetup.exe
2016-06-29 12:59:25 ----A---- D:\Windows\system32\ocsetapi.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\drivers\csc.sys
2016-06-29 12:59:25 ----A---- D:\Windows\system32\cscui.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\cscsvc.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\CscMig.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscobj.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscdll.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscapi.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\asycfilt.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntshrui.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntlanman.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntdll.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nslookup.exe
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nlasvc.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nlaapi.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\networkmap.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ncsi.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\dosx.exe
2016-06-29 12:59:22 ----A---- D:\Windows\system32\pnidui.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\nshwfp.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\networkexplorer.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netutils.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netshell.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netplwiz.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netjoin.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netcenter.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\IKEEXT.DLL
2016-06-29 12:59:22 ----A---- D:\Windows\system32\FWPUCLNT.DLL
2016-06-29 12:59:22 ----A---- D:\Windows\system32\drivers\netio.sys
2016-06-29 12:59:22 ----A---- D:\Windows\system32\BFE.DLL
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netcfgx.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netcfg.exe
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netapi32.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\net1.exe
2016-06-29 12:59:21 ----A---- D:\Windows\system32\ncryptui.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\nci.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\NaturalLanguage6.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\drivers\ndisuio.sys
2016-06-29 12:59:21 ----A---- D:\Windows\system32\drivers\ndis.sys
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QUTIL.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QSVRMGMT.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QSHVHOST.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\KMSVC.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\ipsmsnap.dll
2016-06-29 12:59:18 ----A---- D:\Windows\system32\nshipsec.dll
2016-06-29 12:59:18 ----A---- D:\Windows\system32\iasrecst.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QCLIPROV.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QAGENTRT.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QAGENT.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\netdiagfx.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\napdsnap.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\iasrad.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\iasacct.dll
2016-06-29 12:59:16 ----A---- D:\Windows\system32\Mystify.scr
2016-06-29 12:59:16 ----A---- D:\Windows\system32\mydocs.dll
2016-06-29 12:59:16 ----A---- D:\Windows\system32\mcbuilder.exe
2016-06-29 12:59:16 ----A---- D:\Windows\system32\IPSECSVC.DLL
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msinfo32.exe
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msieftp.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msftedit.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msconfig.exe
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msasn1.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\MSAC3ENC.DLL
2016-06-29 12:59:14 ----A---- D:\Windows\system32\SyncCenter.dll
2016-06-29 12:59:14 ----A---- D:\Windows\system32\mprapi.dll
2016-06-29 12:59:14 ----A---- D:\Windows\system32\mobsync.exe
2016-06-29 12:59:13 ----A---- D:\Windows\system32\WMVCORE.DLL
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpsrcwp.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpshell.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpps.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\WMPEncEn.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpeffects.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpdxm.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmdrmnet.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmdrmdev.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\SensorsCpl.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\MMDevAPI.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfreadwrite.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\MFPlay.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfds.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc42u.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc40u.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc40.dll
2016-06-29 12:59:12 ----A---- D:\Windows\system32\WMNetMgr.dll
2016-06-29 12:59:11 ----A---- D:\Windows\system32\logagent.exe
2016-06-29 12:59:10 ----A---- D:\Windows\system32\MediaMetadataHandler.dll
2016-06-29 12:59:10 ----A---- D:\Windows\system32\mapistub.dll
2016-06-29 12:59:10 ----A---- D:\Windows\system32\mapi32.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\mcupdate_GenuineIntel.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\inetcomm.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\AuxiliaryDisplayCpl.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\sqlsrv32.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\PresentationSettings.exe
2016-06-29 12:59:07 ----A---- D:\Windows\system32\odbcconf.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\migisol.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\AuxiliaryDisplayServices.dll
2016-06-29 12:59:03 ----A---- D:\Windows\system32\mblctr.exe
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbctrac.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbcjt32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbccp32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbc32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\msorcl32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\mmcndmgr.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\MdSched.exe
2016-06-29 12:59:01 ----A---- D:\Windows\system32\defaultlocationcpl.dll
2016-06-29 12:59:00 ----A---- D:\Windows\system32\luainstall.dll
2016-06-29 12:59:00 ----A---- D:\Windows\system32\lpremove.exe
2016-06-29 12:59:00 ----A---- D:\Windows\system32\lpksetup.exe
2016-06-29 12:58:59 ----A---- D:\Windows\system32\Wldap32.dll
2016-06-29 12:58:59 ----A---- D:\Windows\system32\nrpsrv.dll
2016-06-29 12:58:53 ----A---- D:\Windows\system32\drivers\tcpipreg.sys
2016-06-29 12:58:45 ----A---- D:\Windows\system32\KernelBase.dll
2016-06-29 12:58:45 ----A---- D:\Windows\system32\kernel32.dll
2016-06-29 12:58:45 ----A---- D:\Windows\system32\drivers\ks.sys
2016-06-29 12:58:44 ----A---- D:\Windows\system32\iTVData.dll
2016-06-29 12:58:44 ----A---- D:\Windows\system32\isoburn.exe
2016-06-29 12:58:43 ----A---- D:\Windows\system32\wshirda.dll
2016-06-29 12:58:43 ----A---- D:\Windows\system32\nlsbres.dll
2016-06-29 12:58:43 ----A---- D:\Windows\system32\MuiUnattend.exe
2016-06-29 12:58:41 ----A---- D:\Windows\system32\imm32.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\imapi2.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\dbghelp.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\dbgeng.dll
2016-06-29 12:58:39 ----A---- D:\Windows\system32\ieframe.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\inseng.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\iesysprep.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\ie4uinit.exe
2016-06-29 12:58:37 ----A---- D:\Windows\system32\webcheck.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\occache.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\msrating.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\imgutil.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\ieUnatt.exe
2016-06-29 12:58:37 ----A---- D:\Windows\system32\iertutil.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\RegisterIEPKEYs.exe
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mshtmled.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mshtml.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeedssync.exe
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeedsbs.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeeds.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mscms.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\licmgr10.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\iepeers.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\iedkcs32.dll
2016-06-29 12:58:35 ----A---- D:\Windows\system32\wininet.dll
2016-06-29 12:58:34 ----A---- D:\Windows\system32\tzres.dll
2016-06-29 12:58:33 ----A---- D:\Windows\system32\kbdlk41a.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\mstime.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDUS.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDUGHR1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDTUF.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDSG.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDSF.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDPO.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDMAORI.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDLT1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDINHIN.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDGR1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDGKL.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDCZ1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDBULG.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\iphlpsvc.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\C_ISCII.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTURME.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTUQ.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTAJIK.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDNEPR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDMON.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINTEL.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINTAM.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINORI.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINMAR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINKAN.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINBEN.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDGEO.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDBLR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDBASH.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\iscsium.dll
2016-06-29 12:58:30 ----A---- D:\Windows\system32\iscsicli.exe
2016-06-29 12:58:30 ----A---- D:\Windows\system32\elsTrans.dll
2016-06-29 12:58:29 ----A---- D:\Windows\system32\urlmon.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\provsvc.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\ListSvc.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\itircl.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\imapi2fs.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\httpapi.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\HotStartUserAgent.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\hgcpl.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\drivers\http.sys
2016-06-29 12:58:27 ----A---- D:\Windows\system32\hbaapi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\halmacpi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\halacpi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\hal.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\drivers\hwpolicy.sys
2016-06-29 12:58:27 ----A---- D:\Windows\system32\ActionCenterCPL.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\ActionCenter.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\gpsvc.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\gameux.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\fontsub.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\atmlib.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\atmfd.dll
2016-06-29 12:58:18 ----A---- D:\Windows\system32\gpprefcl.dll
2016-06-29 12:58:18 ----A---- D:\Windows\system32\appmgr.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\scrptadm.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\ftp.exe
2016-06-29 12:58:17 ----A---- D:\Windows\system32\fontext.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\AdmTmpl.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\t2embed.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\muifontsetup.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\FXSSVC.exe
2016-06-29 12:58:15 ----A---- D:\Windows\system32\FXSMON.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fms.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\findstr.exe
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fdeploy.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fde.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\resutils.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\ifsutil.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\FXSTIFF.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\clusapi.dll
2016-06-29 12:58:13 ----A---- D:\Windows\system32\WFS.exe
2016-06-29 12:58:13 ----A---- D:\Windows\system32\untfs.dll
2016-06-29 12:58:13 ----A---- D:\Windows\system32\FXSCOVER.exe
2016-06-29 12:58:12 ----A---- D:\Windows\system32\wevtsvc.dll
2016-06-29 12:58:12 ----A---- D:\Windows\system32\ExplorerFrame.dll
2016-06-29 12:58:12 ----A---- D:\Windows\system32\eudcedit.exe
2016-06-29 12:58:12 ----A---- D:\Windows\explorer.exe
2016-06-29 12:58:11 ----A---- D:\Windows\system32\WerFaultSecure.exe
2016-06-29 12:58:11 ----A---- D:\Windows\system32\werconcpl.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\wer.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\mspbda.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\msdri.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\Faultrep.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\EhStorAPI.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\Mcx2Svc.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\MCEWMDRMNDBootstrap.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\esent.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\efscore.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eapphost.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eappgnui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eapp3hst.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DxpTaskSync.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DXPTaskRingtone.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DXP.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dskquoui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\drvstore.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3ui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3svc.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3msm.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3cfg.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3api.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dxgi.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\drivers\Diskdump.sys
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dpnaddr.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnsrslvr.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnscmmc.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnscacheugc.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnsapi.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\Display.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\diskraid.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\diskpart.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\d3d9.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\d3d10warp.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\vfwwdm32.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\mciqtz32.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\FntCache.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\DWrite.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d11.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d10level9.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d10_1core.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\amstream.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\qdv.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\qcap.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\msdmo.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\setupugc.exe
2016-06-29 12:58:05 ----A---- D:\Windows\system32\samsrv.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dxdiagn.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dsauth.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\drivers\dfsc.sys
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dpx.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DiagCpl.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dhcpcore.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dfrgui.exe
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DevicePairingFolder.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DeviceCenter.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\d2d1.dll
2016-06-29 12:58:04 ----A---- D:\Windows\system32\samcli.dll
2016-06-29 12:58:03 ----A---- D:\Windows\system32\dwmredir.dll
2016-06-29 12:58:02 ----A---- D:\Windows\system32\tsbyuv.dll
2016-06-29 12:58:02 ----A---- D:\Windows\system32\dwmcore.dll
2016-06-29 12:58:01 ----A---- D:\Windows\system32\msyuv.dll
2016-06-29 12:58:01 ----A---- D:\Windows\system32\iyuv_32.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFx.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFSvc.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFPlatform.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\drivers\WUDFRd.sys
2016-06-29 12:57:59 ----A---- D:\Windows\system32\dps.dll
2016-06-29 12:57:58 ----A---- D:\Windows\system32\WUDFHost.exe
2016-06-29 12:57:58 ----A---- D:\Windows\system32\WUDFCoinstaller.dll
2016-06-29 12:57:58 ----A---- D:\Windows\system32\drivers\WUDFPf.sys
2016-06-29 12:57:57 ----A---- D:\Windows\system32\localsec.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\umpnpmgr.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\OpcServices.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\netid.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\mimefilt.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\imagehlp.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\credui.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\CPFilters.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\conhost.exe
2016-06-29 12:57:55 ----A---- D:\Windows\system32\cfgmgr32.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\autoconv.exe
2016-06-29 12:57:54 ----A---- D:\Windows\system32\rpcss.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\olethk32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\ole32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\msdtctm.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\comdlg32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\cmd.exe
2016-06-29 12:57:53 ----A---- D:\Windows\system32\xpsservices.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\diagperf.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\certcli.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cdosys.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\calc.exe
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cabview.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cabinet.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\XpsRasterService.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\XpsGdiConverter.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\Query.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\mtxclu.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\certmgr.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\Bubbles.scr
2016-06-29 12:57:50 ----A---- D:\Windows\system32\wshbth.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browseui.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browser.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browcli.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\wbengine.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\sdcpl.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\qmgr.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bootres.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\BlbEvents.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bitsperf.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bitsadmin.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\biocpl.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bcdsrv.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bcdboot.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\batmeter.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\basesrv.dll
2016-06-29 12:57:49 ----A---- D:\Windows\bfsvc.exe
2016-06-29 12:57:47 ----A---- D:\Windows\system32\bcdedit.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\winmm.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\SndVolSSO.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\SndVol.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\LogonUI.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\AzSqlExt.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\azroleui.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\azroles.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\AxInstSv.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autoplay.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autochk.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autofmt.exe
2016-06-29 12:57:44 ----A---- D:\Windows\system32\wdiasqmmodule.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\advapi32.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\actxprxy.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\accessibilitycpl.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aitagent.exe
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aepdu.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aeinv.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\adsldp.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\acppage.dll
2016-06-29 12:57:42 ----A---- D:\Windows\system32\activeds.dll
2016-06-29 12:57:41 ----A---- D:\Windows\system32\SmartcardCredentialProvider.dll
2016-06-29 12:57:41 ----A---- D:\Windows\system32\apphelp.dll
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\volmgr.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\termdd.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\pci.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\kbdhid.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\msiscsi.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\IPMIDrv.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\iaStorV.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hidusb.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hidclass.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\HdAudio.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hdaudbus.sys
2016-06-29 12:57:38 ----A---- D:\Windows\system32\srchadmin.dll
2016-06-29 12:57:38 ----A---- D:\Windows\system32\OobeFldr.dll
2016-06-29 12:57:38 ----A---- D:\Windows\system32\dsuiext.dll
2016-06-29 12:57:37 ----A---- D:\Windows\system32\drivers\CompositeBus.sys
2016-06-29 12:57:37 ----A---- D:\Windows\system32\drivers\cdrom.sys
2016-06-29 12:57:36 ----A---- D:\Windows\system32\drivers\amdxata.sys
2016-06-29 12:57:36 ----A---- D:\Windows\system32\drivers\amdsata.sys
2016-06-29 12:57:34 ----A---- D:\Windows\system32\drivers\acpipmi.sys
2016-06-29 12:57:34 ----A---- D:\Windows\system32\drivers\acpi.sys
2016-06-29 12:57:33 ----A---- D:\Windows\system32\drivers\1394ohci.sys
2016-06-29 12:14:50 ----D---- D:\Users\pepa\AppData\Roaming\Opera Software
2016-06-29 12:13:32 ----D---- D:\Program Files\Opera
2016-06-29 11:18:01 ----A---- D:\Windows\ntbtlog.txt
2016-06-28 19:35:39 ----D---- D:\Users\pepa\AppData\Roaming\uTorrent
2016-06-27 18:41:46 ----HD---- D:\ProgramData\CanonBJ
2016-06-27 18:41:42 ----HD---- D:\Windows\system32\CanonIJ Uninstaller Information
2016-06-27 18:41:37 ----A---- D:\Windows\system32\CNMLM78.DLL
2016-06-27 18:41:33 ----HD---- D:\Program Files\CanonBJ
2016-06-27 10:44:12 ----D---- D:\Users\pepa\AppData\Roaming\Skype
2016-06-27 10:43:57 ----RD---- D:\Program Files\Skype
2016-06-27 10:43:57 ----D---- D:\Program Files\Common Files\Skype
2016-06-27 10:43:52 ----D---- D:\ProgramData\Skype
2016-06-27 10:11:42 ----D---- D:\ProgramData\McAfee Security Scan
2016-06-27 10:11:40 ----D---- D:\ProgramData\McAfee
2016-06-27 10:11:40 ----D---- D:\Program Files\McAfee Security Scan
2016-06-27 10:10:54 ----D---- D:\Users\pepa\AppData\Roaming\Macromedia
2016-06-27 10:10:54 ----D---- D:\Users\pepa\AppData\Roaming\Adobe
2016-06-27 10:10:26 ----D---- D:\Program Files\Seznam.cz
2016-06-27 10:09:59 ----D---- D:\Users\pepa\AppData\Roaming\Seznam.cz
2016-06-27 10:09:58 ----D---- D:\Program Files\Adobe Flash Player
2016-06-27 10:06:01 ----A---- D:\Windows\system32\FlashPlayerApp.exe
2016-06-27 10:05:57 ----D---- D:\Windows\system32\Macromed
2016-06-27 09:44:35 ----A---- D:\Windows\system32\poqexec.exe
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wups.dll
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wudriver.dll
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wuapi.dll
2016-06-27 00:13:58 ----D---- D:\Windows\Panther
2016-06-27 00:13:31 ----D---- D:\Windows\system32\OEM
2016-06-27 00:04:23 ----D---- D:\Windows.old.000
2016-06-26 17:58:33 ----A---- D:\Windows\system32\msonpmon.dll
2016-06-26 17:57:31 ----D---- D:\Program Files\Microsoft Works
2016-06-26 17:57:08 ----D---- D:\Program Files\Microsoft Visual Studio
2016-06-26 17:57:08 ----D---- D:\Program Files\Common Files\DESIGNER
2016-06-26 17:56:46 ----D---- D:\Windows\PCHEALTH
2016-06-26 17:56:46 ----D---- D:\Program Files\Microsoft.NET
2016-06-26 17:55:18 ----D---- D:\Program Files\Microsoft Visual Studio 8
2016-06-26 17:54:37 ----D---- D:\Program Files\Microsoft Office
2016-06-26 17:54:36 ----D---- D:\ProgramData\Microsoft Help
2016-06-26 17:53:35 ----RHD---- D:\MSOCache
2016-06-26 17:52:09 ----D---- D:\Users\pepa\AppData\Roaming\WinRAR
2016-06-26 17:51:48 ----D---- D:\Program Files\WinRAR
2016-06-26 16:54:06 ----N---- D:\Windows\system32\MpSigStub.exe
2016-06-26 16:51:52 ----D---- D:\Users\pepa\AppData\Roaming\Mozilla
2016-06-26 16:51:38 ----D---- D:\Program Files\Mozilla Maintenance Service
2016-06-26 16:51:33 ----D---- D:\Program Files\Mozilla Firefox
2016-06-26 16:37:50 ----A---- D:\Windows\system32\ssinstall-uninstall.bat
2016-06-26 16:37:49 ----A---- D:\Windows\system32\ssins.exe
2016-06-26 16:35:25 ----A---- D:\Windows\system32\drivers\aswKbd.sys
2016-06-26 16:32:46 ----D---- D:\Users\pepa\AppData\Roaming\AVAST Software
2016-06-26 16:32:29 ----D---- D:\Program Files\Common Files\AV
2016-06-26 16:32:21 ----A---- D:\Windows\system32\drivers\aswVmm.sys
2016-06-26 16:32:21 ----A---- D:\Windows\system32\drivers\aswStm.sys
2016-06-26 16:32:20 ----A---- D:\Windows\system32\drivers\aswsp.sys
2016-06-26 16:32:20 ----A---- D:\Windows\system32\drivers\aswRvrt.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswRdr2.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswMonFlt.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswHwid.sys
2016-06-26 16:32:18 ----A---- D:\Windows\system32\drivers\aswSnx.sys
2016-06-26 16:32:05 ----A---- D:\Windows\ucrtbase.dll
2016-06-26 16:32:05 ----A---- D:\Windows\system32\aswBoot.exe
2016-06-26 16:31:57 ----A---- D:\Windows\avastSS.scr
2016-06-26 16:30:22 ----D---- D:\Program Files\AVAST Software
2016-06-26 16:29:48 ----D---- D:\ProgramData\AVAST Software
2016-06-26 16:21:38 ----D---- D:\Program Files\InstallShield Installation Information
2016-06-26 16:21:38 ----A---- D:\Windows\system32\drivers\rtl8192se.sys
2016-06-26 16:21:34 ----D---- D:\Program Files\Realtek WLAN Driver
2016-06-26 16:21:10 ----SHD---- D:\Windows\Installer
2016-06-26 16:20:56 ----D---- D:\Users\pepa\AppData\Roaming\WinBatch
2016-06-26 16:03:11 ----A---- D:\Windows\system32\PerfStringBackup.INI
2016-06-26 15:59:18 ----D---- D:\Users\pepa\AppData\Roaming\Identities
2016-06-26 15:57:38 ----SD---- D:\Users\pepa\AppData\Roaming\Microsoft
2016-06-26 15:57:38 ----D---- D:\Users\pepa\AppData\Roaming\Media Center Programs
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Šablony
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Plocha
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Oblíbené položky
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Nabídka Start
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Dokumenty
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Data aplikací
2016-06-26 14:17:58 ----D---- D:\Windows\SoftwareDistribution
2016-06-26 14:14:37 ----D---- D:\Windows\Prefetch
======List of files/folders modified in the last 1 month======
2016-07-05 20:46:35 ----D---- D:\Windows\Temp
2016-07-05 20:46:30 ----RD---- D:\Program Files
2016-07-05 17:19:55 ----SHD---- D:\System Volume Information
2016-07-05 15:22:16 ----D---- D:\Windows\system32\config
2016-07-05 15:13:29 ----D---- D:\Windows\system32\wdi
2016-07-05 11:35:22 ----SHD---- D:\Config.Msi
2016-07-05 07:31:09 ----D---- D:\Windows\System32
2016-07-05 07:31:09 ----D---- D:\Windows\inf
2016-07-04 23:07:10 ----D---- D:\Windows\system32\wbem
2016-07-04 10:18:17 ----HD---- D:\ProgramData
2016-07-03 16:18:57 ----D---- D:\Windows\Microsoft.NET
2016-07-03 16:18:56 ----RSD---- D:\Windows\assembly
2016-07-03 09:53:33 ----D---- D:\Windows\system32\NDF
2016-07-03 09:48:19 ----D---- D:\Windows\winsxs
2016-07-03 09:46:41 ----D---- D:\Windows\system32\catroot2
2016-07-03 09:37:52 ----D---- D:\Windows\system32\drivers
2016-07-03 09:37:45 ----D---- D:\Windows\system32\sk-SK
2016-07-03 09:37:45 ----D---- D:\Windows\system32\en-US
2016-07-03 09:37:45 ----D---- D:\Windows\system32\cs-CZ
2016-07-03 09:37:45 ----D---- D:\Program Files\Windows Media Player
2016-07-03 09:37:43 ----D---- D:\Windows
2016-07-03 09:37:31 ----D---- D:\Windows\system32\Dism
2016-07-03 09:37:23 ----D---- D:\Windows\system32\CodeIntegrity
2016-07-03 09:37:23 ----D---- D:\Windows\system32\Boot
2016-07-03 09:37:19 ----D---- D:\Windows\PolicyDefinitions
2016-07-03 09:36:47 ----D---- D:\Windows\system32\DriverStore
2016-07-03 09:30:55 ----D---- D:\Windows\system32\catroot
2016-07-03 09:28:24 ----D---- D:\Windows\Logs
2016-07-02 05:18:01 ----D---- D:\Windows\rescache
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Sidebar
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Portable Devices
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Photo Viewer
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Mail
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Journal
2016-07-02 03:33:55 ----D---- D:\Program Files\Internet Explorer
2016-07-02 03:33:55 ----D---- D:\Program Files\DVD Maker
2016-07-02 03:33:54 ----D---- D:\Windows\servicing
2016-07-02 03:33:54 ----D---- D:\Windows\ehome
2016-07-02 03:33:54 ----D---- D:\Program Files\Windows Defender
2016-07-02 03:33:52 ----SHD---- D:\Windows\BitLockerDiscoveryVolumeContents
2016-07-02 03:33:51 ----D---- D:\Windows\system32\da-DK
2016-07-02 03:33:49 ----D---- D:\Windows\system32\oobe
2016-07-02 03:33:47 ----D---- D:\Windows\system32\sysprep
2016-07-02 03:33:47 ----D---- D:\Windows\system32\Setup
2016-07-02 03:33:47 ----D---- D:\Windows\system32\migration
2016-07-02 03:33:47 ----D---- D:\Windows\system32\cs
2016-07-02 03:33:47 ----D---- D:\Windows\system32\AdvancedInstallers
2016-07-02 03:33:46 ----D---- D:\Windows\system32\sppui
2016-07-02 03:33:46 ----D---- D:\Windows\system32\manifeststore
2016-07-02 03:33:46 ----D---- D:\Windows\system32\es-ES
2016-07-02 03:33:46 ----D---- D:\Windows\system32\en
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\UMDF
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\en-US
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\cs-CZ
2016-07-02 03:33:44 ----D---- D:\Windows\system32\migwiz
2016-07-02 03:33:34 ----RSD---- D:\Windows\Fonts
2016-07-02 03:33:34 ----D---- D:\Windows\AppPatch
2016-07-02 03:11:20 ----A---- D:\Windows\system32\msclmd.dll
2016-07-01 15:52:07 ----SD---- D:\ProgramData\Microsoft
2016-06-29 11:40:53 ----D---- D:\Windows.old
2016-06-27 10:43:57 ----D---- D:\Program Files\Common Files
2016-06-27 10:06:02 ----D---- D:\Windows\Tasks
2016-06-27 10:06:02 ----D---- D:\Windows\system32\Tasks
2016-06-26 17:57:29 ----D---- D:\Program Files\Common Files\microsoft shared
2016-06-26 17:57:23 ----D---- D:\Program Files\MSBuild
2016-06-26 17:57:06 ----D---- D:\Windows\ShellNew
2016-06-26 17:54:56 ----A---- D:\Windows\win.ini
2016-06-26 17:54:54 ----D---- D:\Program Files\Common Files\System
2016-06-26 16:21:16 ----D---- D:\Windows\system32\restore
2016-06-26 15:59:13 ----SHD---- D:\$Recycle.Bin
2016-06-26 15:57:38 ----RD---- D:\Users
2016-06-26 15:57:30 ----D---- D:\Windows\Setup
2016-06-26 15:56:34 ----SHD---- D:\Recovery
2016-06-26 15:56:34 ----D---- D:\Program Files\Windows NT
2016-06-26 15:56:28 ----D---- D:\Windows\debug
2016-06-26 14:15:40 ----D---- D:\Windows\CSC
2016-06-19 20:31:06 ----RD---- D:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; D:\Windows\system32\drivers\aswRvrt.sys [2016-06-26 60424]
R0 aswVmm;avast! VM Monitor; D:\Windows\system32\drivers\aswVmm.sys [2016-06-26 222056]
R0 rdyboost;ReadyBoost; D:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; D:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; D:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswKbd;aswKbd; D:\Windows\system32\drivers\aswKbd.sys [2016-06-26 35096]
R1 aswRdr;aswRdr; D:\Windows\system32\drivers\aswRdr2.sys [2016-06-26 91232]
R1 aswSnx;aswSnx; D:\Windows\system32\drivers\aswSnx.sys [2016-06-26 816304]
R1 aswSP;aswSP; D:\Windows\system32\drivers\aswSP.sys [2016-06-27 438296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; D:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; D:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; D:\Windows\system32\drivers\aswHwid.sys [2016-06-26 34008]
R2 aswMonFlt;aswMonFlt; D:\Windows\system32\drivers\aswMonFlt.sys [2016-06-26 91680]
R2 aswStm;aswStm; D:\Windows\system32\drivers\aswStm.sys [2016-06-26 118152]
R3 atikmdag;atikmdag; D:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 RTL8167;Ovladač Realtek 8167 NT; D:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; D:\Windows\system32\DRIVERS\rtl8192se.sys [2009-08-27 859136]
S2 Parvdm;Parvdm; D:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; D:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; D:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; D:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 pciide;pciide; D:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; D:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; D:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; D:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; D:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; D:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; D:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; D:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; D:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; D:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; D:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; D:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; D:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 wdm_usb;wdm_usb; D:\Windows\system32\DRIVERS\usb2ser.sys [2016-03-10 119952]
S3 WinUsb;WinUsb; D:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;Avast Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-06-26 197128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; D:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ssinstall;SInstalátor; D:\Windows\System32\ssins.exe [2016-06-26 2324216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-27 270016]
S3 AppMgmt;@appmgmts.dll,-3250; D:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service; D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [2015-12-02 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-05 146888]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
Run by pepa at 2016-07-05 20:46:30
Microsoft Windows 7 Ultimate Service Pack 1
System drive D: has 162 GB (68%) free of 238 GB
Total RAM: 2043 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:26, on 5.7.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
D:\Windows\system32\Dwm.exe
D:\Windows\Explorer.EXE
D:\Windows\system32\taskhost.exe
D:\Program Files\AVAST Software\Avast\AvastUI.exe
D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
D:\Windows\system32\wbem\unsecapp.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Users\pepa\Downloads\RSIT.exe
D:\Program Files\trend micro\pepa.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "D:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "D:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "D:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "D:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = D:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - D:\Windows\system32\atiesrxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - D:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - D:\Windows\System32\ssins.exe
--
End of file - 4937 bytes
======Scheduled tasks folder======
D:\Windows\tasks\Adobe Flash Player Updater.job - D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=D:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=D:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll
D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-26 716632]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=D:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-06-26 8897712]
"GrooveMonitor"=D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"seznam-listicka-distribuce"=D:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Skype"=D:\Program Files\Skype\Phone\Skype.exe [2016-06-29 26424960]
D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - D:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=D:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - D:\Windows\System32\Notepad.exe %1
.js - open - D:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-07-05 20:46:30 ----D---- D:\rsit
2016-07-05 20:46:30 ----D---- D:\Program Files\trend micro
2016-07-03 09:37:43 ----D---- D:\Windows\EOONotify
2016-07-03 09:19:51 ----A---- D:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-02 16:29:00 ----A---- D:\Windows\system32\shell32.dll
2016-07-02 16:28:58 ----A---- D:\Windows\system32\shdocvw.dll
2016-07-02 15:24:23 ----A---- D:\Windows\system32\winhttp.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\ws2_32.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\netbtugc.exe
2016-07-02 15:24:22 ----A---- D:\Windows\system32\mswsock.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\drivers\netbt.sys
2016-07-02 15:24:18 ----A---- D:\Windows\system32\WMVDECOD.DLL
2016-07-02 15:24:16 ----A---- D:\Windows\system32\msmpeg2adec.dll
2016-07-02 15:24:16 ----A---- D:\Windows\system32\mf.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMVSDECD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMSPDMOD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMADMOE.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMADMOD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\quartz.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\qdvd.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\MSMPEG2ENC.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\evr.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\COLORCNV.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVXENCD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVSENCD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVENCOD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\wmpmde.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMALFXGFXDSP.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\qasf.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MPG4DECD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MP43DECD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MFWMAAEC.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\mfplat.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\mcmde.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\devenum.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\WMSPDMOE.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\VIDRESZR.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\SysFxUI.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\rrinstaller.exe
2016-07-02 15:24:13 ----A---- D:\Windows\system32\RESAMPLEDMO.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\MP4SDECD.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\MP3DMOD.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfvdsp.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfps.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfpmp.exe
2016-07-02 15:24:13 ----A---- D:\Windows\system32\drivers\portcls.sys
2016-07-02 15:24:12 ----A---- D:\Windows\system32\mferror.dll
2016-07-02 15:24:12 ----A---- D:\Windows\system32\ksuser.dll
2016-07-02 15:24:12 ----A---- D:\Windows\system32\drivers\drmkaud.sys
2016-07-02 15:24:12 ----A---- D:\Windows\system32\drivers\drmk.sys
2016-07-02 15:24:04 ----A---- D:\Windows\system32\Wdfres.dll
2016-07-02 15:24:04 ----A---- D:\Windows\system32\drivers\WdfLdr.sys
2016-07-02 15:24:04 ----A---- D:\Windows\system32\drivers\Wdf01000.sys
2016-07-02 15:24:02 ----A---- D:\Windows\system32\WMPhoto.dll
2016-07-02 15:24:00 ----A---- D:\Windows\system32\msi.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msimsg.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msihnd.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msiexec.exe
2016-07-02 15:23:59 ----A---- D:\Windows\system32\consent.exe
2016-07-02 15:23:59 ----A---- D:\Windows\system32\authui.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\appinfo.dll
2016-07-02 15:23:52 ----A---- D:\Windows\system32\wmp.dll
2016-07-02 15:23:51 ----A---- D:\Windows\system32\wmploc.DLL
2016-07-02 15:23:51 ----A---- D:\Windows\system32\spwmp.dll
2016-07-02 15:23:51 ----A---- D:\Windows\system32\dxmasf.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml6r.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml6.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml3r.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml3.dll
2016-07-02 15:23:32 ----A---- D:\Windows\system32\drivers\usbehci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbuhci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbport.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbohci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbhub.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbd.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbccgp.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\drivers\dxgmms1.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\drivers\dxgkrnl.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\cdd.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\wmdrmsdk.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\msmpeg2vdec.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\drmv2clt.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\blackbox.dll
2016-07-02 15:23:16 ----A---- D:\Windows\system32\ntkrnlpa.exe
2016-07-02 15:23:15 ----A---- D:\Windows\system32\schannel.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\ntoskrnl.exe
2016-07-02 15:23:15 ----A---- D:\Windows\system32\lsasrv.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\kerberos.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\drmmgrtn.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\AUDIOKSE.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\wintrust.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\msv1_0.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\drivers\PEAuth.sys
2016-07-02 15:23:14 ----A---- D:\Windows\system32\crypt32.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\ci.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\winresume.exe
2016-07-02 15:23:13 ----A---- D:\Windows\system32\winload.exe
2016-07-02 15:23:13 ----A---- D:\Windows\system32\cryptsvc.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\audiosrv.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\adtschema.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\srcore.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\pcasvc.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\ncrypt.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\drivers\ksecpkg.sys
2016-07-02 15:23:12 ----A---- D:\Windows\system32\drivers\cng.sys
2016-07-02 15:23:12 ----A---- D:\Windows\system32\cryptui.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\cryptnet.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\wdigest.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\TSpkg.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\EncDump.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\drivers\mountmgr.sys
2016-07-02 15:23:11 ----A---- D:\Windows\system32\drivers\ksecdd.sys
2016-07-02 15:23:11 ----A---- D:\Windows\system32\csrsrv.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\cryptsp.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\AudioSes.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\AudioEng.dll
2016-07-02 15:23:10 ----A---- D:\Windows\system32\rstrui.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\smss.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\msscp.dll
2016-07-02 15:23:09 ----A---- D:\Windows\system32\msnetobj.dll
2016-07-02 15:23:09 ----A---- D:\Windows\system32\lsass.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\audiodg.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\appidapi.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\sspicli.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\pcadm.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\auditpol.exe
2016-07-02 15:23:08 ----A---- D:\Windows\system32\appidsvc.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\appidpolicyconverter.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\sspisrv.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\srclient.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\setbcdlocale.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\secur32.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\pcawrk.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\pcalua.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\msmmsp.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\msaudite.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\drivers\appid.sys
2016-07-02 15:23:07 ----A---- D:\Windows\system32\credssp.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\appidcertstorecheck.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\apisetschema.dll
2016-07-02 15:23:06 ----A---- D:\Windows\system32\pcaevts.dll
2016-07-02 15:23:06 ----A---- D:\Windows\system32\msobjs.dll
2016-07-02 15:22:16 ----A---- D:\Windows\system32\rdpcorets.dll
2016-07-02 15:22:12 ----A---- D:\Windows\system32\RMActivate_isv.exe
2016-07-02 15:22:12 ----A---- D:\Windows\system32\RMActivate.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_ssp_isv.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_ssp.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_isv.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\RMActivate_ssp_isv.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\RMActivate_ssp.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\msdrm.dll
2016-07-02 15:21:32 ----A---- D:\Windows\system32\termsrv.dll
2016-07-02 15:21:06 ----A---- D:\Windows\system32\comctl32.dll
2016-07-02 15:21:04 ----A---- D:\Windows\system32\scesrv.dll
2016-07-02 15:21:02 ----A---- D:\Windows\system32\drivers\ntfs.sys
2016-07-02 15:21:00 ----A---- D:\Windows\system32\WsmSvc.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WsmWmiPl.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WsmAuto.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WSManMigrationPlugin.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WSManHTTPConfig.exe
2016-07-02 15:20:30 ----A---- D:\Windows\system32\gdi32.dll
2016-07-02 13:00:44 ----D---- D:\Windows\Minidump
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wups2.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wucltux.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wuaueng.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wuauclt.exe
2016-07-02 09:52:01 ----A---- D:\Windows\system32\wuwebv.dll
2016-07-02 09:52:01 ----A---- D:\Windows\system32\wuapp.exe
2016-07-02 03:02:15 ----D---- D:\Windows\system32\SPReview
2016-07-02 03:00:44 ----D---- D:\Windows\Migration
2016-07-02 00:22:14 ----A---- D:\Windows\system32\EOSNotify.exe
2016-07-01 15:35:50 ----D---- D:\Users\pepa\AppData\Roaming\BitTorrent
2016-06-30 12:50:29 ----D---- D:\Windows\system32\EventProviders
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmictimeprovider.dll
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmicsvc.exe
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmicres.dll
2016-06-29 13:01:09 ----A---- D:\Windows\system32\IcCoinstall.dll
2016-06-29 13:01:08 ----A---- D:\Windows\system32\drivers\VMBusHID.sys
2016-06-29 13:01:07 ----A---- D:\Windows\system32\vmbusres.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\vmbuspipe.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\VmbusCoinstaller.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\drivers\winhv.sys
2016-06-29 13:01:06 ----A---- D:\Windows\system32\drivers\vmbus.sys
2016-06-29 13:01:06 ----A---- D:\Windows\system32\drivers\storvsc.sys
2016-06-29 13:01:05 ----A---- D:\Windows\system32\WSDApi.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\vmstorfltres.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\VmdCoinstall.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\PresentationHostProxy.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\PresentationHost.exe
2016-06-29 13:01:05 ----A---- D:\Windows\system32\drivers\vmstorfl.sys
2016-06-29 13:01:05 ----A---- D:\Windows\system32\drivers\vms3cap.sys
2016-06-29 13:01:03 ----A---- D:\Windows\system32\tquery.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\StructuredQuery.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssvp.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssrch.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssphtb.dll
2016-06-29 13:00:56 ----A---- D:\Windows\system32\drivers\volsnap.sys
2016-06-29 13:00:56 ----A---- D:\Windows\system32\drivers\vhdmp.sys
2016-06-29 13:00:55 ----A---- D:\Windows\system32\drivers\usbvideo.sys
2016-06-29 13:00:55 ----A---- D:\Windows\system32\drivers\USBSTOR.SYS
2016-06-29 13:00:54 ----A---- D:\Windows\system32\umb.dll
2016-06-29 13:00:54 ----A---- D:\Windows\system32\drivers\umbus.sys
2016-06-29 13:00:53 ----A---- D:\Windows\system32\drivers\winusb.sys
2016-06-29 13:00:50 ----A---- D:\Windows\system32\drivers\sffp_sd.sys
2016-06-29 13:00:45 ----A---- D:\Windows\system32\drivers\sbp2port.sys
2016-06-29 13:00:42 ----A---- D:\Windows\system32\drivers\nvstor.sys
2016-06-29 13:00:42 ----A---- D:\Windows\system32\drivers\nvraid.sys
2016-06-29 13:00:41 ----A---- D:\Windows\system32\MPSSVC.dll
2016-06-29 13:00:41 ----A---- D:\Windows\system32\FirewallControlPanel.dll
2016-06-29 13:00:40 ----A---- D:\Windows\system32\AuthFWSnapin.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\netfxperf.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscories.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscorier.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscoree.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\dfshim.dll
2016-06-29 13:00:35 ----A---- D:\Windows\system32\Narrator.exe
2016-06-29 13:00:35 ----A---- D:\Windows\system32\NAPHLPR.DLL
2016-06-29 13:00:35 ----A---- D:\Windows\system32\NAPCRYPT.DLL
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\msdsm.sys
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\msahci.sys
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\ataport.sys
2016-06-29 13:00:33 ----A---- D:\Windows\system32\wpd_ci.dll
2016-06-29 13:00:33 ----A---- D:\Windows\system32\drivers\scsiport.sys
2016-06-29 13:00:33 ----A---- D:\Windows\system32\drivers\mpio.sys
2016-06-29 13:00:31 ----A---- D:\Windows\system32\zipfldr.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wwanprotdim.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wwanconn.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wusa.exe
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wsdchngr.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\CertEnroll.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\WPDShServiceObj.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wpdshext.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wpdbusenum.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wkssvc.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\PortableDeviceStatus.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\PortableDeviceApi.dll
2016-06-29 13:00:29 ----A---- D:\Windows\system32\framedynos.dll
2016-06-29 13:00:29 ----A---- D:\Windows\system32\framedyn.dll
2016-06-29 13:00:28 ----A---- D:\Windows\system32\wbemcomn.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wmicmiplugin.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanui.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanpref.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanmsm.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlangpui.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\winsrv.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\winlogon.exe
2016-06-29 13:00:27 ----A---- D:\Windows\system32\WindowsCodecs.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\ReAgentc.exe
2016-06-29 13:00:27 ----A---- D:\Windows\system32\ReAgent.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\drivers\afd.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\win32k.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wimserv.exe
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wimgapi.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\webservices.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\webio.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\WebClnt.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wcncsvc.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\fphc.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\drivers\mrxdav.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\davclnt.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\WinSAT.exe
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiaservc.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiarpc.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiadefui.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\audiodev.dll
2016-06-29 13:00:23 ----A---- D:\Windows\twain_32.dll
2016-06-29 13:00:23 ----A---- D:\Windows\system32\wpdwcn.dll
2016-06-29 13:00:21 ----A---- D:\Windows\system32\WinSATAPI.dll
2016-06-29 13:00:21 ----A---- D:\Windows\system32\wiavideo.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\WPDSp.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\wkscli.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\VSSVC.exe
2016-06-29 13:00:19 ----A---- D:\Windows\system32\vssapi.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\drivers\usbrpm.sys
2016-06-29 13:00:18 ----A---- D:\Windows\system32\vdsutil.dll
2016-06-29 13:00:18 ----A---- D:\Windows\system32\vds.exe
2016-06-29 13:00:17 ----A---- D:\Windows\system32\VAN.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\MSVidCtl.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msvidc32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msvfw32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msrle32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\mciavi32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\iccvid.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\cca.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\avifil32.dll
2016-06-29 13:00:15 ----A---- D:\Windows\system32\vdsbas.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\usp10.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\userinit.exe
2016-06-29 13:00:11 ----A---- D:\Windows\system32\userenv.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\usercpl.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\user32.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\umpo.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\upnp.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\unimdmat.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\drivers\USBCAMD2.sys
2016-06-29 13:00:10 ----A---- D:\Windows\system32\drivers\USBCAMD.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UserAccountControlSettings.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UIRibbonRes.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UIRibbon.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\tzutil.exe
2016-06-29 13:00:09 ----A---- D:\Windows\system32\twext.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\EncDec.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\drivers\udfs.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\drivers\tunnel.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\djoin.exe
2016-06-29 13:00:08 ----A---- D:\Windows\system32\w32tm.exe
2016-06-29 13:00:08 ----A---- D:\Windows\system32\TRAPI.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\thumbcache.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\themeui.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\themecpl.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\drivers\rdpdr.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\termmgr.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\tcpipcfg.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\taskschd.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\taskeng.exe
2016-06-29 13:00:07 ----A---- D:\Windows\system32\schedsvc.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\schedcli.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\netiougc.exe
2016-06-29 13:00:07 ----A---- D:\Windows\system32\netiohlp.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tdx.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tdi.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tcpip.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\FWPKCLNT.SYS
2016-06-29 13:00:06 ----A---- D:\Windows\system32\wavemsp.dll
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskmgr.exe
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskhost.exe
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskbarcpl.dll
2016-06-29 13:00:06 ----A---- D:\Windows\system32\tapisrv.dll
2016-06-29 13:00:05 ----A---- D:\Windows\system32\takeown.exe
2016-06-29 13:00:05 ----A---- D:\Windows\system32\tabcal.exe
2016-06-29 13:00:05 ----A---- D:\Windows\system32\MultiDigiMon.exe
2016-06-29 13:00:04 ----A---- D:\Windows\system32\drivers\TsUsbFlt.sys
2016-06-29 13:00:03 ----A---- D:\Windows\system32\wtsapi32.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\tsgqec.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\SessEnv.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\remotepg.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\regapi.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpencom.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpdd.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpd3d.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\perfts.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\mstscax.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\input.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\aaclient.dll
2016-06-29 13:00:02 ----A---- D:\Windows\system32\wisptis.exe
2016-06-29 13:00:02 ----A---- D:\Windows\system32\TabSvc.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\winsta.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\utildll.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\TSWorkspace.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\tspubwmi.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpsign.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpshell.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\RDPENCDD.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpclip.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\mstsc.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\mstask.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\lsm.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\icaapi.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\drivers\tssecsrv.sys
2016-06-29 13:00:01 ----A---- D:\Windows\system32\drivers\RDPCDD.sys
2016-06-29 13:00:00 ----A---- D:\Windows\system32\rdpinit.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\wksprt.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\umrdp.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tssrvlic.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tskill.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tsdiscon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tscon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tscfgwmi.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\shadow.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rwinsta.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\reset.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpwsx.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdprefdrvapi.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\RDPREFDD.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpendp.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpcorekmts.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\query.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\qprocess.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\qappsrv.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\msutb.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\LSCSHostPolicy.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\logoff.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chgusr.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chgport.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chglogon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\change.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\drivers\tdtcp.sys
2016-06-29 12:59:59 ----A---- D:\Windows\system32\drivers\tdpipe.sys
2016-06-29 12:59:58 ----A---- D:\Windows\system32\tsmf.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\taskcomp.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\rdpcfgex.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\qwinsta.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\quser.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\msg.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\DShowRdpFilter.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\drivers\rdpwd.sys
2016-06-29 12:59:57 ----A---- D:\Windows\system32\tlscsp.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\systemcpl.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\syssetup.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\sysclass.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\spopk.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\spbcd.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\rdpcore.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\lsmproxy.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\IPHLPAPI.DLL
2016-06-29 12:59:56 ----A---- D:\Windows\system32\syncui.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sxs.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sud.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sbe.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\PortableDeviceSyncProvider.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\wsqmcons.exe
2016-06-29 12:59:55 ----A---- D:\Windows\system32\stobject.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\ssText3d.scr
2016-06-29 12:59:55 ----A---- D:\Windows\system32\sqmapi.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\sqlcese30.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\drivers\storport.sys
2016-06-29 12:59:54 ----A---- D:\Windows\system32\spp.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\wsnmp32.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\WavDest.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\sscore.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\srvsvc.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\SmiEngine.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\inetmib1.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\drivers\srv2.sys
2016-06-29 12:59:53 ----A---- D:\Windows\system32\drivers\srv.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\srvcli.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\sisbkup.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\srvnet.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\scfilter.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb20.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb10.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\certprop.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\basecsp.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shwebsvc.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shunimpl.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shsvcs.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shlwapi.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shimgvw.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shgina.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\unattend.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\shsetup.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\shacct.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\setupcl.exe
2016-06-29 12:59:50 ----A---- D:\Windows\system32\setupapi.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\prevhost.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spwizui.dll
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spreview.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spinstall.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\setupcln.dll
2016-06-29 12:59:49 ----A---- D:\Windows\system32\sethc.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\ActionQueue.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\wscapi.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\vaultsvc.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\Vault.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppuinotify.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppsvc.exe
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppinst.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppcomapi.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppc.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\slwga.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\slui.exe
2016-06-29 12:59:48 ----A---- D:\Windows\system32\nltest.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\vbscript.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sppobjs.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\schtasks.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\SearchFolder.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdrsvc.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdengin2.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdclt.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\scavengeui.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\scansetting.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\netlogon.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\manage-bde.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\jscript.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\fvecpl.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\fveapi.dll
2016-06-29 12:59:45 ----A---- D:\Windows\system32\scecli.dll
2016-06-29 12:59:45 ----A---- D:\Windows\system32\repair-bde.exe
2016-06-29 12:59:45 ----A---- D:\Windows\system32\drivers\fvevol.sys
2016-06-29 12:59:45 ----A---- D:\Windows\system32\BdeHdCfg.exe
2016-06-29 12:59:43 ----A---- D:\Windows\system32\uxlib.dll
2016-06-29 12:59:43 ----A---- D:\Windows\system32\spwizres.dll
2016-06-29 12:59:43 ----A---- D:\Windows\system32\spwizeng.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\sysmain.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\logoncli.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\CertPolEng.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\WinSCard.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\srrstr.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\sharemediacpl.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\sppwinob.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\runonce.exe
2016-06-29 12:59:40 ----A---- D:\Windows\system32\rpchttp.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\RpcRtRemote.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\rpcrt4.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\Robocopy.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\riched32.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\riched20.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\Ribbons.scr
2016-06-29 12:59:39 ----A---- D:\Windows\system32\RelPost.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\recovery.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\recdisc.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\rastls.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\rastapi.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rmcast.sys
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rdyboost.sys
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rdbss.sys
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rtutils.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rasppp.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rasmans.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\mprddm.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\iprtrmgr.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\cmstp.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\vpnikeapi.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\vpnike.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbGDCoInstaller.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\RDVGHelper.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\rdpudd.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\raschap.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\wanarp.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\rdpvideominiport.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\ndproxy.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\ndiswan.sys
2016-06-29 12:59:36 ----A---- D:\Windows\system32\RacEngn.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\XpsPrint.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\spoolsv.exe
2016-06-29 12:59:35 ----A---- D:\Windows\system32\qedit.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\proquota.exe
2016-06-29 12:59:35 ----A---- D:\Windows\system32\propsys.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\profsvc.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\profprov.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\prncache.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\hgprint.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\sppnp.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\powercpl.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\pifmgr.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\PhotoScreensaver.scr
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wvc.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wpccpl.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wdscore.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wdc.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\unlodctr.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PrintBrmUi.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PnPUnattend.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PkgMgr.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\photowiz.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\perfmon.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PerfCenterCPL.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\pdhui.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\drivers\partmgr.sys
2016-06-29 12:59:32 ----A---- D:\Windows\system32\win32spl.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\prnfldr.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\printui.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\pla.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\pdh.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\ntprint.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\inetpp.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\relog.exe
2016-06-29 12:59:31 ----A---- D:\Windows\system32\puiobj.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\PrintIsolationProxy.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\logman.exe
2016-06-29 12:59:31 ----A---- D:\Windows\system32\localspl.dll
2016-06-29 12:59:27 ----A---- D:\Windows\system32\PushPrinterConnections.exe
2016-06-29 12:59:27 ----A---- D:\Windows\system32\prntvpt.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\OnLineIDCpl.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\onexui.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\onex.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\olepro32.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\oleaut32.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\ocsetup.exe
2016-06-29 12:59:25 ----A---- D:\Windows\system32\ocsetapi.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\drivers\csc.sys
2016-06-29 12:59:25 ----A---- D:\Windows\system32\cscui.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\cscsvc.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\CscMig.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscobj.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscdll.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscapi.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\asycfilt.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntshrui.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntlanman.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntdll.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nslookup.exe
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nlasvc.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nlaapi.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\networkmap.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ncsi.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\dosx.exe
2016-06-29 12:59:22 ----A---- D:\Windows\system32\pnidui.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\nshwfp.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\networkexplorer.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netutils.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netshell.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netplwiz.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netjoin.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netcenter.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\IKEEXT.DLL
2016-06-29 12:59:22 ----A---- D:\Windows\system32\FWPUCLNT.DLL
2016-06-29 12:59:22 ----A---- D:\Windows\system32\drivers\netio.sys
2016-06-29 12:59:22 ----A---- D:\Windows\system32\BFE.DLL
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netcfgx.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netcfg.exe
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netapi32.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\net1.exe
2016-06-29 12:59:21 ----A---- D:\Windows\system32\ncryptui.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\nci.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\NaturalLanguage6.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\drivers\ndisuio.sys
2016-06-29 12:59:21 ----A---- D:\Windows\system32\drivers\ndis.sys
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QUTIL.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QSVRMGMT.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QSHVHOST.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\KMSVC.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\ipsmsnap.dll
2016-06-29 12:59:18 ----A---- D:\Windows\system32\nshipsec.dll
2016-06-29 12:59:18 ----A---- D:\Windows\system32\iasrecst.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QCLIPROV.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QAGENTRT.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QAGENT.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\netdiagfx.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\napdsnap.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\iasrad.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\iasacct.dll
2016-06-29 12:59:16 ----A---- D:\Windows\system32\Mystify.scr
2016-06-29 12:59:16 ----A---- D:\Windows\system32\mydocs.dll
2016-06-29 12:59:16 ----A---- D:\Windows\system32\mcbuilder.exe
2016-06-29 12:59:16 ----A---- D:\Windows\system32\IPSECSVC.DLL
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msinfo32.exe
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msieftp.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msftedit.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msconfig.exe
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msasn1.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\MSAC3ENC.DLL
2016-06-29 12:59:14 ----A---- D:\Windows\system32\SyncCenter.dll
2016-06-29 12:59:14 ----A---- D:\Windows\system32\mprapi.dll
2016-06-29 12:59:14 ----A---- D:\Windows\system32\mobsync.exe
2016-06-29 12:59:13 ----A---- D:\Windows\system32\WMVCORE.DLL
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpsrcwp.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpshell.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpps.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\WMPEncEn.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpeffects.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpdxm.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmdrmnet.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmdrmdev.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\SensorsCpl.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\MMDevAPI.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfreadwrite.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\MFPlay.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfds.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc42u.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc40u.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc40.dll
2016-06-29 12:59:12 ----A---- D:\Windows\system32\WMNetMgr.dll
2016-06-29 12:59:11 ----A---- D:\Windows\system32\logagent.exe
2016-06-29 12:59:10 ----A---- D:\Windows\system32\MediaMetadataHandler.dll
2016-06-29 12:59:10 ----A---- D:\Windows\system32\mapistub.dll
2016-06-29 12:59:10 ----A---- D:\Windows\system32\mapi32.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\mcupdate_GenuineIntel.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\inetcomm.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\AuxiliaryDisplayCpl.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\sqlsrv32.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\PresentationSettings.exe
2016-06-29 12:59:07 ----A---- D:\Windows\system32\odbcconf.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\migisol.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\AuxiliaryDisplayServices.dll
2016-06-29 12:59:03 ----A---- D:\Windows\system32\mblctr.exe
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbctrac.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbcjt32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbccp32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbc32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\msorcl32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\mmcndmgr.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\MdSched.exe
2016-06-29 12:59:01 ----A---- D:\Windows\system32\defaultlocationcpl.dll
2016-06-29 12:59:00 ----A---- D:\Windows\system32\luainstall.dll
2016-06-29 12:59:00 ----A---- D:\Windows\system32\lpremove.exe
2016-06-29 12:59:00 ----A---- D:\Windows\system32\lpksetup.exe
2016-06-29 12:58:59 ----A---- D:\Windows\system32\Wldap32.dll
2016-06-29 12:58:59 ----A---- D:\Windows\system32\nrpsrv.dll
2016-06-29 12:58:53 ----A---- D:\Windows\system32\drivers\tcpipreg.sys
2016-06-29 12:58:45 ----A---- D:\Windows\system32\KernelBase.dll
2016-06-29 12:58:45 ----A---- D:\Windows\system32\kernel32.dll
2016-06-29 12:58:45 ----A---- D:\Windows\system32\drivers\ks.sys
2016-06-29 12:58:44 ----A---- D:\Windows\system32\iTVData.dll
2016-06-29 12:58:44 ----A---- D:\Windows\system32\isoburn.exe
2016-06-29 12:58:43 ----A---- D:\Windows\system32\wshirda.dll
2016-06-29 12:58:43 ----A---- D:\Windows\system32\nlsbres.dll
2016-06-29 12:58:43 ----A---- D:\Windows\system32\MuiUnattend.exe
2016-06-29 12:58:41 ----A---- D:\Windows\system32\imm32.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\imapi2.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\dbghelp.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\dbgeng.dll
2016-06-29 12:58:39 ----A---- D:\Windows\system32\ieframe.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\inseng.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\iesysprep.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\ie4uinit.exe
2016-06-29 12:58:37 ----A---- D:\Windows\system32\webcheck.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\occache.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\msrating.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\imgutil.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\ieUnatt.exe
2016-06-29 12:58:37 ----A---- D:\Windows\system32\iertutil.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\RegisterIEPKEYs.exe
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mshtmled.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mshtml.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeedssync.exe
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeedsbs.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeeds.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mscms.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\licmgr10.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\iepeers.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\iedkcs32.dll
2016-06-29 12:58:35 ----A---- D:\Windows\system32\wininet.dll
2016-06-29 12:58:34 ----A---- D:\Windows\system32\tzres.dll
2016-06-29 12:58:33 ----A---- D:\Windows\system32\kbdlk41a.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\mstime.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDUS.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDUGHR1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDTUF.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDSG.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDSF.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDPO.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDMAORI.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDLT1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDINHIN.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDGR1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDGKL.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDCZ1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDBULG.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\iphlpsvc.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\C_ISCII.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTURME.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTUQ.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTAJIK.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDNEPR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDMON.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINTEL.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINTAM.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINORI.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINMAR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINKAN.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINBEN.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDGEO.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDBLR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDBASH.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\iscsium.dll
2016-06-29 12:58:30 ----A---- D:\Windows\system32\iscsicli.exe
2016-06-29 12:58:30 ----A---- D:\Windows\system32\elsTrans.dll
2016-06-29 12:58:29 ----A---- D:\Windows\system32\urlmon.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\provsvc.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\ListSvc.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\itircl.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\imapi2fs.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\httpapi.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\HotStartUserAgent.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\hgcpl.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\drivers\http.sys
2016-06-29 12:58:27 ----A---- D:\Windows\system32\hbaapi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\halmacpi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\halacpi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\hal.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\drivers\hwpolicy.sys
2016-06-29 12:58:27 ----A---- D:\Windows\system32\ActionCenterCPL.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\ActionCenter.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\gpsvc.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\gameux.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\fontsub.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\atmlib.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\atmfd.dll
2016-06-29 12:58:18 ----A---- D:\Windows\system32\gpprefcl.dll
2016-06-29 12:58:18 ----A---- D:\Windows\system32\appmgr.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\scrptadm.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\ftp.exe
2016-06-29 12:58:17 ----A---- D:\Windows\system32\fontext.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\AdmTmpl.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\t2embed.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\muifontsetup.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\FXSSVC.exe
2016-06-29 12:58:15 ----A---- D:\Windows\system32\FXSMON.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fms.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\findstr.exe
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fdeploy.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fde.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\resutils.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\ifsutil.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\FXSTIFF.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\clusapi.dll
2016-06-29 12:58:13 ----A---- D:\Windows\system32\WFS.exe
2016-06-29 12:58:13 ----A---- D:\Windows\system32\untfs.dll
2016-06-29 12:58:13 ----A---- D:\Windows\system32\FXSCOVER.exe
2016-06-29 12:58:12 ----A---- D:\Windows\system32\wevtsvc.dll
2016-06-29 12:58:12 ----A---- D:\Windows\system32\ExplorerFrame.dll
2016-06-29 12:58:12 ----A---- D:\Windows\system32\eudcedit.exe
2016-06-29 12:58:12 ----A---- D:\Windows\explorer.exe
2016-06-29 12:58:11 ----A---- D:\Windows\system32\WerFaultSecure.exe
2016-06-29 12:58:11 ----A---- D:\Windows\system32\werconcpl.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\wer.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\mspbda.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\msdri.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\Faultrep.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\EhStorAPI.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\Mcx2Svc.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\MCEWMDRMNDBootstrap.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\esent.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\efscore.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eapphost.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eappgnui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eapp3hst.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DxpTaskSync.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DXPTaskRingtone.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DXP.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dskquoui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\drvstore.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3ui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3svc.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3msm.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3cfg.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3api.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dxgi.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\drivers\Diskdump.sys
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dpnaddr.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnsrslvr.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnscmmc.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnscacheugc.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnsapi.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\Display.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\diskraid.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\diskpart.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\d3d9.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\d3d10warp.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\vfwwdm32.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\mciqtz32.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\FntCache.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\DWrite.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d11.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d10level9.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d10_1core.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\amstream.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\qdv.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\qcap.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\msdmo.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\setupugc.exe
2016-06-29 12:58:05 ----A---- D:\Windows\system32\samsrv.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dxdiagn.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dsauth.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\drivers\dfsc.sys
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dpx.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DiagCpl.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dhcpcore.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dfrgui.exe
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DevicePairingFolder.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DeviceCenter.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\d2d1.dll
2016-06-29 12:58:04 ----A---- D:\Windows\system32\samcli.dll
2016-06-29 12:58:03 ----A---- D:\Windows\system32\dwmredir.dll
2016-06-29 12:58:02 ----A---- D:\Windows\system32\tsbyuv.dll
2016-06-29 12:58:02 ----A---- D:\Windows\system32\dwmcore.dll
2016-06-29 12:58:01 ----A---- D:\Windows\system32\msyuv.dll
2016-06-29 12:58:01 ----A---- D:\Windows\system32\iyuv_32.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFx.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFSvc.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFPlatform.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\drivers\WUDFRd.sys
2016-06-29 12:57:59 ----A---- D:\Windows\system32\dps.dll
2016-06-29 12:57:58 ----A---- D:\Windows\system32\WUDFHost.exe
2016-06-29 12:57:58 ----A---- D:\Windows\system32\WUDFCoinstaller.dll
2016-06-29 12:57:58 ----A---- D:\Windows\system32\drivers\WUDFPf.sys
2016-06-29 12:57:57 ----A---- D:\Windows\system32\localsec.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\umpnpmgr.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\OpcServices.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\netid.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\mimefilt.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\imagehlp.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\credui.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\CPFilters.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\conhost.exe
2016-06-29 12:57:55 ----A---- D:\Windows\system32\cfgmgr32.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\autoconv.exe
2016-06-29 12:57:54 ----A---- D:\Windows\system32\rpcss.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\olethk32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\ole32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\msdtctm.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\comdlg32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\cmd.exe
2016-06-29 12:57:53 ----A---- D:\Windows\system32\xpsservices.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\diagperf.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\certcli.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cdosys.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\calc.exe
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cabview.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cabinet.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\XpsRasterService.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\XpsGdiConverter.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\Query.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\mtxclu.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\certmgr.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\Bubbles.scr
2016-06-29 12:57:50 ----A---- D:\Windows\system32\wshbth.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browseui.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browser.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browcli.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\wbengine.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\sdcpl.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\qmgr.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bootres.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\BlbEvents.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bitsperf.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bitsadmin.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\biocpl.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bcdsrv.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bcdboot.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\batmeter.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\basesrv.dll
2016-06-29 12:57:49 ----A---- D:\Windows\bfsvc.exe
2016-06-29 12:57:47 ----A---- D:\Windows\system32\bcdedit.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\winmm.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\SndVolSSO.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\SndVol.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\LogonUI.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\AzSqlExt.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\azroleui.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\azroles.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\AxInstSv.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autoplay.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autochk.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autofmt.exe
2016-06-29 12:57:44 ----A---- D:\Windows\system32\wdiasqmmodule.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\advapi32.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\actxprxy.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\accessibilitycpl.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aitagent.exe
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aepdu.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aeinv.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\adsldp.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\acppage.dll
2016-06-29 12:57:42 ----A---- D:\Windows\system32\activeds.dll
2016-06-29 12:57:41 ----A---- D:\Windows\system32\SmartcardCredentialProvider.dll
2016-06-29 12:57:41 ----A---- D:\Windows\system32\apphelp.dll
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\volmgr.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\termdd.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\pci.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\kbdhid.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\msiscsi.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\IPMIDrv.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\iaStorV.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hidusb.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hidclass.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\HdAudio.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hdaudbus.sys
2016-06-29 12:57:38 ----A---- D:\Windows\system32\srchadmin.dll
2016-06-29 12:57:38 ----A---- D:\Windows\system32\OobeFldr.dll
2016-06-29 12:57:38 ----A---- D:\Windows\system32\dsuiext.dll
2016-06-29 12:57:37 ----A---- D:\Windows\system32\drivers\CompositeBus.sys
2016-06-29 12:57:37 ----A---- D:\Windows\system32\drivers\cdrom.sys
2016-06-29 12:57:36 ----A---- D:\Windows\system32\drivers\amdxata.sys
2016-06-29 12:57:36 ----A---- D:\Windows\system32\drivers\amdsata.sys
2016-06-29 12:57:34 ----A---- D:\Windows\system32\drivers\acpipmi.sys
2016-06-29 12:57:34 ----A---- D:\Windows\system32\drivers\acpi.sys
2016-06-29 12:57:33 ----A---- D:\Windows\system32\drivers\1394ohci.sys
2016-06-29 12:14:50 ----D---- D:\Users\pepa\AppData\Roaming\Opera Software
2016-06-29 12:13:32 ----D---- D:\Program Files\Opera
2016-06-29 11:18:01 ----A---- D:\Windows\ntbtlog.txt
2016-06-28 19:35:39 ----D---- D:\Users\pepa\AppData\Roaming\uTorrent
2016-06-27 18:41:46 ----HD---- D:\ProgramData\CanonBJ
2016-06-27 18:41:42 ----HD---- D:\Windows\system32\CanonIJ Uninstaller Information
2016-06-27 18:41:37 ----A---- D:\Windows\system32\CNMLM78.DLL
2016-06-27 18:41:33 ----HD---- D:\Program Files\CanonBJ
2016-06-27 10:44:12 ----D---- D:\Users\pepa\AppData\Roaming\Skype
2016-06-27 10:43:57 ----RD---- D:\Program Files\Skype
2016-06-27 10:43:57 ----D---- D:\Program Files\Common Files\Skype
2016-06-27 10:43:52 ----D---- D:\ProgramData\Skype
2016-06-27 10:11:42 ----D---- D:\ProgramData\McAfee Security Scan
2016-06-27 10:11:40 ----D---- D:\ProgramData\McAfee
2016-06-27 10:11:40 ----D---- D:\Program Files\McAfee Security Scan
2016-06-27 10:10:54 ----D---- D:\Users\pepa\AppData\Roaming\Macromedia
2016-06-27 10:10:54 ----D---- D:\Users\pepa\AppData\Roaming\Adobe
2016-06-27 10:10:26 ----D---- D:\Program Files\Seznam.cz
2016-06-27 10:09:59 ----D---- D:\Users\pepa\AppData\Roaming\Seznam.cz
2016-06-27 10:09:58 ----D---- D:\Program Files\Adobe Flash Player
2016-06-27 10:06:01 ----A---- D:\Windows\system32\FlashPlayerApp.exe
2016-06-27 10:05:57 ----D---- D:\Windows\system32\Macromed
2016-06-27 09:44:35 ----A---- D:\Windows\system32\poqexec.exe
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wups.dll
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wudriver.dll
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wuapi.dll
2016-06-27 00:13:58 ----D---- D:\Windows\Panther
2016-06-27 00:13:31 ----D---- D:\Windows\system32\OEM
2016-06-27 00:04:23 ----D---- D:\Windows.old.000
2016-06-26 17:58:33 ----A---- D:\Windows\system32\msonpmon.dll
2016-06-26 17:57:31 ----D---- D:\Program Files\Microsoft Works
2016-06-26 17:57:08 ----D---- D:\Program Files\Microsoft Visual Studio
2016-06-26 17:57:08 ----D---- D:\Program Files\Common Files\DESIGNER
2016-06-26 17:56:46 ----D---- D:\Windows\PCHEALTH
2016-06-26 17:56:46 ----D---- D:\Program Files\Microsoft.NET
2016-06-26 17:55:18 ----D---- D:\Program Files\Microsoft Visual Studio 8
2016-06-26 17:54:37 ----D---- D:\Program Files\Microsoft Office
2016-06-26 17:54:36 ----D---- D:\ProgramData\Microsoft Help
2016-06-26 17:53:35 ----RHD---- D:\MSOCache
2016-06-26 17:52:09 ----D---- D:\Users\pepa\AppData\Roaming\WinRAR
2016-06-26 17:51:48 ----D---- D:\Program Files\WinRAR
2016-06-26 16:54:06 ----N---- D:\Windows\system32\MpSigStub.exe
2016-06-26 16:51:52 ----D---- D:\Users\pepa\AppData\Roaming\Mozilla
2016-06-26 16:51:38 ----D---- D:\Program Files\Mozilla Maintenance Service
2016-06-26 16:51:33 ----D---- D:\Program Files\Mozilla Firefox
2016-06-26 16:37:50 ----A---- D:\Windows\system32\ssinstall-uninstall.bat
2016-06-26 16:37:49 ----A---- D:\Windows\system32\ssins.exe
2016-06-26 16:35:25 ----A---- D:\Windows\system32\drivers\aswKbd.sys
2016-06-26 16:32:46 ----D---- D:\Users\pepa\AppData\Roaming\AVAST Software
2016-06-26 16:32:29 ----D---- D:\Program Files\Common Files\AV
2016-06-26 16:32:21 ----A---- D:\Windows\system32\drivers\aswVmm.sys
2016-06-26 16:32:21 ----A---- D:\Windows\system32\drivers\aswStm.sys
2016-06-26 16:32:20 ----A---- D:\Windows\system32\drivers\aswsp.sys
2016-06-26 16:32:20 ----A---- D:\Windows\system32\drivers\aswRvrt.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswRdr2.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswMonFlt.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswHwid.sys
2016-06-26 16:32:18 ----A---- D:\Windows\system32\drivers\aswSnx.sys
2016-06-26 16:32:05 ----A---- D:\Windows\ucrtbase.dll
2016-06-26 16:32:05 ----A---- D:\Windows\system32\aswBoot.exe
2016-06-26 16:31:57 ----A---- D:\Windows\avastSS.scr
2016-06-26 16:30:22 ----D---- D:\Program Files\AVAST Software
2016-06-26 16:29:48 ----D---- D:\ProgramData\AVAST Software
2016-06-26 16:21:38 ----D---- D:\Program Files\InstallShield Installation Information
2016-06-26 16:21:38 ----A---- D:\Windows\system32\drivers\rtl8192se.sys
2016-06-26 16:21:34 ----D---- D:\Program Files\Realtek WLAN Driver
2016-06-26 16:21:10 ----SHD---- D:\Windows\Installer
2016-06-26 16:20:56 ----D---- D:\Users\pepa\AppData\Roaming\WinBatch
2016-06-26 16:03:11 ----A---- D:\Windows\system32\PerfStringBackup.INI
2016-06-26 15:59:18 ----D---- D:\Users\pepa\AppData\Roaming\Identities
2016-06-26 15:57:38 ----SD---- D:\Users\pepa\AppData\Roaming\Microsoft
2016-06-26 15:57:38 ----D---- D:\Users\pepa\AppData\Roaming\Media Center Programs
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Šablony
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Plocha
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Oblíbené položky
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Nabídka Start
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Dokumenty
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Data aplikací
2016-06-26 14:17:58 ----D---- D:\Windows\SoftwareDistribution
2016-06-26 14:14:37 ----D---- D:\Windows\Prefetch
======List of files/folders modified in the last 1 month======
2016-07-05 20:46:35 ----D---- D:\Windows\Temp
2016-07-05 20:46:30 ----RD---- D:\Program Files
2016-07-05 17:19:55 ----SHD---- D:\System Volume Information
2016-07-05 15:22:16 ----D---- D:\Windows\system32\config
2016-07-05 15:13:29 ----D---- D:\Windows\system32\wdi
2016-07-05 11:35:22 ----SHD---- D:\Config.Msi
2016-07-05 07:31:09 ----D---- D:\Windows\System32
2016-07-05 07:31:09 ----D---- D:\Windows\inf
2016-07-04 23:07:10 ----D---- D:\Windows\system32\wbem
2016-07-04 10:18:17 ----HD---- D:\ProgramData
2016-07-03 16:18:57 ----D---- D:\Windows\Microsoft.NET
2016-07-03 16:18:56 ----RSD---- D:\Windows\assembly
2016-07-03 09:53:33 ----D---- D:\Windows\system32\NDF
2016-07-03 09:48:19 ----D---- D:\Windows\winsxs
2016-07-03 09:46:41 ----D---- D:\Windows\system32\catroot2
2016-07-03 09:37:52 ----D---- D:\Windows\system32\drivers
2016-07-03 09:37:45 ----D---- D:\Windows\system32\sk-SK
2016-07-03 09:37:45 ----D---- D:\Windows\system32\en-US
2016-07-03 09:37:45 ----D---- D:\Windows\system32\cs-CZ
2016-07-03 09:37:45 ----D---- D:\Program Files\Windows Media Player
2016-07-03 09:37:43 ----D---- D:\Windows
2016-07-03 09:37:31 ----D---- D:\Windows\system32\Dism
2016-07-03 09:37:23 ----D---- D:\Windows\system32\CodeIntegrity
2016-07-03 09:37:23 ----D---- D:\Windows\system32\Boot
2016-07-03 09:37:19 ----D---- D:\Windows\PolicyDefinitions
2016-07-03 09:36:47 ----D---- D:\Windows\system32\DriverStore
2016-07-03 09:30:55 ----D---- D:\Windows\system32\catroot
2016-07-03 09:28:24 ----D---- D:\Windows\Logs
2016-07-02 05:18:01 ----D---- D:\Windows\rescache
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Sidebar
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Portable Devices
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Photo Viewer
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Mail
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Journal
2016-07-02 03:33:55 ----D---- D:\Program Files\Internet Explorer
2016-07-02 03:33:55 ----D---- D:\Program Files\DVD Maker
2016-07-02 03:33:54 ----D---- D:\Windows\servicing
2016-07-02 03:33:54 ----D---- D:\Windows\ehome
2016-07-02 03:33:54 ----D---- D:\Program Files\Windows Defender
2016-07-02 03:33:52 ----SHD---- D:\Windows\BitLockerDiscoveryVolumeContents
2016-07-02 03:33:51 ----D---- D:\Windows\system32\da-DK
2016-07-02 03:33:49 ----D---- D:\Windows\system32\oobe
2016-07-02 03:33:47 ----D---- D:\Windows\system32\sysprep
2016-07-02 03:33:47 ----D---- D:\Windows\system32\Setup
2016-07-02 03:33:47 ----D---- D:\Windows\system32\migration
2016-07-02 03:33:47 ----D---- D:\Windows\system32\cs
2016-07-02 03:33:47 ----D---- D:\Windows\system32\AdvancedInstallers
2016-07-02 03:33:46 ----D---- D:\Windows\system32\sppui
2016-07-02 03:33:46 ----D---- D:\Windows\system32\manifeststore
2016-07-02 03:33:46 ----D---- D:\Windows\system32\es-ES
2016-07-02 03:33:46 ----D---- D:\Windows\system32\en
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\UMDF
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\en-US
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\cs-CZ
2016-07-02 03:33:44 ----D---- D:\Windows\system32\migwiz
2016-07-02 03:33:34 ----RSD---- D:\Windows\Fonts
2016-07-02 03:33:34 ----D---- D:\Windows\AppPatch
2016-07-02 03:11:20 ----A---- D:\Windows\system32\msclmd.dll
2016-07-01 15:52:07 ----SD---- D:\ProgramData\Microsoft
2016-06-29 11:40:53 ----D---- D:\Windows.old
2016-06-27 10:43:57 ----D---- D:\Program Files\Common Files
2016-06-27 10:06:02 ----D---- D:\Windows\Tasks
2016-06-27 10:06:02 ----D---- D:\Windows\system32\Tasks
2016-06-26 17:57:29 ----D---- D:\Program Files\Common Files\microsoft shared
2016-06-26 17:57:23 ----D---- D:\Program Files\MSBuild
2016-06-26 17:57:06 ----D---- D:\Windows\ShellNew
2016-06-26 17:54:56 ----A---- D:\Windows\win.ini
2016-06-26 17:54:54 ----D---- D:\Program Files\Common Files\System
2016-06-26 16:21:16 ----D---- D:\Windows\system32\restore
2016-06-26 15:59:13 ----SHD---- D:\$Recycle.Bin
2016-06-26 15:57:38 ----RD---- D:\Users
2016-06-26 15:57:30 ----D---- D:\Windows\Setup
2016-06-26 15:56:34 ----SHD---- D:\Recovery
2016-06-26 15:56:34 ----D---- D:\Program Files\Windows NT
2016-06-26 15:56:28 ----D---- D:\Windows\debug
2016-06-26 14:15:40 ----D---- D:\Windows\CSC
2016-06-19 20:31:06 ----RD---- D:\Program Files (x86)
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; D:\Windows\system32\drivers\aswRvrt.sys [2016-06-26 60424]
R0 aswVmm;avast! VM Monitor; D:\Windows\system32\drivers\aswVmm.sys [2016-06-26 222056]
R0 rdyboost;ReadyBoost; D:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; D:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; D:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswKbd;aswKbd; D:\Windows\system32\drivers\aswKbd.sys [2016-06-26 35096]
R1 aswRdr;aswRdr; D:\Windows\system32\drivers\aswRdr2.sys [2016-06-26 91232]
R1 aswSnx;aswSnx; D:\Windows\system32\drivers\aswSnx.sys [2016-06-26 816304]
R1 aswSP;aswSP; D:\Windows\system32\drivers\aswSP.sys [2016-06-27 438296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; D:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; D:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; D:\Windows\system32\drivers\aswHwid.sys [2016-06-26 34008]
R2 aswMonFlt;aswMonFlt; D:\Windows\system32\drivers\aswMonFlt.sys [2016-06-26 91680]
R2 aswStm;aswStm; D:\Windows\system32\drivers\aswStm.sys [2016-06-26 118152]
R3 atikmdag;atikmdag; D:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 RTL8167;Ovladač Realtek 8167 NT; D:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; D:\Windows\system32\DRIVERS\rtl8192se.sys [2009-08-27 859136]
S2 Parvdm;Parvdm; D:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; D:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; D:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; D:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 pciide;pciide; D:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; D:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; D:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; D:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; D:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; D:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; D:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; D:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; D:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; D:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; D:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; D:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; D:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 wdm_usb;wdm_usb; D:\Windows\system32\DRIVERS\usb2ser.sys [2016-03-10 119952]
S3 WinUsb;WinUsb; D:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;Avast Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-06-26 197128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; D:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ssinstall;SInstalátor; D:\Windows\System32\ssins.exe [2016-06-26 2324216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-27 270016]
S3 AppMgmt;@appmgmts.dll,-3250; D:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service; D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [2015-12-02 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-05 146888]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Tohle je lepší. Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
je koupenej .. byl tam chvilku win 10 a mladej dal zpět win7 a od té doby to blbne
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
OK Udělejte tento sken:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
a klikněte na >Prohledat<. Dejte oby logy.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
mi to píše pořád server nenalezen na ten odkaz...
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Mně to funguje. Zde ho máte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
OTL Extras logfile created on: 6.7.2016 10:40:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,13% Memory free
4,02 Gb Paging File | 1,12 Gb Available in Paging File | 27,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,08 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 4:11:43 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:23:57 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:24:32 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:25:43 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,13% Memory free
4,02 Gb Paging File | 1,12 Gb Available in Paging File | 27,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,08 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 4:11:43 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:23:57 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:24:32 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:25:43 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
Re: PC se seká
OTL Extras logfile created on: 6.7.2016 10:40:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,13% Memory free
4,02 Gb Paging File | 1,12 Gb Available in Paging File | 27,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,08 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 4:11:43 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:23:57 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:24:32 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:25:43 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,13% Memory free
4,02 Gb Paging File | 1,12 Gb Available in Paging File | 27,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,08 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 4:11:43 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:23:57 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:24:32 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:25:43 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Log není kompletní. Kompletní log vypadá takto: http://forum.viry.cz/viewtopic.php?f=13 ... t#p1451332 . Chybí ty fialové sekce.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
OTL Extras logfile created on: 6.7.2016 12:28:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,85 Gb Available Physical Memory | 42,52% Memory free
4,02 Gb Paging File | 0,98 Gb Available in Paging File | 24,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,35 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,85 Gb Available Physical Memory | 42,52% Memory free
4,02 Gb Paging File | 0,98 Gb Available in Paging File | 24,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,35 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
Re: PC se seká
OTL logfile created on: 6.7.2016 12:28:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,85 Gb Available Physical Memory | 42,52% Memory free
4,02 Gb Paging File | 0,98 Gb Available in Paging File | 24,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,35 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
PRC - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
PRC - [2016.06.26 16:31:57 | 008,897,712 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016.06.05 01:47:10 | 000,392,136 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
PRC - [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- D:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- D:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- D:\Windows\System32\atiesrxx.exe
========== Modules (No Company Name) ==========
MOD - [2016.06.26 16:31:58 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016.06.26 16:31:57 | 000,479,288 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016.06.26 16:31:56 | 000,146,232 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.11.19 23:17:08 | 000,845,824 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2015.05.26 13:38:34 | 000,862,888 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2015.05.26 13:37:42 | 000,078,504 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\4963libfoxloader.dll
========== Services (SafeList) ==========
SRV - [2016.06.27 10:48:30 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) [Auto | Running] -- D:\Windows\System32\ssins.exe -- (ssinstall)
SRV - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016.06.05 01:47:30 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016.05.23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.12.02 17:06:48 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - [2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- D:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2016.03.10 06:17:36 | 000,119,952 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\usb2ser.sys -- (wdm_usb)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.08.27 22:19:22 | 000,859,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007.11.09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes,DefaultScope = {E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0A447989-B2FA-4956-8E90-02B188861A67}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{43CAC651-59DA-4BC7-961B-A7E7428D80D1}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{5C05CD77-BBD9-4950-B2B6-378B59A3B415}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{69956676-49FE-40F4-98DA-6671A2754B0C}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{762C8A46-F41B-4464-A295-BB788C5ECF19}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{818B7620-02A0-4560-8F8C-A1F5A63A6233}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{B4BAE67E-65C6-491A-BEE1-E33149143ADC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{DDBDB549-4DB2-4195-911A-29767889C9A9}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2016.06.26 16:32:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016.06.26 16:32:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins
[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (Seznam lištička) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2016.06.26 16:51:36 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [seznam-listicka-distribuce] D:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.autoupdate] D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.szndesktop] D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [Skype] D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - D:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0055C17-9EF0-47D5-B4C1-5A00DF15B481}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - D:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - D:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2016.07.06 10:38:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 21:31:42 | 000,000,000 | ---D | C] -- D:\FRST
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\Program Files\trend micro
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\rsit
[2016.07.03 09:37:43 | 000,000,000 | ---D | C] -- D:\Windows\EOONotify
[2016.07.03 09:19:51 | 000,103,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2016.07.02 15:24:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netbtugc.exe
[2016.07.02 15:24:18 | 001,620,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVDECOD.DLL
[2016.07.02 15:24:16 | 003,209,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mf.dll
[2016.07.02 15:24:16 | 000,970,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2adec.dll
[2016.07.02 15:24:15 | 001,329,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quartz.dll
[2016.07.02 15:24:15 | 000,902,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOD.DLL
[2016.07.02 15:24:15 | 000,829,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSMPEG2ENC.DLL
[2016.07.02 15:24:15 | 000,815,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOE.DLL
[2016.07.02 15:24:15 | 000,739,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOD.DLL
[2016.07.02 15:24:15 | 000,541,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSDECD.DLL
[2016.07.02 15:24:15 | 000,519,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdvd.dll
[2016.07.02 15:24:15 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\evr.dll
[2016.07.02 15:24:15 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\COLORCNV.DLL
[2016.07.02 15:24:14 | 001,568,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVENCOD.DLL
[2016.07.02 15:24:14 | 001,202,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMALFXGFXDSP.dll
[2016.07.02 15:24:14 | 000,740,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpmde.dll
[2016.07.02 15:24:14 | 000,728,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcmde.dll
[2016.07.02 15:24:14 | 000,665,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVXENCD.DLL
[2016.07.02 15:24:14 | 000,609,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFWMAAEC.DLL
[2016.07.02 15:24:14 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSENCD.DLL
[2016.07.02 15:24:14 | 000,354,816 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfplat.dll
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MPG4DECD.DLL
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP43DECD.DLL
[2016.07.02 15:24:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qasf.dll
[2016.07.02 15:24:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\devenum.dll
[2016.07.02 15:24:13 | 001,325,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOE.DLL
[2016.07.02 15:24:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP4SDECD.DLL
[2016.07.02 15:24:13 | 000,338,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SysFxUI.dll
[2016.07.02 15:24:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RESAMPLEDMO.DLL
[2016.07.02 15:24:13 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksproxy.ax
[2016.07.02 15:24:13 | 000,177,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\portcls.sys
[2016.07.02 15:24:13 | 000,154,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VIDRESZR.DLL
[2016.07.02 15:24:13 | 000,103,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfps.dll
[2016.07.02 15:24:13 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP3DMOD.DLL
[2016.07.02 15:24:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfvdsp.dll
[2016.07.02 15:24:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rrinstaller.exe
[2016.07.02 15:24:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfpmp.exe
[2016.07.02 15:24:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\drmk.sys
[2016.07.02 15:24:12 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksuser.dll
[2016.07.02 15:24:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mferror.dll
[2016.07.02 15:24:04 | 000,047,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\WdfLdr.sys
[2016.07.02 15:24:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Wdfres.dll
[2016.07.02 15:24:02 | 000,318,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPhoto.dll
[2016.07.02 15:23:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\authui.dll
[2016.07.02 15:23:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msihnd.dll
[2016.07.02 15:23:59 | 000,105,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\consent.exe
[2016.07.02 15:23:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msimsg.dll
[2016.07.02 15:23:51 | 012,625,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmploc.DLL
[2016.07.02 15:23:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwmp.dll
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdxm.ocx
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxmasf.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml6r.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml3r.dll
[2016.07.02 15:23:31 | 000,284,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbport.sys
[2016.07.02 15:23:31 | 000,006,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbd.sys
[2016.07.02 15:23:29 | 000,218,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\dxgmms1.sys
[2016.07.02 15:23:29 | 000,107,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdd.dll
[2016.07.02 15:23:19 | 002,135,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2vdec.dll
[2016.07.02 15:23:19 | 000,988,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmv2clt.dll
[2016.07.02 15:23:19 | 000,744,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\blackbox.dll
[2016.07.02 15:23:19 | 000,617,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmsdk.dll
[2016.07.02 15:23:16 | 003,973,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntkrnlpa.exe
[2016.07.02 15:23:15 | 003,917,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntoskrnl.exe
[2016.07.02 15:23:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AUDIOKSE.dll
[2016.07.02 15:23:15 | 000,406,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmmgrtn.dll
[2016.07.02 15:23:14 | 000,409,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ci.dll
[2016.07.02 15:23:13 | 000,686,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adtschema.dll
[2016.07.02 15:23:13 | 000,521,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winload.exe
[2016.07.02 15:23:13 | 000,455,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winresume.exe
[2016.07.02 15:23:12 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srcore.dll
[2016.07.02 15:23:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncrypt.dll
[2016.07.02 15:23:11 | 000,374,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioEng.dll
[2016.07.02 15:23:11 | 000,275,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDump.dll
[2016.07.02 15:23:11 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioSes.dll
[2016.07.02 15:23:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\csrsrv.dll
[2016.07.02 15:23:10 | 000,262,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rstrui.exe
[2016.07.02 15:23:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msscp.dll
[2016.07.02 15:23:09 | 000,265,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msnetobj.dll
[2016.07.02 15:23:09 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\audiodg.exe
[2016.07.02 15:23:09 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidapi.dll
[2016.07.02 15:23:08 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidpolicyconverter.exe
[2016.07.02 15:23:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\auditpol.exe
[2016.07.02 15:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcadm.dll
[2016.07.02 15:23:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msaudite.dll
[2016.07.02 15:23:07 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setbcdlocale.dll
[2016.07.02 15:23:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidcertstorecheck.exe
[2016.07.02 15:23:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sspisrv.dll
[2016.07.02 15:23:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmmsp.dll
[2016.07.02 15:23:07 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcawrk.exe
[2016.07.02 15:23:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcalua.exe
[2016.07.02 15:23:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\apisetschema.dll
[2016.07.02 15:23:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msobjs.dll
[2016.07.02 15:23:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcaevts.dll
[2016.07.02 15:22:16 | 000,919,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorets.dll
[2016.07.02 15:22:12 | 000,594,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_isv.exe
[2016.07.02 15:22:12 | 000,572,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate.exe
[2016.07.02 15:22:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp.exe
[2016.07.02 15:22:11 | 000,508,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp_isv.exe
[2016.07.02 15:22:11 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc.dll
[2016.07.02 15:22:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_isv.dll
[2016.07.02 15:22:11 | 000,390,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdrm.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp_isv.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp.dll
[2016.07.02 15:20:59 | 000,248,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManMigrationPlugin.dll
[2016.07.02 15:20:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmWmiPl.dll
[2016.07.02 15:20:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManHTTPConfig.exe
[2016.07.02 15:20:59 | 000,145,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmAuto.dll
[2016.07.02 13:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Minidump
[2016.07.02 09:53:24 | 002,425,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wucltux.dll
[2016.07.02 09:53:24 | 000,045,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups2.dll
[2016.07.02 09:52:01 | 000,179,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuwebv.dll
[2016.07.02 09:52:01 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapp.exe
[2016.07.02 03:02:15 | 000,000,000 | ---D | C] -- D:\Windows\System32\SPReview
[2016.07.02 03:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Migration
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,85 Gb Available Physical Memory | 42,52% Memory free
4,02 Gb Paging File | 0,98 Gb Available in Paging File | 24,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,35 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
PRC - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
PRC - [2016.06.26 16:31:57 | 008,897,712 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016.06.05 01:47:10 | 000,392,136 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
PRC - [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- D:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- D:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- D:\Windows\System32\atiesrxx.exe
========== Modules (No Company Name) ==========
MOD - [2016.06.26 16:31:58 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016.06.26 16:31:57 | 000,479,288 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016.06.26 16:31:56 | 000,146,232 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.11.19 23:17:08 | 000,845,824 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2015.05.26 13:38:34 | 000,862,888 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2015.05.26 13:37:42 | 000,078,504 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\4963libfoxloader.dll
========== Services (SafeList) ==========
SRV - [2016.06.27 10:48:30 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) [Auto | Running] -- D:\Windows\System32\ssins.exe -- (ssinstall)
SRV - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016.06.05 01:47:30 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016.05.23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.12.02 17:06:48 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - [2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- D:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2016.03.10 06:17:36 | 000,119,952 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\usb2ser.sys -- (wdm_usb)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.08.27 22:19:22 | 000,859,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007.11.09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes,DefaultScope = {E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0A447989-B2FA-4956-8E90-02B188861A67}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{43CAC651-59DA-4BC7-961B-A7E7428D80D1}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{5C05CD77-BBD9-4950-B2B6-378B59A3B415}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{69956676-49FE-40F4-98DA-6671A2754B0C}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{762C8A46-F41B-4464-A295-BB788C5ECF19}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{818B7620-02A0-4560-8F8C-A1F5A63A6233}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{B4BAE67E-65C6-491A-BEE1-E33149143ADC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{DDBDB549-4DB2-4195-911A-29767889C9A9}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2016.06.26 16:32:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016.06.26 16:32:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins
[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (Seznam lištička) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2016.06.26 16:51:36 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [seznam-listicka-distribuce] D:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.autoupdate] D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.szndesktop] D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [Skype] D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - D:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0055C17-9EF0-47D5-B4C1-5A00DF15B481}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - D:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - D:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2016.07.06 10:38:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 21:31:42 | 000,000,000 | ---D | C] -- D:\FRST
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\Program Files\trend micro
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\rsit
[2016.07.03 09:37:43 | 000,000,000 | ---D | C] -- D:\Windows\EOONotify
[2016.07.03 09:19:51 | 000,103,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2016.07.02 15:24:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netbtugc.exe
[2016.07.02 15:24:18 | 001,620,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVDECOD.DLL
[2016.07.02 15:24:16 | 003,209,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mf.dll
[2016.07.02 15:24:16 | 000,970,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2adec.dll
[2016.07.02 15:24:15 | 001,329,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quartz.dll
[2016.07.02 15:24:15 | 000,902,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOD.DLL
[2016.07.02 15:24:15 | 000,829,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSMPEG2ENC.DLL
[2016.07.02 15:24:15 | 000,815,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOE.DLL
[2016.07.02 15:24:15 | 000,739,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOD.DLL
[2016.07.02 15:24:15 | 000,541,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSDECD.DLL
[2016.07.02 15:24:15 | 000,519,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdvd.dll
[2016.07.02 15:24:15 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\evr.dll
[2016.07.02 15:24:15 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\COLORCNV.DLL
[2016.07.02 15:24:14 | 001,568,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVENCOD.DLL
[2016.07.02 15:24:14 | 001,202,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMALFXGFXDSP.dll
[2016.07.02 15:24:14 | 000,740,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpmde.dll
[2016.07.02 15:24:14 | 000,728,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcmde.dll
[2016.07.02 15:24:14 | 000,665,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVXENCD.DLL
[2016.07.02 15:24:14 | 000,609,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFWMAAEC.DLL
[2016.07.02 15:24:14 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSENCD.DLL
[2016.07.02 15:24:14 | 000,354,816 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfplat.dll
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MPG4DECD.DLL
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP43DECD.DLL
[2016.07.02 15:24:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qasf.dll
[2016.07.02 15:24:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\devenum.dll
[2016.07.02 15:24:13 | 001,325,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOE.DLL
[2016.07.02 15:24:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP4SDECD.DLL
[2016.07.02 15:24:13 | 000,338,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SysFxUI.dll
[2016.07.02 15:24:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RESAMPLEDMO.DLL
[2016.07.02 15:24:13 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksproxy.ax
[2016.07.02 15:24:13 | 000,177,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\portcls.sys
[2016.07.02 15:24:13 | 000,154,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VIDRESZR.DLL
[2016.07.02 15:24:13 | 000,103,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfps.dll
[2016.07.02 15:24:13 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP3DMOD.DLL
[2016.07.02 15:24:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfvdsp.dll
[2016.07.02 15:24:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rrinstaller.exe
[2016.07.02 15:24:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfpmp.exe
[2016.07.02 15:24:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\drmk.sys
[2016.07.02 15:24:12 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksuser.dll
[2016.07.02 15:24:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mferror.dll
[2016.07.02 15:24:04 | 000,047,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\WdfLdr.sys
[2016.07.02 15:24:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Wdfres.dll
[2016.07.02 15:24:02 | 000,318,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPhoto.dll
[2016.07.02 15:23:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\authui.dll
[2016.07.02 15:23:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msihnd.dll
[2016.07.02 15:23:59 | 000,105,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\consent.exe
[2016.07.02 15:23:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msimsg.dll
[2016.07.02 15:23:51 | 012,625,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmploc.DLL
[2016.07.02 15:23:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwmp.dll
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdxm.ocx
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxmasf.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml6r.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml3r.dll
[2016.07.02 15:23:31 | 000,284,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbport.sys
[2016.07.02 15:23:31 | 000,006,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbd.sys
[2016.07.02 15:23:29 | 000,218,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\dxgmms1.sys
[2016.07.02 15:23:29 | 000,107,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdd.dll
[2016.07.02 15:23:19 | 002,135,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2vdec.dll
[2016.07.02 15:23:19 | 000,988,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmv2clt.dll
[2016.07.02 15:23:19 | 000,744,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\blackbox.dll
[2016.07.02 15:23:19 | 000,617,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmsdk.dll
[2016.07.02 15:23:16 | 003,973,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntkrnlpa.exe
[2016.07.02 15:23:15 | 003,917,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntoskrnl.exe
[2016.07.02 15:23:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AUDIOKSE.dll
[2016.07.02 15:23:15 | 000,406,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmmgrtn.dll
[2016.07.02 15:23:14 | 000,409,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ci.dll
[2016.07.02 15:23:13 | 000,686,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adtschema.dll
[2016.07.02 15:23:13 | 000,521,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winload.exe
[2016.07.02 15:23:13 | 000,455,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winresume.exe
[2016.07.02 15:23:12 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srcore.dll
[2016.07.02 15:23:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncrypt.dll
[2016.07.02 15:23:11 | 000,374,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioEng.dll
[2016.07.02 15:23:11 | 000,275,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDump.dll
[2016.07.02 15:23:11 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioSes.dll
[2016.07.02 15:23:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\csrsrv.dll
[2016.07.02 15:23:10 | 000,262,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rstrui.exe
[2016.07.02 15:23:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msscp.dll
[2016.07.02 15:23:09 | 000,265,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msnetobj.dll
[2016.07.02 15:23:09 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\audiodg.exe
[2016.07.02 15:23:09 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidapi.dll
[2016.07.02 15:23:08 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidpolicyconverter.exe
[2016.07.02 15:23:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\auditpol.exe
[2016.07.02 15:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcadm.dll
[2016.07.02 15:23:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msaudite.dll
[2016.07.02 15:23:07 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setbcdlocale.dll
[2016.07.02 15:23:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidcertstorecheck.exe
[2016.07.02 15:23:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sspisrv.dll
[2016.07.02 15:23:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmmsp.dll
[2016.07.02 15:23:07 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcawrk.exe
[2016.07.02 15:23:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcalua.exe
[2016.07.02 15:23:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\apisetschema.dll
[2016.07.02 15:23:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msobjs.dll
[2016.07.02 15:23:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcaevts.dll
[2016.07.02 15:22:16 | 000,919,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorets.dll
[2016.07.02 15:22:12 | 000,594,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_isv.exe
[2016.07.02 15:22:12 | 000,572,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate.exe
[2016.07.02 15:22:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp.exe
[2016.07.02 15:22:11 | 000,508,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp_isv.exe
[2016.07.02 15:22:11 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc.dll
[2016.07.02 15:22:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_isv.dll
[2016.07.02 15:22:11 | 000,390,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdrm.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp_isv.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp.dll
[2016.07.02 15:20:59 | 000,248,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManMigrationPlugin.dll
[2016.07.02 15:20:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmWmiPl.dll
[2016.07.02 15:20:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManHTTPConfig.exe
[2016.07.02 15:20:59 | 000,145,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmAuto.dll
[2016.07.02 13:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Minidump
[2016.07.02 09:53:24 | 002,425,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wucltux.dll
[2016.07.02 09:53:24 | 000,045,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups2.dll
[2016.07.02 09:52:01 | 000,179,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuwebv.dll
[2016.07.02 09:52:01 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapp.exe
[2016.07.02 03:02:15 | 000,000,000 | ---D | C] -- D:\Windows\System32\SPReview
[2016.07.02 03:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Migration
Re: PC se seká
[2016.07.02 00:22:14 | 000,301,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.07.01 15:35:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.30 12:50:29 | 000,000,000 | ---D | C] -- D:\Windows\System32\EventProviders
[2016.06.29 14:30:21 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\ElevatedDiagnostics
[2016.06.29 13:01:09 | 000,215,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicsvc.exe
[2016.06.29 13:01:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IcCoinstall.dll
[2016.06.29 13:01:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicres.dll
[2016.06.29 13:01:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmictimeprovider.dll
[2016.06.29 13:01:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\VMBusHID.sys
[2016.06.29 13:01:07 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmbusCoinstaller.dll
[2016.06.29 13:01:07 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbusres.dll
[2016.06.29 13:01:07 | 000,043,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winhv.sys
[2016.06.29 13:01:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbuspipe.dll
[2016.06.29 13:01:06 | 000,175,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmbus.sys
[2016.06.29 13:01:06 | 000,028,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storvsc.sys
[2016.06.29 13:01:05 | 000,458,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSDApi.dll
[2016.06.29 13:01:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHost.exe
[2016.06.29 13:01:05 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmdCoinstall.dll
[2016.06.29 13:01:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHostProxy.dll
[2016.06.29 13:01:05 | 000,040,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmstorfl.sys
[2016.06.29 13:01:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmstorfltres.dll
[2016.06.29 13:01:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vms3cap.sys
[2016.06.29 13:01:03 | 001,548,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tquery.dll
[2016.06.29 13:01:03 | 001,401,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssrch.dll
[2016.06.29 13:01:03 | 000,666,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssvp.dll
[2016.06.29 13:01:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssphtb.dll
[2016.06.29 13:00:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\umb.dll
[2016.06.29 13:00:53 | 000,035,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winusb.sys
[2016.06.29 13:00:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FirewallControlPanel.dll
[2016.06.29 13:00:40 | 005,066,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuthFWSnapin.dll
[2016.06.29 13:00:36 | 000,155,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscorier.dll
[2016.06.29 13:00:36 | 000,080,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscories.dll
[2016.06.29 13:00:36 | 000,049,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netfxperf.dll
[2016.06.29 13:00:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Narrator.exe
[2016.06.29 13:00:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPHLPR.DLL
[2016.06.29 13:00:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPCRYPT.DLL
[2016.06.29 13:00:34 | 000,132,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ataport.sys
[2016.06.29 13:00:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpd_ci.dll
[2016.06.29 13:00:33 | 000,140,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\scsiport.sys
[2016.06.29 13:00:31 | 001,334,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertEnroll.dll
[2016.06.29 13:00:31 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wusa.exe
[2016.06.29 13:00:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanconn.dll
[2016.06.29 13:00:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanprotdim.dll
[2016.06.29 13:00:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsdchngr.dll
[2016.06.29 13:00:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceApi.dll
[2016.06.29 13:00:30 | 000,427,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceStatus.dll
[2016.06.29 13:00:29 | 000,206,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedynos.dll
[2016.06.29 13:00:29 | 000,202,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedyn.dll
[2016.06.29 13:00:28 | 000,363,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wbemcomn.dll
[2016.06.29 13:00:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanpref.dll
[2016.06.29 13:00:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanmsm.dll
[2016.06.29 13:00:27 | 000,411,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlangpui.dll
[2016.06.29 13:00:27 | 000,410,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanui.dll
[2016.06.29 13:00:27 | 000,351,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmicmiplugin.dll
[2016.06.29 13:00:27 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgent.dll
[2016.06.29 13:00:27 | 000,169,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winsrv.dll
[2016.06.29 13:00:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgentc.exe
[2016.06.29 13:00:26 | 002,329,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\win32k.sys
[2016.06.29 13:00:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webservices.dll
[2016.06.29 13:00:26 | 000,406,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimgapi.dll
[2016.06.29 13:00:26 | 000,327,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimserv.exe
[2016.06.29 13:00:26 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webio.dll
[2016.06.29 13:00:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fphc.dll
[2016.06.29 13:00:25 | 003,367,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSAT.exe
[2016.06.29 13:00:25 | 000,416,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiadefui.dll
[2016.06.29 13:00:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiarpc.dll
[2016.06.29 13:00:23 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpdwcn.dll
[2016.06.29 13:00:23 | 000,051,200 | ---- | C] (Twain Working Group) -- D:\Windows\twain_32.dll
[2016.06.29 13:00:21 | 000,335,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSATAPI.dll
[2016.06.29 13:00:21 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiavideo.dll
[2016.06.29 13:00:19 | 000,350,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WPDSp.dll
[2016.06.29 13:00:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wkscli.dll
[2016.06.29 13:00:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbrpm.sys
[2016.06.29 13:00:18 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsutil.dll
[2016.06.29 13:00:17 | 000,638,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VAN.dll
[2016.06.29 13:00:17 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VBICodec.ax
[2016.06.29 13:00:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciavi32.dll
[2016.06.29 13:00:17 | 000,082,944 | ---- | C] (Radius Inc.) -- D:\Windows\System32\iccvid.dll
[2016.06.29 13:00:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSTPager.ax
[2016.06.29 13:00:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cca.dll
[2016.06.29 13:00:15 | 000,160,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsbas.dll
[2016.06.29 13:00:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSNP.ax
[2016.06.29 13:00:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\psisrndr.ax
[2016.06.29 13:00:13 | 000,072,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mpeg2Data.ax
[2016.06.29 13:00:13 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSDvbNP.ax
[2016.06.29 13:00:11 | 000,600,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\usercpl.dll
[2016.06.29 13:00:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\userinit.exe
[2016.06.29 13:00:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unimdmat.dll
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD2.sys
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD.sys
[2016.06.29 13:00:09 | 002,983,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbon.dll
[2016.06.29 13:00:09 | 001,164,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbonRes.dll
[2016.06.29 13:00:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDec.dll
[2016.06.29 13:00:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UserAccountControlSettings.dll
[2016.06.29 13:00:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\djoin.exe
[2016.06.29 13:00:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzutil.exe
[2016.06.29 13:00:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\themecpl.dll
[2016.06.29 13:00:08 | 000,478,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\timedate.cpl
[2016.06.29 13:00:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\w32tm.exe
[2016.06.29 13:00:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TRAPI.dll
[2016.06.29 13:00:07 | 000,505,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskschd.dll
[2016.06.29 13:00:07 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\termmgr.dll
[2016.06.29 13:00:07 | 000,187,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\FWPKCLNT.SYS
[2016.06.29 13:00:07 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tcpipcfg.dll
[2016.06.29 13:00:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiohlp.dll
[2016.06.29 13:00:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiougc.exe
[2016.06.29 13:00:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\tdi.sys
[2016.06.29 13:00:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schedcli.dll
[2016.06.29 13:00:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskbarcpl.dll
[2016.06.29 13:00:06 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wavemsp.dll
[2016.06.29 13:00:06 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
[2016.06.29 13:00:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TabletPC.cpl
[2016.06.29 13:00:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tabcal.exe
[2016.06.29 13:00:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MultiDigiMon.exe
[2016.06.29 13:00:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\takeown.exe
[2016.06.29 13:00:05 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\g711codc.ax
[2016.06.29 13:00:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\TsUsbFlt.sys
[2016.06.29 13:00:03 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\input.dll
[2016.06.29 13:00:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpencom.dll
[2016.06.29 13:00:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aaclient.dll
[2016.06.29 13:00:03 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpd3d.dll
[2016.06.29 13:00:03 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsgqec.dll
[2016.06.29 13:00:03 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfts.dll
[2016.06.29 13:00:01 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TSWorkspace.dll
[2016.06.29 13:00:01 | 000,260,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpshell.exe
[2016.06.29 13:00:01 | 000,173,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpclip.exe
[2016.06.29 13:00:01 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tspubwmi.dll
[2016.06.29 13:00:01 | 000,121,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPENCDD.dll
[2016.06.29 13:00:01 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpsign.exe
[2016.06.29 13:00:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\utildll.dll
[2016.06.29 13:00:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpinit.exe
[2016.06.29 12:59:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wksprt.exe
[2016.06.29 12:59:59 | 000,154,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscfgwmi.dll
[2016.06.29 12:59:59 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpendp.dll
[2016.06.29 12:59:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorekmts.dll
[2016.06.29 12:59:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tssrvlic.dll
[2016.06.29 12:59:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpwsx.dll
[2016.06.29 12:59:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\LSCSHostPolicy.dll
[2016.06.29 12:59:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPREFDD.dll
[2016.06.29 12:59:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qprocess.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tskill.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgport.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsdiscon.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chglogon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdprefdrvapi.dll
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qappsrv.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoff.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shadow.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rwinsta.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgusr.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\reset.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\change.exe
[2016.06.29 12:59:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\query.exe
[2016.06.29 12:59:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskcomp.dll
[2016.06.29 12:59:58 | 000,270,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsmf.dll
[2016.06.29 12:59:58 | 000,252,928 | ---- | C] (Microsoft) -- D:\Windows\System32\DShowRdpFilter.dll
[2016.06.29 12:59:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qwinsta.exe
[2016.06.29 12:59:58 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msg.exe
[2016.06.29 12:59:58 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quser.exe
[2016.06.29 12:59:58 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcfgex.dll
[2016.06.29 12:59:57 | 000,826,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcore.dll
[2016.06.29 12:59:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\systemcpl.dll
[2016.06.29 12:59:57 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysclass.dll
[2016.06.29 12:59:57 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tlscsp.dll
[2016.06.29 12:59:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spbcd.dll
[2016.06.29 12:59:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lsmproxy.dll
[2016.06.29 12:59:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spopk.dll
[2016.06.29 12:59:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\syssetup.dll
[2016.06.29 12:59:56 | 000,850,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sbe.dll
[2016.06.29 12:59:56 | 000,755,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sud.dll
[2016.06.29 12:59:56 | 000,183,296 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceSyncProvider.dll
[2016.06.29 12:59:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlcese30.dll
[2016.06.29 12:59:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ssText3d.scr
[2016.06.29 12:59:55 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsqmcons.exe
[2016.06.29 12:59:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqmapi.dll
[2016.06.29 12:59:55 | 000,148,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storport.sys
[2016.06.29 12:59:53 | 000,697,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmiEngine.dll
[2016.06.29 12:59:53 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetmib1.dll
[2016.06.29 12:59:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsnmp32.dll
[2016.06.29 12:59:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WavDest.dll
[2016.06.29 12:59:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sscore.dll
[2016.06.29 12:59:52 | 000,144,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basecsp.dll
[2016.06.29 12:59:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sisbkup.dll
[2016.06.29 12:59:51 | 000,428,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shwebsvc.dll
[2016.06.29 12:59:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shunimpl.dll
[2016.06.29 12:59:50 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unattend.dll
[2016.06.29 12:59:50 | 000,111,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shsetup.dll
[2016.06.29 12:59:50 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shacct.dll
[2016.06.29 12:59:50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcl.exe
[2016.06.29 12:59:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prevhost.exe
[2016.06.29 12:59:49 | 000,456,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spinstall.exe
[2016.06.29 12:59:49 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spreview.exe
[2016.06.29 12:59:49 | 000,270,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sethc.exe
[2016.06.29 12:59:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizui.dll
[2016.06.29 12:59:49 | 000,179,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionQueue.dll
[2016.06.29 12:59:49 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcln.dll
[2016.06.29 12:59:48 | 000,933,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Vault.dll
[2016.06.29 12:59:48 | 000,327,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nltest.exe
[2016.06.29 12:59:48 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slui.exe
[2016.06.29 12:59:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vaultsvc.dll
[2016.06.29 12:59:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppcomapi.dll
[2016.06.29 12:59:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppc.dll
[2016.06.29 12:59:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppinst.dll
[2016.06.29 12:59:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wscapi.dll
[2016.06.29 12:59:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slwga.dll
[2016.06.29 12:59:47 | 001,131,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdclt.exe
[2016.06.29 12:59:47 | 000,974,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppobjs.dll
[2016.06.29 12:59:47 | 000,907,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdengin2.dll
[2016.06.29 12:59:47 | 000,271,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fveapi.dll
[2016.06.29 12:59:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scansetting.dll
[2016.06.29 12:59:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schtasks.exe
[2016.06.29 12:59:47 | 000,175,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fvecpl.dll
[2016.06.29 12:59:47 | 000,136,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scavengeui.dll
[2016.06.29 12:59:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\manage-bde.exe
[2016.06.29 12:59:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BdeHdCfg.exe
[2016.06.29 12:59:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\repair-bde.exe
[2016.06.29 12:59:43 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizeng.dll
[2016.06.29 12:59:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\uxlib.dll
[2016.06.29 12:59:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizres.dll
[2016.06.29 12:59:42 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoncli.dll
[2016.06.29 12:59:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertPolEng.dll
[2016.06.29 12:59:41 | 000,316,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sharemediacpl.dll
[2016.06.29 12:59:41 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srrstr.dll
[2016.06.29 12:59:40 | 000,412,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppwinob.dll
[2016.06.29 12:59:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rpchttp.dll
[2016.06.29 12:59:40 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\runonce.exe
[2016.06.29 12:59:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Ribbons.scr
[2016.06.29 12:59:39 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recdisc.exe
[2016.06.29 12:59:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RelPost.exe
[2016.06.29 12:59:39 | 000,135,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recovery.dll
[2016.06.29 12:59:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rmcast.sys
[2016.06.29 12:59:39 | 000,098,816 | ---- | C] (Microsoft) -- D:\Windows\System32\Robocopy.exe
[2016.06.29 12:59:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\riched32.dll
[2016.06.29 12:59:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iprtrmgr.dll
[2016.06.29 12:59:38 | 000,268,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mprddm.dll
[2016.06.29 12:59:38 | 000,084,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmstp.exe
[2016.06.29 12:59:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnike.dll
[2016.06.29 12:59:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpudd.dll
[2016.06.29 12:59:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbGDCoInstaller.dll
[2016.06.29 12:59:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnikeapi.dll
[2016.06.29 12:59:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rdpvideominiport.sys
[2016.06.29 12:59:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2016.06.29 12:59:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2016.06.29 12:59:36 | 001,115,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RacEngn.dll
[2016.06.29 12:59:35 | 000,870,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsPrint.dll
[2016.06.29 12:59:35 | 000,509,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qedit.dll
[2016.06.29 12:59:35 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgprint.dll
[2016.06.29 12:59:35 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prncache.dll
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\proquota.exe
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\profprov.dll
[2016.06.29 12:59:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercpl.dll
[2016.06.29 12:59:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PhotoScreensaver.scr
[2016.06.29 12:59:34 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercfg.cpl
[2016.06.29 12:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppnp.dll
[2016.06.29 12:59:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pifmgr.dll
[2016.06.29 12:59:33 | 001,227,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdc.dll
[2016.06.29 12:59:33 | 000,766,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpccpl.dll
[2016.06.29 12:59:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PerfCenterCPL.dll
[2016.06.29 12:59:33 | 000,444,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wvc.dll
[2016.06.29 12:59:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysmon.ocx
[2016.06.29 12:59:33 | 000,209,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PkgMgr.exe
[2016.06.29 12:59:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdscore.dll
[2016.06.29 12:59:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfmon.exe
[2016.06.29 12:59:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PnPUnattend.exe
[2016.06.29 12:59:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pdhui.dll
[2016.06.29 12:59:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unlodctr.exe
[2016.06.29 12:59:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prnfldr.dll
[2016.06.29 12:59:32 | 000,297,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntprint.dll
[2016.06.29 12:59:31 | 000,324,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\puiobj.dll
[2016.06.29 12:59:31 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logman.exe
[2016.06.29 12:59:31 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\relog.exe
[2016.06.29 12:59:31 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PrintIsolationProxy.dll
[2016.06.29 12:59:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prntvpt.dll
[2016.06.29 12:59:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PushPrinterConnections.exe
[2016.06.29 12:59:25 | 001,111,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\onexui.dll
[2016.06.29 12:59:25 | 000,218,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OnLineIDCpl.dll
[2016.06.29 12:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetup.exe
[2016.06.29 12:59:25 | 000,174,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetapi.dll
[2016.06.29 12:59:25 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CscMig.dll
[2016.06.29 12:59:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cscobj.dll
[2016.06.29 12:59:24 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\asycfilt.dll
[2016.06.29 12:59:23 | 002,130,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\networkmap.dll
[2016.06.29 12:59:23 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncsi.dll
[2016.06.29 12:59:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nslookup.exe
[2016.06.29 12:59:22 | 001,750,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pnidui.dll
[2016.06.29 12:59:22 | 001,644,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcenter.dll
[2016.06.29 12:59:22 | 000,656,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshwfp.dll
[2016.06.29 12:59:22 | 000,240,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\netio.sys
[2016.06.29 12:59:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FWPUCLNT.DLL
[2016.06.29 12:59:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netjoin.dll
[2016.06.29 12:59:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NaturalLanguage6.dll
[2016.06.29 12:59:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\net1.exe
[2016.06.29 12:59:21 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nci.dll
[2016.06.29 12:59:21 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncryptui.dll
[2016.06.29 12:59:21 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcfg.exe
[2016.06.29 12:59:19 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ipsmsnap.dll
[2016.06.29 12:59:19 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSHVHOST.DLL
[2016.06.29 12:59:19 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSVRMGMT.DLL
[2016.06.29 12:59:18 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshipsec.dll
[2016.06.29 12:59:18 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrecst.dll
[2016.06.29 12:59:17 | 000,225,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netdiagfx.dll
[2016.06.29 12:59:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrad.dll
[2016.06.29 12:59:17 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QAGENT.DLL
[2016.06.29 12:59:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasacct.dll
[2016.06.29 12:59:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QCLIPROV.DLL
[2016.06.29 12:59:17 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\napdsnap.dll
[2016.06.29 12:59:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mystify.scr
[2016.06.29 12:59:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcbuilder.exe
[2016.06.29 12:59:15 | 000,592,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msftedit.dll
[2016.06.29 12:59:15 | 000,303,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msinfo32.exe
[2016.06.29 12:59:15 | 000,233,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msconfig.exe
[2016.06.29 12:59:15 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSAC3ENC.DLL
[2016.06.29 12:59:14 | 002,146,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SyncCenter.dll
[2016.06.29 12:59:13 | 002,504,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVCORE.DLL
[2016.06.29 12:59:13 | 002,202,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SensorsCpl.dll
[2016.06.29 12:59:13 | 001,624,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPEncEn.dll
[2016.06.29 12:59:13 | 001,163,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc42u.dll
[2016.06.29 12:59:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40.dll
[2016.06.29 12:59:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40u.dll
[2016.06.29 12:59:13 | 000,507,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmdev.dll
[2016.06.29 12:59:13 | 000,436,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmnet.dll
[2016.06.29 12:59:13 | 000,352,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpeffects.dll
[2016.06.29 12:59:13 | 000,296,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfds.dll
[2016.06.29 12:59:13 | 000,213,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MMDevAPI.dll
[2016.06.29 12:59:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfreadwrite.dll
[2016.06.29 12:59:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpsrcwp.dll
[2016.06.29 12:59:13 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFPlay.dll
[2016.06.29 12:59:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpps.dll
[2016.06.29 12:59:12 | 001,003,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMNetMgr.dll
[2016.06.29 12:59:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logagent.exe
[2016.06.29 12:59:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MediaMetadataHandler.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapistub.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapi32.dll
[2016.06.29 12:59:09 | 000,516,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\main.cpl
[2016.06.29 12:59:08 | 000,665,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayCpl.dll
[2016.06.29 12:59:08 | 000,520,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcupdate_GenuineIntel.dll
[2016.06.29 12:59:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlsrv32.dll
[2016.06.29 12:59:07 | 000,170,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationSettings.exe
[2016.06.29 12:59:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayServices.dll
[2016.06.29 12:59:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\migisol.dll
[2016.06.29 12:59:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcconf.dll
[2016.06.29 12:59:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vbisurf.ax
[2016.06.29 12:59:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kstvtune.ax
[2016.06.29 12:59:06 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksxbar.ax
[2016.06.29 12:59:03 | 000,941,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mblctr.exe
[2016.06.29 12:59:01 | 002,151,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mmcndmgr.dll
[2016.06.29 12:59:01 | 000,319,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcjt32.dll
[2016.06.29 12:59:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\defaultlocationcpl.dll
[2016.06.29 12:59:01 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msorcl32.dll
[2016.06.29 12:59:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbctrac.dll
[2016.06.29 12:59:01 | 000,132,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MdSched.exe
[2016.06.29 12:59:01 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbccp32.dll
[2016.06.29 12:59:00 | 000,477,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpksetup.exe
[2016.06.29 12:59:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpremove.exe
[2016.06.29 12:59:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\luainstall.dll
[2016.06.29 12:58:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nrpsrv.dll
[2016.06.29 12:58:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ks.sys
[2016.06.29 12:58:44 | 000,219,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iTVData.dll
[2016.06.29 12:58:44 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Kswdmcap.ax
[2016.06.29 12:58:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\isoburn.exe
[2016.06.29 12:58:43 | 000,345,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\intl.cpl
[2016.06.29 12:58:43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MuiUnattend.exe
[2016.06.29 12:58:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nlsbres.dll
[2016.06.29 12:58:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wshirda.dll
[2016.06.29 12:58:41 | 002,522,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dbgeng.dll
[2016.06.29 12:58:41 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imkr80.ime
[2016.06.29 12:58:41 | 000,392,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2.dll
[2016.06.29 12:58:38 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ie4uinit.exe
[2016.06.29 12:58:38 | 000,114,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iesysprep.dll
[2016.06.29 12:58:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inseng.dll
[2016.06.29 12:58:37 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msrating.dll
[2016.06.29 12:58:37 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ieUnatt.exe
[2016.06.29 12:58:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imgutil.dll
[2016.06.29 12:58:36 | 000,599,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeeds.dll
[2016.06.29 12:58:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscms.dll
[2016.06.29 12:58:36 | 000,389,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iedkcs32.dll
[2016.06.29 12:58:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\html.iec
[2016.06.29 12:58:36 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iepeers.dll
[2016.06.29 12:58:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RegisterIEPKEYs.exe
[2016.06.29 12:58:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedsbs.dll
[2016.06.29 12:58:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\licmgr10.dll
[2016.06.29 12:58:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedssync.exe
[2016.06.29 12:58:34 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzres.dll
[2016.06.29 12:58:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kbdlk41a.dll
[2016.06.29 12:58:31 | 001,466,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetcpl.cpl
[2016.06.29 12:58:31 | 000,606,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mstime.dll
[2016.06.29 12:58:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\C_ISCII.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSG.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDCZ1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDPO.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGR1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGKL.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUS.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUGHR1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMAORI.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDLT1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINHIN.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBULG.DLL
[2016.06.29 12:58:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsicli.exe
[2016.06.29 12:58:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsium.dll
[2016.06.29 12:58:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\elsTrans.dll
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUQ.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDNEPR.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINBEN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTURME.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTAJIK.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMON.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTEL.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTAM.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINORI.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINMAR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINKAN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBLR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBASH.DLL
[2016.06.29 12:58:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGEO.DLL
[2016.06.29 12:58:28 | 000,732,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2fs.dll
[2016.06.29 12:58:28 | 000,312,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgcpl.dll
[2016.06.29 12:58:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\itircl.dll
[2016.06.29 12:58:28 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\HotStartUserAgent.dll
[2016.06.29 12:58:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenter.dll
[2016.06.29 12:58:27 | 000,537,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenterCPL.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halmacpi.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hal.dll
[2016.06.29 12:58:27 | 000,137,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halacpi.dll
[2016.06.29 12:58:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hbaapi.dll
[2016.06.29 12:58:19 | 002,576,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gameux.dll
[2016.06.29 12:58:19 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\atmfd.dll
[2016.06.29 12:58:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fontsub.dll
[2016.06.29 12:58:19 | 000,034,304 | ---- | C] (Adobe Systems) -- D:\Windows\System32\atmlib.dll
[2016.06.29 12:58:18 | 000,584,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gpprefcl.dll
[2016.06.29 12:58:18 | 000,339,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appmgr.dll
[2016.06.29 12:58:17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scrptadm.dll
[2016.06.29 12:58:17 | 000,438,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AdmTmpl.dll
[2016.06.29 12:58:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ftp.exe
[2016.06.29 12:58:15 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fde.dll
[2016.06.29 12:58:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\t2embed.dll
[2016.06.29 12:58:15 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- D:\Windows\System32\fms.dll
[2016.06.29 12:58:15 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\findstr.exe
[2016.06.29 12:58:15 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fdeploy.dll
[2016.06.29 12:58:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSMON.dll
[2016.06.29 12:58:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\muifontsetup.dll
[2016.06.29 12:58:14 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSTIFF.dll
[2016.06.29 12:58:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ifsutil.dll
[2016.06.29 12:58:13 | 000,802,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WFS.exe
[2016.06.29 12:58:13 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\untfs.dll
[2016.06.29 12:58:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSCOVER.exe
[2016.06.29 12:58:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\explorer.exe
[2016.06.29 12:58:12 | 001,493,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ExplorerFrame.dll
[2016.06.29 12:58:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eudcedit.exe
[2016.06.29 12:58:11 | 001,063,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\werconcpl.dll
[2016.06.29 12:58:11 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdri.dll
[2016.06.29 12:58:11 | 000,414,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mspbda.dll
[2016.06.29 12:58:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wer.dll
[2016.06.29 12:58:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Faultrep.dll
[2016.06.29 12:58:11 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EhStorAPI.dll
[2016.06.29 12:58:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WerFaultSecure.exe
[2016.06.29 12:58:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2016.06.29 12:58:10 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\efscore.dll
[2016.06.29 12:58:09 | 001,400,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DxpTaskSync.dll
[2016.06.29 12:58:09 | 000,630,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXPTaskRingtone.dll
[2016.06.29 12:58:09 | 000,399,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXP.dll
[2016.06.29 12:58:09 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3ui.dll
[2016.06.29 12:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drvstore.dll
[2016.06.29 12:58:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapp3hst.dll
[2016.06.29 12:58:09 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapphost.dll
[2016.06.29 12:58:09 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3msm.dll
[2016.06.29 12:58:09 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eappgnui.dll
[2016.06.29 12:58:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3cfg.dll
[2016.06.29 12:58:08 | 001,828,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d9.dll
[2016.06.29 12:58:08 | 001,171,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10warp.dll
[2016.06.29 12:58:08 | 001,040,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Display.dll
[2016.06.29 12:58:08 | 000,508,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxgi.dll
[2016.06.29 12:58:08 | 000,276,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskraid.exe
[2016.06.29 12:58:08 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskpart.exe
[2016.06.29 12:58:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscmmc.dll
[2016.06.29 12:58:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscacheugc.exe
[2016.06.29 12:58:08 | 000,027,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\Diskdump.sys
[2016.06.29 12:58:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpnaddr.dll
[2016.06.29 12:58:07 | 001,076,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DWrite.dll
[2016.06.29 12:58:07 | 000,522,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d11.dll
[2016.06.29 12:58:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10level9.dll
[2016.06.29 12:58:07 | 000,219,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10_1core.dll
[2016.06.29 12:58:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\amstream.dll
[2016.06.29 12:58:07 | 000,056,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vfwwdm32.dll
[2016.06.29 12:58:07 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciqtz32.dll
[2016.06.29 12:58:06 | 000,283,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdv.dll
[2016.06.29 12:58:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mpg2splt.ax
[2016.06.29 12:58:06 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qcap.dll
[2016.06.29 12:58:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdmo.dll
[2016.06.29 12:58:05 | 001,188,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DiagCpl.dll
[2016.06.29 12:58:05 | 000,739,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d2d1.dll
[2016.06.29 12:58:05 | 000,586,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dfrgui.exe
[2016.06.29 12:58:05 | 000,484,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DeviceCenter.dll
[2016.06.29 12:58:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpx.dll
[2016.06.29 12:58:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DevicePairingFolder.dll
[2016.06.29 12:58:05 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxdiagn.dll
[2016.06.29 12:58:05 | 000,128,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\desk.cpl
[2016.06.29 12:58:05 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupugc.exe
[2016.06.29 12:58:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dsauth.dll
[2016.06.29 12:58:03 | 001,027,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IMJP10.IME
[2016.06.29 12:58:03 | 000,097,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmredir.dll
[2016.06.29 12:58:02 | 001,371,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmcore.dll
[2016.06.29 12:57:59 | 000,567,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFx.dll
[2016.06.29 12:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFPlatform.dll
[2016.06.29 12:57:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFCoinstaller.dll
[2016.06.29 12:57:57 | 000,429,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\localsec.dll
[2016.06.29 12:57:55 | 001,160,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OpcServices.dll
[2016.06.29 12:57:55 | 000,679,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoconv.exe
[2016.06.29 12:57:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CPFilters.dll
[2016.06.29 12:57:55 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\conhost.exe
[2016.06.29 12:57:55 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netid.dll
[2016.06.29 12:57:55 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mimefilt.dll
[2016.06.29 12:57:54 | 001,066,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdtctm.dll
[2016.06.29 12:57:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmd.exe
[2016.06.29 12:57:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\olethk32.dll
[2016.06.29 12:57:53 | 001,712,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xpsservices.dll
[2016.06.29 12:57:53 | 000,863,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diagperf.dll
[2016.06.29 12:57:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdosys.dll
[2016.06.29 12:57:53 | 000,776,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\calc.exe
[2016.06.29 12:57:51 | 001,555,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\certmgr.dll
[2016.06.29 12:57:51 | 000,878,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Bubbles.scr
[2016.06.29 12:57:51 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsGdiConverter.dll
[2016.06.29 12:57:51 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsRasterService.dll
[2016.06.29 12:57:50 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bthprops.cpl
[2016.06.29 12:57:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\browcli.dll
[2016.06.29 12:57:49 | 002,217,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bootres.dll
[2016.06.29 12:57:49 | 000,750,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdcpl.dll
[2016.06.29 12:57:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\biocpl.dll
[2016.06.29 12:57:49 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsadmin.exe
[2016.06.29 12:57:49 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdboot.exe
[2016.06.29 12:57:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdsrv.dll
[2016.06.29 12:57:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\bfsvc.exe
[2016.06.29 12:57:49 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BlbEvents.dll
[2016.06.29 12:57:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basesrv.dll
[2016.06.29 12:57:49 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsperf.dll
[2016.06.29 12:57:47 | 000,295,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdedit.exe
[2016.06.29 12:57:45 | 000,762,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroles.dll
[2016.06.29 12:57:45 | 000,658,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autofmt.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVol.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroleui.dll
[2016.06.29 12:57:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVolSSO.dll
[2016.06.29 12:57:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoplay.dll
[2016.06.29 12:57:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AzSqlExt.dll
[2016.06.29 12:57:44 | 003,727,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\accessibilitycpl.dll
[2016.06.29 12:57:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdiasqmmodule.dll
[2016.06.29 12:57:43 | 000,321,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aepdu.dll
[2016.06.29 12:57:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aeinv.dll
[2016.06.29 12:57:43 | 000,292,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2016.06.29 12:57:43 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adsldp.dll
[2016.06.29 12:57:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aitagent.exe
[2016.06.29 12:57:43 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\acppage.dll
[2016.06.29 12:57:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmartcardCredentialProvider.dll
[2016.06.29 12:57:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\hidclass.sys
[2016.06.29 12:57:38 | 000,859,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OobeFldr.dll
[2016.06.29 12:57:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srchadmin.dll
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Opera Software
[2016.06.29 12:13:32 | 000,000,000 | ---D | C] -- D:\Program Files\Opera
[2016.06.29 12:04:16 | 028,043,832 | ---- | C] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 22:18:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SygicTruck13.5.0
[2016.06.28 19:44:30 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SG_14.3.1
[2016.06.28 19:35:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.28 16:40:58 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\All voices Sygic
[2016.06.27 18:41:46 | 000,000,000 | -H-D | C] -- D:\ProgramData\CanonBJ
[2016.06.27 18:41:42 | 000,000,000 | -H-D | C] -- D:\Windows\System32\CanonIJ Uninstaller Information
[2016.06.27 18:41:42 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4200
[2016.06.27 18:41:37 | 000,197,632 | ---- | C] (CANON INC.) -- D:\Windows\System32\CNMLM78.DLL
[2016.06.27 18:41:33 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ
[2016.06.27 10:44:45 | 000,000,000 | ---D | C] -- D:\Users\pepa\Tracing
[2016.06.27 10:44:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Skype
[2016.06.27 10:43:58 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.06.27 10:43:57 | 000,000,000 | R--D | C] -- D:\Program Files\Skype
[2016.06.27 10:43:57 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Skype
[2016.06.27 10:43:52 | 000,000,000 | ---D | C] -- D:\ProgramData\Skype
[2016.06.27 10:11:42 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\Program Files\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Adobe
[2016.06.27 10:10:44 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Adobe
[2016.06.27 10:10:26 | 000,000,000 | ---D | C] -- D:\Program Files\Seznam.cz
[2016.06.27 10:09:59 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.27 10:09:58 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe Flash Player
[2016.06.27 10:09:53 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Programs
[2016.06.27 10:06:01 | 000,796,352 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:06:01 | 000,142,528 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:05:57 | 000,000,000 | ---D | C] -- D:\Windows\System32\Macromed
[2016.06.27 09:44:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\poqexec.exe
[2016.06.27 07:57:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapi.dll
[2016.06.27 07:57:42 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wudriver.dll
[2016.06.27 07:57:42 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups.dll
[2016.06.27 00:13:58 | 000,000,000 | ---D | C] -- D:\Windows\Panther
[2016.06.27 00:13:31 | 000,000,000 | ---D | C] -- D:\Windows\System32\OEM
[2016.06.27 00:04:23 | 000,000,000 | ---D | C] -- D:\Windows.old.000
[2016.06.26 17:59:01 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2016.06.26 17:58:33 | 000,032,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msonpmon.dll
[2016.06.26 17:57:31 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Works
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DESIGNER
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Windows\PCHEALTH
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft.NET
[2016.06.26 17:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio 8
[2016.06.26 17:54:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft Help
[2016.06.26 17:54:37 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Office
[2016.06.26 17:54:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft Help
[2016.06.26 17:53:35 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2016.06.26 17:52:09 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:48 | 000,000,000 | ---D | C] -- D:\Program Files\WinRAR
[2016.06.26 16:54:06 | 000,400,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Mozilla
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Mozilla
[2016.06.26 16:51:38 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Maintenance Service
[2016.06.26 16:51:33 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2016.06.26 16:37:49 | 002,324,216 | ---- | C] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:36:05 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\CEF
[2016.06.26 16:35:25 | 000,035,096 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:46 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.06.26 16:32:43 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016.06.26 16:32:29 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AV
[2016.06.26 16:32:21 | 000,222,056 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:32:21 | 000,118,152 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:32:20 | 000,438,296 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.26 16:32:20 | 000,060,424 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:32:19 | 000,091,680 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:32:19 | 000,091,232 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:32:19 | 000,034,008 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:32:18 | 000,816,304 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:32:05 | 000,921,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:32:05 | 000,319,248 | ---- | C] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | C] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:30:22 | 000,000,000 | ---D | C] -- D:\Program Files\AVAST Software
[2016.06.26 16:29:48 | 000,000,000 | ---D | C] -- D:\ProgramData\AVAST Software
[2016.06.26 16:26:03 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Diagnostics
[2016.06.26 16:21:38 | 000,859,136 | ---- | C] (Realtek Semiconductor Corporation ) -- D:\Windows\System32\drivers\rtl8192se.sys
[2016.06.26 16:21:38 | 000,000,000 | ---D | C] -- D:\Program Files\InstallShield Installation Information
[2016.06.26 16:21:34 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek WLAN Driver
[2016.06.26 16:21:10 | 000,000,000 | -HSD | C] -- D:\Windows\Installer
[2016.06.26 16:20:56 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinBatch
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\Searches
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.06.26 15:59:18 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Identities
[2016.06.26 15:59:15 | 000,000,000 | R--D | C] -- D:\Users\pepa\Contacts
[2016.06.26 15:57:42 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\VirtualStore
[2016.06.26 15:57:38 | 000,000,000 | --SD | C] -- D:\Users\pepa\AppData\Roaming\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Videos
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Saved Games
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Pictures
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Music
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Links
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Favorites
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Downloads
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Documents
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Desktop
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Temporary Internet Files
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Šablony
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Soubory cookie
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\SendTo
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Poslední
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní tiskárny
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní síť
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Obrázky
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Nabídka Start
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Local Settings
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Hudba
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\History
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Filmy
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Dokumenty
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -H-D | C] -- D:\Users\pepa\AppData
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Temp
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Media Center Programs
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Šablony
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Plocha
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Obrázky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Oblíbené položky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Nabídka Start
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Hudba
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Filmy
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Dokumenty
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Data aplikací
[2016.06.26 14:17:58 | 000,000,000 | ---D | C] -- D:\Windows\SoftwareDistribution
[2016.06.26 14:14:37 | 000,000,000 | ---D | C] -- D:\Windows\Prefetch
========== Files - Modified Within 30 Days ==========
[2016.07.06 11:48:09 | 000,000,914 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.07.06 08:41:20 | 000,668,376 | ---- | M] () -- D:\Windows\System32\perfh005.dat
[2016.07.06 08:41:20 | 000,653,724 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2016.07.06 08:41:20 | 000,141,004 | ---- | M] () -- D:\Windows\System32\perfc005.dat
[2016.07.06 08:41:20 | 000,121,596 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2016.07.06 07:54:45 | 000,000,512 | ---- | M] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:24 | 000,597,473 | ---- | M] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.06 07:34:38 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 07:25:32 | 1606,578,176 | -HS- | M] () -- D:\hiberfil.sys
[2016.07.05 07:12:44 | 000,000,000 | ---- | M] () -- D:\Windows\System32\last.dump
[2016.07.02 03:36:41 | 000,413,336 | ---- | M] () -- D:\Windows\System32\FNTCACHE.DAT
[2016.07.02 03:11:20 | 000,152,576 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\msclmd.dll
[2016.06.30 13:52:43 | 000,007,602 | ---- | M] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagerr.xml
[2016.06.29 17:19:15 | 000,002,058 | ---- | M] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 12:14:48 | 000,001,095 | ---- | M] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.29 12:09:32 | 028,043,832 | ---- | M] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 13:52:48 | 000,013,723 | ---- | M] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.27 10:48:29 | 000,796,352 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:48:29 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:43:58 | 000,002,719 | ---- | M] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.26 20:35:12 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | M] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | M] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:35:50 | 000,001,122 | ---- | M] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:43 | 000,002,083 | ---- | M] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:31:57 | 000,921,280 | ---- | M] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:31:57 | 000,319,248 | ---- | M] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | M] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:20:33 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 14:19:15 | 000,068,220 | ---- | M] () -- D:\Windows\System32\license.rtf
[2016.06.26 14:17:41 | 000,000,000 | ---- | M] () -- D:\Windows\ativpsrm.bin
[2016.06.26 10:28:20 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2016.06.25 17:43:13 | 000,301,056 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.06.25 11:45:09 | 000,619,841 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.25 11:45:01 | 000,657,217 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.13 19:31:08 | 000,400,040 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
========== Files Created - No Company Name ==========
[2016.07.06 07:54:45 | 000,000,512 | ---- | C] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:19 | 000,597,473 | ---- | C] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.02 15:24:04 | 000,000,003 | ---- | C] () -- D:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.06.30 23:43:10 | 000,000,000 | ---- | C] () -- D:\Windows\System32\last.dump
[2016.06.30 13:52:43 | 000,007,602 | ---- | C] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:19:15 | 000,002,058 | ---- | C] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagerr.xml
[2016.06.29 12:59:47 | 000,010,429 | ---- | C] () -- D:\Windows\System32\ScavengeSpace.xml
[2016.06.29 12:59:42 | 000,146,852 | ---- | C] () -- D:\Windows\System32\systemsf.ebd
[2016.06.29 12:59:37 | 000,080,896 | ---- | C] () -- D:\Windows\System32\RDVGHelper.exe
[2016.06.29 12:59:35 | 000,105,559 | ---- | C] () -- D:\Windows\System32\RacRules.xml
[2016.06.29 12:59:33 | 000,066,048 | ---- | C] () -- D:\Windows\System32\PrintBrmUi.exe
[2016.06.29 12:14:48 | 000,001,095 | ---- | C] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.28 18:55:55 | 000,619,841 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.28 18:55:52 | 000,657,217 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.28 13:41:31 | 000,013,723 | ---- | C] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 10:43:58 | 000,002,719 | ---- | C] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.27 10:06:02 | 000,000,914 | ---- | C] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.06.26 20:35:12 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | C] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | C] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
[2016.06.26 16:32:43 | 000,002,083 | ---- | C] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:20:33 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 15:59:33 | 000,001,421 | ---- | C] () -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.06.26 14:19:08 | 000,001,326 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.06.26 14:19:00 | 000,001,345 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.06.26 14:17:41 | 000,000,000 | ---- | C] () -- D:\Windows\ativpsrm.bin
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2016.06.26 16:32:46 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.07.02 18:51:45 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.29 12:14:50 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.07.05 07:34:13 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.29 13:03:05 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.26 16:20:56 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\WinBatch
========== Purity Check ==========
< End of report >
[2016.07.01 15:35:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.30 12:50:29 | 000,000,000 | ---D | C] -- D:\Windows\System32\EventProviders
[2016.06.29 14:30:21 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\ElevatedDiagnostics
[2016.06.29 13:01:09 | 000,215,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicsvc.exe
[2016.06.29 13:01:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IcCoinstall.dll
[2016.06.29 13:01:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicres.dll
[2016.06.29 13:01:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmictimeprovider.dll
[2016.06.29 13:01:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\VMBusHID.sys
[2016.06.29 13:01:07 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmbusCoinstaller.dll
[2016.06.29 13:01:07 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbusres.dll
[2016.06.29 13:01:07 | 000,043,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winhv.sys
[2016.06.29 13:01:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbuspipe.dll
[2016.06.29 13:01:06 | 000,175,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmbus.sys
[2016.06.29 13:01:06 | 000,028,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storvsc.sys
[2016.06.29 13:01:05 | 000,458,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSDApi.dll
[2016.06.29 13:01:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHost.exe
[2016.06.29 13:01:05 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmdCoinstall.dll
[2016.06.29 13:01:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHostProxy.dll
[2016.06.29 13:01:05 | 000,040,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmstorfl.sys
[2016.06.29 13:01:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmstorfltres.dll
[2016.06.29 13:01:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vms3cap.sys
[2016.06.29 13:01:03 | 001,548,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tquery.dll
[2016.06.29 13:01:03 | 001,401,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssrch.dll
[2016.06.29 13:01:03 | 000,666,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssvp.dll
[2016.06.29 13:01:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssphtb.dll
[2016.06.29 13:00:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\umb.dll
[2016.06.29 13:00:53 | 000,035,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winusb.sys
[2016.06.29 13:00:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FirewallControlPanel.dll
[2016.06.29 13:00:40 | 005,066,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuthFWSnapin.dll
[2016.06.29 13:00:36 | 000,155,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscorier.dll
[2016.06.29 13:00:36 | 000,080,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscories.dll
[2016.06.29 13:00:36 | 000,049,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netfxperf.dll
[2016.06.29 13:00:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Narrator.exe
[2016.06.29 13:00:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPHLPR.DLL
[2016.06.29 13:00:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPCRYPT.DLL
[2016.06.29 13:00:34 | 000,132,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ataport.sys
[2016.06.29 13:00:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpd_ci.dll
[2016.06.29 13:00:33 | 000,140,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\scsiport.sys
[2016.06.29 13:00:31 | 001,334,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertEnroll.dll
[2016.06.29 13:00:31 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wusa.exe
[2016.06.29 13:00:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanconn.dll
[2016.06.29 13:00:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanprotdim.dll
[2016.06.29 13:00:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsdchngr.dll
[2016.06.29 13:00:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceApi.dll
[2016.06.29 13:00:30 | 000,427,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceStatus.dll
[2016.06.29 13:00:29 | 000,206,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedynos.dll
[2016.06.29 13:00:29 | 000,202,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedyn.dll
[2016.06.29 13:00:28 | 000,363,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wbemcomn.dll
[2016.06.29 13:00:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanpref.dll
[2016.06.29 13:00:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanmsm.dll
[2016.06.29 13:00:27 | 000,411,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlangpui.dll
[2016.06.29 13:00:27 | 000,410,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanui.dll
[2016.06.29 13:00:27 | 000,351,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmicmiplugin.dll
[2016.06.29 13:00:27 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgent.dll
[2016.06.29 13:00:27 | 000,169,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winsrv.dll
[2016.06.29 13:00:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgentc.exe
[2016.06.29 13:00:26 | 002,329,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\win32k.sys
[2016.06.29 13:00:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webservices.dll
[2016.06.29 13:00:26 | 000,406,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimgapi.dll
[2016.06.29 13:00:26 | 000,327,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimserv.exe
[2016.06.29 13:00:26 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webio.dll
[2016.06.29 13:00:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fphc.dll
[2016.06.29 13:00:25 | 003,367,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSAT.exe
[2016.06.29 13:00:25 | 000,416,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiadefui.dll
[2016.06.29 13:00:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiarpc.dll
[2016.06.29 13:00:23 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpdwcn.dll
[2016.06.29 13:00:23 | 000,051,200 | ---- | C] (Twain Working Group) -- D:\Windows\twain_32.dll
[2016.06.29 13:00:21 | 000,335,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSATAPI.dll
[2016.06.29 13:00:21 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiavideo.dll
[2016.06.29 13:00:19 | 000,350,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WPDSp.dll
[2016.06.29 13:00:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wkscli.dll
[2016.06.29 13:00:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbrpm.sys
[2016.06.29 13:00:18 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsutil.dll
[2016.06.29 13:00:17 | 000,638,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VAN.dll
[2016.06.29 13:00:17 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VBICodec.ax
[2016.06.29 13:00:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciavi32.dll
[2016.06.29 13:00:17 | 000,082,944 | ---- | C] (Radius Inc.) -- D:\Windows\System32\iccvid.dll
[2016.06.29 13:00:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSTPager.ax
[2016.06.29 13:00:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cca.dll
[2016.06.29 13:00:15 | 000,160,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsbas.dll
[2016.06.29 13:00:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSNP.ax
[2016.06.29 13:00:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\psisrndr.ax
[2016.06.29 13:00:13 | 000,072,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mpeg2Data.ax
[2016.06.29 13:00:13 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSDvbNP.ax
[2016.06.29 13:00:11 | 000,600,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\usercpl.dll
[2016.06.29 13:00:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\userinit.exe
[2016.06.29 13:00:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unimdmat.dll
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD2.sys
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD.sys
[2016.06.29 13:00:09 | 002,983,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbon.dll
[2016.06.29 13:00:09 | 001,164,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbonRes.dll
[2016.06.29 13:00:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDec.dll
[2016.06.29 13:00:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UserAccountControlSettings.dll
[2016.06.29 13:00:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\djoin.exe
[2016.06.29 13:00:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzutil.exe
[2016.06.29 13:00:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\themecpl.dll
[2016.06.29 13:00:08 | 000,478,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\timedate.cpl
[2016.06.29 13:00:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\w32tm.exe
[2016.06.29 13:00:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TRAPI.dll
[2016.06.29 13:00:07 | 000,505,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskschd.dll
[2016.06.29 13:00:07 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\termmgr.dll
[2016.06.29 13:00:07 | 000,187,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\FWPKCLNT.SYS
[2016.06.29 13:00:07 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tcpipcfg.dll
[2016.06.29 13:00:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiohlp.dll
[2016.06.29 13:00:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiougc.exe
[2016.06.29 13:00:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\tdi.sys
[2016.06.29 13:00:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schedcli.dll
[2016.06.29 13:00:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskbarcpl.dll
[2016.06.29 13:00:06 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wavemsp.dll
[2016.06.29 13:00:06 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
[2016.06.29 13:00:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TabletPC.cpl
[2016.06.29 13:00:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tabcal.exe
[2016.06.29 13:00:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MultiDigiMon.exe
[2016.06.29 13:00:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\takeown.exe
[2016.06.29 13:00:05 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\g711codc.ax
[2016.06.29 13:00:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\TsUsbFlt.sys
[2016.06.29 13:00:03 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\input.dll
[2016.06.29 13:00:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpencom.dll
[2016.06.29 13:00:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aaclient.dll
[2016.06.29 13:00:03 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpd3d.dll
[2016.06.29 13:00:03 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsgqec.dll
[2016.06.29 13:00:03 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfts.dll
[2016.06.29 13:00:01 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TSWorkspace.dll
[2016.06.29 13:00:01 | 000,260,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpshell.exe
[2016.06.29 13:00:01 | 000,173,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpclip.exe
[2016.06.29 13:00:01 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tspubwmi.dll
[2016.06.29 13:00:01 | 000,121,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPENCDD.dll
[2016.06.29 13:00:01 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpsign.exe
[2016.06.29 13:00:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\utildll.dll
[2016.06.29 13:00:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpinit.exe
[2016.06.29 12:59:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wksprt.exe
[2016.06.29 12:59:59 | 000,154,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscfgwmi.dll
[2016.06.29 12:59:59 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpendp.dll
[2016.06.29 12:59:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorekmts.dll
[2016.06.29 12:59:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tssrvlic.dll
[2016.06.29 12:59:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpwsx.dll
[2016.06.29 12:59:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\LSCSHostPolicy.dll
[2016.06.29 12:59:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPREFDD.dll
[2016.06.29 12:59:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qprocess.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tskill.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgport.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsdiscon.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chglogon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdprefdrvapi.dll
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qappsrv.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoff.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shadow.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rwinsta.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgusr.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\reset.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\change.exe
[2016.06.29 12:59:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\query.exe
[2016.06.29 12:59:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskcomp.dll
[2016.06.29 12:59:58 | 000,270,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsmf.dll
[2016.06.29 12:59:58 | 000,252,928 | ---- | C] (Microsoft) -- D:\Windows\System32\DShowRdpFilter.dll
[2016.06.29 12:59:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qwinsta.exe
[2016.06.29 12:59:58 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msg.exe
[2016.06.29 12:59:58 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quser.exe
[2016.06.29 12:59:58 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcfgex.dll
[2016.06.29 12:59:57 | 000,826,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcore.dll
[2016.06.29 12:59:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\systemcpl.dll
[2016.06.29 12:59:57 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysclass.dll
[2016.06.29 12:59:57 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tlscsp.dll
[2016.06.29 12:59:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spbcd.dll
[2016.06.29 12:59:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lsmproxy.dll
[2016.06.29 12:59:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spopk.dll
[2016.06.29 12:59:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\syssetup.dll
[2016.06.29 12:59:56 | 000,850,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sbe.dll
[2016.06.29 12:59:56 | 000,755,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sud.dll
[2016.06.29 12:59:56 | 000,183,296 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceSyncProvider.dll
[2016.06.29 12:59:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlcese30.dll
[2016.06.29 12:59:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ssText3d.scr
[2016.06.29 12:59:55 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsqmcons.exe
[2016.06.29 12:59:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqmapi.dll
[2016.06.29 12:59:55 | 000,148,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storport.sys
[2016.06.29 12:59:53 | 000,697,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmiEngine.dll
[2016.06.29 12:59:53 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetmib1.dll
[2016.06.29 12:59:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsnmp32.dll
[2016.06.29 12:59:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WavDest.dll
[2016.06.29 12:59:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sscore.dll
[2016.06.29 12:59:52 | 000,144,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basecsp.dll
[2016.06.29 12:59:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sisbkup.dll
[2016.06.29 12:59:51 | 000,428,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shwebsvc.dll
[2016.06.29 12:59:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shunimpl.dll
[2016.06.29 12:59:50 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unattend.dll
[2016.06.29 12:59:50 | 000,111,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shsetup.dll
[2016.06.29 12:59:50 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shacct.dll
[2016.06.29 12:59:50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcl.exe
[2016.06.29 12:59:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prevhost.exe
[2016.06.29 12:59:49 | 000,456,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spinstall.exe
[2016.06.29 12:59:49 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spreview.exe
[2016.06.29 12:59:49 | 000,270,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sethc.exe
[2016.06.29 12:59:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizui.dll
[2016.06.29 12:59:49 | 000,179,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionQueue.dll
[2016.06.29 12:59:49 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcln.dll
[2016.06.29 12:59:48 | 000,933,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Vault.dll
[2016.06.29 12:59:48 | 000,327,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nltest.exe
[2016.06.29 12:59:48 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slui.exe
[2016.06.29 12:59:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vaultsvc.dll
[2016.06.29 12:59:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppcomapi.dll
[2016.06.29 12:59:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppc.dll
[2016.06.29 12:59:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppinst.dll
[2016.06.29 12:59:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wscapi.dll
[2016.06.29 12:59:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slwga.dll
[2016.06.29 12:59:47 | 001,131,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdclt.exe
[2016.06.29 12:59:47 | 000,974,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppobjs.dll
[2016.06.29 12:59:47 | 000,907,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdengin2.dll
[2016.06.29 12:59:47 | 000,271,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fveapi.dll
[2016.06.29 12:59:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scansetting.dll
[2016.06.29 12:59:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schtasks.exe
[2016.06.29 12:59:47 | 000,175,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fvecpl.dll
[2016.06.29 12:59:47 | 000,136,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scavengeui.dll
[2016.06.29 12:59:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\manage-bde.exe
[2016.06.29 12:59:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BdeHdCfg.exe
[2016.06.29 12:59:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\repair-bde.exe
[2016.06.29 12:59:43 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizeng.dll
[2016.06.29 12:59:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\uxlib.dll
[2016.06.29 12:59:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizres.dll
[2016.06.29 12:59:42 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoncli.dll
[2016.06.29 12:59:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertPolEng.dll
[2016.06.29 12:59:41 | 000,316,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sharemediacpl.dll
[2016.06.29 12:59:41 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srrstr.dll
[2016.06.29 12:59:40 | 000,412,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppwinob.dll
[2016.06.29 12:59:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rpchttp.dll
[2016.06.29 12:59:40 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\runonce.exe
[2016.06.29 12:59:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Ribbons.scr
[2016.06.29 12:59:39 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recdisc.exe
[2016.06.29 12:59:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RelPost.exe
[2016.06.29 12:59:39 | 000,135,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recovery.dll
[2016.06.29 12:59:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rmcast.sys
[2016.06.29 12:59:39 | 000,098,816 | ---- | C] (Microsoft) -- D:\Windows\System32\Robocopy.exe
[2016.06.29 12:59:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\riched32.dll
[2016.06.29 12:59:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iprtrmgr.dll
[2016.06.29 12:59:38 | 000,268,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mprddm.dll
[2016.06.29 12:59:38 | 000,084,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmstp.exe
[2016.06.29 12:59:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnike.dll
[2016.06.29 12:59:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpudd.dll
[2016.06.29 12:59:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbGDCoInstaller.dll
[2016.06.29 12:59:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnikeapi.dll
[2016.06.29 12:59:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rdpvideominiport.sys
[2016.06.29 12:59:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2016.06.29 12:59:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2016.06.29 12:59:36 | 001,115,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RacEngn.dll
[2016.06.29 12:59:35 | 000,870,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsPrint.dll
[2016.06.29 12:59:35 | 000,509,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qedit.dll
[2016.06.29 12:59:35 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgprint.dll
[2016.06.29 12:59:35 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prncache.dll
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\proquota.exe
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\profprov.dll
[2016.06.29 12:59:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercpl.dll
[2016.06.29 12:59:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PhotoScreensaver.scr
[2016.06.29 12:59:34 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercfg.cpl
[2016.06.29 12:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppnp.dll
[2016.06.29 12:59:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pifmgr.dll
[2016.06.29 12:59:33 | 001,227,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdc.dll
[2016.06.29 12:59:33 | 000,766,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpccpl.dll
[2016.06.29 12:59:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PerfCenterCPL.dll
[2016.06.29 12:59:33 | 000,444,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wvc.dll
[2016.06.29 12:59:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysmon.ocx
[2016.06.29 12:59:33 | 000,209,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PkgMgr.exe
[2016.06.29 12:59:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdscore.dll
[2016.06.29 12:59:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfmon.exe
[2016.06.29 12:59:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PnPUnattend.exe
[2016.06.29 12:59:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pdhui.dll
[2016.06.29 12:59:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unlodctr.exe
[2016.06.29 12:59:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prnfldr.dll
[2016.06.29 12:59:32 | 000,297,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntprint.dll
[2016.06.29 12:59:31 | 000,324,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\puiobj.dll
[2016.06.29 12:59:31 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logman.exe
[2016.06.29 12:59:31 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\relog.exe
[2016.06.29 12:59:31 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PrintIsolationProxy.dll
[2016.06.29 12:59:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prntvpt.dll
[2016.06.29 12:59:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PushPrinterConnections.exe
[2016.06.29 12:59:25 | 001,111,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\onexui.dll
[2016.06.29 12:59:25 | 000,218,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OnLineIDCpl.dll
[2016.06.29 12:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetup.exe
[2016.06.29 12:59:25 | 000,174,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetapi.dll
[2016.06.29 12:59:25 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CscMig.dll
[2016.06.29 12:59:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cscobj.dll
[2016.06.29 12:59:24 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\asycfilt.dll
[2016.06.29 12:59:23 | 002,130,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\networkmap.dll
[2016.06.29 12:59:23 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncsi.dll
[2016.06.29 12:59:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nslookup.exe
[2016.06.29 12:59:22 | 001,750,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pnidui.dll
[2016.06.29 12:59:22 | 001,644,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcenter.dll
[2016.06.29 12:59:22 | 000,656,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshwfp.dll
[2016.06.29 12:59:22 | 000,240,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\netio.sys
[2016.06.29 12:59:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FWPUCLNT.DLL
[2016.06.29 12:59:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netjoin.dll
[2016.06.29 12:59:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NaturalLanguage6.dll
[2016.06.29 12:59:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\net1.exe
[2016.06.29 12:59:21 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nci.dll
[2016.06.29 12:59:21 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncryptui.dll
[2016.06.29 12:59:21 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcfg.exe
[2016.06.29 12:59:19 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ipsmsnap.dll
[2016.06.29 12:59:19 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSHVHOST.DLL
[2016.06.29 12:59:19 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSVRMGMT.DLL
[2016.06.29 12:59:18 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshipsec.dll
[2016.06.29 12:59:18 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrecst.dll
[2016.06.29 12:59:17 | 000,225,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netdiagfx.dll
[2016.06.29 12:59:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrad.dll
[2016.06.29 12:59:17 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QAGENT.DLL
[2016.06.29 12:59:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasacct.dll
[2016.06.29 12:59:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QCLIPROV.DLL
[2016.06.29 12:59:17 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\napdsnap.dll
[2016.06.29 12:59:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mystify.scr
[2016.06.29 12:59:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcbuilder.exe
[2016.06.29 12:59:15 | 000,592,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msftedit.dll
[2016.06.29 12:59:15 | 000,303,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msinfo32.exe
[2016.06.29 12:59:15 | 000,233,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msconfig.exe
[2016.06.29 12:59:15 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSAC3ENC.DLL
[2016.06.29 12:59:14 | 002,146,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SyncCenter.dll
[2016.06.29 12:59:13 | 002,504,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVCORE.DLL
[2016.06.29 12:59:13 | 002,202,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SensorsCpl.dll
[2016.06.29 12:59:13 | 001,624,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPEncEn.dll
[2016.06.29 12:59:13 | 001,163,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc42u.dll
[2016.06.29 12:59:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40.dll
[2016.06.29 12:59:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40u.dll
[2016.06.29 12:59:13 | 000,507,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmdev.dll
[2016.06.29 12:59:13 | 000,436,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmnet.dll
[2016.06.29 12:59:13 | 000,352,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpeffects.dll
[2016.06.29 12:59:13 | 000,296,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfds.dll
[2016.06.29 12:59:13 | 000,213,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MMDevAPI.dll
[2016.06.29 12:59:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfreadwrite.dll
[2016.06.29 12:59:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpsrcwp.dll
[2016.06.29 12:59:13 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFPlay.dll
[2016.06.29 12:59:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpps.dll
[2016.06.29 12:59:12 | 001,003,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMNetMgr.dll
[2016.06.29 12:59:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logagent.exe
[2016.06.29 12:59:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MediaMetadataHandler.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapistub.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapi32.dll
[2016.06.29 12:59:09 | 000,516,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\main.cpl
[2016.06.29 12:59:08 | 000,665,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayCpl.dll
[2016.06.29 12:59:08 | 000,520,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcupdate_GenuineIntel.dll
[2016.06.29 12:59:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlsrv32.dll
[2016.06.29 12:59:07 | 000,170,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationSettings.exe
[2016.06.29 12:59:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayServices.dll
[2016.06.29 12:59:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\migisol.dll
[2016.06.29 12:59:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcconf.dll
[2016.06.29 12:59:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vbisurf.ax
[2016.06.29 12:59:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kstvtune.ax
[2016.06.29 12:59:06 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksxbar.ax
[2016.06.29 12:59:03 | 000,941,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mblctr.exe
[2016.06.29 12:59:01 | 002,151,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mmcndmgr.dll
[2016.06.29 12:59:01 | 000,319,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcjt32.dll
[2016.06.29 12:59:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\defaultlocationcpl.dll
[2016.06.29 12:59:01 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msorcl32.dll
[2016.06.29 12:59:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbctrac.dll
[2016.06.29 12:59:01 | 000,132,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MdSched.exe
[2016.06.29 12:59:01 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbccp32.dll
[2016.06.29 12:59:00 | 000,477,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpksetup.exe
[2016.06.29 12:59:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpremove.exe
[2016.06.29 12:59:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\luainstall.dll
[2016.06.29 12:58:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nrpsrv.dll
[2016.06.29 12:58:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ks.sys
[2016.06.29 12:58:44 | 000,219,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iTVData.dll
[2016.06.29 12:58:44 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Kswdmcap.ax
[2016.06.29 12:58:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\isoburn.exe
[2016.06.29 12:58:43 | 000,345,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\intl.cpl
[2016.06.29 12:58:43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MuiUnattend.exe
[2016.06.29 12:58:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nlsbres.dll
[2016.06.29 12:58:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wshirda.dll
[2016.06.29 12:58:41 | 002,522,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dbgeng.dll
[2016.06.29 12:58:41 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imkr80.ime
[2016.06.29 12:58:41 | 000,392,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2.dll
[2016.06.29 12:58:38 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ie4uinit.exe
[2016.06.29 12:58:38 | 000,114,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iesysprep.dll
[2016.06.29 12:58:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inseng.dll
[2016.06.29 12:58:37 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msrating.dll
[2016.06.29 12:58:37 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ieUnatt.exe
[2016.06.29 12:58:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imgutil.dll
[2016.06.29 12:58:36 | 000,599,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeeds.dll
[2016.06.29 12:58:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscms.dll
[2016.06.29 12:58:36 | 000,389,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iedkcs32.dll
[2016.06.29 12:58:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\html.iec
[2016.06.29 12:58:36 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iepeers.dll
[2016.06.29 12:58:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RegisterIEPKEYs.exe
[2016.06.29 12:58:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedsbs.dll
[2016.06.29 12:58:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\licmgr10.dll
[2016.06.29 12:58:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedssync.exe
[2016.06.29 12:58:34 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzres.dll
[2016.06.29 12:58:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kbdlk41a.dll
[2016.06.29 12:58:31 | 001,466,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetcpl.cpl
[2016.06.29 12:58:31 | 000,606,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mstime.dll
[2016.06.29 12:58:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\C_ISCII.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSG.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDCZ1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDPO.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGR1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGKL.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUS.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUGHR1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMAORI.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDLT1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINHIN.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBULG.DLL
[2016.06.29 12:58:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsicli.exe
[2016.06.29 12:58:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsium.dll
[2016.06.29 12:58:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\elsTrans.dll
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUQ.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDNEPR.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINBEN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTURME.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTAJIK.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMON.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTEL.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTAM.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINORI.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINMAR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINKAN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBLR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBASH.DLL
[2016.06.29 12:58:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGEO.DLL
[2016.06.29 12:58:28 | 000,732,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2fs.dll
[2016.06.29 12:58:28 | 000,312,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgcpl.dll
[2016.06.29 12:58:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\itircl.dll
[2016.06.29 12:58:28 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\HotStartUserAgent.dll
[2016.06.29 12:58:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenter.dll
[2016.06.29 12:58:27 | 000,537,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenterCPL.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halmacpi.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hal.dll
[2016.06.29 12:58:27 | 000,137,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halacpi.dll
[2016.06.29 12:58:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hbaapi.dll
[2016.06.29 12:58:19 | 002,576,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gameux.dll
[2016.06.29 12:58:19 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\atmfd.dll
[2016.06.29 12:58:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fontsub.dll
[2016.06.29 12:58:19 | 000,034,304 | ---- | C] (Adobe Systems) -- D:\Windows\System32\atmlib.dll
[2016.06.29 12:58:18 | 000,584,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gpprefcl.dll
[2016.06.29 12:58:18 | 000,339,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appmgr.dll
[2016.06.29 12:58:17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scrptadm.dll
[2016.06.29 12:58:17 | 000,438,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AdmTmpl.dll
[2016.06.29 12:58:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ftp.exe
[2016.06.29 12:58:15 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fde.dll
[2016.06.29 12:58:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\t2embed.dll
[2016.06.29 12:58:15 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- D:\Windows\System32\fms.dll
[2016.06.29 12:58:15 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\findstr.exe
[2016.06.29 12:58:15 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fdeploy.dll
[2016.06.29 12:58:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSMON.dll
[2016.06.29 12:58:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\muifontsetup.dll
[2016.06.29 12:58:14 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSTIFF.dll
[2016.06.29 12:58:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ifsutil.dll
[2016.06.29 12:58:13 | 000,802,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WFS.exe
[2016.06.29 12:58:13 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\untfs.dll
[2016.06.29 12:58:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSCOVER.exe
[2016.06.29 12:58:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\explorer.exe
[2016.06.29 12:58:12 | 001,493,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ExplorerFrame.dll
[2016.06.29 12:58:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eudcedit.exe
[2016.06.29 12:58:11 | 001,063,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\werconcpl.dll
[2016.06.29 12:58:11 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdri.dll
[2016.06.29 12:58:11 | 000,414,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mspbda.dll
[2016.06.29 12:58:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wer.dll
[2016.06.29 12:58:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Faultrep.dll
[2016.06.29 12:58:11 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EhStorAPI.dll
[2016.06.29 12:58:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WerFaultSecure.exe
[2016.06.29 12:58:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2016.06.29 12:58:10 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\efscore.dll
[2016.06.29 12:58:09 | 001,400,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DxpTaskSync.dll
[2016.06.29 12:58:09 | 000,630,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXPTaskRingtone.dll
[2016.06.29 12:58:09 | 000,399,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXP.dll
[2016.06.29 12:58:09 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3ui.dll
[2016.06.29 12:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drvstore.dll
[2016.06.29 12:58:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapp3hst.dll
[2016.06.29 12:58:09 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapphost.dll
[2016.06.29 12:58:09 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3msm.dll
[2016.06.29 12:58:09 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eappgnui.dll
[2016.06.29 12:58:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3cfg.dll
[2016.06.29 12:58:08 | 001,828,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d9.dll
[2016.06.29 12:58:08 | 001,171,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10warp.dll
[2016.06.29 12:58:08 | 001,040,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Display.dll
[2016.06.29 12:58:08 | 000,508,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxgi.dll
[2016.06.29 12:58:08 | 000,276,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskraid.exe
[2016.06.29 12:58:08 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskpart.exe
[2016.06.29 12:58:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscmmc.dll
[2016.06.29 12:58:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscacheugc.exe
[2016.06.29 12:58:08 | 000,027,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\Diskdump.sys
[2016.06.29 12:58:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpnaddr.dll
[2016.06.29 12:58:07 | 001,076,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DWrite.dll
[2016.06.29 12:58:07 | 000,522,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d11.dll
[2016.06.29 12:58:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10level9.dll
[2016.06.29 12:58:07 | 000,219,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10_1core.dll
[2016.06.29 12:58:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\amstream.dll
[2016.06.29 12:58:07 | 000,056,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vfwwdm32.dll
[2016.06.29 12:58:07 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciqtz32.dll
[2016.06.29 12:58:06 | 000,283,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdv.dll
[2016.06.29 12:58:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mpg2splt.ax
[2016.06.29 12:58:06 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qcap.dll
[2016.06.29 12:58:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdmo.dll
[2016.06.29 12:58:05 | 001,188,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DiagCpl.dll
[2016.06.29 12:58:05 | 000,739,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d2d1.dll
[2016.06.29 12:58:05 | 000,586,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dfrgui.exe
[2016.06.29 12:58:05 | 000,484,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DeviceCenter.dll
[2016.06.29 12:58:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpx.dll
[2016.06.29 12:58:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DevicePairingFolder.dll
[2016.06.29 12:58:05 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxdiagn.dll
[2016.06.29 12:58:05 | 000,128,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\desk.cpl
[2016.06.29 12:58:05 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupugc.exe
[2016.06.29 12:58:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dsauth.dll
[2016.06.29 12:58:03 | 001,027,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IMJP10.IME
[2016.06.29 12:58:03 | 000,097,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmredir.dll
[2016.06.29 12:58:02 | 001,371,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmcore.dll
[2016.06.29 12:57:59 | 000,567,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFx.dll
[2016.06.29 12:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFPlatform.dll
[2016.06.29 12:57:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFCoinstaller.dll
[2016.06.29 12:57:57 | 000,429,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\localsec.dll
[2016.06.29 12:57:55 | 001,160,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OpcServices.dll
[2016.06.29 12:57:55 | 000,679,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoconv.exe
[2016.06.29 12:57:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CPFilters.dll
[2016.06.29 12:57:55 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\conhost.exe
[2016.06.29 12:57:55 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netid.dll
[2016.06.29 12:57:55 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mimefilt.dll
[2016.06.29 12:57:54 | 001,066,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdtctm.dll
[2016.06.29 12:57:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmd.exe
[2016.06.29 12:57:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\olethk32.dll
[2016.06.29 12:57:53 | 001,712,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xpsservices.dll
[2016.06.29 12:57:53 | 000,863,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diagperf.dll
[2016.06.29 12:57:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdosys.dll
[2016.06.29 12:57:53 | 000,776,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\calc.exe
[2016.06.29 12:57:51 | 001,555,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\certmgr.dll
[2016.06.29 12:57:51 | 000,878,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Bubbles.scr
[2016.06.29 12:57:51 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsGdiConverter.dll
[2016.06.29 12:57:51 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsRasterService.dll
[2016.06.29 12:57:50 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bthprops.cpl
[2016.06.29 12:57:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\browcli.dll
[2016.06.29 12:57:49 | 002,217,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bootres.dll
[2016.06.29 12:57:49 | 000,750,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdcpl.dll
[2016.06.29 12:57:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\biocpl.dll
[2016.06.29 12:57:49 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsadmin.exe
[2016.06.29 12:57:49 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdboot.exe
[2016.06.29 12:57:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdsrv.dll
[2016.06.29 12:57:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\bfsvc.exe
[2016.06.29 12:57:49 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BlbEvents.dll
[2016.06.29 12:57:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basesrv.dll
[2016.06.29 12:57:49 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsperf.dll
[2016.06.29 12:57:47 | 000,295,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdedit.exe
[2016.06.29 12:57:45 | 000,762,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroles.dll
[2016.06.29 12:57:45 | 000,658,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autofmt.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVol.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroleui.dll
[2016.06.29 12:57:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVolSSO.dll
[2016.06.29 12:57:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoplay.dll
[2016.06.29 12:57:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AzSqlExt.dll
[2016.06.29 12:57:44 | 003,727,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\accessibilitycpl.dll
[2016.06.29 12:57:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdiasqmmodule.dll
[2016.06.29 12:57:43 | 000,321,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aepdu.dll
[2016.06.29 12:57:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aeinv.dll
[2016.06.29 12:57:43 | 000,292,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2016.06.29 12:57:43 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adsldp.dll
[2016.06.29 12:57:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aitagent.exe
[2016.06.29 12:57:43 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\acppage.dll
[2016.06.29 12:57:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmartcardCredentialProvider.dll
[2016.06.29 12:57:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\hidclass.sys
[2016.06.29 12:57:38 | 000,859,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OobeFldr.dll
[2016.06.29 12:57:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srchadmin.dll
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Opera Software
[2016.06.29 12:13:32 | 000,000,000 | ---D | C] -- D:\Program Files\Opera
[2016.06.29 12:04:16 | 028,043,832 | ---- | C] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 22:18:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SygicTruck13.5.0
[2016.06.28 19:44:30 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SG_14.3.1
[2016.06.28 19:35:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.28 16:40:58 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\All voices Sygic
[2016.06.27 18:41:46 | 000,000,000 | -H-D | C] -- D:\ProgramData\CanonBJ
[2016.06.27 18:41:42 | 000,000,000 | -H-D | C] -- D:\Windows\System32\CanonIJ Uninstaller Information
[2016.06.27 18:41:42 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4200
[2016.06.27 18:41:37 | 000,197,632 | ---- | C] (CANON INC.) -- D:\Windows\System32\CNMLM78.DLL
[2016.06.27 18:41:33 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ
[2016.06.27 10:44:45 | 000,000,000 | ---D | C] -- D:\Users\pepa\Tracing
[2016.06.27 10:44:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Skype
[2016.06.27 10:43:58 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.06.27 10:43:57 | 000,000,000 | R--D | C] -- D:\Program Files\Skype
[2016.06.27 10:43:57 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Skype
[2016.06.27 10:43:52 | 000,000,000 | ---D | C] -- D:\ProgramData\Skype
[2016.06.27 10:11:42 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\Program Files\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Adobe
[2016.06.27 10:10:44 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Adobe
[2016.06.27 10:10:26 | 000,000,000 | ---D | C] -- D:\Program Files\Seznam.cz
[2016.06.27 10:09:59 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.27 10:09:58 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe Flash Player
[2016.06.27 10:09:53 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Programs
[2016.06.27 10:06:01 | 000,796,352 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:06:01 | 000,142,528 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:05:57 | 000,000,000 | ---D | C] -- D:\Windows\System32\Macromed
[2016.06.27 09:44:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\poqexec.exe
[2016.06.27 07:57:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapi.dll
[2016.06.27 07:57:42 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wudriver.dll
[2016.06.27 07:57:42 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups.dll
[2016.06.27 00:13:58 | 000,000,000 | ---D | C] -- D:\Windows\Panther
[2016.06.27 00:13:31 | 000,000,000 | ---D | C] -- D:\Windows\System32\OEM
[2016.06.27 00:04:23 | 000,000,000 | ---D | C] -- D:\Windows.old.000
[2016.06.26 17:59:01 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2016.06.26 17:58:33 | 000,032,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msonpmon.dll
[2016.06.26 17:57:31 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Works
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DESIGNER
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Windows\PCHEALTH
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft.NET
[2016.06.26 17:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio 8
[2016.06.26 17:54:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft Help
[2016.06.26 17:54:37 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Office
[2016.06.26 17:54:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft Help
[2016.06.26 17:53:35 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2016.06.26 17:52:09 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:48 | 000,000,000 | ---D | C] -- D:\Program Files\WinRAR
[2016.06.26 16:54:06 | 000,400,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Mozilla
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Mozilla
[2016.06.26 16:51:38 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Maintenance Service
[2016.06.26 16:51:33 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2016.06.26 16:37:49 | 002,324,216 | ---- | C] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:36:05 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\CEF
[2016.06.26 16:35:25 | 000,035,096 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:46 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.06.26 16:32:43 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016.06.26 16:32:29 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AV
[2016.06.26 16:32:21 | 000,222,056 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:32:21 | 000,118,152 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:32:20 | 000,438,296 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.26 16:32:20 | 000,060,424 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:32:19 | 000,091,680 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:32:19 | 000,091,232 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:32:19 | 000,034,008 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:32:18 | 000,816,304 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:32:05 | 000,921,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:32:05 | 000,319,248 | ---- | C] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | C] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:30:22 | 000,000,000 | ---D | C] -- D:\Program Files\AVAST Software
[2016.06.26 16:29:48 | 000,000,000 | ---D | C] -- D:\ProgramData\AVAST Software
[2016.06.26 16:26:03 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Diagnostics
[2016.06.26 16:21:38 | 000,859,136 | ---- | C] (Realtek Semiconductor Corporation ) -- D:\Windows\System32\drivers\rtl8192se.sys
[2016.06.26 16:21:38 | 000,000,000 | ---D | C] -- D:\Program Files\InstallShield Installation Information
[2016.06.26 16:21:34 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek WLAN Driver
[2016.06.26 16:21:10 | 000,000,000 | -HSD | C] -- D:\Windows\Installer
[2016.06.26 16:20:56 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinBatch
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\Searches
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.06.26 15:59:18 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Identities
[2016.06.26 15:59:15 | 000,000,000 | R--D | C] -- D:\Users\pepa\Contacts
[2016.06.26 15:57:42 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\VirtualStore
[2016.06.26 15:57:38 | 000,000,000 | --SD | C] -- D:\Users\pepa\AppData\Roaming\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Videos
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Saved Games
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Pictures
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Music
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Links
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Favorites
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Downloads
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Documents
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Desktop
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Temporary Internet Files
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Šablony
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Soubory cookie
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\SendTo
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Poslední
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní tiskárny
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní síť
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Obrázky
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Nabídka Start
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Local Settings
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Hudba
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\History
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Filmy
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Dokumenty
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -H-D | C] -- D:\Users\pepa\AppData
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Temp
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Media Center Programs
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Šablony
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Plocha
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Obrázky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Oblíbené položky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Nabídka Start
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Hudba
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Filmy
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Dokumenty
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Data aplikací
[2016.06.26 14:17:58 | 000,000,000 | ---D | C] -- D:\Windows\SoftwareDistribution
[2016.06.26 14:14:37 | 000,000,000 | ---D | C] -- D:\Windows\Prefetch
========== Files - Modified Within 30 Days ==========
[2016.07.06 11:48:09 | 000,000,914 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.07.06 08:41:20 | 000,668,376 | ---- | M] () -- D:\Windows\System32\perfh005.dat
[2016.07.06 08:41:20 | 000,653,724 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2016.07.06 08:41:20 | 000,141,004 | ---- | M] () -- D:\Windows\System32\perfc005.dat
[2016.07.06 08:41:20 | 000,121,596 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2016.07.06 07:54:45 | 000,000,512 | ---- | M] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:24 | 000,597,473 | ---- | M] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.06 07:34:38 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 07:25:32 | 1606,578,176 | -HS- | M] () -- D:\hiberfil.sys
[2016.07.05 07:12:44 | 000,000,000 | ---- | M] () -- D:\Windows\System32\last.dump
[2016.07.02 03:36:41 | 000,413,336 | ---- | M] () -- D:\Windows\System32\FNTCACHE.DAT
[2016.07.02 03:11:20 | 000,152,576 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\msclmd.dll
[2016.06.30 13:52:43 | 000,007,602 | ---- | M] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagerr.xml
[2016.06.29 17:19:15 | 000,002,058 | ---- | M] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 12:14:48 | 000,001,095 | ---- | M] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.29 12:09:32 | 028,043,832 | ---- | M] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 13:52:48 | 000,013,723 | ---- | M] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.27 10:48:29 | 000,796,352 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:48:29 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:43:58 | 000,002,719 | ---- | M] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.26 20:35:12 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | M] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | M] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:35:50 | 000,001,122 | ---- | M] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:43 | 000,002,083 | ---- | M] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:31:57 | 000,921,280 | ---- | M] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:31:57 | 000,319,248 | ---- | M] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | M] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:20:33 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 14:19:15 | 000,068,220 | ---- | M] () -- D:\Windows\System32\license.rtf
[2016.06.26 14:17:41 | 000,000,000 | ---- | M] () -- D:\Windows\ativpsrm.bin
[2016.06.26 10:28:20 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2016.06.25 17:43:13 | 000,301,056 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.06.25 11:45:09 | 000,619,841 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.25 11:45:01 | 000,657,217 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.13 19:31:08 | 000,400,040 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
========== Files Created - No Company Name ==========
[2016.07.06 07:54:45 | 000,000,512 | ---- | C] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:19 | 000,597,473 | ---- | C] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.02 15:24:04 | 000,000,003 | ---- | C] () -- D:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.06.30 23:43:10 | 000,000,000 | ---- | C] () -- D:\Windows\System32\last.dump
[2016.06.30 13:52:43 | 000,007,602 | ---- | C] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:19:15 | 000,002,058 | ---- | C] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagerr.xml
[2016.06.29 12:59:47 | 000,010,429 | ---- | C] () -- D:\Windows\System32\ScavengeSpace.xml
[2016.06.29 12:59:42 | 000,146,852 | ---- | C] () -- D:\Windows\System32\systemsf.ebd
[2016.06.29 12:59:37 | 000,080,896 | ---- | C] () -- D:\Windows\System32\RDVGHelper.exe
[2016.06.29 12:59:35 | 000,105,559 | ---- | C] () -- D:\Windows\System32\RacRules.xml
[2016.06.29 12:59:33 | 000,066,048 | ---- | C] () -- D:\Windows\System32\PrintBrmUi.exe
[2016.06.29 12:14:48 | 000,001,095 | ---- | C] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.28 18:55:55 | 000,619,841 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.28 18:55:52 | 000,657,217 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.28 13:41:31 | 000,013,723 | ---- | C] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 10:43:58 | 000,002,719 | ---- | C] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.27 10:06:02 | 000,000,914 | ---- | C] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.06.26 20:35:12 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | C] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | C] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
[2016.06.26 16:32:43 | 000,002,083 | ---- | C] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:20:33 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 15:59:33 | 000,001,421 | ---- | C] () -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.06.26 14:19:08 | 000,001,326 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.06.26 14:19:00 | 000,001,345 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.06.26 14:17:41 | 000,000,000 | ---- | C] () -- D:\Windows\ativpsrm.bin
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2016.06.26 16:32:46 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.07.02 18:51:45 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.29 12:14:50 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.07.05 07:34:13 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.29 13:03:05 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.26 16:20:56 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\WinBatch
========== Purity Check ==========
< End of report >
Přispějete na provoz fóra?