Dobrý večer
Chcel by som Vás požiadať o pomoc pri riešení problému.
Vyskakujúce reklamy a porno stránky. Podozrenie na nejakú háveď.
Prikladám log.
Logfile of random's system information tool 1.14 (written by random/random)
Run by Lucia at 2016-12-20 21:24:47
Microsoft Windows 10 Pro
System drive C: has 78 GB (34%) free of 228 GB
Total RAM: 2940 MB (61% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:24:53, on 20. 12. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\svchost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\AVG Web TuneUp\vprot.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe
C:\Program Files\PDF24\pdf24.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Lucia\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\DllHost.exe
C:\Windows\System32\SystemSettingsBroker.exe
C:\Program Files\AVAST Software\Avast\avastUi.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
c:\windows\system32\inetsrv\w3wp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Windows\System32\smartscreen.exe
C:\Users\Lucia\Downloads\RSIT.exe
C:\Program Files\trend micro\Lucia_RSIT.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={447FF09D ... 2015-04-30 21:52:19&v=4.2.9.726&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [PDFPrint] "C:\Program Files\PDF24\pdf24.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Lucia\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'DefaultAppPool')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Office14\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: vToolbarUpdater40.2.6 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.6\ToolbarUpdater.exe
O23 - Service: vToolbarUpdater40.3.6 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 6745 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\AutoKMS.job - C:\Windows\AutoKMS.exe
C:\WINDOWS\tasks\AutoKMSDaily.job - C:\WINDOWS\AutoKMS.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\AutoKMS - C:\Windows\AutoKMS.exe
C:\WINDOWS\system32\tasks\AutoKMSDaily - C:\WINDOWS\AutoKMS.exe
C:\WINDOWS\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\system32\tasks\CheckControllerUpdatesUA - "%PROGRAMFILES%\Smart Application Controller\smappscontroller.exe" -checkfornewversion
C:\WINDOWS\system32\tasks\CreateChoiceProcessTask - C:\Windows\System32\browserchoice.exe /launch
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task - C:\Users\Lucia\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-2821662451-3197398895-2393341044-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe Reboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\UpgradeSubscription.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\WINDOWS\System32\lpksetup.exe -v
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\WINDOWS\System32\mcbuilder.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Google Chrome=========
C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Google Docs 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Google Drive 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension chfdnecihphmhljaaejmgoiahnihplgn 0 AVG Web TuneUp 4.2.5.169
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Google Search 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Google Docs Offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 0 Avast Online Security 12.0.163
Extension ikokhdooehhahhjjbofpeeclglldimoc 1 Tab Splitter 0.9.0
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension lifbcibllhkdhoafpjfnlhfpfgnpldfl 2 Skype Click to Call 7.4.0.9058
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Chrome Web Store Payments 1.0.0.0
Extension ojhbgcchcbdjdenibfmjofobklkkhofc 1 Simple EPUB Reader 4.3
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage: http://www.google.com/
default_search_provider.search_url:
C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll [2016-10-21 2260040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-01-16 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27 193136]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-08-14 1348904]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2009-08-21 476512]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2009-03-09 55160]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-07-28 460088]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2009-08-05 738616]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-01-21 91520]
"vProt"=C:\Program Files\AVG Web TuneUp\vprot.exe [2016-10-21 2180680]
"PDFPrint"=C:\Program Files\PDF24\pdf24.exe [2016-07-05 210432]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-12-20 9103976]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-09-17 57864728]
"OneDrive"=C:\Users\Lucia\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-12-14 1517280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\55.0.2883.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-12-20 21:24:47 ----D---- C:\rsit
2016-12-20 21:24:47 ----D---- C:\Program Files\trend micro
2016-12-20 21:06:17 ----D---- C:\Users\Lucia\AppData\Roaming\AVAST Software
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswvmm.sys
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2016-12-20 21:05:26 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2016-12-20 21:05:21 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2016-12-20 21:05:10 ----A---- C:\WINDOWS\ucrtbase.dll
2016-12-20 21:05:10 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-12-20 21:04:58 ----A---- C:\WINDOWS\avastSS.scr
2016-12-20 21:02:43 ----D---- C:\Program Files\AVAST Software
2016-12-20 21:01:41 ----D---- C:\ProgramData\AVAST Software
2016-12-15 12:11:55 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2016-12-15 12:11:54 ----A---- C:\WINDOWS\system32\jscript9.dll
2016-12-15 12:11:53 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-12-15 12:11:48 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-12-15 12:11:46 ----A---- C:\WINDOWS\system32\indexeddbserver.dll
2016-12-15 12:11:45 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-12-15 12:11:44 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-12-15 12:11:44 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-12-15 12:11:42 ----A---- C:\WINDOWS\system32\msi.dll
2016-12-15 12:11:41 ----A---- C:\WINDOWS\system32\winresume.exe
2016-12-15 12:11:41 ----A---- C:\WINDOWS\system32\sspicli.dll
2016-12-15 12:11:41 ----A---- C:\WINDOWS\system32\InputService.dll
2016-12-15 12:11:41 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-12-15 12:11:41 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2016-12-15 12:11:41 ----A---- C:\WINDOWS\system32\bcrypt.dll
2016-12-15 12:11:40 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2016-12-15 12:11:40 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-15 12:11:40 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-12-15 12:11:40 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-15 12:11:40 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-15 12:11:39 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-15 12:11:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-12-15 12:11:38 ----A---- C:\WINDOWS\system32\ShareHost.dll
2016-12-15 12:11:38 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-15 12:11:38 ----A---- C:\WINDOWS\system32\cdp.dll
2016-12-15 12:11:37 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-15 12:11:36 ----A---- C:\WINDOWS\system32\appraiser.dll
2016-12-15 12:11:36 ----A---- C:\WINDOWS\system32\acmigration.dll
2016-12-15 12:11:34 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-12-15 12:11:33 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-12-15 12:11:33 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-12-15 12:11:33 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2016-12-15 12:11:32 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\win32k.sys
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2016-12-15 12:11:31 ----A---- C:\WINDOWS\system32\cdd.dll
2016-12-15 12:11:30 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-15 12:11:30 ----A---- C:\WINDOWS\system32\user32.dll
2016-12-15 12:11:29 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-12-15 12:11:29 ----A---- C:\WINDOWS\system32\gdi32full.dll
2016-12-15 12:11:29 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2016-12-15 12:11:29 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-15 12:11:29 ----A---- C:\WINDOWS\system32\aadtb.dll
2016-12-15 12:11:29 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2016-12-15 12:11:17 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-15 10:44:30 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-15 10:44:29 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-15 10:44:28 ----A---- C:\WINDOWS\system32\msdtctm.dll
2016-12-15 10:44:28 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-09 14:25:24 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-12-09 14:25:23 ----A---- C:\WINDOWS\system32\ole32.dll
2016-12-09 14:25:23 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-12-09 14:25:23 ----A---- C:\WINDOWS\system32\d3d11.dll
2016-12-09 14:25:23 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 14:25:22 ----A---- C:\WINDOWS\system32\usercpl.dll
2016-12-09 14:25:22 ----A---- C:\WINDOWS\system32\msctf.dll
2016-12-09 14:25:21 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 14:25:21 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 14:25:20 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 14:25:20 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 14:25:20 ----A---- C:\WINDOWS\system32\dxgi.dll
2016-12-09 14:25:20 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 14:25:19 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 14:25:19 ----A---- C:\WINDOWS\system32\umpoext.dll
2016-12-09 14:25:19 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 14:25:19 ----A---- C:\WINDOWS\system32\mfsvr.dll
2016-12-09 14:25:18 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-09 14:25:18 ----A---- C:\WINDOWS\system32\mfcore.dll
2016-12-09 14:25:18 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2016-12-09 14:25:18 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2016-12-09 14:25:17 ----A---- C:\WINDOWS\system32\mfplat.dll
2016-12-09 14:25:17 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 14:25:16 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 14:25:16 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-12-09 14:25:15 ----A---- C:\WINDOWS\system32\wininet.dll
2016-12-09 14:25:15 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 14:25:15 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 14:25:14 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-12-09 14:25:14 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-12-09 14:25:13 ----A---- C:\WINDOWS\system32\windows.storage.dll
2016-12-09 14:25:13 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 14:25:12 ----A---- C:\WINDOWS\system32\mos.dll
2016-12-09 14:25:12 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 14:25:11 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 14:25:11 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 14:25:11 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-12-09 14:25:10 ----A---- C:\WINDOWS\system32\wpnprv.dll
2016-12-09 14:25:10 ----A---- C:\WINDOWS\system32\rasmans.dll
2016-12-09 14:25:10 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-12-09 14:25:10 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-12-09 14:25:09 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 14:25:09 ----A---- C:\WINDOWS\system32\rascustom.dll
2016-12-09 14:25:09 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 14:25:09 ----A---- C:\WINDOWS\system32\efswrt.dll
2016-12-09 14:25:09 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\MapRouter.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\domgmt.dll
2016-12-09 14:25:08 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 14:25:07 ----A---- C:\WINDOWS\system32\moshost.dll
2016-12-09 14:25:07 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 14:25:07 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\vpnike.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\sppnp.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\rasapi32.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 14:25:06 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-09 14:25:05 ----A---- C:\WINDOWS\system32\zipfldr.dll
2016-12-09 14:25:05 ----A---- C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 14:25:05 ----A---- C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 14:25:05 ----A---- C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 14:25:03 ----A---- C:\WINDOWS\system32\shell32.dll
2016-12-09 14:25:02 ----A---- C:\WINDOWS\system32\wkssvc.dll
2016-12-09 14:25:02 ----A---- C:\WINDOWS\system32\WinTypes.dll
2016-12-09 14:25:02 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2016-12-09 14:25:02 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2016-12-09 14:25:01 ----A---- C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 14:25:00 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-12-09 14:24:57 ----A---- C:\WINDOWS\system32\combase.dll
2016-12-09 14:24:56 ----A---- C:\WINDOWS\system32\AppCapture.dll
2016-12-09 14:24:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 14:24:55 ----A---- C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 14:24:49 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 14:24:48 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 14:24:42 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\wuuhext.dll
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\wscsvc.dll
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\setupugc.exe
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\services.exe
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\lsm.dll
2016-12-09 14:24:40 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\wsecedit.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\wscapi.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\wincorlib.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\ntshrui.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\mtxclu.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 14:24:39 ----A---- C:\WINDOWS\system32\dialserver.dll
2016-12-09 14:24:38 ----A---- C:\WINDOWS\system32\xolehlp.dll
2016-12-09 14:24:38 ----A---- C:\WINDOWS\system32\wscinterop.dll
2016-12-09 14:24:38 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 14:24:38 ----A---- C:\WINDOWS\system32\mspaint.exe
2016-12-09 14:24:38 ----A---- C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 14:24:37 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 14:24:36 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 14:24:36 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-12-09 14:24:36 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-09 14:24:35 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 14:24:35 ----A---- C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 14:24:35 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-09 14:24:35 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-12-09 14:24:34 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 14:24:34 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-12-09 14:24:33 ----A---- C:\WINDOWS\system32\wpncore.dll
2016-12-09 14:24:33 ----A---- C:\WINDOWS\system32\LogonController.dll
2016-12-09 14:24:33 ----A---- C:\WINDOWS\system32\gameux.dll
2016-12-09 14:24:32 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 14:24:32 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 14:24:32 ----A---- C:\WINDOWS\explorer.exe
2016-12-09 14:24:31 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 14:24:31 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-09 14:24:30 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 14:24:29 ----A---- C:\WINDOWS\system32\twinui.dll
2016-12-09 14:24:29 ----A---- C:\WINDOWS\system32\netshell.dll
2016-12-09 14:24:29 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 14:24:27 ----A---- C:\WINDOWS\system32\ntdll.dll
2016-12-09 14:24:27 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2016-12-09 14:24:27 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2016-12-09 14:24:27 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2016-12-09 14:24:26 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 14:24:26 ----A---- C:\WINDOWS\system32\AudioSes.dll
2016-12-09 14:24:26 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-12-09 14:24:25 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 14:24:22 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 14:24:22 ----A---- C:\WINDOWS\system32\migisol.dll
2016-12-09 14:24:22 ----A---- C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 14:24:21 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 14:24:18 ----A---- C:\WINDOWS\system32\sendmail.dll
2016-12-09 14:24:18 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 14:24:18 ----A---- C:\WINDOWS\system32\lpremove.exe
2016-12-09 14:24:18 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 14:24:18 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2016-12-09 14:24:18 ----A---- C:\WINDOWS\system32\aitstatic.exe
2016-12-09 14:24:17 ----A---- C:\WINDOWS\system32\sppwinob.dll
2016-12-09 14:24:17 ----A---- C:\WINDOWS\system32\sppobjs.dll
2016-12-09 14:24:17 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 14:24:16 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 14:24:16 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-12-09 14:24:16 ----A---- C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 14:24:16 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 14:24:15 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 14:24:15 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 14:24:15 ----A---- C:\WINDOWS\system32\apprepapi.dll
2016-12-09 14:24:14 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 14:24:14 ----A---- C:\WINDOWS\system32\KernelBase.dll
2016-12-09 14:24:14 ----A---- C:\WINDOWS\system32\apprepsync.dll
2016-12-09 14:24:13 ----A---- C:\WINDOWS\system32\winlogon.exe
2016-12-09 14:24:12 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 14:24:12 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 14:24:12 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2016-12-09 14:24:12 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2016-11-22 10:40:32 ----A---- C:\WINDOWS\Reimage.ini
======List of files/folders modified in the last 1 month======
2016-12-20 21:24:47 ----RD---- C:\Program Files
2016-12-20 21:18:37 ----D---- C:\Users\Lucia\AppData\Roaming\ScreenMaker2
2016-12-20 21:18:06 ----D---- C:\WINDOWS\system32\drivers
2016-12-20 21:16:57 ----D---- C:\WINDOWS\Temp
2016-12-20 21:07:13 ----HD---- C:\ProgramData
2016-12-20 21:07:08 ----D---- C:\WINDOWS\system32\Tasks
2016-12-20 21:06:27 ----D---- C:\WINDOWS\Prefetch
2016-12-20 21:05:13 ----D---- C:\WINDOWS\system32\config
2016-12-20 21:05:12 ----D---- C:\WINDOWS\WinSxS
2016-12-20 21:05:10 ----D---- C:\WINDOWS\System32
2016-12-20 21:05:10 ----D---- C:\Windows
2016-12-20 21:00:47 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-20 20:56:26 ----D---- C:\Program Files\AVG
2016-12-20 20:56:25 ----AD---- C:\ProgramData\Avg
2016-12-20 20:56:22 ----D---- C:\WINDOWS\Tasks
2016-12-20 20:56:21 ----SHD---- C:\WINDOWS\Installer
2016-12-20 20:55:54 ----A---- C:\WINDOWS\KMSEmulator.exe
2016-12-20 20:54:23 ----D---- C:\ProgramData\MFAData
2016-12-20 20:54:23 ----D---- C:\Program Files\Common Files
2016-12-20 20:54:00 ----D---- C:\WINDOWS\system32\sru
2016-12-20 20:51:25 ----SHD---- C:\System Volume Information
2016-12-20 20:41:49 ----D---- C:\WINDOWS\system32\SleepStudy
2016-12-20 20:36:42 ----RD---- C:\WINDOWS\Microsoft.NET
2016-12-20 20:33:27 ----RD---- C:\WINDOWS\assembly
2016-12-20 20:19:55 ----D---- C:\WINDOWS\AppReadiness
2016-12-20 20:19:54 ----HD---- C:\Program Files\WindowsApps
2016-12-20 20:18:35 ----D---- C:\WINDOWS\LiveKernelReports
2016-12-20 20:18:18 ----D---- C:\Users\Lucia\AppData\Roaming\Skype
2016-12-20 20:16:03 ----D---- C:\WINDOWS\system32\WDI
2016-12-20 20:14:56 ----D---- C:\WINDOWS\INF
2016-12-16 21:23:53 ----D---- C:\ProgramData\Microsoft Help
2016-12-16 21:16:11 ----D---- C:\WINDOWS\system32\en-US
2016-12-16 21:16:11 ----D---- C:\WINDOWS\ShellExperiences
2016-12-16 21:16:11 ----D---- C:\WINDOWS\apppatch
2016-12-16 21:16:10 ----D---- C:\WINDOWS\system32\DriverStore
2016-12-16 21:16:10 ----D---- C:\WINDOWS\system32\Boot
2016-12-16 12:12:48 ----D---- C:\WINDOWS\CbsTemp
2016-12-14 21:15:52 ----D---- C:\WINDOWS\system32\catroot2
2016-12-14 19:57:39 ----D---- C:\WINDOWS\system32\MRT
2016-12-14 19:54:52 ----AC---- C:\WINDOWS\system32\MRT.exe
2016-12-12 00:56:25 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2016-12-10 17:15:35 ----D---- C:\WINDOWS\rescache
2016-12-09 20:05:15 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 20:05:15 ----D---- C:\WINDOWS\system32\wbem
2016-12-09 20:05:15 ----D---- C:\WINDOWS\system32\Sysprep
2016-12-09 20:05:15 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2016-12-09 20:05:14 ----D---- C:\WINDOWS\system32\oobe
2016-12-09 20:05:14 ----D---- C:\WINDOWS\system32\Dism
2016-12-09 20:05:13 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2016-12-09 20:05:13 ----D---- C:\WINDOWS\servicing
2016-12-09 20:05:13 ----D---- C:\WINDOWS\bcastdvr
2016-12-09 20:05:13 ----D---- C:\Program Files\Internet Explorer
2016-12-04 19:11:27 ----RD---- C:\Users
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-12-20 224752]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 42336]
R0 TVALZ;@oem1.inf,%TVALZ.SvcDesc%;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\WINDOWS\System32\drivers\TVALZ_O.SYS [2015-07-25 35936]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-12-20 91232]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-12-20 735488]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-12-20 433768]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-12-20 92256]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-12-20 118664]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 58368]
R2 rimmptsk;rimmptsk; C:\WINDOWS\System32\drivers\rimmptsk.sys [2009-09-07 48128]
R2 rimsptsk;rimsptsk; C:\WINDOWS\System32\drivers\rimsptsk.sys [2009-09-15 44544]
R2 rismxdp;@oem19.inf,%DiskServiceDesc%;Ricoh xD-Picture Card Driver; C:\WINDOWS\System32\drivers\rixdptsk.sys [2009-09-15 38400]
R3 AgereSoftModem;@mdmagrs.inf,%FullProductName%;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2016-07-16 1035776]
R3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-12-20 34008]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-23 93696]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 102912]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-23 61952]
R3 FwLnk;@oem3.inf,%DiskServiceDesc%;FwLnk Driver; C:\WINDOWS\System32\drivers\FwLnk.sys [2006-11-19 7168]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2016-09-23 130560]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 142848]
R3 rt640x86;@rt640x86.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2016-07-16 494080]
R3 RTL8187B;@net8187bv32.inf,%RTL8187B.DeviceDesc.DispName%;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter; C:\WINDOWS\System32\drivers\rtl8187B.sys [2016-07-16 381440]
R3 SynTP;@oem2.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2008-08-14 203312]
R3 Thotkey;@oem8.inf,%Thotkey%;Toshiba Hotkey Driver; C:\WINDOWS\System32\drivers\Thotkey.sys [2015-12-31 42088]
R3 tosrfec;@oem6.inf,%busenum.SVCDESC%;Bluetooth ACPI; C:\WINDOWS\System32\drivers\tosrfec.sys [2015-07-25 31160]
S0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-12-20 60424]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 56672]
S2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2016-07-16 9216]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 12800]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 12288]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2016-09-15 94560]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2016-07-16 118112]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2016-07-16 111456]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 755200]
S3 dg_ssudbus;@oem10.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 109184]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2016-07-16 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2016-07-16 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 30208]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 94720]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2016-07-16 159584]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 62976]
S3 ssudmdm;@oem4.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 147072]
S3 ssudserd;@oem28.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudserd.sys [2016-09-05 147072]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2016-07-16 91648]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2016-07-16 76800]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2016-07-16 36192]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\apphostsvc.dll
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-12-20 197128]
R2 CDPUserSvc_2290c;CDPUserSvc_2290c; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2016-09-23 24576]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
R2 OneSyncSvc_2290c;Sync Host_2290c; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2009-08-21 464224]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2016-07-16 136360]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-13 194032]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_2290c;MessagingService_2290c; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PimIndexMaintenanceSvc_2290c;Contact Data_2290c; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2016-09-15 1887272]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2016-09-15 614752]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2016-07-16 47280]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
S4 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\WINDOWS\system32\AgentService.exe [2016-07-16 858624]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
reklamy a porno
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: reklamy a porno
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: reklamy a porno
# AdwCleaner v6.041 - Logfile created 21/12/2016 at 17:17:48
# Updated on 16/12/2016 by Malwarebytes
# Database : 2016-12-21.1 [Server]
# Operating System : Windows 10 Pro (X86)
# Username : Lucia - LUCIA-PC
# Running from : C:\Users\Lucia\Desktop\adwcleaner_6.041.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
[-] Service deleted: vToolbarUpdater40.2.6
[-] Service deleted: vToolbarUpdater40.3.6
[-] Service deleted: WtuSystemSupport
***** [ Folders ] *****
[-] Folder deleted: C:\ProgramData\Avg_Update_0816tb2
[-] Folder deleted: C:\Users\Lucia\AppData\Local\avg web tuneup
[-] Folder deleted: C:\Users\Lucia\AppData\Local\Host Service
[-] Folder deleted: C:\Users\Lucia\AppData\LocalLow\avg web tuneup
[-] Folder deleted: C:\Users\Lucia\AppData\Roaming\SSN
[-] Folder deleted: C:\Users\Lucia\AppData\Roaming\SpringFiles
[#] Folder deleted on reboot: C:\Users\Lucia\AppData\Roaming\ssn
[-] Folder deleted: C:\Users\Lucia\AppData\Roaming\ScreenMaker2
[-] Folder deleted: C:\ProgramData\AVG Secure Search
[-] Folder deleted: C:\ProgramData\AVG Security Toolbar
[-] Folder deleted: C:\ProgramData\avg web tuneup
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Secure Search
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Security Toolbar
[#] Folder deleted on reboot: C:\ProgramData\Application Data\avg web tuneup
[-] Folder deleted: C:\ProgramData\Microsoft\Windows\Start Menu\SrpnFiles
[-] Folder deleted: C:\Program Files\avg web tuneup
[-] Folder deleted: C:\Program Files\SrpnFiles
[-] Folder deleted: C:\Program Files\Common Files\AVG Secure Search
[#] Folder deleted on reboot: C:\Users\Lucia\AppData\Roaming\ssn
[-] Folder deleted: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Files ] *****
[-] File deleted: C:\Users\Lucia\Desktop\ScreenMaker2.lnk
[-] File deleted: C:\Users\Public\Desktop\SrpnFiles.lnk
[-] File deleted: C:\WINDOWS\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
[-] Key deleted: HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Reimage
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\ssn
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\SrpnFiles
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\SSMaker2
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\ssn
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\SrpnFiles
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\ScreenMaker2
[#] Key deleted on reboot: HKCU\Software\Reimage
[#] Key deleted on reboot: HKCU\Software\ssn
[#] Key deleted on reboot: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Key deleted on reboot: HKCU\Software\SrpnFiles
[#] Key deleted on reboot: HKCU\Software\SSMaker2
[-] Key deleted: HKLM\SOFTWARE\AVG Secure Search
[-] Key deleted: HKLM\SOFTWARE\Reimage
[-] Key deleted: HKLM\SOFTWARE\AVG Tuneup
[-] Key deleted: HKLM\SOFTWARE\SrpnFiles
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\ssn
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SrpnFiles
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\ScreenMaker2
[-] Data restored: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data restored: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Key deleted on reboot: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akcniceny.cz
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.akcniceny.cz
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [vProt]
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key deleted: HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Web browsers ] *****
[-] [C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: mobi-to-pdf-converter.en.softonic.com
[-] [C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: chfdnecihphmhljaaejmgoiahnihplgn
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [8888 Bytes] - [21/12/2016 17:17:48]
C:\AdwCleaner\AdwCleaner[S0].txt - [8647 Bytes] - [21/12/2016 17:16:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [9034 Bytes] ##########
# Updated on 16/12/2016 by Malwarebytes
# Database : 2016-12-21.1 [Server]
# Operating System : Windows 10 Pro (X86)
# Username : Lucia - LUCIA-PC
# Running from : C:\Users\Lucia\Desktop\adwcleaner_6.041.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
[-] Service deleted: vToolbarUpdater40.2.6
[-] Service deleted: vToolbarUpdater40.3.6
[-] Service deleted: WtuSystemSupport
***** [ Folders ] *****
[-] Folder deleted: C:\ProgramData\Avg_Update_0816tb2
[-] Folder deleted: C:\Users\Lucia\AppData\Local\avg web tuneup
[-] Folder deleted: C:\Users\Lucia\AppData\Local\Host Service
[-] Folder deleted: C:\Users\Lucia\AppData\LocalLow\avg web tuneup
[-] Folder deleted: C:\Users\Lucia\AppData\Roaming\SSN
[-] Folder deleted: C:\Users\Lucia\AppData\Roaming\SpringFiles
[#] Folder deleted on reboot: C:\Users\Lucia\AppData\Roaming\ssn
[-] Folder deleted: C:\Users\Lucia\AppData\Roaming\ScreenMaker2
[-] Folder deleted: C:\ProgramData\AVG Secure Search
[-] Folder deleted: C:\ProgramData\AVG Security Toolbar
[-] Folder deleted: C:\ProgramData\avg web tuneup
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Secure Search
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Security Toolbar
[#] Folder deleted on reboot: C:\ProgramData\Application Data\avg web tuneup
[-] Folder deleted: C:\ProgramData\Microsoft\Windows\Start Menu\SrpnFiles
[-] Folder deleted: C:\Program Files\avg web tuneup
[-] Folder deleted: C:\Program Files\SrpnFiles
[-] Folder deleted: C:\Program Files\Common Files\AVG Secure Search
[#] Folder deleted on reboot: C:\Users\Lucia\AppData\Roaming\ssn
[-] Folder deleted: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Files ] *****
[-] File deleted: C:\Users\Lucia\Desktop\ScreenMaker2.lnk
[-] File deleted: C:\Users\Public\Desktop\SrpnFiles.lnk
[-] File deleted: C:\WINDOWS\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Key deleted: HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine
[-] Key deleted: HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
[-] Key deleted: HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Reimage
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\ssn
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\SrpnFiles
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\SSMaker2
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\ssn
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\SrpnFiles
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\ScreenMaker2
[#] Key deleted on reboot: HKCU\Software\Reimage
[#] Key deleted on reboot: HKCU\Software\ssn
[#] Key deleted on reboot: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Key deleted on reboot: HKCU\Software\SrpnFiles
[#] Key deleted on reboot: HKCU\Software\SSMaker2
[-] Key deleted: HKLM\SOFTWARE\AVG Secure Search
[-] Key deleted: HKLM\SOFTWARE\Reimage
[-] Key deleted: HKLM\SOFTWARE\AVG Tuneup
[-] Key deleted: HKLM\SOFTWARE\SrpnFiles
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\ssn
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SrpnFiles
[#] Key deleted on reboot: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\ScreenMaker2
[-] Data restored: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key deleted: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data restored: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[#] Key deleted on reboot: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\akcniceny.cz
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mysearch.avg.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.akcniceny.cz
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [vProt]
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key deleted: HKCU\Software\Google\Chrome\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
***** [ Web browsers ] *****
[-] [C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: mobi-to-pdf-converter.en.softonic.com
[-] [C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: chfdnecihphmhljaaejmgoiahnihplgn
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [8888 Bytes] - [21/12/2016 17:17:48]
C:\AdwCleaner\AdwCleaner[S0].txt - [8647 Bytes] - [21/12/2016 17:16:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [9034 Bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: reklamy a porno
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: reklamy a porno
Chod PC sa zrýchlil. Zatiaľ bez reklám a bez porna. Vyzerá to dobre.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2016
Ran by Lucia (administrator) on LUCIA-PC (21-12-2016 19:09:20)
Running from C:\Users\Lucia\Desktop
Loaded Profiles: Lucia (Available Profiles: Lucia & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1607 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16112.10211.0_x86__8wekyb3d8bbwe\Music.UI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [476512 2009-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [55160 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [460088 2009-07-28] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [738616 2009-08-05] (TOSHIBA Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-12-20] (AVAST Software)
HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [57864728 2015-09-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\...\MountPoints2: {898000f5-bd1c-11e6-9289-00037a9b2e48} - "E:\Lenovo_Suite.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-12-20] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a2ab41b8-f6af-416b-9151-6ff441e488ff}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000 -> {0943B49E-208A-4F3D-97A3-137E45FA487D} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-12-20]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Users\Lucia\Desktop\VLC\npvlc.dll [No File]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default [2016-12-21]
CHR Extension: (Google Docs) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-09]
CHR Extension: (Google Drive) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Google Search) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Docs Offline) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-20]
CHR Extension: (Tab Splitter) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikokhdooehhahhjjbofpeeclglldimoc [2016-11-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-08]
CHR Extension: (Simple EPUB Reader) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2016-06-10]
CHR Extension: (Gmail) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-12-20] (AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34008 2016-12-20] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [92256 2016-12-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [91232 2016-12-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [60424 2016-12-20] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [735488 2016-12-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [433768 2016-12-20] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [118664 2016-12-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224752 2016-12-20] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
R3 RTL8187B; C:\WINDOWS\System32\drivers\rtl8187B.sys [381440 2016-07-16] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-31] (Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-21 19:09 - 2016-12-21 19:09 - 00011576 _____ C:\Users\Lucia\Desktop\FRST.txt
2016-12-21 19:09 - 2016-12-21 19:09 - 00000000 ____D C:\FRST
2016-12-21 19:02 - 2016-12-21 19:08 - 01762304 _____ (Farbar) C:\Users\Lucia\Desktop\FRST.exe
2016-12-21 17:14 - 2016-12-21 17:17 - 00000000 ____D C:\AdwCleaner
2016-12-21 17:14 - 2016-12-21 17:14 - 03977168 _____ C:\Users\Lucia\Desktop\adwcleaner_6.041.exe
2016-12-20 21:24 - 2016-12-20 21:25 - 00000000 ____D C:\rsit
2016-12-20 21:24 - 2016-12-20 21:24 - 01201664 _____ C:\Users\Lucia\Downloads\RSIT.exe
2016-12-20 21:24 - 2016-12-20 21:24 - 00000000 ____D C:\Program Files\trend micro
2016-12-20 21:06 - 2016-12-20 21:06 - 00002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-12-20 21:06 - 2016-12-20 21:06 - 00002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-12-20 21:06 - 2016-12-20 21:06 - 00000000 ____D C:\Users\Lucia\AppData\Roaming\AVAST Software
2016-12-20 21:05 - 2016-12-20 21:05 - 00735488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00433768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00224752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00118664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00092256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00091232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00060424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00039832 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00034008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-12-20 21:05 - 2016-12-20 21:04 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2016-12-20 21:05 - 2016-12-20 21:04 - 00319760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-12-20 21:04 - 2016-12-20 21:04 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-12-20 21:02 - 2016-12-20 21:02 - 00000000 ____D C:\Program Files\AVAST Software
2016-12-20 21:01 - 2016-12-20 21:01 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-20 21:00 - 2016-12-20 21:01 - 06334848 _____ (AVAST Software) C:\Users\Lucia\Downloads\avast_free_antivirus_setup_online.exe
2016-12-16 20:01 - 2016-12-16 20:03 - 01240606 _____ C:\Users\Lucia\Downloads\King_of_Hearts_-_L.pdf
2016-12-16 19:58 - 2016-12-16 19:58 - 02011426 _____ C:\Users\Lucia\Downloads\L.H. Cosway - Hearts series (4 Books).zip
2016-12-15 12:11 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-15 12:11 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-15 12:11 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-15 12:11 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-15 12:11 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-15 12:11 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-15 12:11 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-15 12:11 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-15 12:11 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-15 12:11 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-15 12:11 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-15 12:11 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-15 12:11 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-15 12:11 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-15 12:11 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-15 12:11 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-15 12:11 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-15 12:11 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-15 12:11 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-15 12:11 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-15 12:11 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-15 12:11 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-15 12:11 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-15 12:11 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-15 12:11 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-12-15 12:11 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-12-15 12:11 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-15 12:11 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-15 12:11 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-15 12:11 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-15 12:11 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-15 12:11 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-15 12:11 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-15 12:11 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-15 12:11 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-15 12:11 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-15 12:11 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-15 12:11 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-15 12:11 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-15 12:11 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-15 12:11 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-15 12:11 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-15 12:11 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-15 12:11 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-15 12:11 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-15 12:11 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-15 12:11 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-15 12:11 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-15 12:11 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-15 12:11 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-15 12:11 - 2016-09-15 17:53 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-15 10:44 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-15 10:44 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-15 10:44 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-15 10:44 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-14 12:26 - 2016-12-14 12:29 - 01239289 _____ C:\Users\Lucia\Downloads\Beauty_and_the_Mustache_-_Penny_Reid (1).pdf
2016-12-13 22:58 - 2016-12-13 22:58 - 01239289 _____ C:\Users\Lucia\Downloads\Beauty_and_the_Mustache_-_Penny_Reid.pdf
2016-12-13 22:49 - 2016-12-13 22:53 - 01279817 _____ C:\Users\Lucia\Downloads\Love_Hacked_-_Penny_Reid.pdf
2016-12-09 14:25 - 2016-11-11 09:07 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 14:25 - 2016-11-11 08:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 14:25 - 2016-11-11 08:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 14:25 - 2016-11-11 08:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-09 14:25 - 2016-11-11 08:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-09 14:25 - 2016-11-11 08:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-09 14:25 - 2016-11-11 08:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-09 14:25 - 2016-11-11 08:45 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-09 14:25 - 2016-11-11 08:45 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-09 14:25 - 2016-11-11 08:45 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-09 14:25 - 2016-11-11 08:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 14:25 - 2016-11-11 08:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-09 14:25 - 2016-11-11 08:27 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 14:25 - 2016-11-11 08:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 14:25 - 2016-11-11 08:26 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-09 14:25 - 2016-11-11 08:25 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 14:25 - 2016-11-11 08:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 14:25 - 2016-11-11 08:25 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 14:25 - 2016-11-11 08:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-09 14:25 - 2016-11-11 08:23 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 14:25 - 2016-11-11 08:23 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 14:25 - 2016-11-11 08:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 14:25 - 2016-11-11 08:22 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 14:25 - 2016-11-11 08:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 14:25 - 2016-11-11 08:21 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 14:25 - 2016-11-11 08:21 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-09 14:25 - 2016-11-11 08:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-09 14:25 - 2016-11-11 08:20 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 14:25 - 2016-11-11 08:19 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 14:25 - 2016-11-11 08:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 14:25 - 2016-11-11 08:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-12-09 14:25 - 2016-11-11 08:18 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 14:25 - 2016-11-11 08:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 14:25 - 2016-11-11 08:17 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 01722368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-09 14:25 - 2016-11-11 08:14 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-09 14:25 - 2016-11-11 08:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 14:25 - 2016-11-11 08:13 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-09 14:25 - 2016-11-11 08:13 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-09 14:25 - 2016-11-11 08:12 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 14:25 - 2016-11-11 08:12 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-09 14:25 - 2016-11-11 08:12 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-09 14:25 - 2016-11-11 08:11 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-09 14:25 - 2016-11-11 08:11 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-09 14:25 - 2016-11-11 08:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-09 14:25 - 2016-11-11 08:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-09 14:25 - 2016-11-11 08:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-09 14:25 - 2016-11-11 08:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 14:25 - 2016-11-11 08:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-09 14:25 - 2016-11-11 08:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 14:25 - 2016-11-11 08:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-09 14:25 - 2016-11-11 08:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-09 14:25 - 2016-11-11 08:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-09 14:25 - 2016-11-11 08:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-09 14:24 - 2016-11-11 09:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-09 14:24 - 2016-11-11 09:07 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-09 14:24 - 2016-11-11 09:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 14:24 - 2016-11-11 09:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 14:24 - 2016-11-11 09:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-09 14:24 - 2016-11-11 09:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-09 14:24 - 2016-11-11 08:59 - 01586736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-09 14:24 - 2016-11-11 08:59 - 00292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-09 14:24 - 2016-11-11 08:59 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-09 14:24 - 2016-11-11 08:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-09 14:24 - 2016-11-11 08:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 14:24 - 2016-11-11 08:47 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-09 14:24 - 2016-11-11 08:46 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-09 14:24 - 2016-11-11 08:45 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-09 14:24 - 2016-11-11 08:45 - 00355680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-09 14:24 - 2016-11-11 08:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 14:24 - 2016-11-11 08:42 - 00313088 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-12-09 14:24 - 2016-11-11 08:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 14:24 - 2016-11-11 08:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-09 14:24 - 2016-11-11 08:41 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-09 14:24 - 2016-11-11 08:41 - 00802608 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 14:24 - 2016-11-11 08:41 - 00675568 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-09 14:24 - 2016-11-11 08:37 - 00381720 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-09 14:24 - 2016-11-11 08:30 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 14:24 - 2016-11-11 08:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 14:24 - 2016-11-11 08:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 14:24 - 2016-11-11 08:27 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 14:24 - 2016-11-11 08:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 14:24 - 2016-11-11 08:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 14:24 - 2016-11-11 08:25 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-09 14:24 - 2016-11-11 08:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 14:24 - 2016-11-11 08:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-09 14:24 - 2016-11-11 08:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 14:24 - 2016-11-11 08:22 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-09 14:24 - 2016-11-11 08:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 14:24 - 2016-11-11 08:21 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 14:24 - 2016-11-11 08:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 14:24 - 2016-11-11 08:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 14:24 - 2016-11-11 08:20 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-09 14:24 - 2016-11-11 08:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 14:24 - 2016-11-11 08:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-09 14:24 - 2016-11-11 08:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-09 14:24 - 2016-11-11 08:18 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 14:24 - 2016-11-11 08:17 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-12-09 14:24 - 2016-11-11 08:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 14:24 - 2016-11-11 08:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-09 14:24 - 2016-11-11 08:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 14:24 - 2016-11-11 08:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-09 14:24 - 2016-11-11 08:14 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 14:24 - 2016-11-11 08:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-09 14:24 - 2016-11-11 08:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-09 14:24 - 2016-11-11 08:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 14:24 - 2016-11-11 08:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 14:24 - 2016-11-11 08:09 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-09 14:24 - 2016-11-11 08:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-12-09 14:24 - 2016-11-11 08:07 - 01948160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-09 14:24 - 2016-11-11 08:07 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-09 14:24 - 2016-11-11 08:07 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-09 14:24 - 2016-11-11 08:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-09 14:24 - 2016-11-11 08:06 - 01602048 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-09 14:24 - 2016-11-11 08:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 14:24 - 2016-11-11 08:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxclu.dll
2016-12-09 14:24 - 2016-11-11 08:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 14:24 - 2016-11-11 08:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 14:24 - 2016-11-11 08:05 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-09 14:24 - 2016-11-11 08:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-09 14:24 - 2016-11-11 08:04 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-09 14:24 - 2016-11-11 08:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-09 14:24 - 2016-11-11 08:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 14:24 - 2016-11-11 08:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-09 14:24 - 2016-11-11 08:02 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-08 09:04 - 2016-12-08 10:51 - 00000000 ____D C:\Users\Lucia\Desktop\Kalendar
2016-12-07 19:40 - 2016-12-07 19:41 - 09481627 _____ C:\Users\Lucia\Downloads\Linda Kage - Forbidden Men series.zip
2016-12-07 18:50 - 2016-12-07 18:51 - 01054374 _____ C:\Users\Lucia\Downloads\Downed_Gridiron_3_-_Jen_Frederick (1).pdf
2016-12-06 21:26 - 2016-12-06 21:26 - 01054374 _____ C:\Users\Lucia\Downloads\Downed_Gridiron_3_-_Jen_Frederick.pdf
2016-12-06 21:25 - 2016-12-06 21:25 - 00360530 _____ C:\Users\Lucia\Downloads\Downed_(Gridiron_3)_-_Jen_Frederick.epub
2016-12-06 21:21 - 2016-12-06 21:21 - 00683013 _____ C:\Users\Lucia\Downloads\The_Year_We_Fell_Down_-_Sarina_Bowen.pdf
2016-12-06 21:19 - 2016-12-06 21:20 - 01288597 _____ C:\Users\Lucia\Downloads\Lucas_-_A_Preston_Brothers_Nove_-_Jay_McLean.pdf
2016-12-06 21:18 - 2016-12-06 21:18 - 02190627 _____ C:\Users\Lucia\Downloads\Sarina Bowen - The Ivy Years.zip
2016-12-06 21:08 - 2016-12-06 21:08 - 00420056 _____ C:\Users\Lucia\Downloads\Lucas - A Preston Brothers Nove - Jay McLean.epub
2016-12-06 20:49 - 2016-12-06 20:49 - 00251643 _____ C:\Users\Lucia\Downloads\DPFOBv15.zip
2016-12-06 20:45 - 2016-12-06 20:45 - 00138660 _____ C:\Users\Lucia\Downloads\DPFOBv14 v1.15.pdf
2016-12-05 11:27 - 2016-12-05 11:27 - 01539979 _____ C:\Users\Lucia\Downloads\Friends_Without_Benefits_-_Penny_Reid.pdf
2016-12-05 11:23 - 2016-12-05 11:23 - 01395786 _____ C:\Users\Lucia\Downloads\Womanizer_-_Katy_Evans.pdf
2016-12-05 11:19 - 2016-12-05 11:19 - 00601738 _____ C:\Users\Lucia\Downloads\Womanizer_-_Katy_Evans.epub
2016-12-04 22:18 - 2016-12-04 22:18 - 01070814 _____ C:\Users\Lucia\Downloads\Fire_In_You_Volume_Six_Wait_f_-_Jennifer_L.pdf
2016-12-04 22:16 - 2016-12-04 22:16 - 00299933 _____ C:\Users\Lucia\Downloads\Fire In You_ Volume Six (Wait f - Jennifer L. Armentrout.epub
2016-12-04 22:05 - 2016-12-04 22:05 - 01026666 _____ C:\Users\Lucia\Downloads\The_Red_Scot_Curvy_Girls_Club_1_-_Twyla_Turner.pdf
2016-12-04 21:56 - 2016-12-04 21:56 - 00429394 _____ C:\Users\Lucia\Downloads\The_Red_Scot_(Curvy_Girls_Club__1)_-_Twyla_Turner.epub
2016-12-04 19:36 - 2016-12-04 19:36 - 00428776 _____ C:\Users\Lucia\Downloads\The_Hooker_and_the_Hermit_-_L_H_Cosway.pdf
2016-12-04 19:11 - 2016-12-04 19:11 - 00402680 _____ C:\Users\Lucia\Downloads\The_Hooker_and_the_Hermit_-_L_H_Cosway.epub
2016-12-04 19:11 - 2016-12-04 19:11 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\My Documents
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Videos
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Pictures
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Music
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 ____D C:\Users\DefaultAppPool
2016-12-04 19:11 - 2016-09-23 12:29 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\TuneUp Software
2016-12-04 19:11 - 2016-09-23 12:29 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-12-04 19:11 - 2016-09-23 12:29 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2016-12-01 23:01 - 2016-12-01 23:01 - 01158221 _____ C:\Users\Lucia\Downloads\wckedsxyliar.pdf
2016-12-01 22:59 - 2016-12-01 22:59 - 00410325 _____ C:\Users\Lucia\Downloads\wckedsxyliar.epub
2016-12-01 22:56 - 2016-12-01 22:59 - 03553870 _____ C:\Users\Lucia\Downloads\Beautiful_-_Christina_Lauren.pdf
2016-12-01 22:54 - 2016-12-01 22:54 - 04665300 _____ C:\Users\Lucia\Downloads\Beautiful - Christina Lauren.epub
2016-12-01 18:06 - 2016-12-01 18:06 - 00048640 _____ C:\Users\Lucia\Downloads\Rozpis_zápasov_2016-2017 (1).xls
2016-11-28 22:37 - 2016-11-28 22:37 - 00000000 ____D C:\Users\Lucia\AppData\Local\CEF
2016-11-27 22:47 - 2016-11-27 22:47 - 01066944 _____ C:\Users\Lucia\Downloads\Neanderthal_Seeks_Human_-_Penny_Reid.pdf
2016-11-27 22:45 - 2016-11-27 22:46 - 04614950 _____ C:\Users\Lucia\Downloads\Penny Reid - Knitting in the City (8 Books).rar
2016-11-27 22:36 - 2016-11-27 22:36 - 00908869 _____ C:\Users\Lucia\Downloads\RoomHate_-_Penelope_Ward.pdf
2016-11-27 22:33 - 2016-11-27 22:33 - 00283783 _____ C:\Users\Lucia\Downloads\RoomHate - Penelope Ward.epub
2016-11-27 22:32 - 2016-11-27 22:32 - 01195402 _____ C:\Users\Lucia\Downloads\The_Problem_with_Forever_-_Jennifer_L_Armentrout.pdf
2016-11-27 22:29 - 2016-11-27 22:30 - 02899346 _____ C:\Users\Lucia\Downloads\01.pdf
2016-11-27 19:36 - 2016-11-27 19:36 - 00402752 _____ C:\Users\Lucia\Downloads\The_Problem_with_Forever_-_Jennifer_L_Armentrout.epub
2016-11-27 19:30 - 2016-11-27 19:31 - 02225510 _____ C:\Users\Lucia\Downloads\01.epub
2016-11-27 19:08 - 2016-11-27 19:08 - 01221002 _____ C:\Users\Lucia\Downloads\Unsuitable_-_Towle_Samantha.pdf
2016-11-27 18:58 - 2016-11-27 18:59 - 02152214 _____ C:\Users\Lucia\Downloads\Revived_-_Samantha_Towle.pdf
2016-11-27 18:51 - 2016-11-27 11:13 - 1771972240 _____ C:\Users\Lucia\Desktop\Teorie-tygra-Komedie-2016-CZ-adriatic.avi
2016-11-27 18:50 - 2016-11-27 18:50 - 00912513 _____ C:\Users\Lucia\Downloads\Unsuitable_-_Towle,Samantha.epub
2016-11-27 18:42 - 2016-11-27 18:42 - 01669671 _____ C:\Users\Lucia\Downloads\Samantha Towle - Revved Series (2 Books).rar
2016-11-27 09:32 - 2016-11-27 11:13 - 1771972240 _____ C:\Users\Lucia\Downloads\Teorie-tygra-Komedie-2016-CZ-adriatic.avi
2016-11-25 16:43 - 2016-11-25 16:43 - 00944421 _____ C:\Users\Lucia\Downloads\The_Ending_I_Want_-_Samantha_Towle.epub
2016-11-25 09:55 - 2016-11-25 09:55 - 00048640 _____ C:\Users\Lucia\Downloads\Rozpis_zápasov_2016-2017.xls
2016-11-25 09:51 - 2016-11-25 09:51 - 00105339 _____ C:\Users\Lucia\Downloads\Orange_doklad_FR_20161117_CN0068146935_18610133169.zip
2016-11-24 21:36 - 2016-11-24 21:36 - 00705580 _____ C:\Users\Lucia\Downloads\OoB-LB.pdf
2016-11-24 21:35 - 2016-11-24 21:35 - 00500142 _____ C:\Users\Lucia\Downloads\Mister_O_-_Lauren_Blakely (1).epub
2016-11-24 21:34 - 2016-11-24 21:35 - 01061978 _____ C:\Users\Lucia\Downloads\trs.pdf
2016-11-24 21:32 - 2016-11-24 21:33 - 01216803 _____ C:\Users\Lucia\Downloads\Mister_O_-_Lauren_Blakely.pdf
2016-11-24 19:55 - 2016-11-24 19:55 - 00500142 _____ C:\Users\Lucia\Downloads\Mister_O_-_Lauren_Blakely.epub
2016-11-24 19:51 - 2016-11-24 19:51 - 00258787 _____ C:\Users\Lucia\Downloads\OoB-LB.epub
2016-11-24 19:39 - 2016-11-24 19:39 - 00511825 _____ C:\Users\Lucia\Downloads\trs.epub
2016-11-23 18:36 - 2016-11-23 18:37 - 00934307 _____ C:\Users\Lucia\Downloads\sbn.pdf
2016-11-23 18:35 - 2016-11-23 18:35 - 00843158 _____ C:\Users\Lucia\Downloads\rghtjnast.pdf
2016-11-23 18:34 - 2016-11-23 18:34 - 00907689 _____ C:\Users\Lucia\Downloads\Fling_-_Jana_Aston.pdf
2016-11-23 18:32 - 2016-11-23 18:32 - 00327958 _____ C:\Users\Lucia\Downloads\rghtjnast.epub
2016-11-23 18:31 - 2016-11-23 18:31 - 00391029 _____ C:\Users\Lucia\Downloads\Fling - Jana Aston.epub
2016-11-23 18:28 - 2016-11-23 18:28 - 00262689 _____ C:\Users\Lucia\Downloads\sbn.epub
2016-11-22 11:26 - 2016-11-22 11:26 - 00641201 _____ C:\Users\Lucia\Downloads\PAID_FOR_-_Alexa_Riley.pdf
2016-11-22 11:23 - 2016-11-22 11:25 - 02744075 _____ C:\Users\Lucia\Downloads\Royally_Screwed_-_Emma_Chase.pdf
2016-11-22 10:40 - 2016-11-22 10:40 - 00604928 _____ (Reimage) C:\Users\Lucia\Downloads\ReimageRepair.exe
2016-11-21 19:32 - 2016-11-21 19:32 - 02127402 _____ C:\Users\Lucia\Downloads\Royally_Screwed_-_Emma_Chase.epub
2016-11-21 19:31 - 2016-11-21 19:31 - 00349472 _____ C:\Users\Lucia\Downloads\PAID FOR - Alexa Riley.epub
2016-11-21 13:02 - 2016-11-21 13:02 - 00001956 _____ C:\Users\Lucia\Downloads\photo_3755.svg
2016-11-21 13:02 - 2016-11-21 13:02 - 00001956 _____ C:\Users\Lucia\Downloads\photo_3755 (1).svg
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-21 18:57 - 2015-09-29 18:50 - 00000000 ____D C:\Users\Lucia\AppData\Roaming\Skype
2016-12-21 18:56 - 2016-09-23 12:21 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-21 17:23 - 2016-09-23 12:23 - 01134118 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-21 17:23 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-21 17:23 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-21 17:22 - 2016-09-23 12:23 - 00000000 ____D C:\Users\Lucia
2016-12-21 17:18 - 2016-09-23 12:33 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-21 17:18 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-12-21 17:18 - 2014-05-27 06:10 - 00000228 _____ C:\WINDOWS\Tasks\AutoKMSDaily.job
2016-12-21 17:18 - 2014-05-27 06:09 - 00078848 _____ C:\WINDOWS\KMSEmulator.exe
2016-12-20 20:56 - 2015-11-23 12:36 - 00000000 ____D C:\Users\Lucia\AppData\Local\AvgSetupLog
2016-12-20 20:56 - 2015-11-23 12:36 - 00000000 ____D C:\ProgramData\Avg
2016-12-20 20:56 - 2014-05-26 10:13 - 00000000 ____D C:\Program Files\AVG
2016-12-20 20:54 - 2015-08-19 18:27 - 00000000 ____D C:\Users\Lucia\AppData\Local\Avg
2016-12-20 20:54 - 2014-05-26 10:05 - 00000000 ____D C:\ProgramData\MFAData
2016-12-20 20:52 - 2016-07-16 09:29 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-12-20 20:52 - 2016-07-16 03:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-12-20 20:18 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-20 20:14 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2016-12-16 21:17 - 2016-09-23 12:20 - 00269616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-16 21:16 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-16 19:59 - 2016-04-05 23:28 - 00000000 ____D C:\Users\Lucia\Desktop\Knihy
2016-12-16 12:12 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-16 11:54 - 2014-12-10 18:52 - 00000000 ____D C:\Users\Lucia\Desktop\Robota
2016-12-16 11:45 - 2015-03-25 17:10 - 00000000 ____D C:\Users\Lucia\Desktop\Ema
2016-12-14 19:57 - 2014-05-26 11:16 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-14 19:54 - 2014-05-26 11:16 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-14 19:32 - 2016-04-26 18:42 - 00002367 _____ C:\Users\Lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-14 19:32 - 2016-04-26 18:42 - 00000000 ___RD C:\Users\Lucia\OneDrive
2016-12-14 12:23 - 2014-08-13 17:37 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-14 12:23 - 2014-08-13 17:37 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-12 00:56 - 2016-10-28 19:15 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-10-28 19:15 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-12-10 17:15 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache
2016-12-09 20:07 - 2016-04-26 18:35 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-09 20:05 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-09 20:05 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-09 20:05 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\servicing
2016-12-02 19:16 - 2016-04-26 18:35 - 00000000 ____D C:\Users\Lucia\AppData\Local\Packages
==================== Files in the root of some directories =======
2016-03-25 00:12 - 2016-03-25 00:12 - 0000000 _____ () C:\Users\Lucia\AppData\Local\{C15A2379-4A13-4244-8F3A-8666E299DBE1}
Some files in TEMP:
====================
C:\Users\Lucia\AppData\Local\Temp\libeay32.dll
C:\Users\Lucia\AppData\Local\Temp\msvcr120.dll
C:\Users\Lucia\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Lucia\AppData\Local\Temp\sqlite3.dll
C:\Users\Lucia\AppData\Local\Temp\sqlite3.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-12-20 20:28
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2016
Ran by Lucia (administrator) on LUCIA-PC (21-12-2016 19:09:20)
Running from C:\Users\Lucia\Desktop
Loaded Profiles: Lucia (Available Profiles: Lucia & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1607 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.16112.10211.0_x86__8wekyb3d8bbwe\Music.UI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [476512 2009-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [55160 2009-03-09] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [460088 2009-07-28] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [738616 2009-08-05] (TOSHIBA Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation)
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-12-20] (AVAST Software)
HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [57864728 2015-09-17] (Skype Technologies S.A.)
HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\...\MountPoints2: {898000f5-bd1c-11e6-9289-00037a9b2e48} - "E:\Lenovo_Suite.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-12-20] (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a2ab41b8-f6af-416b-9151-6ff441e488ff}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2821662451-3197398895-2393341044-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\S-1-5-21-2821662451-3197398895-2393341044-1000 -> {0943B49E-208A-4F3D-97A3-137E45FA487D} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-12-20]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Users\Lucia\Desktop\VLC\npvlc.dll [No File]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default [2016-12-21]
CHR Extension: (Google Docs) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-09]
CHR Extension: (Google Drive) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Google Search) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Google Docs Offline) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (Avast Online Security) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-20]
CHR Extension: (Tab Splitter) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikokhdooehhahhjjbofpeeclglldimoc [2016-11-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-08]
CHR Extension: (Simple EPUB Reader) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojhbgcchcbdjdenibfmjofobklkkhofc [2016-06-10]
CHR Extension: (Gmail) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Lucia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-12-20] (AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34008 2016-12-20] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [92256 2016-12-20] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [91232 2016-12-20] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [60424 2016-12-20] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [735488 2016-12-20] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [433768 2016-12-20] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [118664 2016-12-20] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224752 2016-12-20] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
R3 RTL8187B; C:\WINDOWS\System32\drivers\rtl8187B.sys [381440 2016-07-16] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-31] (Toshiba Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-21 19:09 - 2016-12-21 19:09 - 00011576 _____ C:\Users\Lucia\Desktop\FRST.txt
2016-12-21 19:09 - 2016-12-21 19:09 - 00000000 ____D C:\FRST
2016-12-21 19:02 - 2016-12-21 19:08 - 01762304 _____ (Farbar) C:\Users\Lucia\Desktop\FRST.exe
2016-12-21 17:14 - 2016-12-21 17:17 - 00000000 ____D C:\AdwCleaner
2016-12-21 17:14 - 2016-12-21 17:14 - 03977168 _____ C:\Users\Lucia\Desktop\adwcleaner_6.041.exe
2016-12-20 21:24 - 2016-12-20 21:25 - 00000000 ____D C:\rsit
2016-12-20 21:24 - 2016-12-20 21:24 - 01201664 _____ C:\Users\Lucia\Downloads\RSIT.exe
2016-12-20 21:24 - 2016-12-20 21:24 - 00000000 ____D C:\Program Files\trend micro
2016-12-20 21:06 - 2016-12-20 21:06 - 00002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-12-20 21:06 - 2016-12-20 21:06 - 00002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-12-20 21:06 - 2016-12-20 21:06 - 00000000 ____D C:\Users\Lucia\AppData\Roaming\AVAST Software
2016-12-20 21:05 - 2016-12-20 21:05 - 00735488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00433768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00224752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00118664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00092256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00091232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00060424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00039832 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2016-12-20 21:05 - 2016-12-20 21:05 - 00034008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-12-20 21:05 - 2016-12-20 21:04 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2016-12-20 21:05 - 2016-12-20 21:04 - 00319760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-12-20 21:04 - 2016-12-20 21:04 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-12-20 21:02 - 2016-12-20 21:02 - 00000000 ____D C:\Program Files\AVAST Software
2016-12-20 21:01 - 2016-12-20 21:01 - 00000000 ____D C:\ProgramData\AVAST Software
2016-12-20 21:00 - 2016-12-20 21:01 - 06334848 _____ (AVAST Software) C:\Users\Lucia\Downloads\avast_free_antivirus_setup_online.exe
2016-12-16 20:01 - 2016-12-16 20:03 - 01240606 _____ C:\Users\Lucia\Downloads\King_of_Hearts_-_L.pdf
2016-12-16 19:58 - 2016-12-16 19:58 - 02011426 _____ C:\Users\Lucia\Downloads\L.H. Cosway - Hearts series (4 Books).zip
2016-12-15 12:11 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-15 12:11 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-15 12:11 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-15 12:11 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-15 12:11 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-15 12:11 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-15 12:11 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-15 12:11 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-15 12:11 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-15 12:11 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-15 12:11 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-15 12:11 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-15 12:11 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-15 12:11 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-15 12:11 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-15 12:11 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-15 12:11 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-15 12:11 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-15 12:11 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-15 12:11 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-15 12:11 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-15 12:11 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-15 12:11 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-15 12:11 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-15 12:11 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-12-15 12:11 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-12-15 12:11 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-15 12:11 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-15 12:11 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-15 12:11 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-15 12:11 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-15 12:11 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-15 12:11 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-15 12:11 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-15 12:11 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-15 12:11 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-15 12:11 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-15 12:11 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-15 12:11 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-15 12:11 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-15 12:11 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-15 12:11 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-15 12:11 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-15 12:11 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-15 12:11 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-15 12:11 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-15 12:11 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-15 12:11 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-15 12:11 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-15 12:11 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-15 12:11 - 2016-09-15 17:53 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-15 10:44 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-15 10:44 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-15 10:44 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-15 10:44 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-14 12:26 - 2016-12-14 12:29 - 01239289 _____ C:\Users\Lucia\Downloads\Beauty_and_the_Mustache_-_Penny_Reid (1).pdf
2016-12-13 22:58 - 2016-12-13 22:58 - 01239289 _____ C:\Users\Lucia\Downloads\Beauty_and_the_Mustache_-_Penny_Reid.pdf
2016-12-13 22:49 - 2016-12-13 22:53 - 01279817 _____ C:\Users\Lucia\Downloads\Love_Hacked_-_Penny_Reid.pdf
2016-12-09 14:25 - 2016-11-11 09:07 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 14:25 - 2016-11-11 08:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 14:25 - 2016-11-11 08:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 14:25 - 2016-11-11 08:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-09 14:25 - 2016-11-11 08:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-09 14:25 - 2016-11-11 08:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-09 14:25 - 2016-11-11 08:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-09 14:25 - 2016-11-11 08:45 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-09 14:25 - 2016-11-11 08:45 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-09 14:25 - 2016-11-11 08:45 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-09 14:25 - 2016-11-11 08:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-09 14:25 - 2016-11-11 08:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 14:25 - 2016-11-11 08:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-09 14:25 - 2016-11-11 08:27 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 14:25 - 2016-11-11 08:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 14:25 - 2016-11-11 08:26 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-09 14:25 - 2016-11-11 08:25 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 14:25 - 2016-11-11 08:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 14:25 - 2016-11-11 08:25 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 14:25 - 2016-11-11 08:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 14:25 - 2016-11-11 08:24 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-09 14:25 - 2016-11-11 08:23 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 14:25 - 2016-11-11 08:23 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 14:25 - 2016-11-11 08:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 14:25 - 2016-11-11 08:22 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 14:25 - 2016-11-11 08:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 14:25 - 2016-11-11 08:21 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 14:25 - 2016-11-11 08:21 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-09 14:25 - 2016-11-11 08:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-09 14:25 - 2016-11-11 08:20 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 14:25 - 2016-11-11 08:19 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 14:25 - 2016-11-11 08:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 14:25 - 2016-11-11 08:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-12-09 14:25 - 2016-11-11 08:18 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 14:25 - 2016-11-11 08:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 14:25 - 2016-11-11 08:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 14:25 - 2016-11-11 08:17 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 01722368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-09 14:25 - 2016-11-11 08:15 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-09 14:25 - 2016-11-11 08:14 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-09 14:25 - 2016-11-11 08:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 14:25 - 2016-11-11 08:13 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-09 14:25 - 2016-11-11 08:13 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-09 14:25 - 2016-11-11 08:12 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 14:25 - 2016-11-11 08:12 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-09 14:25 - 2016-11-11 08:12 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-09 14:25 - 2016-11-11 08:11 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-09 14:25 - 2016-11-11 08:11 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-09 14:25 - 2016-11-11 08:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-09 14:25 - 2016-11-11 08:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-09 14:25 - 2016-11-11 08:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-09 14:25 - 2016-11-11 08:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 14:25 - 2016-11-11 08:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-09 14:25 - 2016-11-11 08:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 14:25 - 2016-11-11 08:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-09 14:25 - 2016-11-11 08:04 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-09 14:25 - 2016-11-11 08:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-09 14:25 - 2016-11-11 08:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-09 14:25 - 2016-11-11 08:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-09 14:24 - 2016-11-11 09:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-09 14:24 - 2016-11-11 09:07 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-09 14:24 - 2016-11-11 09:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 14:24 - 2016-11-11 09:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 14:24 - 2016-11-11 09:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-09 14:24 - 2016-11-11 09:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-09 14:24 - 2016-11-11 08:59 - 01586736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-09 14:24 - 2016-11-11 08:59 - 00292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-09 14:24 - 2016-11-11 08:59 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-09 14:24 - 2016-11-11 08:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-09 14:24 - 2016-11-11 08:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 14:24 - 2016-11-11 08:47 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-09 14:24 - 2016-11-11 08:46 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-09 14:24 - 2016-11-11 08:45 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-09 14:24 - 2016-11-11 08:45 - 00355680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-09 14:24 - 2016-11-11 08:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 14:24 - 2016-11-11 08:42 - 00313088 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-12-09 14:24 - 2016-11-11 08:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 14:24 - 2016-11-11 08:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-09 14:24 - 2016-11-11 08:41 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-09 14:24 - 2016-11-11 08:41 - 00802608 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 14:24 - 2016-11-11 08:41 - 00675568 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-09 14:24 - 2016-11-11 08:37 - 00381720 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-09 14:24 - 2016-11-11 08:30 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 14:24 - 2016-11-11 08:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 14:24 - 2016-11-11 08:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 14:24 - 2016-11-11 08:27 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 14:24 - 2016-11-11 08:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 14:24 - 2016-11-11 08:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 14:24 - 2016-11-11 08:25 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-09 14:24 - 2016-11-11 08:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 14:24 - 2016-11-11 08:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-09 14:24 - 2016-11-11 08:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 14:24 - 2016-11-11 08:22 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-09 14:24 - 2016-11-11 08:22 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-09 14:24 - 2016-11-11 08:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 14:24 - 2016-11-11 08:21 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 14:24 - 2016-11-11 08:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 14:24 - 2016-11-11 08:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 14:24 - 2016-11-11 08:20 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-09 14:24 - 2016-11-11 08:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 14:24 - 2016-11-11 08:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-09 14:24 - 2016-11-11 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-09 14:24 - 2016-11-11 08:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-09 14:24 - 2016-11-11 08:18 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-09 14:24 - 2016-11-11 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 14:24 - 2016-11-11 08:17 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-12-09 14:24 - 2016-11-11 08:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 14:24 - 2016-11-11 08:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-09 14:24 - 2016-11-11 08:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 14:24 - 2016-11-11 08:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-09 14:24 - 2016-11-11 08:14 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 14:24 - 2016-11-11 08:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-09 14:24 - 2016-11-11 08:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-09 14:24 - 2016-11-11 08:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 14:24 - 2016-11-11 08:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 14:24 - 2016-11-11 08:09 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-09 14:24 - 2016-11-11 08:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-12-09 14:24 - 2016-11-11 08:07 - 01948160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-09 14:24 - 2016-11-11 08:07 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-09 14:24 - 2016-11-11 08:07 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-09 14:24 - 2016-11-11 08:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-09 14:24 - 2016-11-11 08:06 - 01602048 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-09 14:24 - 2016-11-11 08:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 14:24 - 2016-11-11 08:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxclu.dll
2016-12-09 14:24 - 2016-11-11 08:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 14:24 - 2016-11-11 08:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 14:24 - 2016-11-11 08:05 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-09 14:24 - 2016-11-11 08:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-09 14:24 - 2016-11-11 08:04 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-09 14:24 - 2016-11-11 08:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-09 14:24 - 2016-11-11 08:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 14:24 - 2016-11-11 08:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-09 14:24 - 2016-11-11 08:02 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-08 09:04 - 2016-12-08 10:51 - 00000000 ____D C:\Users\Lucia\Desktop\Kalendar
2016-12-07 19:40 - 2016-12-07 19:41 - 09481627 _____ C:\Users\Lucia\Downloads\Linda Kage - Forbidden Men series.zip
2016-12-07 18:50 - 2016-12-07 18:51 - 01054374 _____ C:\Users\Lucia\Downloads\Downed_Gridiron_3_-_Jen_Frederick (1).pdf
2016-12-06 21:26 - 2016-12-06 21:26 - 01054374 _____ C:\Users\Lucia\Downloads\Downed_Gridiron_3_-_Jen_Frederick.pdf
2016-12-06 21:25 - 2016-12-06 21:25 - 00360530 _____ C:\Users\Lucia\Downloads\Downed_(Gridiron_3)_-_Jen_Frederick.epub
2016-12-06 21:21 - 2016-12-06 21:21 - 00683013 _____ C:\Users\Lucia\Downloads\The_Year_We_Fell_Down_-_Sarina_Bowen.pdf
2016-12-06 21:19 - 2016-12-06 21:20 - 01288597 _____ C:\Users\Lucia\Downloads\Lucas_-_A_Preston_Brothers_Nove_-_Jay_McLean.pdf
2016-12-06 21:18 - 2016-12-06 21:18 - 02190627 _____ C:\Users\Lucia\Downloads\Sarina Bowen - The Ivy Years.zip
2016-12-06 21:08 - 2016-12-06 21:08 - 00420056 _____ C:\Users\Lucia\Downloads\Lucas - A Preston Brothers Nove - Jay McLean.epub
2016-12-06 20:49 - 2016-12-06 20:49 - 00251643 _____ C:\Users\Lucia\Downloads\DPFOBv15.zip
2016-12-06 20:45 - 2016-12-06 20:45 - 00138660 _____ C:\Users\Lucia\Downloads\DPFOBv14 v1.15.pdf
2016-12-05 11:27 - 2016-12-05 11:27 - 01539979 _____ C:\Users\Lucia\Downloads\Friends_Without_Benefits_-_Penny_Reid.pdf
2016-12-05 11:23 - 2016-12-05 11:23 - 01395786 _____ C:\Users\Lucia\Downloads\Womanizer_-_Katy_Evans.pdf
2016-12-05 11:19 - 2016-12-05 11:19 - 00601738 _____ C:\Users\Lucia\Downloads\Womanizer_-_Katy_Evans.epub
2016-12-04 22:18 - 2016-12-04 22:18 - 01070814 _____ C:\Users\Lucia\Downloads\Fire_In_You_Volume_Six_Wait_f_-_Jennifer_L.pdf
2016-12-04 22:16 - 2016-12-04 22:16 - 00299933 _____ C:\Users\Lucia\Downloads\Fire In You_ Volume Six (Wait f - Jennifer L. Armentrout.epub
2016-12-04 22:05 - 2016-12-04 22:05 - 01026666 _____ C:\Users\Lucia\Downloads\The_Red_Scot_Curvy_Girls_Club_1_-_Twyla_Turner.pdf
2016-12-04 21:56 - 2016-12-04 21:56 - 00429394 _____ C:\Users\Lucia\Downloads\The_Red_Scot_(Curvy_Girls_Club__1)_-_Twyla_Turner.epub
2016-12-04 19:36 - 2016-12-04 19:36 - 00428776 _____ C:\Users\Lucia\Downloads\The_Hooker_and_the_Hermit_-_L_H_Cosway.pdf
2016-12-04 19:11 - 2016-12-04 19:11 - 00402680 _____ C:\Users\Lucia\Downloads\The_Hooker_and_the_Hermit_-_L_H_Cosway.epub
2016-12-04 19:11 - 2016-12-04 19:11 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\My Documents
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Videos
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Pictures
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\My Music
2016-12-04 19:11 - 2016-12-04 19:11 - 00000000 ____D C:\Users\DefaultAppPool
2016-12-04 19:11 - 2016-09-23 12:29 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\TuneUp Software
2016-12-04 19:11 - 2016-09-23 12:29 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2016-12-04 19:11 - 2016-09-23 12:29 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2016-12-01 23:01 - 2016-12-01 23:01 - 01158221 _____ C:\Users\Lucia\Downloads\wckedsxyliar.pdf
2016-12-01 22:59 - 2016-12-01 22:59 - 00410325 _____ C:\Users\Lucia\Downloads\wckedsxyliar.epub
2016-12-01 22:56 - 2016-12-01 22:59 - 03553870 _____ C:\Users\Lucia\Downloads\Beautiful_-_Christina_Lauren.pdf
2016-12-01 22:54 - 2016-12-01 22:54 - 04665300 _____ C:\Users\Lucia\Downloads\Beautiful - Christina Lauren.epub
2016-12-01 18:06 - 2016-12-01 18:06 - 00048640 _____ C:\Users\Lucia\Downloads\Rozpis_zápasov_2016-2017 (1).xls
2016-11-28 22:37 - 2016-11-28 22:37 - 00000000 ____D C:\Users\Lucia\AppData\Local\CEF
2016-11-27 22:47 - 2016-11-27 22:47 - 01066944 _____ C:\Users\Lucia\Downloads\Neanderthal_Seeks_Human_-_Penny_Reid.pdf
2016-11-27 22:45 - 2016-11-27 22:46 - 04614950 _____ C:\Users\Lucia\Downloads\Penny Reid - Knitting in the City (8 Books).rar
2016-11-27 22:36 - 2016-11-27 22:36 - 00908869 _____ C:\Users\Lucia\Downloads\RoomHate_-_Penelope_Ward.pdf
2016-11-27 22:33 - 2016-11-27 22:33 - 00283783 _____ C:\Users\Lucia\Downloads\RoomHate - Penelope Ward.epub
2016-11-27 22:32 - 2016-11-27 22:32 - 01195402 _____ C:\Users\Lucia\Downloads\The_Problem_with_Forever_-_Jennifer_L_Armentrout.pdf
2016-11-27 22:29 - 2016-11-27 22:30 - 02899346 _____ C:\Users\Lucia\Downloads\01.pdf
2016-11-27 19:36 - 2016-11-27 19:36 - 00402752 _____ C:\Users\Lucia\Downloads\The_Problem_with_Forever_-_Jennifer_L_Armentrout.epub
2016-11-27 19:30 - 2016-11-27 19:31 - 02225510 _____ C:\Users\Lucia\Downloads\01.epub
2016-11-27 19:08 - 2016-11-27 19:08 - 01221002 _____ C:\Users\Lucia\Downloads\Unsuitable_-_Towle_Samantha.pdf
2016-11-27 18:58 - 2016-11-27 18:59 - 02152214 _____ C:\Users\Lucia\Downloads\Revived_-_Samantha_Towle.pdf
2016-11-27 18:51 - 2016-11-27 11:13 - 1771972240 _____ C:\Users\Lucia\Desktop\Teorie-tygra-Komedie-2016-CZ-adriatic.avi
2016-11-27 18:50 - 2016-11-27 18:50 - 00912513 _____ C:\Users\Lucia\Downloads\Unsuitable_-_Towle,Samantha.epub
2016-11-27 18:42 - 2016-11-27 18:42 - 01669671 _____ C:\Users\Lucia\Downloads\Samantha Towle - Revved Series (2 Books).rar
2016-11-27 09:32 - 2016-11-27 11:13 - 1771972240 _____ C:\Users\Lucia\Downloads\Teorie-tygra-Komedie-2016-CZ-adriatic.avi
2016-11-25 16:43 - 2016-11-25 16:43 - 00944421 _____ C:\Users\Lucia\Downloads\The_Ending_I_Want_-_Samantha_Towle.epub
2016-11-25 09:55 - 2016-11-25 09:55 - 00048640 _____ C:\Users\Lucia\Downloads\Rozpis_zápasov_2016-2017.xls
2016-11-25 09:51 - 2016-11-25 09:51 - 00105339 _____ C:\Users\Lucia\Downloads\Orange_doklad_FR_20161117_CN0068146935_18610133169.zip
2016-11-24 21:36 - 2016-11-24 21:36 - 00705580 _____ C:\Users\Lucia\Downloads\OoB-LB.pdf
2016-11-24 21:35 - 2016-11-24 21:35 - 00500142 _____ C:\Users\Lucia\Downloads\Mister_O_-_Lauren_Blakely (1).epub
2016-11-24 21:34 - 2016-11-24 21:35 - 01061978 _____ C:\Users\Lucia\Downloads\trs.pdf
2016-11-24 21:32 - 2016-11-24 21:33 - 01216803 _____ C:\Users\Lucia\Downloads\Mister_O_-_Lauren_Blakely.pdf
2016-11-24 19:55 - 2016-11-24 19:55 - 00500142 _____ C:\Users\Lucia\Downloads\Mister_O_-_Lauren_Blakely.epub
2016-11-24 19:51 - 2016-11-24 19:51 - 00258787 _____ C:\Users\Lucia\Downloads\OoB-LB.epub
2016-11-24 19:39 - 2016-11-24 19:39 - 00511825 _____ C:\Users\Lucia\Downloads\trs.epub
2016-11-23 18:36 - 2016-11-23 18:37 - 00934307 _____ C:\Users\Lucia\Downloads\sbn.pdf
2016-11-23 18:35 - 2016-11-23 18:35 - 00843158 _____ C:\Users\Lucia\Downloads\rghtjnast.pdf
2016-11-23 18:34 - 2016-11-23 18:34 - 00907689 _____ C:\Users\Lucia\Downloads\Fling_-_Jana_Aston.pdf
2016-11-23 18:32 - 2016-11-23 18:32 - 00327958 _____ C:\Users\Lucia\Downloads\rghtjnast.epub
2016-11-23 18:31 - 2016-11-23 18:31 - 00391029 _____ C:\Users\Lucia\Downloads\Fling - Jana Aston.epub
2016-11-23 18:28 - 2016-11-23 18:28 - 00262689 _____ C:\Users\Lucia\Downloads\sbn.epub
2016-11-22 11:26 - 2016-11-22 11:26 - 00641201 _____ C:\Users\Lucia\Downloads\PAID_FOR_-_Alexa_Riley.pdf
2016-11-22 11:23 - 2016-11-22 11:25 - 02744075 _____ C:\Users\Lucia\Downloads\Royally_Screwed_-_Emma_Chase.pdf
2016-11-22 10:40 - 2016-11-22 10:40 - 00604928 _____ (Reimage) C:\Users\Lucia\Downloads\ReimageRepair.exe
2016-11-21 19:32 - 2016-11-21 19:32 - 02127402 _____ C:\Users\Lucia\Downloads\Royally_Screwed_-_Emma_Chase.epub
2016-11-21 19:31 - 2016-11-21 19:31 - 00349472 _____ C:\Users\Lucia\Downloads\PAID FOR - Alexa Riley.epub
2016-11-21 13:02 - 2016-11-21 13:02 - 00001956 _____ C:\Users\Lucia\Downloads\photo_3755.svg
2016-11-21 13:02 - 2016-11-21 13:02 - 00001956 _____ C:\Users\Lucia\Downloads\photo_3755 (1).svg
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-12-21 18:57 - 2015-09-29 18:50 - 00000000 ____D C:\Users\Lucia\AppData\Roaming\Skype
2016-12-21 18:56 - 2016-09-23 12:21 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-21 17:23 - 2016-09-23 12:23 - 01134118 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-21 17:23 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-21 17:23 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-21 17:22 - 2016-09-23 12:23 - 00000000 ____D C:\Users\Lucia
2016-12-21 17:18 - 2016-09-23 12:33 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-21 17:18 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-12-21 17:18 - 2014-05-27 06:10 - 00000228 _____ C:\WINDOWS\Tasks\AutoKMSDaily.job
2016-12-21 17:18 - 2014-05-27 06:09 - 00078848 _____ C:\WINDOWS\KMSEmulator.exe
2016-12-20 20:56 - 2015-11-23 12:36 - 00000000 ____D C:\Users\Lucia\AppData\Local\AvgSetupLog
2016-12-20 20:56 - 2015-11-23 12:36 - 00000000 ____D C:\ProgramData\Avg
2016-12-20 20:56 - 2014-05-26 10:13 - 00000000 ____D C:\Program Files\AVG
2016-12-20 20:54 - 2015-08-19 18:27 - 00000000 ____D C:\Users\Lucia\AppData\Local\Avg
2016-12-20 20:54 - 2014-05-26 10:05 - 00000000 ____D C:\ProgramData\MFAData
2016-12-20 20:52 - 2016-07-16 09:29 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-12-20 20:52 - 2016-07-16 03:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2016-12-20 20:18 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-20 20:14 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2016-12-16 21:17 - 2016-09-23 12:20 - 00269616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-16 21:16 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-16 19:59 - 2016-04-05 23:28 - 00000000 ____D C:\Users\Lucia\Desktop\Knihy
2016-12-16 12:12 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-16 11:54 - 2014-12-10 18:52 - 00000000 ____D C:\Users\Lucia\Desktop\Robota
2016-12-16 11:45 - 2015-03-25 17:10 - 00000000 ____D C:\Users\Lucia\Desktop\Ema
2016-12-14 19:57 - 2014-05-26 11:16 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-14 19:54 - 2014-05-26 11:16 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-14 19:32 - 2016-04-26 18:42 - 00002367 _____ C:\Users\Lucia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-14 19:32 - 2016-04-26 18:42 - 00000000 ___RD C:\Users\Lucia\OneDrive
2016-12-14 12:23 - 2014-08-13 17:37 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-14 12:23 - 2014-08-13 17:37 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-12 00:56 - 2016-10-28 19:15 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-10-28 19:15 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-12-10 17:15 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache
2016-12-09 20:07 - 2016-04-26 18:35 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-09 20:05 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-09 20:05 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-09 20:05 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-09 20:05 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\servicing
2016-12-02 19:16 - 2016-04-26 18:35 - 00000000 ____D C:\Users\Lucia\AppData\Local\Packages
==================== Files in the root of some directories =======
2016-03-25 00:12 - 2016-03-25 00:12 - 0000000 _____ () C:\Users\Lucia\AppData\Local\{C15A2379-4A13-4244-8F3A-8666E299DBE1}
Some files in TEMP:
====================
C:\Users\Lucia\AppData\Local\Temp\libeay32.dll
C:\Users\Lucia\AppData\Local\Temp\msvcr120.dll
C:\Users\Lucia\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Lucia\AppData\Local\Temp\sqlite3.dll
C:\Users\Lucia\AppData\Local\Temp\sqlite3.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-12-20 20:28
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: reklamy a porno
Je třeba ještě dočistit. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujteStart
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
C:\Program Files\Google\Google Toolbar
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Users\Lucia\Desktop\VLC\npvlc.dll [No File]
U3 idsvc; no ImagePath
C:\Users\Lucia\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: reklamy a porno
Fix result of Farbar Recovery Scan Tool (x86) Version: 21-12-2016
Ran by Lucia (21-12-2016 20:10:21) Run:1
Running from C:\Users\Lucia\Desktop
Loaded Profiles: Lucia (Available Profiles: Lucia & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
C:\Program Files\Google\Google Toolbar
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Users\Lucia\Desktop\VLC\npvlc.dll [No File]
U3 idsvc; no ImagePath
C:\Users\Lucia\AppData\Local\Temp
EmptyTemp:
End
*****************
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully.
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully.
C:\Program Files\Google\Google Toolbar => moved successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully.
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully.
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5" => key removed successfully.
idsvc => service removed successfully.
"C:\Users\Lucia\AppData\Local\Temp" folder move:
Could not move "C:\Users\Lucia\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 357396717 B
Java, Flash, Steam htmlcache => 36577 B
Windows/system/drivers => 347302776 B
Edge => 10516248 B
Chrome => 284099217 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 41842 B
NetworkService => 6990 B
Lucia => 75328864 B
DefaultAppPool => 0 B
RecycleBin => 298884193 B
EmptyTemp: => 1.3 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 21-12-2016 20:13:46)
C:\Users\Lucia\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:13:51 ====
Ran by Lucia (21-12-2016 20:10:21) Run:1
Running from C:\Users\Lucia\Desktop
Loaded Profiles: Lucia (Available Profiles: Lucia & DefaultAppPool)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
C:\Program Files\Google\Google Toolbar
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Users\Lucia\Desktop\VLC\npvlc.dll [No File]
U3 idsvc; no ImagePath
C:\Users\Lucia\AppData\Local\Temp
EmptyTemp:
End
*****************
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully.
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully.
C:\Program Files\Google\Google Toolbar => moved successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully.
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully.
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5" => key removed successfully.
idsvc => service removed successfully.
"C:\Users\Lucia\AppData\Local\Temp" folder move:
Could not move "C:\Users\Lucia\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 357396717 B
Java, Flash, Steam htmlcache => 36577 B
Windows/system/drivers => 347302776 B
Edge => 10516248 B
Chrome => 284099217 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 41842 B
NetworkService => 6990 B
Lucia => 75328864 B
DefaultAppPool => 0 B
RecycleBin => 298884193 B
EmptyTemp: => 1.3 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 21-12-2016 20:13:46)
C:\Users\Lucia\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:13:51 ====
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: reklamy a porno
Smazáno. Je vše v pořádku?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: reklamy a porno
Ano všetko je OK.
Ďakujem za pomoc.
Pekné sviatky želám.
Ďakujem za pomoc.
Pekné sviatky želám.
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: reklamy a porno
Hezké svátky i vám a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?