Zdravím všechny místní borce.. Od včerejška mám problém s laptopem, je velmi zpomalený. Nevím, jestli se jedná o vir, protože problémy začaly v den aktualizace Windows. Zkoušel jsem vrátit některý z předchozích buildů, ale pokaždé to skončilo s chybou. Můžete mi prosím pomoct? Dík, Petr
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2016 01
Ran by Petr (administrator) on PETUSKA (16-08-2016 17:33:35)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc.) C:\WINDOWS\System32\FBAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
() C:\WINDOWS\SysWOW64\spdsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Broadcom Corporation.) C:\WINDOWS\System32\BtwRSupportService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\WINDOWS\System32\InstallAgent.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350760 2015-08-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2015-08-24] (RealNetworks, Inc.)
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\...\MountPoints2: {54b75029-68cd-11e5-be8c-b8ee6512f0f5} - "F:\AutoRun.exe"
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\...\MountPoints2: {54b750f6-68cd-11e5-be8c-b8ee6512f0f5} - "F:\AutoRun.exe"
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.3.1
Tcpip\..\Interfaces\{a7ac6680-d514-4225-8474-9ccce87cc162}: [DhcpNameServer] 192.168.2.1 192.168.3.1
Tcpip\..\Interfaces\{e69ecd23-f07e-4af8-9eb4-b3a222a01bb5}: [DhcpNameServer] 40.51.1.12
Internet Explorer:
==================
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-10] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-10] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15] (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\riquujnh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-06-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2015-08-24] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-08-24] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin HKU\S-1-5-21-1119060176-3987669402-697630340-1001: SkypePlugin -> C:\Users\Petr\AppData\Local\SkypePlugin\7.15.0.49\npGatewayNpapi.dll [2016-02-19] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-1119060176-3987669402-697630340-1001: SkypePlugin64 -> C:\Users\Petr\AppData\Local\SkypePlugin\7.15.0.49\npGatewayNpapi-x64.dll [2016-02-19] (Skype Technologies S.A.)
FF Extension: Adblock Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\riquujnh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-01]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-08-24] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
Chrome:
=======
CHR StartupUrls: Default -> ""
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-07]
CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-07]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Tabulky Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (AdBlock) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-15]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R3 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-06-10] (Microsoft Corporation)
S2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-08-04] (ELAN Microelectronics Corp.)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-10] (Intel Corporation)
R3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2016-08-03] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8497840 2014-05-30] (Broadcom Corporation)
S3 BCMWL63A; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8497840 2014-05-30] (Broadcom Corporation)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [27904 2013-08-08] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-07-07] (Realtek )
S3 tpfiltdev; C:\Windows\System32\drivers\tpfiltdev.sys [7424 2012-02-08] ()
S3 tpusbnet; C:\Windows\System32\drivers\tpusbnet.sys [154112 2011-12-08] (QUALCOMM Incorporated)
S3 tpusbser; C:\Windows\system32\DRIVERS\tpusbser.sys [123648 2011-12-08] (QUALCOMM Incorporated)
R3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-04-26] (BitDefender S.R.L.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-01] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-16 17:33 - 2016-08-16 17:34 - 00017012 _____ C:\Users\Petr\Desktop\FRST.txt
2016-08-16 17:33 - 2016-08-16 17:33 - 00000000 ____D C:\FRST
2016-08-16 17:31 - 2016-08-16 17:32 - 02394624 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2016-08-16 17:13 - 2016-08-16 17:13 - 00016148 _____ C:\WINDOWS\system32\PETUSKA_Petr_HistoryPrediction.bin
2016-08-15 20:30 - 2016-08-15 22:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-08-15 20:29 - 2016-08-15 22:36 - 00311212 _____ C:\WINDOWS\ntbtlog.txt
2016-08-15 06:32 - 2016-08-15 23:39 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-08-10 00:09 - 2016-08-03 07:46 - 02816016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-08-10 00:09 - 2016-08-03 07:46 - 01538168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-10 00:09 - 2016-08-03 07:38 - 06525424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-10 00:09 - 2016-08-03 07:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-10 00:09 - 2016-08-03 06:57 - 24604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 00:09 - 2016-08-03 06:57 - 21862912 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 00:09 - 2016-08-03 06:53 - 13027328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-10 00:09 - 2016-08-03 06:50 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-10 00:09 - 2016-08-03 06:49 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 00:09 - 2016-08-03 06:47 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-08-10 00:09 - 2016-08-03 06:46 - 01123840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-08-10 00:09 - 2016-08-03 06:45 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-10 00:09 - 2016-08-03 06:44 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02839040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02253824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-08-10 00:09 - 2016-08-03 06:41 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-10 00:09 - 2016-08-03 06:40 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-10 00:09 - 2016-08-03 06:39 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-08-10 00:09 - 2016-08-03 06:38 - 03873280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-10 00:09 - 2016-08-03 06:38 - 00819712 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-08-10 00:09 - 2016-08-03 06:37 - 04453888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-08-10 00:09 - 2016-08-03 06:36 - 07502848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-10 00:09 - 2016-08-03 06:36 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-08-10 00:09 - 2016-08-03 06:33 - 02198016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-08-10 00:09 - 2016-08-03 06:32 - 01492992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-10 00:09 - 2016-08-03 06:32 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-08-10 00:09 - 2016-08-03 06:30 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-08-10 00:09 - 2016-08-03 06:30 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2016-08-10 00:09 - 2016-08-03 06:28 - 03692032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-08-10 00:09 - 2016-08-03 06:26 - 06713856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-10 00:09 - 2016-08-03 06:22 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-08-10 00:09 - 2016-08-03 06:21 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-08-10 00:09 - 2016-08-03 06:20 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2016-08-10 00:08 - 2016-08-03 08:25 - 00365120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-10 00:08 - 2016-08-03 08:15 - 02881624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 00:08 - 2016-08-03 08:14 - 00565648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-08-10 00:08 - 2016-08-03 08:09 - 00185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 08016728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-10 00:08 - 2016-08-03 07:46 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 00632680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 00432352 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-08-10 00:08 - 2016-08-03 07:44 - 02429792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-10 00:08 - 2016-08-03 07:44 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-08-10 00:08 - 2016-08-03 07:38 - 03625928 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 00:08 - 2016-08-03 07:38 - 00724168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-08-10 00:08 - 2016-08-03 07:33 - 00224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-08-10 00:08 - 2016-08-03 07:09 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-10 00:08 - 2016-08-03 06:54 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 00:08 - 2016-08-03 06:52 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-08-10 00:08 - 2016-08-03 06:49 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2016-08-10 00:08 - 2016-08-03 06:48 - 06788096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-10 00:08 - 2016-08-03 06:47 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-08-10 00:08 - 2016-08-03 06:47 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-08-10 00:08 - 2016-08-03 06:46 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-08-10 00:08 - 2016-08-03 06:46 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 12514304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassvcs.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 19337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-08-10 00:08 - 2016-08-03 06:43 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-08-10 00:08 - 2016-08-03 06:43 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-08-10 00:08 - 2016-08-03 06:42 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 04398592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 03119104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 01606656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 00:08 - 2016-08-03 06:40 - 05160960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-10 00:08 - 2016-08-03 06:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 05448704 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-10 00:08 - 2016-08-03 06:39 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 04168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 07524352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 18799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 00:08 - 2016-08-03 06:35 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-08-10 00:08 - 2016-08-03 06:35 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-08-10 00:08 - 2016-08-03 06:34 - 00740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-10 00:08 - 2016-08-03 06:34 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-10 00:08 - 2016-08-03 06:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-10 00:08 - 2016-08-03 06:33 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-10 00:08 - 2016-08-03 06:33 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 00:08 - 2016-08-03 06:32 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-08-10 00:08 - 2016-08-03 06:32 - 00679936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 05329408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-08-10 00:08 - 2016-08-03 06:30 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-08-10 00:08 - 2016-08-03 06:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-10 00:08 - 2016-08-03 06:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-08-10 00:08 - 2016-08-03 06:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-08-10 00:08 - 2016-08-03 06:28 - 03579392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 11270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-08-10 00:08 - 2016-08-03 06:26 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 00:08 - 2016-08-03 06:26 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 00:08 - 2016-08-03 06:25 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-08-10 00:08 - 2016-08-03 06:21 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-08-10 00:08 - 2016-08-03 06:21 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-08-10 00:07 - 2016-08-03 08:25 - 00953472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01767008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01531368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 00439648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-10 00:07 - 2016-08-03 08:24 - 00046480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-10 00:07 - 2016-08-03 08:23 - 01895576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-08-10 00:07 - 2016-08-03 08:22 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-10 00:07 - 2016-08-03 08:15 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-10 00:07 - 2016-08-03 08:15 - 00468832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-10 00:07 - 2016-08-03 08:15 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2016-08-10 00:07 - 2016-08-03 08:13 - 00065096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01951864 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01563480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 00601336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 00:07 - 2016-08-03 07:46 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-10 00:07 - 2016-08-03 07:46 - 00158048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 00:07 - 2016-08-03 07:46 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02495776 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-08-10 00:07 - 2016-08-03 07:44 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-10 00:07 - 2016-08-03 07:39 - 00660320 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-10 00:07 - 2016-08-03 07:38 - 01134792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-10 00:07 - 2016-08-03 07:38 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-10 00:07 - 2016-08-03 07:38 - 00252760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-08-10 00:07 - 2016-08-03 07:38 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-08-10 00:07 - 2016-08-03 07:37 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-08-10 00:07 - 2016-08-03 07:32 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-08-10 00:07 - 2016-08-03 06:57 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-08-10 00:07 - 2016-08-03 06:57 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:55 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-08-10 00:07 - 2016-08-03 06:53 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-08-10 00:07 - 2016-08-03 06:51 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-08-10 00:07 - 2016-08-03 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:47 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-08-10 00:07 - 2016-08-03 06:47 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 01416704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-10 00:07 - 2016-08-03 06:44 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-08-10 00:07 - 2016-08-03 06:43 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-08-10 00:07 - 2016-08-03 06:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-08-10 00:07 - 2016-08-03 06:42 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-10 00:07 - 2016-08-03 06:41 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-10 00:07 - 2016-08-03 06:40 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-08-10 00:07 - 2016-08-03 06:39 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-08-10 00:07 - 2016-08-03 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-10 00:07 - 2016-08-03 06:38 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-10 00:07 - 2016-08-03 06:38 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 00:07 - 2016-08-03 06:36 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-08-10 00:07 - 2016-08-03 06:35 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 00:07 - 2016-08-03 06:35 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-08-10 00:07 - 2016-08-03 06:35 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-08-10 00:07 - 2016-08-03 06:35 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 01522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00763904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-10 00:07 - 2016-08-03 06:31 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 00:07 - 2016-08-03 06:30 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-08-10 00:07 - 2016-08-03 06:26 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-08-10 00:07 - 2016-08-03 06:25 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2016-08-10 00:07 - 2016-08-03 06:25 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2016-08-09 17:15 - 2016-08-11 17:38 - 00000318 _____ C:\Users\Petr\Desktop\SQL.txt
2016-08-07 23:05 - 2016-08-15 23:39 - 00002922 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-08-07 23:03 - 2016-08-07 23:03 - 00065640 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2016-07-30 21:34 - 2016-07-30 21:34 - 00007862 _____ C:\Users\Petr\Desktop\BBB.txt
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-16 17:21 - 2014-12-13 12:00 - 00004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50D1DD13-CA27-4CEE-A88C-ECB4986F8729}
2016-08-16 17:19 - 2015-08-01 11:56 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-16 16:58 - 2015-08-26 18:17 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-16 12:00 - 2016-05-11 12:11 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-08-16 12:00 - 2015-05-25 17:21 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-08-16 06:15 - 2015-04-26 07:41 - 00000056 _____ C:\WINDOWS\Lic.xxx
2016-08-16 01:58 - 2015-08-26 18:17 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-16 00:27 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-15 23:39 - 2015-07-29 20:57 - 00000000 __SHD C:\Users\Petr\IntelGraphicsProfiles
2016-08-15 23:39 - 2014-05-30 01:17 - 00002426 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2016-08-15 23:39 - 2014-05-30 01:13 - 00002432 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-08-15 23:35 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-15 23:34 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-15 22:51 - 2015-12-10 21:57 - 00000000 ____D C:\Users\Petr\AppData\Local\ElevatedDiagnostics
2016-08-15 22:35 - 2015-12-10 19:26 - 00000000 ___HD C:\$SysReset
2016-08-15 22:31 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-08-15 22:02 - 2015-07-29 20:30 - 00000000 ____D C:\Users\Petr
2016-08-15 21:09 - 2016-07-02 14:30 - 00000000 ____D C:\Windows10Upgrade
2016-08-15 06:48 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-11 17:22 - 2014-11-25 20:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-11 17:09 - 2014-11-25 20:24 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-11 17:08 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-11 17:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-09 00:59 - 2015-08-26 18:23 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-09 00:59 - 2015-08-26 18:23 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-07 23:05 - 2014-05-30 01:10 - 00000000 ____D C:\Program Files\DIFX
2016-08-07 23:04 - 2015-07-29 20:24 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-08-07 23:03 - 2015-07-29 20:24 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-08-04 06:02 - 2016-07-10 11:29 - 00003510 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1119060176-3987669402-697630340-1001
2016-08-04 06:02 - 2016-07-10 11:28 - 00003572 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1119060176-3987669402-697630340-1001
2016-08-03 08:45 - 2015-07-29 20:42 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-01 19:39 - 2014-11-21 16:27 - 00000000 ____D C:\Users\Petr\AppData\Local\Packages
2016-07-29 01:53 - 2015-08-26 18:17 - 00003802 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-29 01:53 - 2014-11-21 16:42 - 00004034 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-27 21:25 - 2014-11-26 11:36 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-23 14:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
==================== Files in the root of some directories =======
2015-08-06 21:36 - 2016-05-16 18:17 - 0007603 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-07-29 20:24 - 2015-07-29 20:24 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-05-01 13:15 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\avxdisk.dll
C:\Users\Petr\AppData\Local\Temp\bdc.exe
C:\Users\Petr\AppData\Local\Temp\bdcore.dll
C:\Users\Petr\AppData\Local\Temp\bdfltlib2k.dll
C:\Users\Petr\AppData\Local\Temp\bdnimbus32.dll
C:\Users\Petr\AppData\Local\Temp\bdnimbus64.dll
C:\Users\Petr\AppData\Local\Temp\bdupdateservice.dll
C:\Users\Petr\AppData\Local\Temp\DEVCON.EXE
C:\Users\Petr\AppData\Local\Temp\encdec.dll
C:\Users\Petr\AppData\Local\Temp\esupdate.exe
C:\Users\Petr\AppData\Local\Temp\FSSync.dll
C:\Users\Petr\AppData\Local\Temp\Getvlist.exe
C:\Users\Petr\AppData\Local\Temp\ikave.dll
C:\Users\Petr\AppData\Local\Temp\ipc.dll
C:\Users\Petr\AppData\Local\Temp\kave.dll
C:\Users\Petr\AppData\Local\Temp\kavvlg.dll
C:\Users\Petr\AppData\Local\Temp\msvclnt.dll
C:\Users\Petr\AppData\Local\Temp\msvcp80.dll
C:\Users\Petr\AppData\Local\Temp\msvcr80.dll
C:\Users\Petr\AppData\Local\Temp\msvl64.dll
C:\Users\Petr\AppData\Local\Temp\msvlclnt.dll
C:\Users\Petr\AppData\Local\Temp\mwavdwnl.exe
C:\Users\Petr\AppData\Local\Temp\MWAVL.exe
C:\Users\Petr\AppData\Local\Temp\mwavscan.exe
C:\Users\Petr\AppData\Local\Temp\mwunzip.dll
C:\Users\Petr\AppData\Local\Temp\prLoader.dll
C:\Users\Petr\AppData\Local\Temp\red32.dll
C:\Users\Petr\AppData\Local\Temp\Reload.exe
C:\Users\Petr\AppData\Local\Temp\scan.dll
C:\Users\Petr\AppData\Local\Temp\ScanningProcess.exe
C:\Users\Petr\AppData\Local\Temp\setpriv.exe
C:\Users\Petr\AppData\Local\Temp\sqlite3.dll
C:\Users\Petr\AppData\Local\Temp\test2.exe
C:\Users\Petr\AppData\Local\Temp\trufos.dll
C:\Users\Petr\AppData\Local\Temp\unregx.exe
C:\Users\Petr\AppData\Local\Temp\viewtcp.exe
Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-11 22:00
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problém - velmi pomalý systém
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Problém - velmi pomalý systém
- Přílohy
-
- Addition.rar
- (8.76 KiB) Staženo 53 x
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
# AdwCleaner v6.000 - *Logfile created 16/08/2016 *at 20:34:04
# *Updated on 12/08/2016 by ToolsLib
# *Database : 2016-08-16.1 [*Server]
# *Operating System : Windows 10 Home (X64)
# *Username : Petr - PETUSKA
# *Running from : C:\Users\Petr\Desktop\adwcleaner_6.000.exe
# *Mode: Clean
# *Support : https://toolslib.net/forum
***** [ *Services ] *****
***** [ *Folders ] *****
[-] *Folder deleted: C:\Users\Public\Documents\Downloaded Installers
***** [ *Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ *Shortcuts ] *****
***** [ *Scheduled Tasks ] *****
***** [ *Registry ] *****
***** [ *Browsers ] *****
[-] [easy-wifi-radar.en.softonic.com] [Search Provider] *Deleted: easy-wifi-radar.en.softonic.com
[-] [tvants.en.softonic.com] [Search Provider] *Deleted: tvants.en.softonic.com
*************************
:: *"Tracing" keys deleted
:: *Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [998 *Bytes] - [16/08/2016 20:34:04]
C:\AdwCleaner\AdwCleaner[S1].txt - [608 *Bytes] - [01/09/2015 20:48:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [1457 *Bytes] - [16/08/2016 20:28:28]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1218 *Bytes] ##########
# *Updated on 12/08/2016 by ToolsLib
# *Database : 2016-08-16.1 [*Server]
# *Operating System : Windows 10 Home (X64)
# *Username : Petr - PETUSKA
# *Running from : C:\Users\Petr\Desktop\adwcleaner_6.000.exe
# *Mode: Clean
# *Support : https://toolslib.net/forum
***** [ *Services ] *****
***** [ *Folders ] *****
[-] *Folder deleted: C:\Users\Public\Documents\Downloaded Installers
***** [ *Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ *Shortcuts ] *****
***** [ *Scheduled Tasks ] *****
***** [ *Registry ] *****
***** [ *Browsers ] *****
[-] [easy-wifi-radar.en.softonic.com] [Search Provider] *Deleted: easy-wifi-radar.en.softonic.com
[-] [tvants.en.softonic.com] [Search Provider] *Deleted: tvants.en.softonic.com
*************************
:: *"Tracing" keys deleted
:: *Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [998 *Bytes] - [16/08/2016 20:34:04]
C:\AdwCleaner\AdwCleaner[S1].txt - [608 *Bytes] - [01/09/2015 20:48:14]
C:\AdwCleaner\AdwCleaner[S2].txt - [1457 *Bytes] - [16/08/2016 20:28:28]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1218 *Bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2016 01
Ran by Petr (administrator) on PETUSKA (16-08-2016 22:04:14)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc.) C:\WINDOWS\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
Failed to access process -> svchost.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel Corporation) C:\WINDOWS\System32\igfxTray.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Broadcom Corporation.) C:\WINDOWS\System32\BtwRSupportService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\WINDOWS\System32\InstallAgent.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350760 2015-08-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2015-08-24] (RealNetworks, Inc.)
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\...\MountPoints2: {54b75029-68cd-11e5-be8c-b8ee6512f0f5} - "F:\AutoRun.exe"
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\...\MountPoints2: {54b750f6-68cd-11e5-be8c-b8ee6512f0f5} - "F:\AutoRun.exe"
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.3.1
Tcpip\..\Interfaces\{a7ac6680-d514-4225-8474-9ccce87cc162}: [DhcpNameServer] 192.168.2.1 192.168.3.1
Tcpip\..\Interfaces\{e69ecd23-f07e-4af8-9eb4-b3a222a01bb5}: [DhcpNameServer] 40.51.1.12
Internet Explorer:
==================
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-10] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-10] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15] (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\riquujnh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-06-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2015-08-24] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-08-24] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin HKU\S-1-5-21-1119060176-3987669402-697630340-1001: SkypePlugin -> C:\Users\Petr\AppData\Local\SkypePlugin\7.15.0.49\npGatewayNpapi.dll [2016-02-19] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-1119060176-3987669402-697630340-1001: SkypePlugin64 -> C:\Users\Petr\AppData\Local\SkypePlugin\7.15.0.49\npGatewayNpapi-x64.dll [2016-02-19] (Skype Technologies S.A.)
FF Extension: Adblock Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\riquujnh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-01]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-08-24] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
Chrome:
=======
CHR StartupUrls: Default -> ""
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-07]
CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-07]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Tabulky Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (AdBlock) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-15]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R3 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-06-10] (Microsoft Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-08-04] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-10] (Intel Corporation)
R3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2016-08-03] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8497840 2014-05-30] (Broadcom Corporation)
S3 BCMWL63A; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8497840 2014-05-30] (Broadcom Corporation)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [27904 2013-08-08] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-07-07] (Realtek )
S3 tpfiltdev; C:\Windows\System32\drivers\tpfiltdev.sys [7424 2012-02-08] ()
S3 tpusbnet; C:\Windows\System32\drivers\tpusbnet.sys [154112 2011-12-08] (QUALCOMM Incorporated)
S3 tpusbser; C:\Windows\system32\DRIVERS\tpusbser.sys [123648 2011-12-08] (QUALCOMM Incorporated)
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-04-26] (BitDefender S.R.L.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-01] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-16 22:04 - 2016-08-16 22:06 - 00017735 _____ C:\Users\Petr\Desktop\FRST.txt
2016-08-16 21:56 - 2016-08-16 21:56 - 00016148 _____ C:\WINDOWS\system32\PETUSKA_Petr_HistoryPrediction.bin
2016-08-16 20:54 - 2016-08-16 20:54 - 00003510 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1119060176-3987669402-697630340-1001
2016-08-16 20:53 - 2016-08-16 20:53 - 00003572 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1119060176-3987669402-697630340-1001
2016-08-16 20:14 - 2016-08-16 20:14 - 03784256 _____ C:\Users\Petr\Desktop\adwcleaner_6.000.exe
2016-08-16 17:46 - 2016-08-16 17:46 - 00008969 _____ C:\Users\Petr\Desktop\Addition.rar
2016-08-16 17:33 - 2016-08-16 22:04 - 00000000 ____D C:\FRST
2016-08-16 17:31 - 2016-08-16 17:32 - 02394624 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2016-08-15 20:30 - 2016-08-15 22:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-08-15 20:29 - 2016-08-15 22:36 - 00311212 _____ C:\WINDOWS\ntbtlog.txt
2016-08-15 06:32 - 2016-08-16 20:48 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-08-10 00:09 - 2016-08-03 07:46 - 02816016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-08-10 00:09 - 2016-08-03 07:46 - 01538168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-10 00:09 - 2016-08-03 07:38 - 06525424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-10 00:09 - 2016-08-03 07:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-10 00:09 - 2016-08-03 06:57 - 24604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 00:09 - 2016-08-03 06:57 - 21862912 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 00:09 - 2016-08-03 06:53 - 13027328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-10 00:09 - 2016-08-03 06:50 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-10 00:09 - 2016-08-03 06:49 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 00:09 - 2016-08-03 06:47 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-08-10 00:09 - 2016-08-03 06:46 - 01123840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-08-10 00:09 - 2016-08-03 06:45 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-10 00:09 - 2016-08-03 06:44 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02839040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02253824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-08-10 00:09 - 2016-08-03 06:41 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-10 00:09 - 2016-08-03 06:40 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-10 00:09 - 2016-08-03 06:39 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-08-10 00:09 - 2016-08-03 06:38 - 03873280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-10 00:09 - 2016-08-03 06:38 - 00819712 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-08-10 00:09 - 2016-08-03 06:37 - 04453888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-08-10 00:09 - 2016-08-03 06:36 - 07502848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-10 00:09 - 2016-08-03 06:36 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-08-10 00:09 - 2016-08-03 06:33 - 02198016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-08-10 00:09 - 2016-08-03 06:32 - 01492992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-10 00:09 - 2016-08-03 06:32 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-08-10 00:09 - 2016-08-03 06:30 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-08-10 00:09 - 2016-08-03 06:30 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2016-08-10 00:09 - 2016-08-03 06:28 - 03692032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-08-10 00:09 - 2016-08-03 06:26 - 06713856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-10 00:09 - 2016-08-03 06:22 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-08-10 00:09 - 2016-08-03 06:21 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-08-10 00:09 - 2016-08-03 06:20 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2016-08-10 00:08 - 2016-08-03 08:25 - 00365120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-10 00:08 - 2016-08-03 08:15 - 02881624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 00:08 - 2016-08-03 08:14 - 00565648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-08-10 00:08 - 2016-08-03 08:09 - 00185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 08016728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-10 00:08 - 2016-08-03 07:46 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 00632680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 00432352 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-08-10 00:08 - 2016-08-03 07:44 - 02429792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-10 00:08 - 2016-08-03 07:44 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-08-10 00:08 - 2016-08-03 07:38 - 03625928 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 00:08 - 2016-08-03 07:38 - 00724168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-08-10 00:08 - 2016-08-03 07:33 - 00224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-08-10 00:08 - 2016-08-03 07:09 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-10 00:08 - 2016-08-03 06:54 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 00:08 - 2016-08-03 06:52 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-08-10 00:08 - 2016-08-03 06:49 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2016-08-10 00:08 - 2016-08-03 06:48 - 06788096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-10 00:08 - 2016-08-03 06:47 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-08-10 00:08 - 2016-08-03 06:47 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-08-10 00:08 - 2016-08-03 06:46 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-08-10 00:08 - 2016-08-03 06:46 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 12514304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassvcs.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 19337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-08-10 00:08 - 2016-08-03 06:43 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-08-10 00:08 - 2016-08-03 06:43 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-08-10 00:08 - 2016-08-03 06:42 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 04398592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 03119104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 01606656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 00:08 - 2016-08-03 06:40 - 05160960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-10 00:08 - 2016-08-03 06:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 05448704 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-10 00:08 - 2016-08-03 06:39 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 04168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 07524352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 18799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 00:08 - 2016-08-03 06:35 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-08-10 00:08 - 2016-08-03 06:35 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-08-10 00:08 - 2016-08-03 06:34 - 00740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-10 00:08 - 2016-08-03 06:34 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-10 00:08 - 2016-08-03 06:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-10 00:08 - 2016-08-03 06:33 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-10 00:08 - 2016-08-03 06:33 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 00:08 - 2016-08-03 06:32 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-08-10 00:08 - 2016-08-03 06:32 - 00679936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 05329408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-08-10 00:08 - 2016-08-03 06:30 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-08-10 00:08 - 2016-08-03 06:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-10 00:08 - 2016-08-03 06:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-08-10 00:08 - 2016-08-03 06:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-08-10 00:08 - 2016-08-03 06:28 - 03579392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 11270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-08-10 00:08 - 2016-08-03 06:26 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 00:08 - 2016-08-03 06:26 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 00:08 - 2016-08-03 06:25 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-08-10 00:08 - 2016-08-03 06:21 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-08-10 00:08 - 2016-08-03 06:21 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-08-10 00:07 - 2016-08-03 08:25 - 00953472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01767008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01531368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 00439648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-10 00:07 - 2016-08-03 08:24 - 00046480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-10 00:07 - 2016-08-03 08:23 - 01895576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-08-10 00:07 - 2016-08-03 08:22 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-10 00:07 - 2016-08-03 08:15 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-10 00:07 - 2016-08-03 08:15 - 00468832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-10 00:07 - 2016-08-03 08:15 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2016-08-10 00:07 - 2016-08-03 08:13 - 00065096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01951864 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01563480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 00601336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 00:07 - 2016-08-03 07:46 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-10 00:07 - 2016-08-03 07:46 - 00158048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 00:07 - 2016-08-03 07:46 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02495776 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-08-10 00:07 - 2016-08-03 07:44 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-10 00:07 - 2016-08-03 07:39 - 00660320 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-10 00:07 - 2016-08-03 07:38 - 01134792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-10 00:07 - 2016-08-03 07:38 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-10 00:07 - 2016-08-03 07:38 - 00252760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-08-10 00:07 - 2016-08-03 07:38 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-08-10 00:07 - 2016-08-03 07:37 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-08-10 00:07 - 2016-08-03 07:32 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-08-10 00:07 - 2016-08-03 06:57 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-08-10 00:07 - 2016-08-03 06:57 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:55 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-08-10 00:07 - 2016-08-03 06:53 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-08-10 00:07 - 2016-08-03 06:51 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-08-10 00:07 - 2016-08-03 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:47 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-08-10 00:07 - 2016-08-03 06:47 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 01416704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-10 00:07 - 2016-08-03 06:44 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-08-10 00:07 - 2016-08-03 06:43 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-08-10 00:07 - 2016-08-03 06:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-08-10 00:07 - 2016-08-03 06:42 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-10 00:07 - 2016-08-03 06:41 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-10 00:07 - 2016-08-03 06:40 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-08-10 00:07 - 2016-08-03 06:39 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-08-10 00:07 - 2016-08-03 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-10 00:07 - 2016-08-03 06:38 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-10 00:07 - 2016-08-03 06:38 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 00:07 - 2016-08-03 06:36 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-08-10 00:07 - 2016-08-03 06:35 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 00:07 - 2016-08-03 06:35 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-08-10 00:07 - 2016-08-03 06:35 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-08-10 00:07 - 2016-08-03 06:35 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 01522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00763904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-10 00:07 - 2016-08-03 06:31 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 00:07 - 2016-08-03 06:30 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-08-10 00:07 - 2016-08-03 06:26 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-08-10 00:07 - 2016-08-03 06:25 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2016-08-10 00:07 - 2016-08-03 06:25 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2016-08-09 17:15 - 2016-08-11 17:38 - 00000318 _____ C:\Users\Petr\Desktop\SQL.txt
2016-08-07 23:05 - 2016-08-16 20:40 - 00002922 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-08-07 23:03 - 2016-08-07 23:03 - 00065640 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2016-07-30 21:34 - 2016-07-30 21:34 - 00007862 _____ C:\Users\Petr\Desktop\BBB.txt
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-16 22:05 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-16 22:03 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-16 21:58 - 2015-08-26 18:17 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-16 21:19 - 2015-08-01 11:56 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-16 20:45 - 2014-05-30 01:17 - 00002426 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2016-08-16 20:44 - 2014-05-30 01:13 - 00002432 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-08-16 20:38 - 2015-08-26 18:17 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-16 20:37 - 2015-07-29 20:57 - 00000000 __SHD C:\Users\Petr\IntelGraphicsProfiles
2016-08-16 20:35 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-16 20:34 - 2015-09-01 20:48 - 00000000 ____D C:\AdwCleaner
2016-08-16 20:34 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-16 17:21 - 2014-12-13 12:00 - 00004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50D1DD13-CA27-4CEE-A88C-ECB4986F8729}
2016-08-16 12:00 - 2016-05-11 12:11 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-08-16 12:00 - 2015-05-25 17:21 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-08-16 06:15 - 2015-04-26 07:41 - 00000056 _____ C:\WINDOWS\Lic.xxx
2016-08-15 22:51 - 2015-12-10 21:57 - 00000000 ____D C:\Users\Petr\AppData\Local\ElevatedDiagnostics
2016-08-15 22:35 - 2015-12-10 19:26 - 00000000 ___HD C:\$SysReset
2016-08-15 22:31 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-08-15 22:02 - 2015-07-29 20:30 - 00000000 ____D C:\Users\Petr
2016-08-15 21:09 - 2016-07-02 14:30 - 00000000 ____D C:\Windows10Upgrade
2016-08-15 06:48 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-11 17:22 - 2014-11-25 20:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-11 17:09 - 2014-11-25 20:24 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-11 17:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-09 00:59 - 2015-08-26 18:23 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-09 00:59 - 2015-08-26 18:23 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-07 23:05 - 2014-05-30 01:10 - 00000000 ____D C:\Program Files\DIFX
2016-08-07 23:04 - 2015-07-29 20:24 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-08-07 23:03 - 2015-07-29 20:24 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-08-03 08:45 - 2015-07-29 20:42 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-01 19:39 - 2014-11-21 16:27 - 00000000 ____D C:\Users\Petr\AppData\Local\Packages
2016-07-29 01:53 - 2015-08-26 18:17 - 00003802 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-29 01:53 - 2014-11-21 16:42 - 00004034 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-27 21:25 - 2014-11-26 11:36 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-23 14:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
==================== Files in the root of some directories =======
2015-08-06 21:36 - 2016-05-16 18:17 - 0007603 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-07-29 20:24 - 2015-07-29 20:24 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-05-01 13:15 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\avxdisk.dll
C:\Users\Petr\AppData\Local\Temp\bdc.exe
C:\Users\Petr\AppData\Local\Temp\bdcore.dll
C:\Users\Petr\AppData\Local\Temp\bdfltlib2k.dll
C:\Users\Petr\AppData\Local\Temp\bdnimbus32.dll
C:\Users\Petr\AppData\Local\Temp\bdnimbus64.dll
C:\Users\Petr\AppData\Local\Temp\bdupdateservice.dll
C:\Users\Petr\AppData\Local\Temp\DEVCON.EXE
C:\Users\Petr\AppData\Local\Temp\encdec.dll
C:\Users\Petr\AppData\Local\Temp\esupdate.exe
C:\Users\Petr\AppData\Local\Temp\FSSync.dll
C:\Users\Petr\AppData\Local\Temp\Getvlist.exe
C:\Users\Petr\AppData\Local\Temp\ikave.dll
C:\Users\Petr\AppData\Local\Temp\ipc.dll
C:\Users\Petr\AppData\Local\Temp\kave.dll
C:\Users\Petr\AppData\Local\Temp\kavvlg.dll
C:\Users\Petr\AppData\Local\Temp\libeay32.dll
C:\Users\Petr\AppData\Local\Temp\msvclnt.dll
C:\Users\Petr\AppData\Local\Temp\msvcp80.dll
C:\Users\Petr\AppData\Local\Temp\msvcr120.dll
C:\Users\Petr\AppData\Local\Temp\msvcr80.dll
C:\Users\Petr\AppData\Local\Temp\msvl64.dll
C:\Users\Petr\AppData\Local\Temp\msvlclnt.dll
C:\Users\Petr\AppData\Local\Temp\mwavdwnl.exe
C:\Users\Petr\AppData\Local\Temp\MWAVL.exe
C:\Users\Petr\AppData\Local\Temp\mwavscan.exe
C:\Users\Petr\AppData\Local\Temp\mwunzip.dll
C:\Users\Petr\AppData\Local\Temp\prLoader.dll
C:\Users\Petr\AppData\Local\Temp\red32.dll
C:\Users\Petr\AppData\Local\Temp\Reload.exe
C:\Users\Petr\AppData\Local\Temp\scan.dll
C:\Users\Petr\AppData\Local\Temp\ScanningProcess.exe
C:\Users\Petr\AppData\Local\Temp\setpriv.exe
C:\Users\Petr\AppData\Local\Temp\sqlite3.dll
C:\Users\Petr\AppData\Local\Temp\test2.exe
C:\Users\Petr\AppData\Local\Temp\trufos.dll
C:\Users\Petr\AppData\Local\Temp\unregx.exe
C:\Users\Petr\AppData\Local\Temp\viewtcp.exe
Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-11 22:00
==================== End of FRST.txt ============================
Ran by Petr (administrator) on PETUSKA (16-08-2016 22:04:14)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc.) C:\WINDOWS\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
Failed to access process -> svchost.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel Corporation) C:\WINDOWS\System32\igfxTray.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Broadcom Corporation.) C:\WINDOWS\System32\BtwRSupportService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\WINDOWS\System32\InstallAgent.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350760 2015-08-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295512 2015-08-24] (RealNetworks, Inc.)
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\...\MountPoints2: {54b75029-68cd-11e5-be8c-b8ee6512f0f5} - "F:\AutoRun.exe"
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\...\MountPoints2: {54b750f6-68cd-11e5-be8c-b8ee6512f0f5} - "F:\AutoRun.exe"
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64\FileSyncShell64.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll [2016-04-11] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.3.1
Tcpip\..\Interfaces\{a7ac6680-d514-4225-8474-9ccce87cc162}: [DhcpNameServer] 192.168.2.1 192.168.3.1
Tcpip\..\Interfaces\{e69ecd23-f07e-4af8-9eb4-b3a222a01bb5}: [DhcpNameServer] 40.51.1.12
Internet Explorer:
==================
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-10] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-10] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-15] (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\riquujnh.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-06-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2015-08-24] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-08-24] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin HKU\S-1-5-21-1119060176-3987669402-697630340-1001: SkypePlugin -> C:\Users\Petr\AppData\Local\SkypePlugin\7.15.0.49\npGatewayNpapi.dll [2016-02-19] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-1119060176-3987669402-697630340-1001: SkypePlugin64 -> C:\Users\Petr\AppData\Local\SkypePlugin\7.15.0.49\npGatewayNpapi-x64.dll [2016-02-19] (Skype Technologies S.A.)
FF Extension: Adblock Plus - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\riquujnh.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-01]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-08-24] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
Chrome:
=======
CHR StartupUrls: Default -> ""
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-07]
CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-07]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Tabulky Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (AdBlock) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-15]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R3 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-06-10] (Microsoft Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-08-04] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-10] (Intel Corporation)
R3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2016-08-03] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8497840 2014-05-30] (Broadcom Corporation)
S3 BCMWL63A; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8497840 2014-05-30] (Broadcom Corporation)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [27904 2013-08-08] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-07-07] (Realtek )
S3 tpfiltdev; C:\Windows\System32\drivers\tpfiltdev.sys [7424 2012-02-08] ()
S3 tpusbnet; C:\Windows\System32\drivers\tpusbnet.sys [154112 2011-12-08] (QUALCOMM Incorporated)
S3 tpusbser; C:\Windows\system32\DRIVERS\tpusbser.sys [123648 2011-12-08] (QUALCOMM Incorporated)
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-04-26] (BitDefender S.R.L.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-01] (Intel Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-16 22:04 - 2016-08-16 22:06 - 00017735 _____ C:\Users\Petr\Desktop\FRST.txt
2016-08-16 21:56 - 2016-08-16 21:56 - 00016148 _____ C:\WINDOWS\system32\PETUSKA_Petr_HistoryPrediction.bin
2016-08-16 20:54 - 2016-08-16 20:54 - 00003510 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1119060176-3987669402-697630340-1001
2016-08-16 20:53 - 2016-08-16 20:53 - 00003572 _____ C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1119060176-3987669402-697630340-1001
2016-08-16 20:14 - 2016-08-16 20:14 - 03784256 _____ C:\Users\Petr\Desktop\adwcleaner_6.000.exe
2016-08-16 17:46 - 2016-08-16 17:46 - 00008969 _____ C:\Users\Petr\Desktop\Addition.rar
2016-08-16 17:33 - 2016-08-16 22:04 - 00000000 ____D C:\FRST
2016-08-16 17:31 - 2016-08-16 17:32 - 02394624 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2016-08-15 20:30 - 2016-08-15 22:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-08-15 20:29 - 2016-08-15 22:36 - 00311212 _____ C:\WINDOWS\ntbtlog.txt
2016-08-15 06:32 - 2016-08-16 20:48 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2016-08-10 00:09 - 2016-08-03 07:46 - 02816016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-08-10 00:09 - 2016-08-03 07:46 - 01538168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-10 00:09 - 2016-08-03 07:38 - 06525424 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-10 00:09 - 2016-08-03 07:03 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-10 00:09 - 2016-08-03 06:57 - 24604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-10 00:09 - 2016-08-03 06:57 - 21862912 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-10 00:09 - 2016-08-03 06:53 - 13027328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-10 00:09 - 2016-08-03 06:50 - 02902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-10 00:09 - 2016-08-03 06:49 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-10 00:09 - 2016-08-03 06:47 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-08-10 00:09 - 2016-08-03 06:46 - 01123840 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2016-08-10 00:09 - 2016-08-03 06:45 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-10 00:09 - 2016-08-03 06:44 - 00814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02839040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02598912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-10 00:09 - 2016-08-03 06:42 - 02253824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-08-10 00:09 - 2016-08-03 06:41 - 01686528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-10 00:09 - 2016-08-03 06:40 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-10 00:09 - 2016-08-03 06:39 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2016-08-10 00:09 - 2016-08-03 06:38 - 03873280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-10 00:09 - 2016-08-03 06:38 - 00819712 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-08-10 00:09 - 2016-08-03 06:37 - 04453888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-08-10 00:09 - 2016-08-03 06:36 - 07502848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-10 00:09 - 2016-08-03 06:36 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provcore.dll
2016-08-10 00:09 - 2016-08-03 06:33 - 02198016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-08-10 00:09 - 2016-08-03 06:32 - 01492992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-10 00:09 - 2016-08-03 06:32 - 00939008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-08-10 00:09 - 2016-08-03 06:30 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-08-10 00:09 - 2016-08-03 06:30 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgcore.dll
2016-08-10 00:09 - 2016-08-03 06:28 - 03692032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-08-10 00:09 - 2016-08-03 06:26 - 06713856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-10 00:09 - 2016-08-03 06:22 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-08-10 00:09 - 2016-08-03 06:21 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DbgModel.dll
2016-08-10 00:09 - 2016-08-03 06:20 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgcore.dll
2016-08-10 00:08 - 2016-08-03 08:25 - 00365120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-10 00:08 - 2016-08-03 08:15 - 02881624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-10 00:08 - 2016-08-03 08:14 - 00565648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2016-08-10 00:08 - 2016-08-03 08:09 - 00185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 08016728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-10 00:08 - 2016-08-03 07:46 - 01561360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 00632680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-10 00:08 - 2016-08-03 07:46 - 00432352 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-08-10 00:08 - 2016-08-03 07:44 - 02429792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-10 00:08 - 2016-08-03 07:44 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-08-10 00:08 - 2016-08-03 07:38 - 03625928 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-10 00:08 - 2016-08-03 07:38 - 00724168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-08-10 00:08 - 2016-08-03 07:33 - 00224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-08-10 00:08 - 2016-08-03 07:09 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-10 00:08 - 2016-08-03 06:54 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-10 00:08 - 2016-08-03 06:52 - 02418688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-08-10 00:08 - 2016-08-03 06:49 - 02446336 _____ C:\WINDOWS\system32\InputService.dll
2016-08-10 00:08 - 2016-08-03 06:48 - 06788096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-10 00:08 - 2016-08-03 06:47 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-08-10 00:08 - 2016-08-03 06:47 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-08-10 00:08 - 2016-08-03 06:46 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-08-10 00:08 - 2016-08-03 06:46 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 12514304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-10 00:08 - 2016-08-03 06:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iassvcs.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 19337216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-08-10 00:08 - 2016-08-03 06:44 - 00345088 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-08-10 00:08 - 2016-08-03 06:43 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2016-08-10 00:08 - 2016-08-03 06:43 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2016-08-10 00:08 - 2016-08-03 06:42 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 04398592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 03119104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll
2016-08-10 00:08 - 2016-08-03 06:41 - 01606656 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-10 00:08 - 2016-08-03 06:40 - 05160960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-10 00:08 - 2016-08-03 06:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 05448704 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-10 00:08 - 2016-08-03 06:39 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2016-08-10 00:08 - 2016-08-03 06:39 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-08-10 00:08 - 2016-08-03 06:38 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 04168704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-08-10 00:08 - 2016-08-03 06:37 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iassvcs.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 07524352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2016-08-10 00:08 - 2016-08-03 06:36 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 18799616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 03584000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-10 00:08 - 2016-08-03 06:35 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-08-10 00:08 - 2016-08-03 06:35 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2016-08-10 00:08 - 2016-08-03 06:35 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappprxy.dll
2016-08-10 00:08 - 2016-08-03 06:34 - 00740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-10 00:08 - 2016-08-03 06:34 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-10 00:08 - 2016-08-03 06:33 - 02587136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-10 00:08 - 2016-08-03 06:33 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-10 00:08 - 2016-08-03 06:33 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-10 00:08 - 2016-08-03 06:32 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-08-10 00:08 - 2016-08-03 06:32 - 00679936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 05329408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-08-10 00:08 - 2016-08-03 06:31 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-08-10 00:08 - 2016-08-03 06:30 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-08-10 00:08 - 2016-08-03 06:30 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-10 00:08 - 2016-08-03 06:29 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2016-08-10 00:08 - 2016-08-03 06:29 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2016-08-10 00:08 - 2016-08-03 06:28 - 03579392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 11270656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2016-08-10 00:08 - 2016-08-03 06:27 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-08-10 00:08 - 2016-08-03 06:26 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-10 00:08 - 2016-08-03 06:26 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-10 00:08 - 2016-08-03 06:25 - 00565760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-08-10 00:08 - 2016-08-03 06:21 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2016-08-10 00:08 - 2016-08-03 06:21 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-08-10 00:07 - 2016-08-03 08:25 - 00953472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 02152744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01767008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01531368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-08-10 00:07 - 2016-08-03 08:24 - 00439648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-10 00:07 - 2016-08-03 08:24 - 00046480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-10 00:07 - 2016-08-03 08:23 - 01895576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2016-08-10 00:07 - 2016-08-03 08:22 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-10 00:07 - 2016-08-03 08:15 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-10 00:07 - 2016-08-03 08:15 - 00468832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-10 00:07 - 2016-08-03 08:15 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NAPCRYPT.DLL
2016-08-10 00:07 - 2016-08-03 08:13 - 00065096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 02463704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01951864 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01563480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-10 00:07 - 2016-08-03 07:46 - 00601336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-10 00:07 - 2016-08-03 07:46 - 00552288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-10 00:07 - 2016-08-03 07:46 - 00158048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-10 00:07 - 2016-08-03 07:46 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02495776 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-08-10 00:07 - 2016-08-03 07:44 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-08-10 00:07 - 2016-08-03 07:44 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-10 00:07 - 2016-08-03 07:39 - 00660320 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-10 00:07 - 2016-08-03 07:38 - 01134792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-10 00:07 - 2016-08-03 07:38 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-10 00:07 - 2016-08-03 07:38 - 00252760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-08-10 00:07 - 2016-08-03 07:38 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2016-08-10 00:07 - 2016-08-03 07:37 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-08-10 00:07 - 2016-08-03 07:32 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-08-10 00:07 - 2016-08-03 06:57 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-08-10 00:07 - 2016-08-03 06:57 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:55 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-08-10 00:07 - 2016-08-03 06:53 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-08-10 00:07 - 2016-08-03 06:51 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-08-10 00:07 - 2016-08-03 06:49 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:47 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-08-10 00:07 - 2016-08-03 06:47 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 01416704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-08-10 00:07 - 2016-08-03 06:46 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-10 00:07 - 2016-08-03 06:44 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-08-10 00:07 - 2016-08-03 06:43 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-08-10 00:07 - 2016-08-03 06:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2016-08-10 00:07 - 2016-08-03 06:42 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-10 00:07 - 2016-08-03 06:41 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-10 00:07 - 2016-08-03 06:40 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-10 00:07 - 2016-08-03 06:40 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-08-10 00:07 - 2016-08-03 06:39 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-08-10 00:07 - 2016-08-03 06:39 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-10 00:07 - 2016-08-03 06:38 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-10 00:07 - 2016-08-03 06:38 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-08-10 00:07 - 2016-08-03 06:36 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2016-08-10 00:07 - 2016-08-03 06:35 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-10 00:07 - 2016-08-03 06:35 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-08-10 00:07 - 2016-08-03 06:35 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-08-10 00:07 - 2016-08-03 06:35 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 01522176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00763904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-08-10 00:07 - 2016-08-03 06:34 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-10 00:07 - 2016-08-03 06:33 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-10 00:07 - 2016-08-03 06:32 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-10 00:07 - 2016-08-03 06:31 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2016-08-10 00:07 - 2016-08-03 06:30 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-08-10 00:07 - 2016-08-03 06:26 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-08-10 00:07 - 2016-08-03 06:26 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-08-10 00:07 - 2016-08-03 06:25 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2016-08-10 00:07 - 2016-08-03 06:25 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-08-10 00:07 - 2016-08-03 06:25 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2016-08-09 17:15 - 2016-08-11 17:38 - 00000318 _____ C:\Users\Petr\Desktop\SQL.txt
2016-08-07 23:05 - 2016-08-16 20:40 - 00002922 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2016-08-07 23:03 - 2016-08-07 23:03 - 00065640 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2016-07-30 21:34 - 2016-07-30 21:34 - 00007862 _____ C:\Users\Petr\Desktop\BBB.txt
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-08-16 22:05 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-16 22:03 - 2015-07-10 13:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-16 21:58 - 2015-08-26 18:17 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-16 21:19 - 2015-08-01 11:56 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-08-16 20:45 - 2014-05-30 01:17 - 00002426 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2016-08-16 20:44 - 2014-05-30 01:13 - 00002432 _____ C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus
2016-08-16 20:38 - 2015-08-26 18:17 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-16 20:37 - 2015-07-29 20:57 - 00000000 __SHD C:\Users\Petr\IntelGraphicsProfiles
2016-08-16 20:35 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-16 20:34 - 2015-09-01 20:48 - 00000000 ____D C:\AdwCleaner
2016-08-16 20:34 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-16 17:21 - 2014-12-13 12:00 - 00004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{50D1DD13-CA27-4CEE-A88C-ECB4986F8729}
2016-08-16 12:00 - 2016-05-11 12:11 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-08-16 12:00 - 2015-05-25 17:21 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-08-16 06:15 - 2015-04-26 07:41 - 00000056 _____ C:\WINDOWS\Lic.xxx
2016-08-15 22:51 - 2015-12-10 21:57 - 00000000 ____D C:\Users\Petr\AppData\Local\ElevatedDiagnostics
2016-08-15 22:35 - 2015-12-10 19:26 - 00000000 ___HD C:\$SysReset
2016-08-15 22:31 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\INF
2016-08-15 22:02 - 2015-07-29 20:30 - 00000000 ____D C:\Users\Petr
2016-08-15 21:09 - 2016-07-02 14:30 - 00000000 ____D C:\Windows10Upgrade
2016-08-15 06:48 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Defender
2016-08-14 23:19 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-08-11 17:22 - 2014-11-25 20:24 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-11 17:09 - 2014-11-25 20:24 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-11 17:07 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-09 00:59 - 2015-08-26 18:23 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-09 00:59 - 2015-08-26 18:23 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-07 23:05 - 2014-05-30 01:10 - 00000000 ____D C:\Program Files\DIFX
2016-08-07 23:04 - 2015-07-29 20:24 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-08-07 23:03 - 2015-07-29 20:24 - 00000000 ____D C:\ProgramData\SetupTPDriver
2016-08-03 08:45 - 2015-07-29 20:42 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-01 19:39 - 2014-11-21 16:27 - 00000000 ____D C:\Users\Petr\AppData\Local\Packages
2016-07-29 01:53 - 2015-08-26 18:17 - 00003802 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-29 01:53 - 2014-11-21 16:42 - 00004034 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-27 21:25 - 2014-11-26 11:36 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-23 14:18 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
==================== Files in the root of some directories =======
2015-08-06 21:36 - 2016-05-16 18:17 - 0007603 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-07-29 20:24 - 2015-07-29 20:24 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-05-01 13:15 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\avxdisk.dll
C:\Users\Petr\AppData\Local\Temp\bdc.exe
C:\Users\Petr\AppData\Local\Temp\bdcore.dll
C:\Users\Petr\AppData\Local\Temp\bdfltlib2k.dll
C:\Users\Petr\AppData\Local\Temp\bdnimbus32.dll
C:\Users\Petr\AppData\Local\Temp\bdnimbus64.dll
C:\Users\Petr\AppData\Local\Temp\bdupdateservice.dll
C:\Users\Petr\AppData\Local\Temp\DEVCON.EXE
C:\Users\Petr\AppData\Local\Temp\encdec.dll
C:\Users\Petr\AppData\Local\Temp\esupdate.exe
C:\Users\Petr\AppData\Local\Temp\FSSync.dll
C:\Users\Petr\AppData\Local\Temp\Getvlist.exe
C:\Users\Petr\AppData\Local\Temp\ikave.dll
C:\Users\Petr\AppData\Local\Temp\ipc.dll
C:\Users\Petr\AppData\Local\Temp\kave.dll
C:\Users\Petr\AppData\Local\Temp\kavvlg.dll
C:\Users\Petr\AppData\Local\Temp\libeay32.dll
C:\Users\Petr\AppData\Local\Temp\msvclnt.dll
C:\Users\Petr\AppData\Local\Temp\msvcp80.dll
C:\Users\Petr\AppData\Local\Temp\msvcr120.dll
C:\Users\Petr\AppData\Local\Temp\msvcr80.dll
C:\Users\Petr\AppData\Local\Temp\msvl64.dll
C:\Users\Petr\AppData\Local\Temp\msvlclnt.dll
C:\Users\Petr\AppData\Local\Temp\mwavdwnl.exe
C:\Users\Petr\AppData\Local\Temp\MWAVL.exe
C:\Users\Petr\AppData\Local\Temp\mwavscan.exe
C:\Users\Petr\AppData\Local\Temp\mwunzip.dll
C:\Users\Petr\AppData\Local\Temp\prLoader.dll
C:\Users\Petr\AppData\Local\Temp\red32.dll
C:\Users\Petr\AppData\Local\Temp\Reload.exe
C:\Users\Petr\AppData\Local\Temp\scan.dll
C:\Users\Petr\AppData\Local\Temp\ScanningProcess.exe
C:\Users\Petr\AppData\Local\Temp\setpriv.exe
C:\Users\Petr\AppData\Local\Temp\sqlite3.dll
C:\Users\Petr\AppData\Local\Temp\test2.exe
C:\Users\Petr\AppData\Local\Temp\trufos.dll
C:\Users\Petr\AppData\Local\Temp\unregx.exe
C:\Users\Petr\AppData\Local\Temp\viewtcp.exe
Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-08-11 22:00
==================== End of FRST.txt ============================
- Přílohy
-
- Addition.rar
- (8.39 KiB) Staženo 53 x
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\ProgramData\DP45977C.lfl
C:\ProgramData\SetStretch.VBS
C:\Users\Petr\AppData\Local\Temp
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
Task: {09FA6CE0-5934-49EC-ADB3-774318009637} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {0D2EDACF-042C-4579-B09C-B222B139C862} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4DAC7F7B-11E0-4D39-9B03-7A436CB518C7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5703D24D-E796-4626-970B-C727F955D61F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5A6C0897-83F9-4B52-98CA-76666288E0AD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8FD02D47-DB62-441A-840B-06B816F4EB1A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A8345808-8E22-48BF-A071-69109BE0E526} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {AD3A6B76-0D21-42A0-B6B7-09663DF1B04E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {BE8589CC-28BB-4FA7-AD20-EEC034859C1F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FF71D8E0-6832-46C1-8D80-2F1CF2BD4209} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-08-2016 01
Ran by Petr (16-08-2016 23:10:09) Run:1
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\ProgramData\DP45977C.lfl
C:\ProgramData\SetStretch.VBS
C:\Users\Petr\AppData\Local\Temp
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
Task: {09FA6CE0-5934-49EC-ADB3-774318009637} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {0D2EDACF-042C-4579-B09C-B222B139C862} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4DAC7F7B-11E0-4D39-9B03-7A436CB518C7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5703D24D-E796-4626-970B-C727F955D61F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5A6C0897-83F9-4B52-98CA-76666288E0AD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8FD02D47-DB62-441A-840B-06B816F4EB1A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A8345808-8E22-48BF-A071-69109BE0E526} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {AD3A6B76-0D21-42A0-B6B7-09663DF1B04E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {BE8589CC-28BB-4FA7-AD20-EEC034859C1F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FF71D8E0-6832-46C1-8D80-2F1CF2BD4209} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
End
*****************
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1119060176-3987669402-697630340-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value removed successfully
C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => not found.
RealNetworks Downloader Resolver Service => Unable to stop service.
RealNetworks Downloader Resolver Service => service removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\ProgramData\SetStretch.VBS => moved successfully
C:\Users\Petr\AppData\Local\Temp => moved successfully
C:\Windows\logo_1.exe => moved successfully
C:\Windows\RUNDL132.EXE => moved successfully
C:\Windows\VDLL.DLL => moved successfully
C:\Windows\SysWOW64\runouce.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{09FA6CE0-5934-49EC-ADB3-774318009637}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09FA6CE0-5934-49EC-ADB3-774318009637}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0D2EDACF-042C-4579-B09C-B222B139C862}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D2EDACF-042C-4579-B09C-B222B139C862}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4DAC7F7B-11E0-4D39-9B03-7A436CB518C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4DAC7F7B-11E0-4D39-9B03-7A436CB518C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5703D24D-E796-4626-970B-C727F955D61F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5703D24D-E796-4626-970B-C727F955D61F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A6C0897-83F9-4B52-98CA-76666288E0AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A6C0897-83F9-4B52-98CA-76666288E0AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FD02D47-DB62-441A-840B-06B816F4EB1A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FD02D47-DB62-441A-840B-06B816F4EB1A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8345808-8E22-48BF-A071-69109BE0E526}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8345808-8E22-48BF-A071-69109BE0E526}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AD3A6B76-0D21-42A0-B6B7-09663DF1B04E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD3A6B76-0D21-42A0-B6B7-09663DF1B04E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BE8589CC-28BB-4FA7-AD20-EEC034859C1F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE8589CC-28BB-4FA7-AD20-EEC034859C1F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF71D8E0-6832-46C1-8D80-2F1CF2BD4209}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF71D8E0-6832-46C1-8D80-2F1CF2BD4209}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
The system needed a reboot.
==== End of Fixlog 23:11:34 ====
Ran by Petr (16-08-2016 23:10:09) Run:1
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1119060176-3987669402-697630340-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => not found
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => No File
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\ProgramData\DP45977C.lfl
C:\ProgramData\SetStretch.VBS
C:\Users\Petr\AppData\Local\Temp
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
Task: {09FA6CE0-5934-49EC-ADB3-774318009637} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {0D2EDACF-042C-4579-B09C-B222B139C862} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {4DAC7F7B-11E0-4D39-9B03-7A436CB518C7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5703D24D-E796-4626-970B-C727F955D61F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5A6C0897-83F9-4B52-98CA-76666288E0AD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {8FD02D47-DB62-441A-840B-06B816F4EB1A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A8345808-8E22-48BF-A071-69109BE0E526} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {AD3A6B76-0D21-42A0-B6B7-09663DF1B04E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {BE8589CC-28BB-4FA7-AD20-EEC034859C1F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FF71D8E0-6832-46C1-8D80-2F1CF2BD4209} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
End
*****************
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1119060176-3987669402-697630340-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-1119060176-3987669402-697630340-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com => value removed successfully
C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\widevinecdmadapter.dll => not found.
RealNetworks Downloader Resolver Service => Unable to stop service.
RealNetworks Downloader Resolver Service => service removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\ProgramData\SetStretch.VBS => moved successfully
C:\Users\Petr\AppData\Local\Temp => moved successfully
C:\Windows\logo_1.exe => moved successfully
C:\Windows\RUNDL132.EXE => moved successfully
C:\Windows\VDLL.DLL => moved successfully
C:\Windows\SysWOW64\runouce.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{09FA6CE0-5934-49EC-ADB3-774318009637}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{09FA6CE0-5934-49EC-ADB3-774318009637}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0D2EDACF-042C-4579-B09C-B222B139C862}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D2EDACF-042C-4579-B09C-B222B139C862}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4DAC7F7B-11E0-4D39-9B03-7A436CB518C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4DAC7F7B-11E0-4D39-9B03-7A436CB518C7}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5703D24D-E796-4626-970B-C727F955D61F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5703D24D-E796-4626-970B-C727F955D61F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A6C0897-83F9-4B52-98CA-76666288E0AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A6C0897-83F9-4B52-98CA-76666288E0AD}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5E74B3B9-BA5B-4930-9BF1-9A7D9FB4D711}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FD02D47-DB62-441A-840B-06B816F4EB1A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FD02D47-DB62-441A-840B-06B816F4EB1A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A8345808-8E22-48BF-A071-69109BE0E526}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A8345808-8E22-48BF-A071-69109BE0E526}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AD3A6B76-0D21-42A0-B6B7-09663DF1B04E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD3A6B76-0D21-42A0-B6B7-09663DF1B04E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BE8589CC-28BB-4FA7-AD20-EEC034859C1F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE8589CC-28BB-4FA7-AD20-EEC034859C1F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF71D8E0-6832-46C1-8D80-2F1CF2BD4209}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF71D8E0-6832-46C1-8D80-2F1CF2BD4209}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully
The system needed a reboot.
==== End of Fixlog 23:11:34 ====
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
Bohužel možná trochu je to rychlejší, ale jako dřív to ještě není... Stále pomalé
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 17.08.2016
Čas skenování: 18:30
Protokol: txttt.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.08.17.09
Databáze rootkitů: v2016.08.15.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Petr
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 321748
Uplynulý čas: 23 min, 34 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 17.08.2016
Čas skenování: 18:30
Protokol: txttt.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.08.17.09
Databáze rootkitů: v2016.08.15.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Petr
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 321748
Uplynulý čas: 23 min, 34 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Toto je OK. Podívejte se do správce úloh, jak to vypadá se zatížením systému úlohami. Která systém nejvíce zatěžuje?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
Hmm tak si začínám myslet, že to možná bude hardwarová chyba... Protože když počítač dlouho nereaguje, je zaneprázdnění disku 100 procent. Procesor i paměť je využit normálně, žádné velké procento ani žádný velký běžící program. Nebo nemůže to být chyba vzniklá po aktualizaci Windows?
-
Rudy
- Site Admin
- Příspěvky: 119320
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Problém - velmi pomalý systém
Samozřejmě může a pokud máte ten problém od poslední aktualizace, potom ty aktualizace zkuste odinstalovat a uvidíte.serginho píše:......Nebo nemůže to být chyba vzniklá po aktualizaci Windows?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Problém - velmi pomalý systém
Tak po restartu asi 30 minut využití disku na 100 procent... Nyní se to normalizovalo a laptop jde použít. CrystalDiskInfo hlásí: Pozor C5 Počet podezřelých sektorů: 3704, Tady je log:
----------------------------------------------------------------------------
CrystalDiskInfo 7.0.2 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 [10.0 Build 10240] (x64)
Date : 2016/08/17 21:37:31
-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- TOSHIBA MQ01ABF050
- TSSTcorp CDDVDW SN-208FB
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) TOSHIBA MQ01ABF050 : 500,1 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) TOSHIBA MQ01ABF050
----------------------------------------------------------------------------
Model : TOSHIBA MQ01ABF050
Firmware : AM0B1J
Serial Number : 44R1CEE6T
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 6384 hod.
Power On Count : 1108 krát
Temperature : 38 C (100 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0001h [ON]
AAM Level : ----
Drive Letter : C: D:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
02 100 100 _50 000000000000 Průchodnost disku
03 100 100 __1 000000000447 Čas na roztočení ploten
04 100 100 __0 00000000879E Počet spuštění/zastavení
05 100 100 _50 000000000000 Počet přemapovaných sektorů
07 100 100 _50 000000000000 Počet chybných hledání
08 100 100 _50 000000000000 Čas potřebný na vyhledání
09 _85 _85 __0 0000000018F0 Hodin v činnosti
0A 253 100 _30 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 000000000454 Počet cyklů zapnutí zařízení
BF 100 100 __0 00000000240E Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000006 Počet vypnutí disku
C1 _80 _80 __0 000000031A60 Počet cyklů načítání/vymazání
C2 100 100 __0 002C000E0026 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000E78 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DC 100 100 __0 000000000000 Posunutí disku vůči ose
DE _86 _86 __0 00000000168A Počet hodin zalažení budoucího mechanismu magnetických hlav
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E0 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené napětím mechanických částí
E2 100 100 __0 00000000010A Celkový čas zatížení budiče magnetických hlav
F0 100 100 __1 000000000000 Čas nastavování hlaviček - v hodinách
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2034 3452 3143 4545 3654
020: 0000 4000 0000 414D 3042 314A 2020 544F 5348 4942
030: 4120 4D51 3031 4142 4630 3530 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0007 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F EF0E 0004 004C 0040
080: 01F8 0000 746B 7D09 6163 7469 BC09 6163 203F 003A
090: 003A 0001 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5000 0395
110: 7330 964D 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0080 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 CBA5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 27 00 64 64 47
020: 04 00 00 00 00 00 04 32 00 64 64 9E 87 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 32 00 55 55 F0 18 00 00 00
060: 00 00 0A 33 00 FD 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 54 04 00 00 00 00 00 BF 32 00 64 64 0E
080: 24 00 00 00 00 00 C0 32 00 64 64 06 00 00 00 00
090: 00 00 C1 32 00 50 50 60 1A 03 00 00 00 00 C2 22
0A0: 00 64 64 26 00 0E 00 2C 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 32 00 64 64 78 0E 00 00 00
0C0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 32
0D0: 00 C8 C8 00 00 00 00 00 00 00 DC 02 00 64 64 00
0E0: 00 00 00 00 00 00 DE 32 00 56 56 8A 16 00 00 00
0F0: 00 00 DF 32 00 64 64 00 00 00 00 00 00 00 E0 22
100: 00 64 64 00 00 00 00 00 00 00 E2 26 00 64 64 0A
110: 01 00 00 00 00 00 F0 01 00 64 64 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 5B
170: 03 00 01 00 02 7D 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B5
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 32 00 00 00 00 00 00 00 00 00 00 02 32
010: 00 00 00 00 00 00 00 00 00 00 03 01 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 32 00 00 00 00 00 00 00 00 00 00 07 32
040: 00 00 00 00 00 00 00 00 00 00 08 32 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 1E 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DC 00 00 00 00 00
0E0: 00 00 00 00 00 00 DE 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E0 00
100: 00 00 00 00 00 00 00 00 00 00 E2 00 00 00 00 00
110: 00 00 00 00 00 00 F0 01 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 36
Také jsem si všiml na logu Addition.txt z FRST tohoto:
System errors:
=============
Error: (08/17/2016 09:32:35 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:32:31 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:32:27 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:32:23 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:29 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:25 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:18 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070003): Microsoft Photos.
Error: (08/17/2016 09:24:57 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:24:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070003): Music Maker Jam.
Takže chyba hardwaru? Nějaká rada, co by s tím šlo dělat, nebo nezbývá než reklamace?
----------------------------------------------------------------------------
CrystalDiskInfo 7.0.2 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 10 [10.0 Build 10240] (x64)
Date : 2016/08/17 21:37:31
-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- TOSHIBA MQ01ABF050
- TSSTcorp CDDVDW SN-208FB
- Řadič prostorů úložišť [SCSI]
-- Disk List ---------------------------------------------------------------
(1) TOSHIBA MQ01ABF050 : 500,1 GB [0/0/0, pd1]
----------------------------------------------------------------------------
(1) TOSHIBA MQ01ABF050
----------------------------------------------------------------------------
Model : TOSHIBA MQ01ABF050
Firmware : AM0B1J
Serial Number : 44R1CEE6T
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 6384 hod.
Power On Count : 1108 krát
Temperature : 38 C (100 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0001h [ON]
AAM Level : ----
Drive Letter : C: D:
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _50 000000000000 Počet chyb čtení
02 100 100 _50 000000000000 Průchodnost disku
03 100 100 __1 000000000447 Čas na roztočení ploten
04 100 100 __0 00000000879E Počet spuštění/zastavení
05 100 100 _50 000000000000 Počet přemapovaných sektorů
07 100 100 _50 000000000000 Počet chybných hledání
08 100 100 _50 000000000000 Čas potřebný na vyhledání
09 _85 _85 __0 0000000018F0 Hodin v činnosti
0A 253 100 _30 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 __0 000000000454 Počet cyklů zapnutí zařízení
BF 100 100 __0 00000000240E Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000006 Počet vypnutí disku
C1 _80 _80 __0 000000031A60 Počet cyklů načítání/vymazání
C2 100 100 __0 002C000E0026 Teplota
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000E78 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DC 100 100 __0 000000000000 Posunutí disku vůči ose
DE _86 _86 __0 00000000168A Počet hodin zalažení budoucího mechanismu magnetických hlav
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E0 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené napětím mechanických částí
E2 100 100 __0 00000000010A Celkový čas zatížení budiče magnetických hlav
F0 100 100 __1 000000000000 Čas nastavování hlaviček - v hodinách
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2034 3452 3143 4545 3654
020: 0000 4000 0000 414D 3042 314A 2020 544F 5348 4942
030: 4120 4D51 3031 4142 4630 3530 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0007 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F EF0E 0004 004C 0040
080: 01F8 0000 746B 7D09 6163 7469 BC09 6163 203F 003A
090: 003A 0001 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5000 0395
110: 7330 964D 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0080 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 CBA5
-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 0B 00 64 64 00 00 00 00 00 00 00 02 05
010: 00 64 64 00 00 00 00 00 00 00 03 27 00 64 64 47
020: 04 00 00 00 00 00 04 32 00 64 64 9E 87 00 00 00
030: 00 00 05 33 00 64 64 00 00 00 00 00 00 00 07 0B
040: 00 64 64 00 00 00 00 00 00 00 08 05 00 64 64 00
050: 00 00 00 00 00 00 09 32 00 55 55 F0 18 00 00 00
060: 00 00 0A 33 00 FD 64 00 00 00 00 00 00 00 0C 32
070: 00 64 64 54 04 00 00 00 00 00 BF 32 00 64 64 0E
080: 24 00 00 00 00 00 C0 32 00 64 64 06 00 00 00 00
090: 00 00 C1 32 00 50 50 60 1A 03 00 00 00 00 C2 22
0A0: 00 64 64 26 00 0E 00 2C 00 00 C4 32 00 64 64 00
0B0: 00 00 00 00 00 00 C5 32 00 64 64 78 0E 00 00 00
0C0: 00 00 C6 30 00 64 64 00 00 00 00 00 00 00 C7 32
0D0: 00 C8 C8 00 00 00 00 00 00 00 DC 02 00 64 64 00
0E0: 00 00 00 00 00 00 DE 32 00 56 56 8A 16 00 00 00
0F0: 00 00 DF 32 00 64 64 00 00 00 00 00 00 00 E0 22
100: 00 64 64 00 00 00 00 00 00 00 E2 26 00 64 64 0A
110: 01 00 00 00 00 00 F0 01 00 64 64 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 5B
170: 03 00 01 00 02 7D 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B5
-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 32 00 00 00 00 00 00 00 00 00 00 02 32
010: 00 00 00 00 00 00 00 00 00 00 03 01 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 32 00 00 00 00 00 00 00 00 00 00 07 32
040: 00 00 00 00 00 00 00 00 00 00 08 32 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 1E 00 00 00 00 00 00 00 00 00 00 0C 00
070: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
080: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
090: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 DC 00 00 00 00 00
0E0: 00 00 00 00 00 00 DE 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E0 00
100: 00 00 00 00 00 00 00 00 00 00 E2 00 00 00 00 00
110: 00 00 00 00 00 00 F0 01 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 36
Také jsem si všiml na logu Addition.txt z FRST tohoto:
System errors:
=============
Error: (08/17/2016 09:32:35 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:32:31 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:32:27 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:32:23 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:29 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:25 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:18 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:25:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070003): Microsoft Photos.
Error: (08/17/2016 09:24:57 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (08/17/2016 09:24:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070003): Music Maker Jam.
Takže chyba hardwaru? Nějaká rada, co by s tím šlo dělat, nebo nezbývá než reklamace?
Přispějete na provoz fóra?