Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
PC se seká
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: PC se seká
druhý log nadvakrát se to sem nevešlo
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Rozložte do více postů. Ty údaje jsou pro mne důležité.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
ale to je všechno už ... dva logy ten jeden jsem rozdělil na dvě zprávy ...
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Log opravdu kompletní není. Klikněte sem: http://forum.viry.cz/viewtopic.php?f=13 ... t#p1451332 a uvidíte, že tam cosi chybí. Dokud nebude log kompletní, nemohu pokračovat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
OTL Extras logfile created on: 6.7.2016 16:25:45 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,13% Memory free
4,16 Gb Paging File | 0,85 Gb Available in Paging File | 20,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,09 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:46:57 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,13% Memory free
4,16 Gb Paging File | 0,85 Gb Available in Paging File | 20,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,09 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =
Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =
Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b
Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b
Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0
Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe
ID
hlášení:
[ System Events ]
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
Error - 6.7.2016 10:46:57 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.
< End of report >
Re: PC se seká
OTL logfile created on: 6.7.2016 16:25:44 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,13% Memory free
4,16 Gb Paging File | 0,85 Gb Available in Paging File | 20,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,09 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
PRC - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
PRC - [2016.06.26 16:31:57 | 008,897,712 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016.06.05 01:47:10 | 000,392,136 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
PRC - [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- D:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- D:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- D:\Windows\System32\atiesrxx.exe
========== Modules (No Company Name) ==========
MOD - [2016.06.26 16:31:58 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016.06.26 16:31:57 | 000,479,288 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016.06.26 16:31:56 | 000,146,232 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.11.19 23:17:08 | 000,845,824 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2015.05.26 13:38:34 | 000,862,888 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2015.05.26 13:37:42 | 000,078,504 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\4963libfoxloader.dll
========== Services (SafeList) ==========
SRV - [2016.06.27 10:48:30 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) [Auto | Running] -- D:\Windows\System32\ssins.exe -- (ssinstall)
SRV - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016.06.05 01:47:30 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016.05.23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.12.02 17:06:48 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - [2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- D:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2016.03.10 06:17:36 | 000,119,952 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\usb2ser.sys -- (wdm_usb)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.08.27 22:19:22 | 000,859,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007.11.09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes,DefaultScope = {E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0A447989-B2FA-4956-8E90-02B188861A67}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{43CAC651-59DA-4BC7-961B-A7E7428D80D1}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{5C05CD77-BBD9-4950-B2B6-378B59A3B415}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{69956676-49FE-40F4-98DA-6671A2754B0C}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{762C8A46-F41B-4464-A295-BB788C5ECF19}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{818B7620-02A0-4560-8F8C-A1F5A63A6233}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{B4BAE67E-65C6-491A-BEE1-E33149143ADC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{DDBDB549-4DB2-4195-911A-29767889C9A9}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2016.06.26 16:32:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016.06.26 16:32:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins
[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (Seznam lištička) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2016.06.26 16:51:36 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [seznam-listicka-distribuce] D:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.autoupdate] D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.szndesktop] D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [Skype] D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - D:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0055C17-9EF0-47D5-B4C1-5A00DF15B481}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - D:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - D:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,13% Memory free
4,16 Gb Paging File | 0,85 Gb Available in Paging File | 20,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,09 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
PRC - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
PRC - [2016.06.26 16:31:57 | 008,897,712 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016.06.05 01:47:10 | 000,392,136 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
PRC - [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- D:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- D:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- D:\Windows\System32\atiesrxx.exe
========== Modules (No Company Name) ==========
MOD - [2016.06.26 16:31:58 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016.06.26 16:31:57 | 000,479,288 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016.06.26 16:31:56 | 000,146,232 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.11.19 23:17:08 | 000,845,824 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2015.05.26 13:38:34 | 000,862,888 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2015.05.26 13:37:42 | 000,078,504 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\4963libfoxloader.dll
========== Services (SafeList) ==========
SRV - [2016.06.27 10:48:30 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) [Auto | Running] -- D:\Windows\System32\ssins.exe -- (ssinstall)
SRV - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016.06.05 01:47:30 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016.05.23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.12.02 17:06:48 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - [2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- D:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2016.03.10 06:17:36 | 000,119,952 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\usb2ser.sys -- (wdm_usb)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.08.27 22:19:22 | 000,859,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007.11.09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes,DefaultScope = {E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0A447989-B2FA-4956-8E90-02B188861A67}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{43CAC651-59DA-4BC7-961B-A7E7428D80D1}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{5C05CD77-BBD9-4950-B2B6-378B59A3B415}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{69956676-49FE-40F4-98DA-6671A2754B0C}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{762C8A46-F41B-4464-A295-BB788C5ECF19}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{818B7620-02A0-4560-8F8C-A1F5A63A6233}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{B4BAE67E-65C6-491A-BEE1-E33149143ADC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{DDBDB549-4DB2-4195-911A-29767889C9A9}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2016.06.26 16:32:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016.06.26 16:32:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins
[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (Seznam lištička) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2016.06.26 16:51:36 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [seznam-listicka-distribuce] D:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.autoupdate] D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.szndesktop] D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [Skype] D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - D:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0055C17-9EF0-47D5-B4C1-5A00DF15B481}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - D:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - D:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
Re: PC se seká
========== Files/Folders - Created Within 30 Days ==========
[2016.07.06 10:38:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 21:31:42 | 000,000,000 | ---D | C] -- D:\FRST
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\Program Files\trend micro
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\rsit
[2016.07.03 09:37:43 | 000,000,000 | ---D | C] -- D:\Windows\EOONotify
[2016.07.03 09:19:51 | 000,103,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2016.07.02 15:24:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netbtugc.exe
[2016.07.02 15:24:18 | 001,620,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVDECOD.DLL
[2016.07.02 15:24:16 | 003,209,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mf.dll
[2016.07.02 15:24:16 | 000,970,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2adec.dll
[2016.07.02 15:24:15 | 001,329,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quartz.dll
[2016.07.02 15:24:15 | 000,902,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOD.DLL
[2016.07.02 15:24:15 | 000,829,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSMPEG2ENC.DLL
[2016.07.02 15:24:15 | 000,815,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOE.DLL
[2016.07.02 15:24:15 | 000,739,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOD.DLL
[2016.07.02 15:24:15 | 000,541,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSDECD.DLL
[2016.07.02 15:24:15 | 000,519,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdvd.dll
[2016.07.02 15:24:15 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\evr.dll
[2016.07.02 15:24:15 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\COLORCNV.DLL
[2016.07.02 15:24:14 | 001,568,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVENCOD.DLL
[2016.07.02 15:24:14 | 001,202,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMALFXGFXDSP.dll
[2016.07.02 15:24:14 | 000,740,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpmde.dll
[2016.07.02 15:24:14 | 000,728,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcmde.dll
[2016.07.02 15:24:14 | 000,665,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVXENCD.DLL
[2016.07.02 15:24:14 | 000,609,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFWMAAEC.DLL
[2016.07.02 15:24:14 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSENCD.DLL
[2016.07.02 15:24:14 | 000,354,816 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfplat.dll
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MPG4DECD.DLL
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP43DECD.DLL
[2016.07.02 15:24:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qasf.dll
[2016.07.02 15:24:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\devenum.dll
[2016.07.02 15:24:13 | 001,325,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOE.DLL
[2016.07.02 15:24:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP4SDECD.DLL
[2016.07.02 15:24:13 | 000,338,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SysFxUI.dll
[2016.07.02 15:24:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RESAMPLEDMO.DLL
[2016.07.02 15:24:13 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksproxy.ax
[2016.07.02 15:24:13 | 000,177,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\portcls.sys
[2016.07.02 15:24:13 | 000,154,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VIDRESZR.DLL
[2016.07.02 15:24:13 | 000,103,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfps.dll
[2016.07.02 15:24:13 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP3DMOD.DLL
[2016.07.02 15:24:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfvdsp.dll
[2016.07.02 15:24:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rrinstaller.exe
[2016.07.02 15:24:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfpmp.exe
[2016.07.02 15:24:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\drmk.sys
[2016.07.02 15:24:12 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksuser.dll
[2016.07.02 15:24:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mferror.dll
[2016.07.02 15:24:04 | 000,047,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\WdfLdr.sys
[2016.07.02 15:24:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Wdfres.dll
[2016.07.02 15:24:02 | 000,318,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPhoto.dll
[2016.07.02 15:23:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\authui.dll
[2016.07.02 15:23:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msihnd.dll
[2016.07.02 15:23:59 | 000,105,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\consent.exe
[2016.07.02 15:23:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msimsg.dll
[2016.07.02 15:23:51 | 012,625,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmploc.DLL
[2016.07.02 15:23:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwmp.dll
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdxm.ocx
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxmasf.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml6r.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml3r.dll
[2016.07.02 15:23:31 | 000,284,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbport.sys
[2016.07.02 15:23:31 | 000,006,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbd.sys
[2016.07.02 15:23:29 | 000,218,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\dxgmms1.sys
[2016.07.02 15:23:29 | 000,107,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdd.dll
[2016.07.02 15:23:19 | 002,135,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2vdec.dll
[2016.07.02 15:23:19 | 000,988,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmv2clt.dll
[2016.07.02 15:23:19 | 000,744,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\blackbox.dll
[2016.07.02 15:23:19 | 000,617,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmsdk.dll
[2016.07.02 15:23:16 | 003,973,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntkrnlpa.exe
[2016.07.02 15:23:15 | 003,917,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntoskrnl.exe
[2016.07.02 15:23:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AUDIOKSE.dll
[2016.07.02 15:23:15 | 000,406,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmmgrtn.dll
[2016.07.02 15:23:14 | 000,409,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ci.dll
[2016.07.02 15:23:13 | 000,686,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adtschema.dll
[2016.07.02 15:23:13 | 000,521,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winload.exe
[2016.07.02 15:23:13 | 000,455,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winresume.exe
[2016.07.02 15:23:12 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srcore.dll
[2016.07.02 15:23:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncrypt.dll
[2016.07.02 15:23:11 | 000,374,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioEng.dll
[2016.07.02 15:23:11 | 000,275,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDump.dll
[2016.07.02 15:23:11 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioSes.dll
[2016.07.02 15:23:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\csrsrv.dll
[2016.07.02 15:23:10 | 000,262,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rstrui.exe
[2016.07.02 15:23:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msscp.dll
[2016.07.02 15:23:09 | 000,265,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msnetobj.dll
[2016.07.02 15:23:09 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\audiodg.exe
[2016.07.02 15:23:09 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidapi.dll
[2016.07.02 15:23:08 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidpolicyconverter.exe
[2016.07.02 15:23:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\auditpol.exe
[2016.07.02 15:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcadm.dll
[2016.07.02 15:23:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msaudite.dll
[2016.07.02 15:23:07 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setbcdlocale.dll
[2016.07.02 15:23:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidcertstorecheck.exe
[2016.07.02 15:23:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sspisrv.dll
[2016.07.02 15:23:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmmsp.dll
[2016.07.02 15:23:07 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcawrk.exe
[2016.07.02 15:23:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcalua.exe
[2016.07.02 15:23:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\apisetschema.dll
[2016.07.02 15:23:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msobjs.dll
[2016.07.02 15:23:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcaevts.dll
[2016.07.02 15:22:16 | 000,919,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorets.dll
[2016.07.02 15:22:12 | 000,594,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_isv.exe
[2016.07.02 15:22:12 | 000,572,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate.exe
[2016.07.02 15:22:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp.exe
[2016.07.02 15:22:11 | 000,508,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp_isv.exe
[2016.07.02 15:22:11 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc.dll
[2016.07.02 15:22:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_isv.dll
[2016.07.02 15:22:11 | 000,390,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdrm.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp_isv.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp.dll
[2016.07.02 15:20:59 | 000,248,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManMigrationPlugin.dll
[2016.07.02 15:20:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmWmiPl.dll
[2016.07.02 15:20:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManHTTPConfig.exe
[2016.07.02 15:20:59 | 000,145,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmAuto.dll
[2016.07.02 13:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Minidump
[2016.07.02 09:53:24 | 002,425,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wucltux.dll
[2016.07.02 09:53:24 | 000,045,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups2.dll
[2016.07.02 09:52:01 | 000,179,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuwebv.dll
[2016.07.02 09:52:01 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapp.exe
[2016.07.02 03:02:15 | 000,000,000 | ---D | C] -- D:\Windows\System32\SPReview
[2016.07.02 03:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Migration
[2016.07.02 00:22:14 | 000,301,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.07.01 15:35:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.30 12:50:29 | 000,000,000 | ---D | C] -- D:\Windows\System32\EventProviders
[2016.06.29 14:30:21 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\ElevatedDiagnostics
[2016.06.29 13:01:09 | 000,215,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicsvc.exe
[2016.06.29 13:01:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IcCoinstall.dll
[2016.06.29 13:01:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicres.dll
[2016.06.29 13:01:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmictimeprovider.dll
[2016.06.29 13:01:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\VMBusHID.sys
[2016.06.29 13:01:07 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmbusCoinstaller.dll
[2016.06.29 13:01:07 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbusres.dll
[2016.06.29 13:01:07 | 000,043,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winhv.sys
[2016.06.29 13:01:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbuspipe.dll
[2016.06.29 13:01:06 | 000,175,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmbus.sys
[2016.06.29 13:01:06 | 000,028,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storvsc.sys
[2016.06.29 13:01:05 | 000,458,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSDApi.dll
[2016.06.29 13:01:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHost.exe
[2016.06.29 13:01:05 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmdCoinstall.dll
[2016.06.29 13:01:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHostProxy.dll
[2016.06.29 13:01:05 | 000,040,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmstorfl.sys
[2016.06.29 13:01:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmstorfltres.dll
[2016.06.29 13:01:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vms3cap.sys
[2016.06.29 13:01:03 | 001,548,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tquery.dll
[2016.06.29 13:01:03 | 001,401,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssrch.dll
[2016.06.29 13:01:03 | 000,666,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssvp.dll
[2016.06.29 13:01:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssphtb.dll
[2016.06.29 13:00:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\umb.dll
[2016.06.29 13:00:53 | 000,035,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winusb.sys
[2016.06.29 13:00:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FirewallControlPanel.dll
[2016.06.29 13:00:40 | 005,066,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuthFWSnapin.dll
[2016.06.29 13:00:36 | 000,155,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscorier.dll
[2016.06.29 13:00:36 | 000,080,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscories.dll
[2016.06.29 13:00:36 | 000,049,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netfxperf.dll
[2016.06.29 13:00:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Narrator.exe
[2016.06.29 13:00:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPHLPR.DLL
[2016.06.29 13:00:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPCRYPT.DLL
[2016.06.29 13:00:34 | 000,132,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ataport.sys
[2016.06.29 13:00:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpd_ci.dll
[2016.06.29 13:00:33 | 000,140,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\scsiport.sys
[2016.06.29 13:00:31 | 001,334,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertEnroll.dll
[2016.06.29 13:00:31 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wusa.exe
[2016.06.29 13:00:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanconn.dll
[2016.06.29 13:00:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanprotdim.dll
[2016.06.29 13:00:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsdchngr.dll
[2016.06.29 13:00:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceApi.dll
[2016.06.29 13:00:30 | 000,427,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceStatus.dll
[2016.06.29 13:00:29 | 000,206,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedynos.dll
[2016.06.29 13:00:29 | 000,202,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedyn.dll
[2016.06.29 13:00:28 | 000,363,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wbemcomn.dll
[2016.06.29 13:00:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanpref.dll
[2016.06.29 13:00:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanmsm.dll
[2016.06.29 13:00:27 | 000,411,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlangpui.dll
[2016.06.29 13:00:27 | 000,410,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanui.dll
[2016.06.29 13:00:27 | 000,351,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmicmiplugin.dll
[2016.06.29 13:00:27 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgent.dll
[2016.06.29 13:00:27 | 000,169,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winsrv.dll
[2016.06.29 13:00:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgentc.exe
[2016.06.29 13:00:26 | 002,329,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\win32k.sys
[2016.06.29 13:00:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webservices.dll
[2016.06.29 13:00:26 | 000,406,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimgapi.dll
[2016.06.29 13:00:26 | 000,327,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimserv.exe
[2016.06.29 13:00:26 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webio.dll
[2016.06.29 13:00:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fphc.dll
[2016.06.29 13:00:25 | 003,367,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSAT.exe
[2016.06.29 13:00:25 | 000,416,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiadefui.dll
[2016.06.29 13:00:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiarpc.dll
[2016.06.29 13:00:23 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpdwcn.dll
[2016.06.29 13:00:23 | 000,051,200 | ---- | C] (Twain Working Group) -- D:\Windows\twain_32.dll
[2016.06.29 13:00:21 | 000,335,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSATAPI.dll
[2016.06.29 13:00:21 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiavideo.dll
[2016.06.29 13:00:19 | 000,350,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WPDSp.dll
[2016.06.29 13:00:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wkscli.dll
[2016.06.29 13:00:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbrpm.sys
[2016.06.29 13:00:18 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsutil.dll
[2016.06.29 13:00:17 | 000,638,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VAN.dll
[2016.06.29 13:00:17 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VBICodec.ax
[2016.06.29 13:00:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciavi32.dll
[2016.06.29 13:00:17 | 000,082,944 | ---- | C] (Radius Inc.) -- D:\Windows\System32\iccvid.dll
[2016.06.29 13:00:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSTPager.ax
[2016.06.29 13:00:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cca.dll
[2016.06.29 13:00:15 | 000,160,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsbas.dll
[2016.06.29 13:00:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSNP.ax
[2016.06.29 13:00:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\psisrndr.ax
[2016.06.29 13:00:13 | 000,072,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mpeg2Data.ax
[2016.06.29 13:00:13 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSDvbNP.ax
[2016.06.29 13:00:11 | 000,600,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\usercpl.dll
[2016.06.29 13:00:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\userinit.exe
[2016.06.29 13:00:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unimdmat.dll
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD2.sys
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD.sys
[2016.06.29 13:00:09 | 002,983,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbon.dll
[2016.06.29 13:00:09 | 001,164,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbonRes.dll
[2016.06.29 13:00:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDec.dll
[2016.06.29 13:00:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UserAccountControlSettings.dll
[2016.06.29 13:00:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\djoin.exe
[2016.06.29 13:00:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzutil.exe
[2016.06.29 13:00:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\themecpl.dll
[2016.06.29 13:00:08 | 000,478,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\timedate.cpl
[2016.06.29 13:00:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\w32tm.exe
[2016.06.29 13:00:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TRAPI.dll
[2016.06.29 13:00:07 | 000,505,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskschd.dll
[2016.06.29 13:00:07 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\termmgr.dll
[2016.06.29 13:00:07 | 000,187,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\FWPKCLNT.SYS
[2016.06.29 13:00:07 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tcpipcfg.dll
[2016.06.29 13:00:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiohlp.dll
[2016.06.29 13:00:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiougc.exe
[2016.06.29 13:00:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\tdi.sys
[2016.06.29 13:00:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schedcli.dll
[2016.06.29 13:00:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskbarcpl.dll
[2016.06.29 13:00:06 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wavemsp.dll
[2016.06.29 13:00:06 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
[2016.06.29 13:00:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TabletPC.cpl
[2016.06.29 13:00:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tabcal.exe
[2016.06.29 13:00:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MultiDigiMon.exe
[2016.06.29 13:00:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\takeown.exe
[2016.06.29 13:00:05 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\g711codc.ax
[2016.06.29 13:00:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\TsUsbFlt.sys
[2016.06.29 13:00:03 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\input.dll
[2016.06.29 13:00:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpencom.dll
[2016.06.29 13:00:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aaclient.dll
[2016.06.29 13:00:03 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpd3d.dll
[2016.06.29 13:00:03 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsgqec.dll
[2016.06.29 13:00:03 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfts.dll
[2016.06.29 13:00:01 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TSWorkspace.dll
[2016.06.29 13:00:01 | 000,260,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpshell.exe
[2016.06.29 13:00:01 | 000,173,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpclip.exe
[2016.06.29 13:00:01 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tspubwmi.dll
[2016.06.29 13:00:01 | 000,121,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPENCDD.dll
[2016.06.29 13:00:01 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpsign.exe
[2016.06.29 13:00:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\utildll.dll
[2016.06.29 13:00:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpinit.exe
[2016.06.29 12:59:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wksprt.exe
[2016.06.29 12:59:59 | 000,154,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscfgwmi.dll
[2016.06.29 12:59:59 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpendp.dll
[2016.06.29 12:59:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorekmts.dll
[2016.06.29 12:59:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tssrvlic.dll
[2016.06.29 12:59:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpwsx.dll
[2016.06.29 12:59:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\LSCSHostPolicy.dll
[2016.06.29 12:59:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPREFDD.dll
[2016.06.29 12:59:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qprocess.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tskill.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgport.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsdiscon.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chglogon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdprefdrvapi.dll
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qappsrv.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoff.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shadow.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rwinsta.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgusr.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\reset.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\change.exe
[2016.06.29 12:59:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\query.exe
[2016.06.29 12:59:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskcomp.dll
[2016.06.29 12:59:58 | 000,270,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsmf.dll
[2016.06.29 12:59:58 | 000,252,928 | ---- | C] (Microsoft) -- D:\Windows\System32\DShowRdpFilter.dll
[2016.06.29 12:59:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qwinsta.exe
[2016.06.29 12:59:58 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msg.exe
[2016.06.29 12:59:58 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quser.exe
[2016.06.29 12:59:58 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcfgex.dll
[2016.06.29 12:59:57 | 000,826,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcore.dll
[2016.06.29 12:59:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\systemcpl.dll
[2016.06.29 12:59:57 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysclass.dll
[2016.06.29 12:59:57 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tlscsp.dll
[2016.06.29 12:59:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spbcd.dll
[2016.06.29 12:59:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lsmproxy.dll
[2016.06.29 12:59:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spopk.dll
[2016.06.29 12:59:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\syssetup.dll
[2016.06.29 12:59:56 | 000,850,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sbe.dll
[2016.06.29 12:59:56 | 000,755,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sud.dll
[2016.06.29 12:59:56 | 000,183,296 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceSyncProvider.dll
[2016.06.29 12:59:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlcese30.dll
[2016.06.29 12:59:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ssText3d.scr
[2016.06.29 12:59:55 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsqmcons.exe
[2016.06.29 12:59:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqmapi.dll
[2016.06.29 12:59:55 | 000,148,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storport.sys
[2016.06.29 12:59:53 | 000,697,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmiEngine.dll
[2016.06.29 12:59:53 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetmib1.dll
[2016.06.29 12:59:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsnmp32.dll
[2016.06.29 12:59:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WavDest.dll
[2016.06.29 12:59:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sscore.dll
[2016.06.29 12:59:52 | 000,144,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basecsp.dll
[2016.06.29 12:59:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sisbkup.dll
[2016.06.29 12:59:51 | 000,428,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shwebsvc.dll
[2016.06.29 12:59:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shunimpl.dll
[2016.06.29 12:59:50 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unattend.dll
[2016.06.29 12:59:50 | 000,111,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shsetup.dll
[2016.06.29 12:59:50 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shacct.dll
[2016.06.29 12:59:50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcl.exe
[2016.06.29 12:59:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prevhost.exe
[2016.06.29 12:59:49 | 000,456,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spinstall.exe
[2016.06.29 12:59:49 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spreview.exe
[2016.06.29 12:59:49 | 000,270,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sethc.exe
[2016.06.29 12:59:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizui.dll
[2016.06.29 12:59:49 | 000,179,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionQueue.dll
[2016.06.29 12:59:49 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcln.dll
[2016.06.29 12:59:48 | 000,933,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Vault.dll
[2016.06.29 12:59:48 | 000,327,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nltest.exe
[2016.06.29 12:59:48 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slui.exe
[2016.06.29 12:59:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vaultsvc.dll
[2016.06.29 12:59:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppcomapi.dll
[2016.06.29 12:59:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppc.dll
[2016.06.29 12:59:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppinst.dll
[2016.06.29 12:59:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wscapi.dll
[2016.06.29 12:59:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slwga.dll
[2016.06.29 12:59:47 | 001,131,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdclt.exe
[2016.06.29 12:59:47 | 000,974,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppobjs.dll
[2016.06.29 12:59:47 | 000,907,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdengin2.dll
[2016.06.29 12:59:47 | 000,271,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fveapi.dll
[2016.06.29 12:59:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scansetting.dll
[2016.06.29 12:59:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schtasks.exe
[2016.06.29 12:59:47 | 000,175,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fvecpl.dll
[2016.06.29 12:59:47 | 000,136,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scavengeui.dll
[2016.06.29 12:59:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\manage-bde.exe
[2016.06.29 12:59:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BdeHdCfg.exe
[2016.06.29 12:59:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\repair-bde.exe
[2016.06.29 12:59:43 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizeng.dll
[2016.06.29 12:59:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\uxlib.dll
[2016.06.29 12:59:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizres.dll
[2016.06.29 12:59:42 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoncli.dll
[2016.06.29 12:59:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertPolEng.dll
[2016.06.29 12:59:41 | 000,316,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sharemediacpl.dll
[2016.06.29 12:59:41 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srrstr.dll
[2016.06.29 12:59:40 | 000,412,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppwinob.dll
[2016.06.29 12:59:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rpchttp.dll
[2016.06.29 12:59:40 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\runonce.exe
[2016.06.29 12:59:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Ribbons.scr
[2016.06.29 12:59:39 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recdisc.exe
[2016.06.29 12:59:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RelPost.exe
[2016.06.29 12:59:39 | 000,135,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recovery.dll
[2016.06.29 12:59:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rmcast.sys
[2016.06.29 12:59:39 | 000,098,816 | ---- | C] (Microsoft) -- D:\Windows\System32\Robocopy.exe
[2016.06.29 12:59:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\riched32.dll
[2016.06.29 12:59:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iprtrmgr.dll
[2016.06.29 12:59:38 | 000,268,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mprddm.dll
[2016.06.29 12:59:38 | 000,084,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmstp.exe
[2016.06.29 12:59:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnike.dll
[2016.06.29 12:59:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpudd.dll
[2016.06.29 12:59:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbGDCoInstaller.dll
[2016.06.29 12:59:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnikeapi.dll
[2016.06.29 12:59:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rdpvideominiport.sys
[2016.06.29 12:59:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2016.06.29 12:59:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2016.06.29 12:59:36 | 001,115,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RacEngn.dll
[2016.06.29 12:59:35 | 000,870,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsPrint.dll
[2016.06.29 12:59:35 | 000,509,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qedit.dll
[2016.06.29 12:59:35 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgprint.dll
[2016.06.29 12:59:35 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prncache.dll
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\proquota.exe
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\profprov.dll
[2016.06.29 12:59:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercpl.dll
[2016.06.29 12:59:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PhotoScreensaver.scr
[2016.06.29 12:59:34 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercfg.cpl
[2016.06.29 12:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppnp.dll
[2016.06.29 12:59:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pifmgr.dll
[2016.06.29 12:59:33 | 001,227,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdc.dll
[2016.06.29 12:59:33 | 000,766,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpccpl.dll
[2016.06.29 12:59:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PerfCenterCPL.dll
[2016.06.29 12:59:33 | 000,444,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wvc.dll
[2016.06.29 12:59:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysmon.ocx
[2016.06.29 12:59:33 | 000,209,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PkgMgr.exe
[2016.06.29 12:59:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdscore.dll
[2016.06.29 12:59:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfmon.exe
[2016.06.29 12:59:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PnPUnattend.exe
[2016.06.29 12:59:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pdhui.dll
[2016.06.29 12:59:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unlodctr.exe
[2016.06.29 12:59:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prnfldr.dll
[2016.06.29 12:59:32 | 000,297,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntprint.dll
[2016.06.29 12:59:31 | 000,324,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\puiobj.dll
[2016.06.29 12:59:31 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logman.exe
[2016.06.29 12:59:31 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\relog.exe
[2016.06.29 12:59:31 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PrintIsolationProxy.dll
[2016.06.29 12:59:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prntvpt.dll
[2016.06.29 12:59:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PushPrinterConnections.exe
[2016.06.29 12:59:25 | 001,111,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\onexui.dll
[2016.06.29 12:59:25 | 000,218,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OnLineIDCpl.dll
[2016.06.29 12:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetup.exe
[2016.06.29 12:59:25 | 000,174,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetapi.dll
[2016.06.29 12:59:25 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CscMig.dll
[2016.06.29 12:59:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cscobj.dll
[2016.06.29 12:59:24 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\asycfilt.dll
[2016.06.29 12:59:23 | 002,130,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\networkmap.dll
[2016.06.29 12:59:23 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncsi.dll
[2016.06.29 12:59:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nslookup.exe
[2016.06.29 12:59:22 | 001,750,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pnidui.dll
[2016.06.29 12:59:22 | 001,644,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcenter.dll
[2016.06.29 12:59:22 | 000,656,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshwfp.dll
[2016.06.29 12:59:22 | 000,240,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\netio.sys
[2016.06.29 12:59:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FWPUCLNT.DLL
[2016.06.29 12:59:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netjoin.dll
[2016.06.29 12:59:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NaturalLanguage6.dll
[2016.06.29 12:59:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\net1.exe
[2016.06.29 12:59:21 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nci.dll
[2016.06.29 12:59:21 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncryptui.dll
[2016.06.29 12:59:21 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcfg.exe
[2016.06.29 12:59:19 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ipsmsnap.dll
[2016.06.29 12:59:19 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSHVHOST.DLL
[2016.06.29 12:59:19 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSVRMGMT.DLL
[2016.06.29 12:59:18 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshipsec.dll
[2016.06.29 12:59:18 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrecst.dll
[2016.06.29 12:59:17 | 000,225,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netdiagfx.dll
[2016.06.29 12:59:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrad.dll
[2016.06.29 12:59:17 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QAGENT.DLL
[2016.06.29 12:59:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasacct.dll
[2016.06.29 12:59:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QCLIPROV.DLL
[2016.06.29 12:59:17 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\napdsnap.dll
[2016.06.29 12:59:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mystify.scr
[2016.06.29 12:59:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcbuilder.exe
[2016.06.29 12:59:15 | 000,592,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msftedit.dll
[2016.06.29 12:59:15 | 000,303,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msinfo32.exe
[2016.06.29 12:59:15 | 000,233,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msconfig.exe
[2016.06.29 12:59:15 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSAC3ENC.DLL
[2016.06.29 12:59:14 | 002,146,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SyncCenter.dll
[2016.06.29 12:59:13 | 002,504,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVCORE.DLL
[2016.06.29 12:59:13 | 002,202,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SensorsCpl.dll
[2016.06.29 12:59:13 | 001,624,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPEncEn.dll
[2016.06.29 12:59:13 | 001,163,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc42u.dll
[2016.06.29 12:59:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40.dll
[2016.06.29 12:59:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40u.dll
[2016.06.29 12:59:13 | 000,507,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmdev.dll
[2016.06.29 12:59:13 | 000,436,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmnet.dll
[2016.06.29 12:59:13 | 000,352,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpeffects.dll
[2016.06.29 12:59:13 | 000,296,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfds.dll
[2016.06.29 12:59:13 | 000,213,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MMDevAPI.dll
[2016.06.29 12:59:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfreadwrite.dll
[2016.06.29 12:59:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpsrcwp.dll
[2016.06.29 12:59:13 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFPlay.dll
[2016.06.29 12:59:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpps.dll
[2016.06.29 12:59:12 | 001,003,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMNetMgr.dll
[2016.06.29 12:59:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logagent.exe
[2016.06.29 12:59:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MediaMetadataHandler.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapistub.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapi32.dll
[2016.06.29 12:59:09 | 000,516,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\main.cpl
[2016.06.29 12:59:08 | 000,665,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayCpl.dll
[2016.06.29 12:59:08 | 000,520,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcupdate_GenuineIntel.dll
[2016.06.29 12:59:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlsrv32.dll
[2016.06.29 12:59:07 | 000,170,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationSettings.exe
[2016.06.29 12:59:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayServices.dll
[2016.06.29 12:59:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\migisol.dll
[2016.06.29 12:59:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcconf.dll
[2016.06.29 12:59:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vbisurf.ax
[2016.06.29 12:59:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kstvtune.ax
[2016.06.29 12:59:06 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksxbar.ax
[2016.06.29 12:59:03 | 000,941,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mblctr.exe
[2016.06.29 12:59:01 | 002,151,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mmcndmgr.dll
[2016.06.29 12:59:01 | 000,319,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcjt32.dll
[2016.06.29 12:59:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\defaultlocationcpl.dll
[2016.06.29 12:59:01 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msorcl32.dll
[2016.06.29 12:59:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbctrac.dll
[2016.06.29 12:59:01 | 000,132,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MdSched.exe
[2016.06.29 12:59:01 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbccp32.dll
[2016.06.29 12:59:00 | 000,477,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpksetup.exe
[2016.06.29 12:59:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpremove.exe
[2016.06.29 12:59:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\luainstall.dll
[2016.06.29 12:58:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nrpsrv.dll
[2016.06.29 12:58:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ks.sys
[2016.06.29 12:58:44 | 000,219,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iTVData.dll
[2016.06.29 12:58:44 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Kswdmcap.ax
[2016.06.29 12:58:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\isoburn.exe
[2016.06.29 12:58:43 | 000,345,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\intl.cpl
[2016.06.29 12:58:43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MuiUnattend.exe
[2016.06.29 12:58:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nlsbres.dll
[2016.06.29 12:58:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wshirda.dll
[2016.06.29 12:58:41 | 002,522,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dbgeng.dll
[2016.06.29 12:58:41 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imkr80.ime
[2016.06.29 12:58:41 | 000,392,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2.dll
[2016.06.29 12:58:38 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ie4uinit.exe
[2016.06.29 12:58:38 | 000,114,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iesysprep.dll
[2016.06.29 12:58:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inseng.dll
[2016.06.29 12:58:37 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msrating.dll
[2016.06.29 12:58:37 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ieUnatt.exe
[2016.06.29 12:58:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imgutil.dll
[2016.06.29 12:58:36 | 000,599,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeeds.dll
[2016.06.29 12:58:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscms.dll
[2016.06.29 12:58:36 | 000,389,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iedkcs32.dll
[2016.06.29 12:58:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\html.iec
[2016.06.29 12:58:36 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iepeers.dll
[2016.06.29 12:58:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RegisterIEPKEYs.exe
[2016.06.29 12:58:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedsbs.dll
[2016.06.29 12:58:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\licmgr10.dll
[2016.06.29 12:58:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedssync.exe
[2016.06.29 12:58:34 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzres.dll
[2016.06.29 12:58:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kbdlk41a.dll
[2016.06.29 12:58:31 | 001,466,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetcpl.cpl
[2016.06.29 12:58:31 | 000,606,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mstime.dll
[2016.06.29 12:58:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\C_ISCII.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSG.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDCZ1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDPO.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGR1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGKL.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUS.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUGHR1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMAORI.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDLT1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINHIN.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBULG.DLL
[2016.06.29 12:58:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsicli.exe
[2016.06.29 12:58:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsium.dll
[2016.06.29 12:58:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\elsTrans.dll
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUQ.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDNEPR.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINBEN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTURME.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTAJIK.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMON.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTEL.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTAM.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINORI.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINMAR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINKAN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBLR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBASH.DLL
[2016.06.29 12:58:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGEO.DLL
[2016.06.29 12:58:28 | 000,732,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2fs.dll
[2016.06.29 12:58:28 | 000,312,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgcpl.dll
[2016.06.29 12:58:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\itircl.dll
[2016.06.29 12:58:28 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\HotStartUserAgent.dll
[2016.06.29 12:58:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenter.dll
[2016.06.29 12:58:27 | 000,537,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenterCPL.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halmacpi.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hal.dll
[2016.06.29 12:58:27 | 000,137,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halacpi.dll
[2016.06.29 12:58:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hbaapi.dll
[2016.06.29 12:58:19 | 002,576,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gameux.dll
[2016.06.29 12:58:19 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\atmfd.dll
[2016.06.29 12:58:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fontsub.dll
[2016.06.29 12:58:19 | 000,034,304 | ---- | C] (Adobe Systems) -- D:\Windows\System32\atmlib.dll
[2016.06.29 12:58:18 | 000,584,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gpprefcl.dll
[2016.06.29 12:58:18 | 000,339,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appmgr.dll
[2016.06.29 12:58:17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scrptadm.dll
[2016.06.29 12:58:17 | 000,438,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AdmTmpl.dll
[2016.06.29 12:58:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ftp.exe
[2016.06.29 12:58:15 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fde.dll
[2016.06.29 12:58:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\t2embed.dll
[2016.06.29 12:58:15 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- D:\Windows\System32\fms.dll
[2016.06.29 12:58:15 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\findstr.exe
[2016.06.29 12:58:15 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fdeploy.dll
[2016.06.29 12:58:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSMON.dll
[2016.06.29 12:58:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\muifontsetup.dll
[2016.06.29 12:58:14 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSTIFF.dll
[2016.06.29 12:58:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ifsutil.dll
[2016.06.29 12:58:13 | 000,802,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WFS.exe
[2016.06.29 12:58:13 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\untfs.dll
[2016.06.29 12:58:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSCOVER.exe
[2016.06.29 12:58:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\explorer.exe
[2016.06.29 12:58:12 | 001,493,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ExplorerFrame.dll
[2016.06.29 12:58:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eudcedit.exe
[2016.06.29 12:58:11 | 001,063,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\werconcpl.dll
[2016.06.29 12:58:11 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdri.dll
[2016.06.29 12:58:11 | 000,414,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mspbda.dll
[2016.06.29 12:58:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wer.dll
[2016.06.29 12:58:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Faultrep.dll
[2016.06.29 12:58:11 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EhStorAPI.dll
[2016.06.29 12:58:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WerFaultSecure.exe
[2016.06.29 12:58:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2016.06.29 12:58:10 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\efscore.dll
[2016.06.29 12:58:09 | 001,400,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DxpTaskSync.dll
[2016.06.29 12:58:09 | 000,630,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXPTaskRingtone.dll
[2016.06.29 12:58:09 | 000,399,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXP.dll
[2016.06.29 12:58:09 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3ui.dll
[2016.06.29 12:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drvstore.dll
[2016.06.29 12:58:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapp3hst.dll
[2016.06.29 12:58:09 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapphost.dll
[2016.06.29 12:58:09 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3msm.dll
[2016.06.29 12:58:09 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eappgnui.dll
[2016.06.29 12:58:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3cfg.dll
[2016.06.29 12:58:08 | 001,828,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d9.dll
[2016.06.29 12:58:08 | 001,171,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10warp.dll
[2016.06.29 12:58:08 | 001,040,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Display.dll
[2016.06.29 12:58:08 | 000,508,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxgi.dll
[2016.06.29 12:58:08 | 000,276,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskraid.exe
[2016.06.29 12:58:08 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskpart.exe
[2016.06.29 12:58:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscmmc.dll
[2016.06.29 12:58:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscacheugc.exe
[2016.06.29 12:58:08 | 000,027,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\Diskdump.sys
[2016.06.29 12:58:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpnaddr.dll
[2016.06.29 12:58:07 | 001,076,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DWrite.dll
[2016.06.29 12:58:07 | 000,522,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d11.dll
[2016.06.29 12:58:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10level9.dll
[2016.06.29 12:58:07 | 000,219,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10_1core.dll
[2016.06.29 12:58:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\amstream.dll
[2016.06.29 12:58:07 | 000,056,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vfwwdm32.dll
[2016.06.29 12:58:07 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciqtz32.dll
[2016.06.29 12:58:06 | 000,283,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdv.dll
[2016.06.29 12:58:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mpg2splt.ax
[2016.06.29 12:58:06 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qcap.dll
[2016.06.29 12:58:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdmo.dll
[2016.06.29 12:58:05 | 001,188,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DiagCpl.dll
[2016.06.29 12:58:05 | 000,739,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d2d1.dll
[2016.06.29 12:58:05 | 000,586,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dfrgui.exe
[2016.06.29 12:58:05 | 000,484,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DeviceCenter.dll
[2016.06.29 12:58:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpx.dll
[2016.06.29 12:58:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DevicePairingFolder.dll
[2016.06.29 12:58:05 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxdiagn.dll
[2016.06.29 12:58:05 | 000,128,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\desk.cpl
[2016.06.29 12:58:05 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupugc.exe
[2016.06.29 12:58:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dsauth.dll
[2016.06.29 12:58:03 | 001,027,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IMJP10.IME
[2016.06.29 12:58:03 | 000,097,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmredir.dll
[2016.06.29 12:58:02 | 001,371,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmcore.dll
[2016.06.29 12:57:59 | 000,567,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFx.dll
[2016.06.29 12:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFPlatform.dll
[2016.06.29 12:57:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFCoinstaller.dll
[2016.06.29 12:57:57 | 000,429,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\localsec.dll
[2016.06.29 12:57:55 | 001,160,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OpcServices.dll
[2016.06.29 12:57:55 | 000,679,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoconv.exe
[2016.06.29 12:57:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CPFilters.dll
[2016.06.29 12:57:55 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\conhost.exe
[2016.06.29 12:57:55 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netid.dll
[2016.06.29 12:57:55 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mimefilt.dll
[2016.06.29 12:57:54 | 001,066,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdtctm.dll
[2016.06.29 12:57:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmd.exe
[2016.06.29 12:57:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\olethk32.dll
[2016.06.29 12:57:53 | 001,712,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xpsservices.dll
[2016.06.29 12:57:53 | 000,863,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diagperf.dll
[2016.06.29 12:57:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdosys.dll
[2016.06.29 12:57:53 | 000,776,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\calc.exe
[2016.06.29 12:57:51 | 001,555,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\certmgr.dll
[2016.06.29 12:57:51 | 000,878,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Bubbles.scr
[2016.06.29 12:57:51 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsGdiConverter.dll
[2016.06.29 12:57:51 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsRasterService.dll
[2016.06.29 12:57:50 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bthprops.cpl
[2016.06.29 12:57:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\browcli.dll
[2016.06.29 12:57:49 | 002,217,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bootres.dll
[2016.06.29 12:57:49 | 000,750,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdcpl.dll
[2016.06.29 12:57:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\biocpl.dll
[2016.06.29 12:57:49 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsadmin.exe
[2016.06.29 12:57:49 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdboot.exe
[2016.06.29 12:57:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdsrv.dll
[2016.06.29 12:57:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\bfsvc.exe
[2016.06.29 12:57:49 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BlbEvents.dll
[2016.06.29 12:57:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basesrv.dll
[2016.06.29 12:57:49 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsperf.dll
[2016.06.29 12:57:47 | 000,295,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdedit.exe
[2016.06.29 12:57:45 | 000,762,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroles.dll
[2016.06.29 12:57:45 | 000,658,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autofmt.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVol.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroleui.dll
[2016.06.29 12:57:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVolSSO.dll
[2016.06.29 12:57:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoplay.dll
[2016.06.29 12:57:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AzSqlExt.dll
[2016.06.29 12:57:44 | 003,727,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\accessibilitycpl.dll
[2016.06.29 12:57:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdiasqmmodule.dll
[2016.06.29 12:57:43 | 000,321,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aepdu.dll
[2016.06.29 12:57:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aeinv.dll
[2016.06.29 12:57:43 | 000,292,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2016.06.29 12:57:43 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adsldp.dll
[2016.06.29 12:57:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aitagent.exe
[2016.06.29 12:57:43 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\acppage.dll
[2016.06.29 12:57:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmartcardCredentialProvider.dll
[2016.06.29 12:57:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\hidclass.sys
[2016.06.29 12:57:38 | 000,859,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OobeFldr.dll
[2016.06.29 12:57:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srchadmin.dll
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Opera Software
[2016.06.29 12:13:32 | 000,000,000 | ---D | C] -- D:\Program Files\Opera
[2016.06.29 12:04:16 | 028,043,832 | ---- | C] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 22:18:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SygicTruck13.5.0
[2016.06.28 19:44:30 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SG_14.3.1
[2016.06.28 19:35:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.28 16:40:58 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\All voices Sygic
[2016.06.27 18:41:46 | 000,000,000 | -H-D | C] -- D:\ProgramData\CanonBJ
[2016.06.27 18:41:42 | 000,000,000 | -H-D | C] -- D:\Windows\System32\CanonIJ Uninstaller Information
[2016.06.27 18:41:42 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4200
[2016.06.27 18:41:37 | 000,197,632 | ---- | C] (CANON INC.) -- D:\Windows\System32\CNMLM78.DLL
[2016.06.27 18:41:33 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ
[2016.06.27 10:44:45 | 000,000,000 | ---D | C] -- D:\Users\pepa\Tracing
[2016.06.27 10:44:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Skype
[2016.06.27 10:43:58 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.06.27 10:43:57 | 000,000,000 | R--D | C] -- D:\Program Files\Skype
[2016.06.27 10:43:57 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Skype
[2016.06.27 10:43:52 | 000,000,000 | ---D | C] -- D:\ProgramData\Skype
[2016.06.27 10:11:42 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\Program Files\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Adobe
[2016.06.27 10:10:44 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Adobe
[2016.06.27 10:10:26 | 000,000,000 | ---D | C] -- D:\Program Files\Seznam.cz
[2016.06.27 10:09:59 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.27 10:09:58 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe Flash Player
[2016.06.27 10:09:53 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Programs
[2016.06.27 10:06:01 | 000,796,352 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:06:01 | 000,142,528 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:05:57 | 000,000,000 | ---D | C] -- D:\Windows\System32\Macromed
[2016.06.27 09:44:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\poqexec.exe
[2016.06.27 07:57:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapi.dll
[2016.06.27 07:57:42 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wudriver.dll
[2016.06.27 07:57:42 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups.dll
[2016.06.27 00:13:58 | 000,000,000 | ---D | C] -- D:\Windows\Panther
[2016.06.27 00:13:31 | 000,000,000 | ---D | C] -- D:\Windows\System32\OEM
[2016.06.27 00:04:23 | 000,000,000 | ---D | C] -- D:\Windows.old.000
[2016.06.26 17:59:01 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2016.06.26 17:58:33 | 000,032,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msonpmon.dll
[2016.06.26 17:57:31 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Works
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DESIGNER
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Windows\PCHEALTH
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft.NET
[2016.06.26 17:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio 8
[2016.06.26 17:54:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft Help
[2016.06.26 17:54:37 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Office
[2016.06.26 17:54:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft Help
[2016.06.26 17:53:35 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2016.06.26 17:52:09 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:48 | 000,000,000 | ---D | C] -- D:\Program Files\WinRAR
[2016.06.26 16:54:06 | 000,400,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Mozilla
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Mozilla
[2016.06.26 16:51:38 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Maintenance Service
[2016.06.26 16:51:33 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2016.06.26 16:37:49 | 002,324,216 | ---- | C] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:36:05 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\CEF
[2016.06.26 16:35:25 | 000,035,096 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:46 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.06.26 16:32:43 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016.06.26 16:32:29 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AV
[2016.06.26 16:32:21 | 000,222,056 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:32:21 | 000,118,152 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:32:20 | 000,438,296 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.26 16:32:20 | 000,060,424 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:32:19 | 000,091,680 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:32:19 | 000,091,232 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:32:19 | 000,034,008 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:32:18 | 000,816,304 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:32:05 | 000,921,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:32:05 | 000,319,248 | ---- | C] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | C] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:30:22 | 000,000,000 | ---D | C] -- D:\Program Files\AVAST Software
[2016.06.26 16:29:48 | 000,000,000 | ---D | C] -- D:\ProgramData\AVAST Software
[2016.06.26 16:26:03 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Diagnostics
[2016.06.26 16:21:38 | 000,859,136 | ---- | C] (Realtek Semiconductor Corporation ) -- D:\Windows\System32\drivers\rtl8192se.sys
[2016.06.26 16:21:38 | 000,000,000 | ---D | C] -- D:\Program Files\InstallShield Installation Information
[2016.06.26 16:21:34 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek WLAN Driver
[2016.06.26 16:21:10 | 000,000,000 | -HSD | C] -- D:\Windows\Installer
[2016.06.26 16:20:56 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinBatch
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\Searches
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.06.26 15:59:18 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Identities
[2016.06.26 15:59:15 | 000,000,000 | R--D | C] -- D:\Users\pepa\Contacts
[2016.06.26 15:57:42 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\VirtualStore
[2016.06.26 15:57:38 | 000,000,000 | --SD | C] -- D:\Users\pepa\AppData\Roaming\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Videos
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Saved Games
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Pictures
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Music
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Links
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Favorites
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Downloads
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Documents
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Desktop
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Temporary Internet Files
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Šablony
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Soubory cookie
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\SendTo
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Poslední
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní tiskárny
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní síť
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Obrázky
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Nabídka Start
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Local Settings
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Hudba
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\History
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Filmy
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Dokumenty
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -H-D | C] -- D:\Users\pepa\AppData
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Temp
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Media Center Programs
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Šablony
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Plocha
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Obrázky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Oblíbené položky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Nabídka Start
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Hudba
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Filmy
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Dokumenty
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Data aplikací
[2016.06.26 14:17:58 | 000,000,000 | ---D | C] -- D:\Windows\SoftwareDistribution
[2016.06.26 14:14:37 | 000,000,000 | ---D | C] -- D:\Windows\Prefetch
========== Files - Modified Within 30 Days ==========
[2016.07.06 15:48:00 | 000,000,914 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.07.06 08:41:20 | 000,668,376 | ---- | M] () -- D:\Windows\System32\perfh005.dat
[2016.07.06 08:41:20 | 000,653,724 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2016.07.06 08:41:20 | 000,141,004 | ---- | M] () -- D:\Windows\System32\perfc005.dat
[2016.07.06 08:41:20 | 000,121,596 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2016.07.06 07:54:45 | 000,000,512 | ---- | M] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:24 | 000,597,473 | ---- | M] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.06 07:34:38 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 07:25:32 | 1606,578,176 | -HS- | M] () -- D:\hiberfil.sys
[2016.07.05 07:12:44 | 000,000,000 | ---- | M] () -- D:\Windows\System32\last.dump
[2016.07.02 03:36:41 | 000,413,336 | ---- | M] () -- D:\Windows\System32\FNTCACHE.DAT
[2016.07.02 03:11:20 | 000,152,576 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\msclmd.dll
[2016.06.30 13:52:43 | 000,007,602 | ---- | M] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagerr.xml
[2016.06.29 17:19:15 | 000,002,058 | ---- | M] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 12:14:48 | 000,001,095 | ---- | M] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.29 12:09:32 | 028,043,832 | ---- | M] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 13:52:48 | 000,013,723 | ---- | M] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.27 10:48:29 | 000,796,352 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:48:29 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:43:58 | 000,002,719 | ---- | M] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.26 20:35:12 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | M] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | M] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:35:50 | 000,001,122 | ---- | M] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:43 | 000,002,083 | ---- | M] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:31:57 | 000,921,280 | ---- | M] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:31:57 | 000,319,248 | ---- | M] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | M] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:20:33 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 14:19:15 | 000,068,220 | ---- | M] () -- D:\Windows\System32\license.rtf
[2016.06.26 14:17:41 | 000,000,000 | ---- | M] () -- D:\Windows\ativpsrm.bin
[2016.06.26 10:28:20 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2016.06.25 17:43:13 | 000,301,056 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.06.25 11:45:09 | 000,619,841 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.25 11:45:01 | 000,657,217 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.13 19:31:08 | 000,400,040 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
========== Files Created - No Company Name ==========
[2016.07.06 07:54:45 | 000,000,512 | ---- | C] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:19 | 000,597,473 | ---- | C] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.02 15:24:04 | 000,000,003 | ---- | C] () -- D:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.06.30 23:43:10 | 000,000,000 | ---- | C] () -- D:\Windows\System32\last.dump
[2016.06.30 13:52:43 | 000,007,602 | ---- | C] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:19:15 | 000,002,058 | ---- | C] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagerr.xml
[2016.06.29 12:59:47 | 000,010,429 | ---- | C] () -- D:\Windows\System32\ScavengeSpace.xml
[2016.06.29 12:59:42 | 000,146,852 | ---- | C] () -- D:\Windows\System32\systemsf.ebd
[2016.06.29 12:59:37 | 000,080,896 | ---- | C] () -- D:\Windows\System32\RDVGHelper.exe
[2016.06.29 12:59:35 | 000,105,559 | ---- | C] () -- D:\Windows\System32\RacRules.xml
[2016.06.29 12:59:33 | 000,066,048 | ---- | C] () -- D:\Windows\System32\PrintBrmUi.exe
[2016.06.29 12:14:48 | 000,001,095 | ---- | C] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.28 18:55:55 | 000,619,841 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.28 18:55:52 | 000,657,217 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.28 13:41:31 | 000,013,723 | ---- | C] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 10:43:58 | 000,002,719 | ---- | C] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.27 10:06:02 | 000,000,914 | ---- | C] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.06.26 20:35:12 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | C] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | C] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
[2016.06.26 16:32:43 | 000,002,083 | ---- | C] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:20:33 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 15:59:33 | 000,001,421 | ---- | C] () -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.06.26 14:19:08 | 000,001,326 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.06.26 14:19:00 | 000,001,345 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.06.26 14:17:41 | 000,000,000 | ---- | C] () -- D:\Windows\ativpsrm.bin
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2016.06.26 16:32:46 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.07.02 18:51:45 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.29 12:14:50 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.07.05 07:34:13 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.29 13:03:05 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.26 16:20:56 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\WinBatch
========== Purity Check ==========
< End of report >
[2016.07.06 10:38:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 21:31:42 | 000,000,000 | ---D | C] -- D:\FRST
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\Program Files\trend micro
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\rsit
[2016.07.03 09:37:43 | 000,000,000 | ---D | C] -- D:\Windows\EOONotify
[2016.07.03 09:19:51 | 000,103,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2016.07.02 15:24:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netbtugc.exe
[2016.07.02 15:24:18 | 001,620,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVDECOD.DLL
[2016.07.02 15:24:16 | 003,209,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mf.dll
[2016.07.02 15:24:16 | 000,970,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2adec.dll
[2016.07.02 15:24:15 | 001,329,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quartz.dll
[2016.07.02 15:24:15 | 000,902,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOD.DLL
[2016.07.02 15:24:15 | 000,829,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSMPEG2ENC.DLL
[2016.07.02 15:24:15 | 000,815,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOE.DLL
[2016.07.02 15:24:15 | 000,739,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOD.DLL
[2016.07.02 15:24:15 | 000,541,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSDECD.DLL
[2016.07.02 15:24:15 | 000,519,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdvd.dll
[2016.07.02 15:24:15 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\evr.dll
[2016.07.02 15:24:15 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\COLORCNV.DLL
[2016.07.02 15:24:14 | 001,568,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVENCOD.DLL
[2016.07.02 15:24:14 | 001,202,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMALFXGFXDSP.dll
[2016.07.02 15:24:14 | 000,740,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpmde.dll
[2016.07.02 15:24:14 | 000,728,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcmde.dll
[2016.07.02 15:24:14 | 000,665,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVXENCD.DLL
[2016.07.02 15:24:14 | 000,609,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFWMAAEC.DLL
[2016.07.02 15:24:14 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSENCD.DLL
[2016.07.02 15:24:14 | 000,354,816 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfplat.dll
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MPG4DECD.DLL
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP43DECD.DLL
[2016.07.02 15:24:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qasf.dll
[2016.07.02 15:24:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\devenum.dll
[2016.07.02 15:24:13 | 001,325,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOE.DLL
[2016.07.02 15:24:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP4SDECD.DLL
[2016.07.02 15:24:13 | 000,338,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SysFxUI.dll
[2016.07.02 15:24:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RESAMPLEDMO.DLL
[2016.07.02 15:24:13 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksproxy.ax
[2016.07.02 15:24:13 | 000,177,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\portcls.sys
[2016.07.02 15:24:13 | 000,154,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VIDRESZR.DLL
[2016.07.02 15:24:13 | 000,103,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfps.dll
[2016.07.02 15:24:13 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP3DMOD.DLL
[2016.07.02 15:24:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfvdsp.dll
[2016.07.02 15:24:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rrinstaller.exe
[2016.07.02 15:24:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfpmp.exe
[2016.07.02 15:24:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\drmk.sys
[2016.07.02 15:24:12 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksuser.dll
[2016.07.02 15:24:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mferror.dll
[2016.07.02 15:24:04 | 000,047,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\WdfLdr.sys
[2016.07.02 15:24:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Wdfres.dll
[2016.07.02 15:24:02 | 000,318,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPhoto.dll
[2016.07.02 15:23:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\authui.dll
[2016.07.02 15:23:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msihnd.dll
[2016.07.02 15:23:59 | 000,105,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\consent.exe
[2016.07.02 15:23:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msimsg.dll
[2016.07.02 15:23:51 | 012,625,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmploc.DLL
[2016.07.02 15:23:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwmp.dll
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdxm.ocx
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxmasf.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml6r.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml3r.dll
[2016.07.02 15:23:31 | 000,284,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbport.sys
[2016.07.02 15:23:31 | 000,006,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbd.sys
[2016.07.02 15:23:29 | 000,218,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\dxgmms1.sys
[2016.07.02 15:23:29 | 000,107,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdd.dll
[2016.07.02 15:23:19 | 002,135,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2vdec.dll
[2016.07.02 15:23:19 | 000,988,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmv2clt.dll
[2016.07.02 15:23:19 | 000,744,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\blackbox.dll
[2016.07.02 15:23:19 | 000,617,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmsdk.dll
[2016.07.02 15:23:16 | 003,973,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntkrnlpa.exe
[2016.07.02 15:23:15 | 003,917,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntoskrnl.exe
[2016.07.02 15:23:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AUDIOKSE.dll
[2016.07.02 15:23:15 | 000,406,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmmgrtn.dll
[2016.07.02 15:23:14 | 000,409,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ci.dll
[2016.07.02 15:23:13 | 000,686,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adtschema.dll
[2016.07.02 15:23:13 | 000,521,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winload.exe
[2016.07.02 15:23:13 | 000,455,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winresume.exe
[2016.07.02 15:23:12 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srcore.dll
[2016.07.02 15:23:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncrypt.dll
[2016.07.02 15:23:11 | 000,374,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioEng.dll
[2016.07.02 15:23:11 | 000,275,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDump.dll
[2016.07.02 15:23:11 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioSes.dll
[2016.07.02 15:23:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\csrsrv.dll
[2016.07.02 15:23:10 | 000,262,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rstrui.exe
[2016.07.02 15:23:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msscp.dll
[2016.07.02 15:23:09 | 000,265,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msnetobj.dll
[2016.07.02 15:23:09 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\audiodg.exe
[2016.07.02 15:23:09 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidapi.dll
[2016.07.02 15:23:08 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidpolicyconverter.exe
[2016.07.02 15:23:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\auditpol.exe
[2016.07.02 15:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcadm.dll
[2016.07.02 15:23:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msaudite.dll
[2016.07.02 15:23:07 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setbcdlocale.dll
[2016.07.02 15:23:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidcertstorecheck.exe
[2016.07.02 15:23:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sspisrv.dll
[2016.07.02 15:23:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmmsp.dll
[2016.07.02 15:23:07 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcawrk.exe
[2016.07.02 15:23:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcalua.exe
[2016.07.02 15:23:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\apisetschema.dll
[2016.07.02 15:23:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msobjs.dll
[2016.07.02 15:23:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcaevts.dll
[2016.07.02 15:22:16 | 000,919,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorets.dll
[2016.07.02 15:22:12 | 000,594,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_isv.exe
[2016.07.02 15:22:12 | 000,572,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate.exe
[2016.07.02 15:22:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp.exe
[2016.07.02 15:22:11 | 000,508,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp_isv.exe
[2016.07.02 15:22:11 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc.dll
[2016.07.02 15:22:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_isv.dll
[2016.07.02 15:22:11 | 000,390,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdrm.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp_isv.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp.dll
[2016.07.02 15:20:59 | 000,248,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManMigrationPlugin.dll
[2016.07.02 15:20:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmWmiPl.dll
[2016.07.02 15:20:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManHTTPConfig.exe
[2016.07.02 15:20:59 | 000,145,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmAuto.dll
[2016.07.02 13:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Minidump
[2016.07.02 09:53:24 | 002,425,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wucltux.dll
[2016.07.02 09:53:24 | 000,045,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups2.dll
[2016.07.02 09:52:01 | 000,179,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuwebv.dll
[2016.07.02 09:52:01 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapp.exe
[2016.07.02 03:02:15 | 000,000,000 | ---D | C] -- D:\Windows\System32\SPReview
[2016.07.02 03:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Migration
[2016.07.02 00:22:14 | 000,301,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.07.01 15:35:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.30 12:50:29 | 000,000,000 | ---D | C] -- D:\Windows\System32\EventProviders
[2016.06.29 14:30:21 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\ElevatedDiagnostics
[2016.06.29 13:01:09 | 000,215,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicsvc.exe
[2016.06.29 13:01:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IcCoinstall.dll
[2016.06.29 13:01:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicres.dll
[2016.06.29 13:01:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmictimeprovider.dll
[2016.06.29 13:01:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\VMBusHID.sys
[2016.06.29 13:01:07 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmbusCoinstaller.dll
[2016.06.29 13:01:07 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbusres.dll
[2016.06.29 13:01:07 | 000,043,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winhv.sys
[2016.06.29 13:01:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbuspipe.dll
[2016.06.29 13:01:06 | 000,175,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmbus.sys
[2016.06.29 13:01:06 | 000,028,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storvsc.sys
[2016.06.29 13:01:05 | 000,458,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSDApi.dll
[2016.06.29 13:01:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHost.exe
[2016.06.29 13:01:05 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmdCoinstall.dll
[2016.06.29 13:01:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHostProxy.dll
[2016.06.29 13:01:05 | 000,040,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmstorfl.sys
[2016.06.29 13:01:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmstorfltres.dll
[2016.06.29 13:01:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vms3cap.sys
[2016.06.29 13:01:03 | 001,548,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tquery.dll
[2016.06.29 13:01:03 | 001,401,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssrch.dll
[2016.06.29 13:01:03 | 000,666,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssvp.dll
[2016.06.29 13:01:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssphtb.dll
[2016.06.29 13:00:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\umb.dll
[2016.06.29 13:00:53 | 000,035,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winusb.sys
[2016.06.29 13:00:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FirewallControlPanel.dll
[2016.06.29 13:00:40 | 005,066,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuthFWSnapin.dll
[2016.06.29 13:00:36 | 000,155,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscorier.dll
[2016.06.29 13:00:36 | 000,080,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscories.dll
[2016.06.29 13:00:36 | 000,049,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netfxperf.dll
[2016.06.29 13:00:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Narrator.exe
[2016.06.29 13:00:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPHLPR.DLL
[2016.06.29 13:00:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPCRYPT.DLL
[2016.06.29 13:00:34 | 000,132,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ataport.sys
[2016.06.29 13:00:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpd_ci.dll
[2016.06.29 13:00:33 | 000,140,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\scsiport.sys
[2016.06.29 13:00:31 | 001,334,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertEnroll.dll
[2016.06.29 13:00:31 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wusa.exe
[2016.06.29 13:00:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanconn.dll
[2016.06.29 13:00:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanprotdim.dll
[2016.06.29 13:00:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsdchngr.dll
[2016.06.29 13:00:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceApi.dll
[2016.06.29 13:00:30 | 000,427,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceStatus.dll
[2016.06.29 13:00:29 | 000,206,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedynos.dll
[2016.06.29 13:00:29 | 000,202,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedyn.dll
[2016.06.29 13:00:28 | 000,363,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wbemcomn.dll
[2016.06.29 13:00:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanpref.dll
[2016.06.29 13:00:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanmsm.dll
[2016.06.29 13:00:27 | 000,411,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlangpui.dll
[2016.06.29 13:00:27 | 000,410,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanui.dll
[2016.06.29 13:00:27 | 000,351,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmicmiplugin.dll
[2016.06.29 13:00:27 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgent.dll
[2016.06.29 13:00:27 | 000,169,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winsrv.dll
[2016.06.29 13:00:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgentc.exe
[2016.06.29 13:00:26 | 002,329,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\win32k.sys
[2016.06.29 13:00:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webservices.dll
[2016.06.29 13:00:26 | 000,406,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimgapi.dll
[2016.06.29 13:00:26 | 000,327,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimserv.exe
[2016.06.29 13:00:26 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webio.dll
[2016.06.29 13:00:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fphc.dll
[2016.06.29 13:00:25 | 003,367,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSAT.exe
[2016.06.29 13:00:25 | 000,416,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiadefui.dll
[2016.06.29 13:00:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiarpc.dll
[2016.06.29 13:00:23 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpdwcn.dll
[2016.06.29 13:00:23 | 000,051,200 | ---- | C] (Twain Working Group) -- D:\Windows\twain_32.dll
[2016.06.29 13:00:21 | 000,335,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSATAPI.dll
[2016.06.29 13:00:21 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiavideo.dll
[2016.06.29 13:00:19 | 000,350,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WPDSp.dll
[2016.06.29 13:00:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wkscli.dll
[2016.06.29 13:00:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbrpm.sys
[2016.06.29 13:00:18 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsutil.dll
[2016.06.29 13:00:17 | 000,638,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VAN.dll
[2016.06.29 13:00:17 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VBICodec.ax
[2016.06.29 13:00:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciavi32.dll
[2016.06.29 13:00:17 | 000,082,944 | ---- | C] (Radius Inc.) -- D:\Windows\System32\iccvid.dll
[2016.06.29 13:00:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSTPager.ax
[2016.06.29 13:00:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cca.dll
[2016.06.29 13:00:15 | 000,160,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsbas.dll
[2016.06.29 13:00:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSNP.ax
[2016.06.29 13:00:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\psisrndr.ax
[2016.06.29 13:00:13 | 000,072,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mpeg2Data.ax
[2016.06.29 13:00:13 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSDvbNP.ax
[2016.06.29 13:00:11 | 000,600,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\usercpl.dll
[2016.06.29 13:00:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\userinit.exe
[2016.06.29 13:00:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unimdmat.dll
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD2.sys
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD.sys
[2016.06.29 13:00:09 | 002,983,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbon.dll
[2016.06.29 13:00:09 | 001,164,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbonRes.dll
[2016.06.29 13:00:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDec.dll
[2016.06.29 13:00:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UserAccountControlSettings.dll
[2016.06.29 13:00:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\djoin.exe
[2016.06.29 13:00:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzutil.exe
[2016.06.29 13:00:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\themecpl.dll
[2016.06.29 13:00:08 | 000,478,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\timedate.cpl
[2016.06.29 13:00:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\w32tm.exe
[2016.06.29 13:00:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TRAPI.dll
[2016.06.29 13:00:07 | 000,505,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskschd.dll
[2016.06.29 13:00:07 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\termmgr.dll
[2016.06.29 13:00:07 | 000,187,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\FWPKCLNT.SYS
[2016.06.29 13:00:07 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tcpipcfg.dll
[2016.06.29 13:00:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiohlp.dll
[2016.06.29 13:00:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiougc.exe
[2016.06.29 13:00:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\tdi.sys
[2016.06.29 13:00:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schedcli.dll
[2016.06.29 13:00:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskbarcpl.dll
[2016.06.29 13:00:06 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wavemsp.dll
[2016.06.29 13:00:06 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
[2016.06.29 13:00:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TabletPC.cpl
[2016.06.29 13:00:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tabcal.exe
[2016.06.29 13:00:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MultiDigiMon.exe
[2016.06.29 13:00:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\takeown.exe
[2016.06.29 13:00:05 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\g711codc.ax
[2016.06.29 13:00:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\TsUsbFlt.sys
[2016.06.29 13:00:03 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\input.dll
[2016.06.29 13:00:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpencom.dll
[2016.06.29 13:00:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aaclient.dll
[2016.06.29 13:00:03 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpd3d.dll
[2016.06.29 13:00:03 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsgqec.dll
[2016.06.29 13:00:03 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfts.dll
[2016.06.29 13:00:01 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TSWorkspace.dll
[2016.06.29 13:00:01 | 000,260,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpshell.exe
[2016.06.29 13:00:01 | 000,173,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpclip.exe
[2016.06.29 13:00:01 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tspubwmi.dll
[2016.06.29 13:00:01 | 000,121,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPENCDD.dll
[2016.06.29 13:00:01 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpsign.exe
[2016.06.29 13:00:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\utildll.dll
[2016.06.29 13:00:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpinit.exe
[2016.06.29 12:59:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wksprt.exe
[2016.06.29 12:59:59 | 000,154,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscfgwmi.dll
[2016.06.29 12:59:59 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpendp.dll
[2016.06.29 12:59:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorekmts.dll
[2016.06.29 12:59:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tssrvlic.dll
[2016.06.29 12:59:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpwsx.dll
[2016.06.29 12:59:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\LSCSHostPolicy.dll
[2016.06.29 12:59:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPREFDD.dll
[2016.06.29 12:59:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qprocess.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tskill.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgport.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsdiscon.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chglogon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdprefdrvapi.dll
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qappsrv.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoff.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shadow.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rwinsta.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgusr.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\reset.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\change.exe
[2016.06.29 12:59:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\query.exe
[2016.06.29 12:59:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskcomp.dll
[2016.06.29 12:59:58 | 000,270,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsmf.dll
[2016.06.29 12:59:58 | 000,252,928 | ---- | C] (Microsoft) -- D:\Windows\System32\DShowRdpFilter.dll
[2016.06.29 12:59:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qwinsta.exe
[2016.06.29 12:59:58 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msg.exe
[2016.06.29 12:59:58 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quser.exe
[2016.06.29 12:59:58 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcfgex.dll
[2016.06.29 12:59:57 | 000,826,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcore.dll
[2016.06.29 12:59:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\systemcpl.dll
[2016.06.29 12:59:57 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysclass.dll
[2016.06.29 12:59:57 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tlscsp.dll
[2016.06.29 12:59:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spbcd.dll
[2016.06.29 12:59:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lsmproxy.dll
[2016.06.29 12:59:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spopk.dll
[2016.06.29 12:59:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\syssetup.dll
[2016.06.29 12:59:56 | 000,850,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sbe.dll
[2016.06.29 12:59:56 | 000,755,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sud.dll
[2016.06.29 12:59:56 | 000,183,296 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceSyncProvider.dll
[2016.06.29 12:59:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlcese30.dll
[2016.06.29 12:59:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ssText3d.scr
[2016.06.29 12:59:55 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsqmcons.exe
[2016.06.29 12:59:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqmapi.dll
[2016.06.29 12:59:55 | 000,148,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storport.sys
[2016.06.29 12:59:53 | 000,697,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmiEngine.dll
[2016.06.29 12:59:53 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetmib1.dll
[2016.06.29 12:59:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsnmp32.dll
[2016.06.29 12:59:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WavDest.dll
[2016.06.29 12:59:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sscore.dll
[2016.06.29 12:59:52 | 000,144,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basecsp.dll
[2016.06.29 12:59:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sisbkup.dll
[2016.06.29 12:59:51 | 000,428,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shwebsvc.dll
[2016.06.29 12:59:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shunimpl.dll
[2016.06.29 12:59:50 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unattend.dll
[2016.06.29 12:59:50 | 000,111,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shsetup.dll
[2016.06.29 12:59:50 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shacct.dll
[2016.06.29 12:59:50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcl.exe
[2016.06.29 12:59:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prevhost.exe
[2016.06.29 12:59:49 | 000,456,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spinstall.exe
[2016.06.29 12:59:49 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spreview.exe
[2016.06.29 12:59:49 | 000,270,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sethc.exe
[2016.06.29 12:59:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizui.dll
[2016.06.29 12:59:49 | 000,179,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionQueue.dll
[2016.06.29 12:59:49 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcln.dll
[2016.06.29 12:59:48 | 000,933,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Vault.dll
[2016.06.29 12:59:48 | 000,327,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nltest.exe
[2016.06.29 12:59:48 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slui.exe
[2016.06.29 12:59:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vaultsvc.dll
[2016.06.29 12:59:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppcomapi.dll
[2016.06.29 12:59:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppc.dll
[2016.06.29 12:59:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppinst.dll
[2016.06.29 12:59:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wscapi.dll
[2016.06.29 12:59:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slwga.dll
[2016.06.29 12:59:47 | 001,131,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdclt.exe
[2016.06.29 12:59:47 | 000,974,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppobjs.dll
[2016.06.29 12:59:47 | 000,907,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdengin2.dll
[2016.06.29 12:59:47 | 000,271,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fveapi.dll
[2016.06.29 12:59:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scansetting.dll
[2016.06.29 12:59:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schtasks.exe
[2016.06.29 12:59:47 | 000,175,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fvecpl.dll
[2016.06.29 12:59:47 | 000,136,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scavengeui.dll
[2016.06.29 12:59:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\manage-bde.exe
[2016.06.29 12:59:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BdeHdCfg.exe
[2016.06.29 12:59:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\repair-bde.exe
[2016.06.29 12:59:43 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizeng.dll
[2016.06.29 12:59:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\uxlib.dll
[2016.06.29 12:59:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizres.dll
[2016.06.29 12:59:42 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoncli.dll
[2016.06.29 12:59:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertPolEng.dll
[2016.06.29 12:59:41 | 000,316,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sharemediacpl.dll
[2016.06.29 12:59:41 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srrstr.dll
[2016.06.29 12:59:40 | 000,412,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppwinob.dll
[2016.06.29 12:59:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rpchttp.dll
[2016.06.29 12:59:40 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\runonce.exe
[2016.06.29 12:59:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Ribbons.scr
[2016.06.29 12:59:39 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recdisc.exe
[2016.06.29 12:59:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RelPost.exe
[2016.06.29 12:59:39 | 000,135,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recovery.dll
[2016.06.29 12:59:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rmcast.sys
[2016.06.29 12:59:39 | 000,098,816 | ---- | C] (Microsoft) -- D:\Windows\System32\Robocopy.exe
[2016.06.29 12:59:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\riched32.dll
[2016.06.29 12:59:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iprtrmgr.dll
[2016.06.29 12:59:38 | 000,268,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mprddm.dll
[2016.06.29 12:59:38 | 000,084,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmstp.exe
[2016.06.29 12:59:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnike.dll
[2016.06.29 12:59:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpudd.dll
[2016.06.29 12:59:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbGDCoInstaller.dll
[2016.06.29 12:59:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnikeapi.dll
[2016.06.29 12:59:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rdpvideominiport.sys
[2016.06.29 12:59:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2016.06.29 12:59:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2016.06.29 12:59:36 | 001,115,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RacEngn.dll
[2016.06.29 12:59:35 | 000,870,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsPrint.dll
[2016.06.29 12:59:35 | 000,509,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qedit.dll
[2016.06.29 12:59:35 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgprint.dll
[2016.06.29 12:59:35 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prncache.dll
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\proquota.exe
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\profprov.dll
[2016.06.29 12:59:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercpl.dll
[2016.06.29 12:59:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PhotoScreensaver.scr
[2016.06.29 12:59:34 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercfg.cpl
[2016.06.29 12:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppnp.dll
[2016.06.29 12:59:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pifmgr.dll
[2016.06.29 12:59:33 | 001,227,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdc.dll
[2016.06.29 12:59:33 | 000,766,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpccpl.dll
[2016.06.29 12:59:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PerfCenterCPL.dll
[2016.06.29 12:59:33 | 000,444,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wvc.dll
[2016.06.29 12:59:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysmon.ocx
[2016.06.29 12:59:33 | 000,209,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PkgMgr.exe
[2016.06.29 12:59:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdscore.dll
[2016.06.29 12:59:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfmon.exe
[2016.06.29 12:59:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PnPUnattend.exe
[2016.06.29 12:59:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pdhui.dll
[2016.06.29 12:59:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unlodctr.exe
[2016.06.29 12:59:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prnfldr.dll
[2016.06.29 12:59:32 | 000,297,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntprint.dll
[2016.06.29 12:59:31 | 000,324,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\puiobj.dll
[2016.06.29 12:59:31 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logman.exe
[2016.06.29 12:59:31 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\relog.exe
[2016.06.29 12:59:31 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PrintIsolationProxy.dll
[2016.06.29 12:59:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prntvpt.dll
[2016.06.29 12:59:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PushPrinterConnections.exe
[2016.06.29 12:59:25 | 001,111,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\onexui.dll
[2016.06.29 12:59:25 | 000,218,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OnLineIDCpl.dll
[2016.06.29 12:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetup.exe
[2016.06.29 12:59:25 | 000,174,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetapi.dll
[2016.06.29 12:59:25 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CscMig.dll
[2016.06.29 12:59:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cscobj.dll
[2016.06.29 12:59:24 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\asycfilt.dll
[2016.06.29 12:59:23 | 002,130,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\networkmap.dll
[2016.06.29 12:59:23 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncsi.dll
[2016.06.29 12:59:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nslookup.exe
[2016.06.29 12:59:22 | 001,750,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pnidui.dll
[2016.06.29 12:59:22 | 001,644,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcenter.dll
[2016.06.29 12:59:22 | 000,656,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshwfp.dll
[2016.06.29 12:59:22 | 000,240,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\netio.sys
[2016.06.29 12:59:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FWPUCLNT.DLL
[2016.06.29 12:59:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netjoin.dll
[2016.06.29 12:59:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NaturalLanguage6.dll
[2016.06.29 12:59:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\net1.exe
[2016.06.29 12:59:21 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nci.dll
[2016.06.29 12:59:21 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncryptui.dll
[2016.06.29 12:59:21 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcfg.exe
[2016.06.29 12:59:19 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ipsmsnap.dll
[2016.06.29 12:59:19 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSHVHOST.DLL
[2016.06.29 12:59:19 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSVRMGMT.DLL
[2016.06.29 12:59:18 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshipsec.dll
[2016.06.29 12:59:18 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrecst.dll
[2016.06.29 12:59:17 | 000,225,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netdiagfx.dll
[2016.06.29 12:59:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrad.dll
[2016.06.29 12:59:17 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QAGENT.DLL
[2016.06.29 12:59:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasacct.dll
[2016.06.29 12:59:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QCLIPROV.DLL
[2016.06.29 12:59:17 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\napdsnap.dll
[2016.06.29 12:59:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mystify.scr
[2016.06.29 12:59:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcbuilder.exe
[2016.06.29 12:59:15 | 000,592,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msftedit.dll
[2016.06.29 12:59:15 | 000,303,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msinfo32.exe
[2016.06.29 12:59:15 | 000,233,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msconfig.exe
[2016.06.29 12:59:15 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSAC3ENC.DLL
[2016.06.29 12:59:14 | 002,146,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SyncCenter.dll
[2016.06.29 12:59:13 | 002,504,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVCORE.DLL
[2016.06.29 12:59:13 | 002,202,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SensorsCpl.dll
[2016.06.29 12:59:13 | 001,624,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPEncEn.dll
[2016.06.29 12:59:13 | 001,163,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc42u.dll
[2016.06.29 12:59:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40.dll
[2016.06.29 12:59:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40u.dll
[2016.06.29 12:59:13 | 000,507,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmdev.dll
[2016.06.29 12:59:13 | 000,436,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmnet.dll
[2016.06.29 12:59:13 | 000,352,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpeffects.dll
[2016.06.29 12:59:13 | 000,296,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfds.dll
[2016.06.29 12:59:13 | 000,213,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MMDevAPI.dll
[2016.06.29 12:59:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfreadwrite.dll
[2016.06.29 12:59:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpsrcwp.dll
[2016.06.29 12:59:13 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFPlay.dll
[2016.06.29 12:59:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpps.dll
[2016.06.29 12:59:12 | 001,003,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMNetMgr.dll
[2016.06.29 12:59:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logagent.exe
[2016.06.29 12:59:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MediaMetadataHandler.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapistub.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapi32.dll
[2016.06.29 12:59:09 | 000,516,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\main.cpl
[2016.06.29 12:59:08 | 000,665,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayCpl.dll
[2016.06.29 12:59:08 | 000,520,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcupdate_GenuineIntel.dll
[2016.06.29 12:59:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlsrv32.dll
[2016.06.29 12:59:07 | 000,170,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationSettings.exe
[2016.06.29 12:59:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayServices.dll
[2016.06.29 12:59:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\migisol.dll
[2016.06.29 12:59:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcconf.dll
[2016.06.29 12:59:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vbisurf.ax
[2016.06.29 12:59:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kstvtune.ax
[2016.06.29 12:59:06 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksxbar.ax
[2016.06.29 12:59:03 | 000,941,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mblctr.exe
[2016.06.29 12:59:01 | 002,151,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mmcndmgr.dll
[2016.06.29 12:59:01 | 000,319,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcjt32.dll
[2016.06.29 12:59:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\defaultlocationcpl.dll
[2016.06.29 12:59:01 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msorcl32.dll
[2016.06.29 12:59:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbctrac.dll
[2016.06.29 12:59:01 | 000,132,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MdSched.exe
[2016.06.29 12:59:01 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbccp32.dll
[2016.06.29 12:59:00 | 000,477,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpksetup.exe
[2016.06.29 12:59:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpremove.exe
[2016.06.29 12:59:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\luainstall.dll
[2016.06.29 12:58:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nrpsrv.dll
[2016.06.29 12:58:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ks.sys
[2016.06.29 12:58:44 | 000,219,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iTVData.dll
[2016.06.29 12:58:44 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Kswdmcap.ax
[2016.06.29 12:58:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\isoburn.exe
[2016.06.29 12:58:43 | 000,345,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\intl.cpl
[2016.06.29 12:58:43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MuiUnattend.exe
[2016.06.29 12:58:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nlsbres.dll
[2016.06.29 12:58:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wshirda.dll
[2016.06.29 12:58:41 | 002,522,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dbgeng.dll
[2016.06.29 12:58:41 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imkr80.ime
[2016.06.29 12:58:41 | 000,392,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2.dll
[2016.06.29 12:58:38 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ie4uinit.exe
[2016.06.29 12:58:38 | 000,114,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iesysprep.dll
[2016.06.29 12:58:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inseng.dll
[2016.06.29 12:58:37 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msrating.dll
[2016.06.29 12:58:37 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ieUnatt.exe
[2016.06.29 12:58:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imgutil.dll
[2016.06.29 12:58:36 | 000,599,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeeds.dll
[2016.06.29 12:58:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscms.dll
[2016.06.29 12:58:36 | 000,389,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iedkcs32.dll
[2016.06.29 12:58:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\html.iec
[2016.06.29 12:58:36 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iepeers.dll
[2016.06.29 12:58:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RegisterIEPKEYs.exe
[2016.06.29 12:58:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedsbs.dll
[2016.06.29 12:58:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\licmgr10.dll
[2016.06.29 12:58:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedssync.exe
[2016.06.29 12:58:34 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzres.dll
[2016.06.29 12:58:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kbdlk41a.dll
[2016.06.29 12:58:31 | 001,466,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetcpl.cpl
[2016.06.29 12:58:31 | 000,606,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mstime.dll
[2016.06.29 12:58:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\C_ISCII.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSG.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDCZ1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDPO.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGR1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGKL.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUS.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUGHR1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMAORI.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDLT1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINHIN.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBULG.DLL
[2016.06.29 12:58:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsicli.exe
[2016.06.29 12:58:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsium.dll
[2016.06.29 12:58:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\elsTrans.dll
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUQ.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDNEPR.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINBEN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTURME.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTAJIK.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMON.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTEL.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTAM.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINORI.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINMAR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINKAN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBLR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBASH.DLL
[2016.06.29 12:58:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGEO.DLL
[2016.06.29 12:58:28 | 000,732,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2fs.dll
[2016.06.29 12:58:28 | 000,312,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgcpl.dll
[2016.06.29 12:58:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\itircl.dll
[2016.06.29 12:58:28 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\HotStartUserAgent.dll
[2016.06.29 12:58:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenter.dll
[2016.06.29 12:58:27 | 000,537,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenterCPL.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halmacpi.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hal.dll
[2016.06.29 12:58:27 | 000,137,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halacpi.dll
[2016.06.29 12:58:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hbaapi.dll
[2016.06.29 12:58:19 | 002,576,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gameux.dll
[2016.06.29 12:58:19 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\atmfd.dll
[2016.06.29 12:58:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fontsub.dll
[2016.06.29 12:58:19 | 000,034,304 | ---- | C] (Adobe Systems) -- D:\Windows\System32\atmlib.dll
[2016.06.29 12:58:18 | 000,584,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gpprefcl.dll
[2016.06.29 12:58:18 | 000,339,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appmgr.dll
[2016.06.29 12:58:17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scrptadm.dll
[2016.06.29 12:58:17 | 000,438,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AdmTmpl.dll
[2016.06.29 12:58:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ftp.exe
[2016.06.29 12:58:15 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fde.dll
[2016.06.29 12:58:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\t2embed.dll
[2016.06.29 12:58:15 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- D:\Windows\System32\fms.dll
[2016.06.29 12:58:15 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\findstr.exe
[2016.06.29 12:58:15 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fdeploy.dll
[2016.06.29 12:58:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSMON.dll
[2016.06.29 12:58:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\muifontsetup.dll
[2016.06.29 12:58:14 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSTIFF.dll
[2016.06.29 12:58:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ifsutil.dll
[2016.06.29 12:58:13 | 000,802,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WFS.exe
[2016.06.29 12:58:13 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\untfs.dll
[2016.06.29 12:58:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSCOVER.exe
[2016.06.29 12:58:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\explorer.exe
[2016.06.29 12:58:12 | 001,493,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ExplorerFrame.dll
[2016.06.29 12:58:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eudcedit.exe
[2016.06.29 12:58:11 | 001,063,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\werconcpl.dll
[2016.06.29 12:58:11 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdri.dll
[2016.06.29 12:58:11 | 000,414,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mspbda.dll
[2016.06.29 12:58:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wer.dll
[2016.06.29 12:58:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Faultrep.dll
[2016.06.29 12:58:11 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EhStorAPI.dll
[2016.06.29 12:58:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WerFaultSecure.exe
[2016.06.29 12:58:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2016.06.29 12:58:10 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\efscore.dll
[2016.06.29 12:58:09 | 001,400,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DxpTaskSync.dll
[2016.06.29 12:58:09 | 000,630,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXPTaskRingtone.dll
[2016.06.29 12:58:09 | 000,399,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXP.dll
[2016.06.29 12:58:09 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3ui.dll
[2016.06.29 12:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drvstore.dll
[2016.06.29 12:58:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapp3hst.dll
[2016.06.29 12:58:09 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapphost.dll
[2016.06.29 12:58:09 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3msm.dll
[2016.06.29 12:58:09 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eappgnui.dll
[2016.06.29 12:58:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3cfg.dll
[2016.06.29 12:58:08 | 001,828,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d9.dll
[2016.06.29 12:58:08 | 001,171,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10warp.dll
[2016.06.29 12:58:08 | 001,040,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Display.dll
[2016.06.29 12:58:08 | 000,508,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxgi.dll
[2016.06.29 12:58:08 | 000,276,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskraid.exe
[2016.06.29 12:58:08 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskpart.exe
[2016.06.29 12:58:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscmmc.dll
[2016.06.29 12:58:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscacheugc.exe
[2016.06.29 12:58:08 | 000,027,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\Diskdump.sys
[2016.06.29 12:58:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpnaddr.dll
[2016.06.29 12:58:07 | 001,076,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DWrite.dll
[2016.06.29 12:58:07 | 000,522,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d11.dll
[2016.06.29 12:58:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10level9.dll
[2016.06.29 12:58:07 | 000,219,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10_1core.dll
[2016.06.29 12:58:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\amstream.dll
[2016.06.29 12:58:07 | 000,056,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vfwwdm32.dll
[2016.06.29 12:58:07 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciqtz32.dll
[2016.06.29 12:58:06 | 000,283,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdv.dll
[2016.06.29 12:58:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mpg2splt.ax
[2016.06.29 12:58:06 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qcap.dll
[2016.06.29 12:58:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdmo.dll
[2016.06.29 12:58:05 | 001,188,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DiagCpl.dll
[2016.06.29 12:58:05 | 000,739,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d2d1.dll
[2016.06.29 12:58:05 | 000,586,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dfrgui.exe
[2016.06.29 12:58:05 | 000,484,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DeviceCenter.dll
[2016.06.29 12:58:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpx.dll
[2016.06.29 12:58:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DevicePairingFolder.dll
[2016.06.29 12:58:05 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxdiagn.dll
[2016.06.29 12:58:05 | 000,128,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\desk.cpl
[2016.06.29 12:58:05 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupugc.exe
[2016.06.29 12:58:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dsauth.dll
[2016.06.29 12:58:03 | 001,027,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IMJP10.IME
[2016.06.29 12:58:03 | 000,097,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmredir.dll
[2016.06.29 12:58:02 | 001,371,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmcore.dll
[2016.06.29 12:57:59 | 000,567,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFx.dll
[2016.06.29 12:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFPlatform.dll
[2016.06.29 12:57:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFCoinstaller.dll
[2016.06.29 12:57:57 | 000,429,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\localsec.dll
[2016.06.29 12:57:55 | 001,160,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OpcServices.dll
[2016.06.29 12:57:55 | 000,679,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoconv.exe
[2016.06.29 12:57:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CPFilters.dll
[2016.06.29 12:57:55 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\conhost.exe
[2016.06.29 12:57:55 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netid.dll
[2016.06.29 12:57:55 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mimefilt.dll
[2016.06.29 12:57:54 | 001,066,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdtctm.dll
[2016.06.29 12:57:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmd.exe
[2016.06.29 12:57:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\olethk32.dll
[2016.06.29 12:57:53 | 001,712,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xpsservices.dll
[2016.06.29 12:57:53 | 000,863,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diagperf.dll
[2016.06.29 12:57:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdosys.dll
[2016.06.29 12:57:53 | 000,776,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\calc.exe
[2016.06.29 12:57:51 | 001,555,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\certmgr.dll
[2016.06.29 12:57:51 | 000,878,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Bubbles.scr
[2016.06.29 12:57:51 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsGdiConverter.dll
[2016.06.29 12:57:51 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsRasterService.dll
[2016.06.29 12:57:50 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bthprops.cpl
[2016.06.29 12:57:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\browcli.dll
[2016.06.29 12:57:49 | 002,217,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bootres.dll
[2016.06.29 12:57:49 | 000,750,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdcpl.dll
[2016.06.29 12:57:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\biocpl.dll
[2016.06.29 12:57:49 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsadmin.exe
[2016.06.29 12:57:49 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdboot.exe
[2016.06.29 12:57:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdsrv.dll
[2016.06.29 12:57:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\bfsvc.exe
[2016.06.29 12:57:49 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BlbEvents.dll
[2016.06.29 12:57:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basesrv.dll
[2016.06.29 12:57:49 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsperf.dll
[2016.06.29 12:57:47 | 000,295,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdedit.exe
[2016.06.29 12:57:45 | 000,762,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroles.dll
[2016.06.29 12:57:45 | 000,658,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autofmt.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVol.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroleui.dll
[2016.06.29 12:57:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVolSSO.dll
[2016.06.29 12:57:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoplay.dll
[2016.06.29 12:57:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AzSqlExt.dll
[2016.06.29 12:57:44 | 003,727,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\accessibilitycpl.dll
[2016.06.29 12:57:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdiasqmmodule.dll
[2016.06.29 12:57:43 | 000,321,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aepdu.dll
[2016.06.29 12:57:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aeinv.dll
[2016.06.29 12:57:43 | 000,292,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2016.06.29 12:57:43 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adsldp.dll
[2016.06.29 12:57:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aitagent.exe
[2016.06.29 12:57:43 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\acppage.dll
[2016.06.29 12:57:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmartcardCredentialProvider.dll
[2016.06.29 12:57:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\hidclass.sys
[2016.06.29 12:57:38 | 000,859,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OobeFldr.dll
[2016.06.29 12:57:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srchadmin.dll
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Opera Software
[2016.06.29 12:13:32 | 000,000,000 | ---D | C] -- D:\Program Files\Opera
[2016.06.29 12:04:16 | 028,043,832 | ---- | C] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 22:18:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SygicTruck13.5.0
[2016.06.28 19:44:30 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SG_14.3.1
[2016.06.28 19:35:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.28 16:40:58 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\All voices Sygic
[2016.06.27 18:41:46 | 000,000,000 | -H-D | C] -- D:\ProgramData\CanonBJ
[2016.06.27 18:41:42 | 000,000,000 | -H-D | C] -- D:\Windows\System32\CanonIJ Uninstaller Information
[2016.06.27 18:41:42 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4200
[2016.06.27 18:41:37 | 000,197,632 | ---- | C] (CANON INC.) -- D:\Windows\System32\CNMLM78.DLL
[2016.06.27 18:41:33 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ
[2016.06.27 10:44:45 | 000,000,000 | ---D | C] -- D:\Users\pepa\Tracing
[2016.06.27 10:44:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Skype
[2016.06.27 10:43:58 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.06.27 10:43:57 | 000,000,000 | R--D | C] -- D:\Program Files\Skype
[2016.06.27 10:43:57 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Skype
[2016.06.27 10:43:52 | 000,000,000 | ---D | C] -- D:\ProgramData\Skype
[2016.06.27 10:11:42 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\Program Files\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Adobe
[2016.06.27 10:10:44 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Adobe
[2016.06.27 10:10:26 | 000,000,000 | ---D | C] -- D:\Program Files\Seznam.cz
[2016.06.27 10:09:59 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.27 10:09:58 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe Flash Player
[2016.06.27 10:09:53 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Programs
[2016.06.27 10:06:01 | 000,796,352 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:06:01 | 000,142,528 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:05:57 | 000,000,000 | ---D | C] -- D:\Windows\System32\Macromed
[2016.06.27 09:44:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\poqexec.exe
[2016.06.27 07:57:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapi.dll
[2016.06.27 07:57:42 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wudriver.dll
[2016.06.27 07:57:42 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups.dll
[2016.06.27 00:13:58 | 000,000,000 | ---D | C] -- D:\Windows\Panther
[2016.06.27 00:13:31 | 000,000,000 | ---D | C] -- D:\Windows\System32\OEM
[2016.06.27 00:04:23 | 000,000,000 | ---D | C] -- D:\Windows.old.000
[2016.06.26 17:59:01 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2016.06.26 17:58:33 | 000,032,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msonpmon.dll
[2016.06.26 17:57:31 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Works
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DESIGNER
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Windows\PCHEALTH
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft.NET
[2016.06.26 17:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio 8
[2016.06.26 17:54:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft Help
[2016.06.26 17:54:37 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Office
[2016.06.26 17:54:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft Help
[2016.06.26 17:53:35 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2016.06.26 17:52:09 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:48 | 000,000,000 | ---D | C] -- D:\Program Files\WinRAR
[2016.06.26 16:54:06 | 000,400,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Mozilla
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Mozilla
[2016.06.26 16:51:38 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Maintenance Service
[2016.06.26 16:51:33 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2016.06.26 16:37:49 | 002,324,216 | ---- | C] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:36:05 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\CEF
[2016.06.26 16:35:25 | 000,035,096 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:46 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.06.26 16:32:43 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016.06.26 16:32:29 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AV
[2016.06.26 16:32:21 | 000,222,056 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:32:21 | 000,118,152 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:32:20 | 000,438,296 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.26 16:32:20 | 000,060,424 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:32:19 | 000,091,680 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:32:19 | 000,091,232 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:32:19 | 000,034,008 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:32:18 | 000,816,304 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:32:05 | 000,921,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:32:05 | 000,319,248 | ---- | C] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | C] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:30:22 | 000,000,000 | ---D | C] -- D:\Program Files\AVAST Software
[2016.06.26 16:29:48 | 000,000,000 | ---D | C] -- D:\ProgramData\AVAST Software
[2016.06.26 16:26:03 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Diagnostics
[2016.06.26 16:21:38 | 000,859,136 | ---- | C] (Realtek Semiconductor Corporation ) -- D:\Windows\System32\drivers\rtl8192se.sys
[2016.06.26 16:21:38 | 000,000,000 | ---D | C] -- D:\Program Files\InstallShield Installation Information
[2016.06.26 16:21:34 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek WLAN Driver
[2016.06.26 16:21:10 | 000,000,000 | -HSD | C] -- D:\Windows\Installer
[2016.06.26 16:20:56 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinBatch
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\Searches
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.06.26 15:59:18 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Identities
[2016.06.26 15:59:15 | 000,000,000 | R--D | C] -- D:\Users\pepa\Contacts
[2016.06.26 15:57:42 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\VirtualStore
[2016.06.26 15:57:38 | 000,000,000 | --SD | C] -- D:\Users\pepa\AppData\Roaming\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Videos
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Saved Games
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Pictures
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Music
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Links
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Favorites
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Downloads
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Documents
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Desktop
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Temporary Internet Files
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Šablony
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Soubory cookie
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\SendTo
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Poslední
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní tiskárny
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní síť
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Obrázky
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Nabídka Start
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Local Settings
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Hudba
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\History
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Filmy
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Dokumenty
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -H-D | C] -- D:\Users\pepa\AppData
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Temp
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Media Center Programs
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Šablony
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Plocha
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Obrázky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Oblíbené položky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Nabídka Start
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Hudba
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Filmy
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Dokumenty
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Data aplikací
[2016.06.26 14:17:58 | 000,000,000 | ---D | C] -- D:\Windows\SoftwareDistribution
[2016.06.26 14:14:37 | 000,000,000 | ---D | C] -- D:\Windows\Prefetch
========== Files - Modified Within 30 Days ==========
[2016.07.06 15:48:00 | 000,000,914 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.07.06 08:41:20 | 000,668,376 | ---- | M] () -- D:\Windows\System32\perfh005.dat
[2016.07.06 08:41:20 | 000,653,724 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2016.07.06 08:41:20 | 000,141,004 | ---- | M] () -- D:\Windows\System32\perfc005.dat
[2016.07.06 08:41:20 | 000,121,596 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2016.07.06 07:54:45 | 000,000,512 | ---- | M] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:24 | 000,597,473 | ---- | M] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.06 07:34:38 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 07:25:32 | 1606,578,176 | -HS- | M] () -- D:\hiberfil.sys
[2016.07.05 07:12:44 | 000,000,000 | ---- | M] () -- D:\Windows\System32\last.dump
[2016.07.02 03:36:41 | 000,413,336 | ---- | M] () -- D:\Windows\System32\FNTCACHE.DAT
[2016.07.02 03:11:20 | 000,152,576 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\msclmd.dll
[2016.06.30 13:52:43 | 000,007,602 | ---- | M] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagerr.xml
[2016.06.29 17:19:15 | 000,002,058 | ---- | M] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 12:14:48 | 000,001,095 | ---- | M] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.29 12:09:32 | 028,043,832 | ---- | M] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 13:52:48 | 000,013,723 | ---- | M] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.27 10:48:29 | 000,796,352 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:48:29 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:43:58 | 000,002,719 | ---- | M] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.26 20:35:12 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | M] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | M] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:35:50 | 000,001,122 | ---- | M] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:43 | 000,002,083 | ---- | M] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:31:57 | 000,921,280 | ---- | M] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:31:57 | 000,319,248 | ---- | M] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | M] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:20:33 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 14:19:15 | 000,068,220 | ---- | M] () -- D:\Windows\System32\license.rtf
[2016.06.26 14:17:41 | 000,000,000 | ---- | M] () -- D:\Windows\ativpsrm.bin
[2016.06.26 10:28:20 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2016.06.25 17:43:13 | 000,301,056 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.06.25 11:45:09 | 000,619,841 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.25 11:45:01 | 000,657,217 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.13 19:31:08 | 000,400,040 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
========== Files Created - No Company Name ==========
[2016.07.06 07:54:45 | 000,000,512 | ---- | C] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:19 | 000,597,473 | ---- | C] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.02 15:24:04 | 000,000,003 | ---- | C] () -- D:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.06.30 23:43:10 | 000,000,000 | ---- | C] () -- D:\Windows\System32\last.dump
[2016.06.30 13:52:43 | 000,007,602 | ---- | C] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:19:15 | 000,002,058 | ---- | C] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagerr.xml
[2016.06.29 12:59:47 | 000,010,429 | ---- | C] () -- D:\Windows\System32\ScavengeSpace.xml
[2016.06.29 12:59:42 | 000,146,852 | ---- | C] () -- D:\Windows\System32\systemsf.ebd
[2016.06.29 12:59:37 | 000,080,896 | ---- | C] () -- D:\Windows\System32\RDVGHelper.exe
[2016.06.29 12:59:35 | 000,105,559 | ---- | C] () -- D:\Windows\System32\RacRules.xml
[2016.06.29 12:59:33 | 000,066,048 | ---- | C] () -- D:\Windows\System32\PrintBrmUi.exe
[2016.06.29 12:14:48 | 000,001,095 | ---- | C] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.28 18:55:55 | 000,619,841 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.28 18:55:52 | 000,657,217 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.28 13:41:31 | 000,013,723 | ---- | C] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 10:43:58 | 000,002,719 | ---- | C] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.27 10:06:02 | 000,000,914 | ---- | C] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.06.26 20:35:12 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | C] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | C] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
[2016.06.26 16:32:43 | 000,002,083 | ---- | C] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:20:33 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 15:59:33 | 000,001,421 | ---- | C] () -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.06.26 14:19:08 | 000,001,326 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.06.26 14:19:00 | 000,001,345 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.06.26 14:17:41 | 000,000,000 | ---- | C] () -- D:\Windows\ativpsrm.bin
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2016.06.26 16:32:46 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.07.02 18:51:45 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.29 12:14:50 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.07.05 07:34:13 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.29 13:03:05 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.26 16:20:56 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\WinBatch
========== Purity Check ==========
< End of report >
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Stále to tam není. Provedu tedy čištění pouze z toho, co tu mám. Pokud mi něco unikne, není to má vina.
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:
Po restartu se objevi novy log, ten sem dejte.
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.:OTL
E - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
O13 - gopher Prefix: missing
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:files
D:\ProgramData\McAfee Security Scan
D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
D:\Program Files\McAfee Security Scan
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Po restartu se objevi novy log, ten sem dejte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
Po restartu se ukázalo toto:
Files\Folders moved on Reboot...
File move failed. D:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. D:\Windows\temp\SafeZone Installer\safezone_installer_20160626163537.log scheduled to be moved on reboot.
File move failed. D:\Windows\temp\SafeZone Installer\safezone_installer_20160626163544.log scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Files\Folders moved on Reboot...
File move failed. D:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. D:\Windows\temp\SafeZone Installer\safezone_installer_20160626163537.log scheduled to be moved on reboot.
File move failed. D:\Windows\temp\SafeZone Installer\safezone_installer_20160626163544.log scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Njn, nefuguje to regulérně, protože nebyl kompletní log. Změnilo se něco?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: PC se seká
Tak je to lepší , určitě jde rychleji ... ten log jsem opravdu nakopíroval celej jsem to několikrát kontroloval ...
-
Rudy
- Site Admin
- Příspěvky: 119381
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: PC se seká
Takže v pořádku?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?