děkuji za preventivní kontrolu

[marfy]

Zdravím, jak jsem si psal s Rudym ohledně manželky notebooku a její nemožnost se připojení k internetu( už se lze připojit). IT ji zformátoval notas, ale zálohu, kterou udělal, tak vrátil, tak se bojím jestli v těch zálohách nemohla zústat nějaká havěť. Dále ji nainstaloval Microsoft secirity essentials, je to dostačující ochrana? děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by veronika at 2015-12-19 10:10:32
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 303 GB (64%) free of 477 GB
Total RAM: 2040 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:11:07, on 19.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18124)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\GWX\GWX.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\veronika\Desktop\RSIT.exe
C:\Program Files\trend micro\veronika.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 5256 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\veronika\AppData\Roaming\Mozilla\Firefox\Profiles\argvhxrp.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14 69760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [2014-09-15 748256]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 981688]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2015-12-17 50378880]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2015-11-16 6602152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-12-19 10:10:33 ----D---- C:\Program Files\trend micro
2015-12-19 10:10:32 ----D---- C:\rsit
2015-12-19 09:59:44 ----D---- C:\FRST
2015-12-19 09:48:56 ----D---- C:\Program Files\CCleaner
2015-12-19 09:46:23 ----D---- C:\Program Files\Common Files\Skype
2015-12-19 09:46:22 ----RD---- C:\Program Files\Skype
2015-12-18 19:34:07 ----D---- C:\Program Files\Mozilla Firefox
2015-12-18 18:28:54 ----D---- C:\Users\veronika\AppData\Roaming\Seznam Browser
2015-12-18 18:11:04 ----D---- C:\Users\veronika\AppData\Roaming\Mozilla
2015-12-18 12:35:07 ----D---- C:\Windows\AutoKMS
2015-12-18 12:24:50 ----D---- C:\Program Files\Microsoft Synchronization Services
2015-12-18 12:24:49 ----D---- C:\Program Files\Common Files\DESIGNER
2015-12-18 12:24:17 ----D---- C:\Windows\PCHEALTH
2015-12-18 12:24:17 ----D---- C:\Program Files\Microsoft Sync Framework
2015-12-18 12:24:17 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-12-18 12:22:54 ----D---- C:\Program Files\Microsoft Visual Studio 8
2015-12-18 12:22:02 ----D---- C:\Program Files\Microsoft Analysis Services
2015-12-18 12:20:50 ----D---- C:\Program Files\Microsoft Office
2015-12-18 12:20:49 ----D---- C:\ProgramData\Microsoft Help
2015-12-18 12:20:21 ----RHD---- C:\MSOCache
2015-12-18 11:19:10 ----A---- C:\Windows\system32\fsutil.exe
2015-12-18 11:19:10 ----A---- C:\Windows\system32\esent.dll
2015-12-18 11:19:09 ----A---- C:\Windows\system32\drivers\nvstor.sys
2015-12-18 11:19:09 ----A---- C:\Windows\system32\drivers\nvraid.sys
2015-12-18 11:19:09 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2015-12-18 11:19:09 ----A---- C:\Windows\system32\drivers\amdxata.sys
2015-12-18 11:19:09 ----A---- C:\Windows\system32\drivers\amdsata.sys
2015-12-18 11:19:08 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2015-12-18 11:19:01 ----A---- C:\Windows\system32\mstscax.dll
2015-12-18 11:19:00 ----A---- C:\Windows\system32\wksprt.exe
2015-12-18 11:19:00 ----A---- C:\Windows\system32\tsgqec.dll
2015-12-18 11:19:00 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-12-18 11:18:59 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-12-18 11:18:59 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2015-12-18 11:18:59 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-12-18 11:17:54 ----A---- C:\Windows\system32\rdpudd.dll
2015-12-18 11:17:54 ----A---- C:\Windows\system32\rdpcorets.dll
2015-12-18 11:17:53 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-12-18 11:17:39 ----A---- C:\Windows\system32\KBDYAK.DLL
2015-12-18 11:17:39 ----A---- C:\Windows\system32\KBDTAT.DLL
2015-12-18 11:17:39 ----A---- C:\Windows\system32\KBDRU1.DLL
2015-12-18 11:17:39 ----A---- C:\Windows\system32\KBDRU.DLL
2015-12-18 11:17:39 ----A---- C:\Windows\system32\KBDBASH.DLL
2015-12-18 10:43:41 ----A---- C:\Windows\system32\nlsbres.dll
2015-12-18 10:43:41 ----A---- C:\Windows\system32\kbdgeoqw.dll
2015-12-18 10:43:41 ----A---- C:\Windows\system32\KBDAZEL.DLL
2015-12-18 10:43:41 ----A---- C:\Windows\system32\KBDAZE.DLL
2015-12-18 09:52:24 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-12-18 09:52:16 ----A---- C:\Windows\system32\rdpendp_winip.dll
2015-12-18 09:49:49 ----D---- C:\Users\veronika\AppData\Roaming\Skype
2015-12-18 09:49:15 ----D---- C:\ProgramData\Skype
2015-12-18 09:47:06 ----D---- C:\Program Files\Microsoft Silverlight
2015-12-18 09:27:55 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-12-18 09:27:52 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-12-18 09:27:50 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2015-12-18 09:27:49 ----A---- C:\Windows\system32\wksprtPS.dll
2015-12-18 09:27:49 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-12-18 09:27:49 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2015-12-18 09:27:47 ----A---- C:\Windows\system32\mstsc.exe
2015-12-18 09:19:51 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-12-18 09:14:47 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-12-18 09:14:46 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-12-18 09:14:46 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-12-18 09:14:45 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-12-18 09:14:44 ----A---- C:\Windows\system32\WUDFx.dll
2015-12-18 09:14:44 ----A---- C:\Windows\system32\WUDFHost.exe
2015-12-18 09:14:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2015-12-18 09:13:49 ----A---- C:\Windows\system32\infocardapi.dll
2015-12-18 09:13:43 ----A---- C:\Windows\system32\icardres.dll
2015-12-18 09:13:33 ----A---- C:\Windows\system32\icardagt.exe
2015-12-18 09:13:16 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-12-18 09:12:35 ----A---- C:\Windows\system32\wmi.dll
2015-12-18 09:12:35 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-12-18 08:59:17 ----A---- C:\Windows\system32\spoolsv.exe
2015-12-18 08:59:13 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-12-18 08:59:13 ----A---- C:\Windows\system32\iernonce.dll
2015-12-18 08:59:13 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-12-18 08:59:13 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-12-18 08:59:13 ----A---- C:\Windows\system32\ie4uinit.exe
2015-12-18 08:59:12 ----A---- C:\Windows\system32\urlmon.dll
2015-12-18 08:59:12 ----A---- C:\Windows\system32\occache.dll
2015-12-18 08:59:12 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-12-18 08:59:12 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-18 08:59:12 ----A---- C:\Windows\system32\ieUnatt.exe
2015-12-18 08:59:12 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-18 08:59:11 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-18 08:59:11 ----A---- C:\Windows\system32\jscript9diag.dll
2015-12-18 08:59:11 ----A---- C:\Windows\system32\ieapfltr.dll
2015-12-18 08:59:11 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-18 08:59:09 ----A---- C:\Windows\system32\webcheck.dll
2015-12-18 08:59:09 ----A---- C:\Windows\system32\msrating.dll
2015-12-18 08:59:09 ----A---- C:\Windows\system32\iesetup.dll
2015-12-18 08:59:09 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-12-18 08:59:08 ----A---- C:\Windows\system32\wininet.dll
2015-12-18 08:59:07 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-18 08:59:06 ----A---- C:\Windows\system32\ieui.dll
2015-12-18 08:59:06 ----A---- C:\Windows\system32\ieframe.dll
2015-12-18 08:59:04 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-18 08:59:03 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-12-18 08:59:03 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-12-18 08:59:02 ----A---- C:\Windows\system32\iertutil.dll
2015-12-18 08:59:01 ----A---- C:\Windows\system32\mshtml.dll
2015-12-18 08:59:00 ----A---- C:\Windows\system32\jscript9.dll
2015-12-18 08:58:59 ----A---- C:\Windows\system32\jscript.dll
2015-12-18 08:58:58 ----A---- C:\Windows\system32\vbscript.dll
2015-12-18 08:58:35 ----A---- C:\Windows\explorer.exe
2015-12-18 08:57:46 ----A---- C:\Windows\system32\d2d1.dll
2015-12-18 08:37:41 ----A---- C:\Windows\system32\FntCache.dll
2015-12-18 08:37:41 ----A---- C:\Windows\system32\DWrite.dll
2015-12-18 08:37:40 ----A---- C:\Windows\system32\win32k.sys
2015-12-18 08:37:40 ----A---- C:\Windows\system32\user32.dll
2015-12-18 08:37:39 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-12-18 08:29:18 ----A---- C:\Windows\system32\d3d10warp.dll
2015-12-18 08:22:30 ----A---- C:\Windows\system32\WMPhoto.dll
2015-12-17 16:02:34 ----SD---- C:\Windows\system32\GWX
2015-12-17 16:02:27 ----SD---- C:\Windows\system32\CompatTel
2015-12-17 16:02:27 ----D---- C:\Windows\system32\appraiser
2015-12-17 14:40:35 ----D---- C:\Windows\Migration
2015-12-17 14:11:48 ----A---- C:\Windows\system32\jsIntl.dll
2015-12-17 14:11:48 ----A---- C:\Windows\system32\elshyph.dll
2015-12-17 14:11:47 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-12-17 14:11:47 ----A---- C:\Windows\system32\msls31.dll
2015-12-17 14:11:46 ----A---- C:\Windows\system32\ieapfltr.dat
2015-12-17 14:11:46 ----A---- C:\Windows\system32\icardie.dll
2015-12-17 14:11:45 ----A---- C:\Windows\system32\wextract.exe
2015-12-17 14:11:45 ----A---- C:\Windows\system32\url.dll
2015-12-17 14:11:45 ----A---- C:\Windows\system32\licmgr10.dll
2015-12-17 14:11:45 ----A---- C:\Windows\system32\inseng.dll
2015-12-17 14:11:44 ----A---- C:\Windows\system32\iexpress.exe
2015-12-17 14:11:43 ----A---- C:\Windows\system32\pngfilt.dll
2015-12-17 14:11:43 ----A---- C:\Windows\system32\mshta.exe
2015-12-17 14:11:42 ----A---- C:\Windows\system32\msfeedssync.exe
2015-12-17 14:11:42 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-12-17 14:11:42 ----A---- C:\Windows\system32\imgutil.dll
2015-12-17 14:11:42 ----A---- C:\Windows\system32\iepeers.dll
2015-12-17 14:11:42 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-12-17 14:11:41 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-12-17 14:11:41 ----A---- C:\Windows\system32\mshtmler.dll
2015-12-17 14:11:41 ----A---- C:\Windows\system32\iesysprep.dll
2015-12-17 14:10:02 ----A---- C:\Windows\system32\mswsock.dll
2015-12-17 14:09:44 ----A---- C:\Windows\system32\taskhost.exe
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-12-17 14:06:33 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-12-17 14:06:33 ----A---- C:\Windows\system32\XpsPrint.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\UIAnimation.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\dxgi.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\d3d10level9.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\d3d10core.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\d3d10_1.dll
2015-12-17 14:06:32 ----A---- C:\Windows\system32\d3d10.dll
2015-12-17 14:04:25 ----A---- C:\Windows\system32\d3d11.dll
2015-12-17 13:51:02 ----D---- C:\Windows\system32\MRT
2015-12-17 13:50:56 ----A---- C:\Windows\system32\MRT.exe
2015-12-17 13:45:28 ----A---- C:\Windows\system32\UtcResources.dll
2015-12-17 13:45:28 ----A---- C:\Windows\system32\diagtrack.dll
2015-12-17 13:45:25 ----A---- C:\Windows\system32\tdh.dll
2015-12-17 13:45:24 ----A---- C:\Windows\system32\advapi32.dll
2015-12-17 13:43:51 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-12-17 13:43:50 ----A---- C:\Windows\system32\sysmain.dll
2015-12-17 13:43:49 ----A---- C:\Windows\system32\msmmsp.dll
2015-12-17 13:43:27 ----A---- C:\Windows\system32\blackbox.dll
2015-12-17 13:43:26 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-12-17 13:43:26 ----A---- C:\Windows\system32\drmv2clt.dll
2015-12-17 13:43:25 ----A---- C:\Windows\system32\mf.dll
2015-12-17 13:43:22 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-12-17 13:43:21 ----A---- C:\Windows\system32\ci.dll
2015-12-17 13:43:21 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-12-17 13:43:20 ----A---- C:\Windows\system32\winresume.exe
2015-12-17 13:43:20 ----A---- C:\Windows\system32\winload.exe
2015-12-17 13:43:20 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-12-17 13:43:19 ----A---- C:\Windows\system32\quartz.dll
2015-12-17 13:43:19 ----A---- C:\Windows\system32\qdvd.dll
2015-12-17 13:43:19 ----A---- C:\Windows\system32\evr.dll
2015-12-17 13:43:19 ----A---- C:\Windows\system32\audiosrv.dll
2015-12-17 13:43:18 ----A---- C:\Windows\system32\pcasvc.dll
2015-12-17 13:43:18 ----A---- C:\Windows\system32\mfplat.dll
2015-12-17 13:43:18 ----A---- C:\Windows\system32\cryptui.dll
2015-12-17 13:43:18 ----A---- C:\Windows\system32\AudioEng.dll
2015-12-17 13:43:17 ----A---- C:\Windows\system32\EncDump.dll
2015-12-17 13:43:17 ----A---- C:\Windows\system32\cryptsp.dll
2015-12-17 13:43:17 ----A---- C:\Windows\system32\AudioSes.dll
2015-12-17 13:43:16 ----A---- C:\Windows\system32\msscp.dll
2015-12-17 13:43:15 ----A---- C:\Windows\system32\rrinstaller.exe
2015-12-17 13:43:15 ----A---- C:\Windows\system32\msnetobj.dll
2015-12-17 13:43:15 ----A---- C:\Windows\system32\mfps.dll
2015-12-17 13:43:15 ----A---- C:\Windows\system32\audiodg.exe
2015-12-17 13:43:14 ----A---- C:\Windows\system32\pcawrk.exe
2015-12-17 13:43:14 ----A---- C:\Windows\system32\pcalua.exe
2015-12-17 13:43:14 ----A---- C:\Windows\system32\pcadm.dll
2015-12-17 13:43:14 ----A---- C:\Windows\system32\mfpmp.exe
2015-12-17 13:43:12 ----A---- C:\Windows\system32\pcaevts.dll
2015-12-17 13:43:12 ----A---- C:\Windows\system32\mferror.dll
2015-12-17 13:42:43 ----A---- C:\Windows\system32\icaapi.dll
2015-12-17 13:42:43 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-12-17 13:42:09 ----A---- C:\Windows\system32\tracerpt.exe
2015-12-17 13:42:08 ----A---- C:\Windows\system32\typeperf.exe
2015-12-17 13:42:08 ----A---- C:\Windows\system32\sechost.dll
2015-12-17 13:42:08 ----A---- C:\Windows\system32\logman.exe
2015-12-17 13:42:07 ----A---- C:\Windows\system32\relog.exe
2015-12-17 13:42:07 ----A---- C:\Windows\system32\diskperf.exe
2015-12-17 13:41:18 ----A---- C:\Windows\system32\appidsvc.dll
2015-12-17 13:41:18 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-12-17 13:41:18 ----A---- C:\Windows\system32\appidapi.dll
2015-12-17 13:41:17 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-12-17 13:41:17 ----A---- C:\Windows\system32\drivers\appid.sys
2015-12-17 13:41:17 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-12-17 13:41:01 ----A---- C:\Windows\system32\wuapp.exe
2015-12-17 13:41:01 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wups2.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wups.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wudriver.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wucltux.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-17 13:41:00 ----A---- C:\Windows\system32\wuapi.dll
2015-12-17 13:41:00 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-17 13:40:10 ----A---- C:\Windows\system32\winlogon.exe
2015-12-17 13:40:08 ----A---- C:\Windows\system32\winsta.dll
2015-12-17 13:40:08 ----A---- C:\Windows\system32\rdrmemptylst.exe
2015-12-17 13:40:08 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-12-17 13:40:08 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-12-17 13:40:07 ----A---- C:\Windows\system32\rdpwsx.dll
2015-12-17 13:39:29 ----A---- C:\Windows\system32\Wpc.dll
2015-12-17 13:39:29 ----A---- C:\Windows\system32\gameux.dll
2015-12-17 13:38:31 ----A---- C:\Windows\system32\basesrv.dll
2015-12-17 13:38:11 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-17 13:38:11 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-12-17 13:38:10 ----A---- C:\Windows\system32\schannel.dll
2015-12-17 13:38:10 ----A---- C:\Windows\system32\lsasrv.dll
2015-12-17 13:38:10 ----A---- C:\Windows\system32\kerberos.dll
2015-12-17 13:38:09 ----A---- C:\Windows\system32\srcore.dll
2015-12-17 13:38:09 ----A---- C:\Windows\system32\rpcrt4.dll
2015-12-17 13:38:09 ----A---- C:\Windows\system32\ntdll.dll
2015-12-17 13:38:09 ----A---- C:\Windows\system32\ncrypt.dll
2015-12-17 13:38:09 ----A---- C:\Windows\system32\msv1_0.dll
2015-12-17 13:38:09 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-12-17 13:38:09 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-12-17 13:38:09 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-12-17 13:38:09 ----A---- C:\Windows\system32\adtschema.dll
2015-12-17 13:38:08 ----A---- C:\Windows\system32\wdigest.dll
2015-12-17 13:38:08 ----A---- C:\Windows\system32\TSpkg.dll
2015-12-17 13:38:08 ----A---- C:\Windows\system32\smss.exe
2015-12-17 13:38:08 ----A---- C:\Windows\system32\rstrui.exe
2015-12-17 13:38:08 ----A---- C:\Windows\system32\lsass.exe
2015-12-17 13:38:08 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-12-17 13:38:08 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-12-17 13:38:08 ----A---- C:\Windows\system32\csrsrv.dll
2015-12-17 13:38:08 ----A---- C:\Windows\system32\cryptbase.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\sspisrv.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\sspicli.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\srclient.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\secur32.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\msobjs.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\msaudite.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\credssp.dll
2015-12-17 13:38:07 ----A---- C:\Windows\system32\auditpol.exe
2015-12-17 13:38:07 ----A---- C:\Windows\system32\apisetschema.dll
2015-12-17 13:37:23 ----A---- C:\Windows\system32\objsel.dll
2015-12-17 13:37:22 ----A---- C:\Windows\system32\dpapiprovider.dll
2015-12-17 13:37:22 ----A---- C:\Windows\system32\dimsroam.dll
2015-12-17 13:37:22 ----A---- C:\Windows\system32\cngprovider.dll
2015-12-17 13:37:22 ----A---- C:\Windows\system32\capiprovider.dll
2015-12-17 13:37:22 ----A---- C:\Windows\system32\adprovider.dll
2015-12-17 13:37:21 ----A---- C:\Windows\system32\wincredprovider.dll
2015-12-17 13:36:35 ----A---- C:\Windows\system32\certcli.dll
2015-12-17 13:36:20 ----A---- C:\Windows\system32\pku2u.dll
2015-12-17 13:35:52 ----A---- C:\Windows\system32\osk.exe
2015-12-17 13:35:47 ----A---- C:\Windows\system32\drivers\cng.sys
2015-12-17 13:35:47 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-12-17 13:35:36 ----A---- C:\Windows\system32\scavengeui.dll
2015-12-17 13:35:29 ----A---- C:\Windows\system32\tzres.dll
2015-12-17 13:35:19 ----A---- C:\Windows\system32\netcorehc.dll
2015-12-17 13:35:19 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-12-17 13:35:18 ----A---- C:\Windows\system32\netevent.dll
2015-12-17 13:35:18 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2015-12-17 13:34:14 ----A---- C:\Windows\system32\certutil.exe
2015-12-17 13:34:13 ----A---- C:\Windows\system32\certenc.dll
2015-12-17 13:33:50 ----A---- C:\Windows\system32\msi.dll
2015-12-17 13:33:49 ----A---- C:\Windows\system32\msimsg.dll
2015-12-17 13:33:49 ----A---- C:\Windows\system32\msihnd.dll
2015-12-17 13:33:49 ----A---- C:\Windows\system32\msiexec.exe
2015-12-17 13:33:40 ----A---- C:\Windows\system32\mfc42u.dll
2015-12-17 13:33:40 ----A---- C:\Windows\system32\mfc42.dll
2015-12-17 13:33:39 ----A---- C:\Windows\system32\tquery.dll
2015-12-17 13:33:39 ----A---- C:\Windows\system32\mssrch.dll
2015-12-17 13:33:38 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-12-17 13:33:38 ----A---- C:\Windows\system32\SearchIndexer.exe
2015-12-17 13:33:38 ----A---- C:\Windows\system32\SearchFilterHost.exe
2015-12-17 13:33:38 ----A---- C:\Windows\system32\mssvp.dll
2015-12-17 13:33:38 ----A---- C:\Windows\system32\mssphtb.dll
2015-12-17 13:33:38 ----A---- C:\Windows\system32\mssph.dll
2015-12-17 13:33:37 ----A---- C:\Windows\system32\msscntrs.dll
2015-12-17 13:33:36 ----A---- C:\Windows\system32\kernel32.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-17 13:33:35 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-17 13:33:35 ----A---- C:\Windows\system32\winsrv.dll
2015-12-17 13:33:35 ----A---- C:\Windows\system32\KernelBase.dll
2015-12-17 13:33:35 ----A---- C:\Windows\system32\conhost.exe
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-12-17 13:33:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-12-17 13:33:32 ----A---- C:\Windows\system32\nlasvc.dll
2015-12-17 13:33:32 ----A---- C:\Windows\system32\nlaapi.dll
2015-12-17 13:33:32 ----A---- C:\Windows\system32\ncsi.dll
2015-12-17 13:33:31 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-12-17 13:33:20 ----A---- C:\Windows\system32\cewmdm.dll
2015-12-17 13:33:19 ----A---- C:\Windows\system32\shell32.dll
2015-12-17 13:33:18 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-12-17 13:33:14 ----A---- C:\Windows\system32\iologmsg.dll
2015-12-17 13:33:14 ----A---- C:\Windows\system32\drivers\storport.sys
2015-12-17 13:33:14 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2015-12-17 13:33:14 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2015-12-17 13:33:06 ----A---- C:\Windows\system32\els.dll
2015-12-17 13:33:03 ----A---- C:\Windows\system32\cryptdlg.dll
2015-12-17 13:32:54 ----A---- C:\Windows\system32\drivers\stream.sys
2015-12-17 13:32:51 ----A---- C:\Windows\system32\dpnet.dll
2015-12-17 13:32:49 ----A---- C:\Windows\system32\consent.exe
2015-12-17 13:32:49 ----A---- C:\Windows\system32\authui.dll
2015-12-17 13:32:49 ----A---- C:\Windows\system32\appinfo.dll
2015-12-17 13:32:36 ----A---- C:\Windows\system32\ntshrui.dll
2015-12-17 13:32:32 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-12-17 13:32:32 ----A---- C:\Windows\system32\credui.dll
2015-12-17 13:32:22 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2015-12-17 13:32:17 ----A---- C:\Windows\system32\shdocvw.dll
2015-12-17 13:32:09 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-12-17 13:32:08 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-12-17 13:32:06 ----A---- C:\Windows\system32\inetcomm.dll
2015-12-17 13:32:05 ----A---- C:\Windows\system32\dwmcore.dll
2015-12-17 13:32:05 ----A---- C:\Windows\system32\dwmapi.dll
2015-12-17 13:32:04 ----A---- C:\Windows\system32\wwansvc.dll
2015-12-17 13:32:03 ----A---- C:\Windows\system32\wwanprotdim.dll
2015-12-17 13:32:02 ----A---- C:\Windows\system32\FXSCOVER.exe
2015-12-17 13:32:01 ----A---- C:\Windows\system32\msctf.dll
2015-12-17 13:31:59 ----A---- C:\Windows\system32\drivers\bowser.sys
2015-12-17 13:31:57 ----A---- C:\Windows\system32\wpdshext.dll
2015-12-17 13:31:22 ----A---- C:\Windows\system32\wintrust.dll
2015-12-17 13:31:22 ----A---- C:\Windows\system32\cryptsvc.dll
2015-12-17 13:31:22 ----A---- C:\Windows\system32\crypt32.dll
2015-12-17 13:31:21 ----A---- C:\Windows\system32\cryptnet.dll
2015-12-17 13:31:10 ----A---- C:\Windows\system32\drivers\http.sys
2015-12-17 13:31:09 ----A---- C:\Windows\system32\wer.dll
2015-12-17 13:31:08 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-12-17 13:31:08 ----A---- C:\Windows\system32\aitstatic.exe
2015-12-17 13:31:07 ----A---- C:\Windows\system32\invagent.dll
2015-12-17 13:31:07 ----A---- C:\Windows\system32\generaltel.dll
2015-12-17 13:31:07 ----A---- C:\Windows\system32\devinv.dll
2015-12-17 13:31:07 ----A---- C:\Windows\system32\appraiser.dll
2015-12-17 13:31:07 ----A---- C:\Windows\system32\aepic.dll
2015-12-17 13:31:07 ----A---- C:\Windows\system32\aeinv.dll
2015-12-17 13:31:07 ----A---- C:\Windows\system32\acmigration.dll
2015-12-17 13:31:04 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-12-17 13:31:04 ----A---- C:\Windows\system32\RMActivate.exe
2015-12-17 13:31:03 ----A---- C:\Windows\system32\secproc_isv.dll
2015-12-17 13:31:03 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-12-17 13:31:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-12-17 13:31:02 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2015-12-17 13:31:02 ----A---- C:\Windows\system32\secproc_ssp.dll
2015-12-17 13:31:02 ----A---- C:\Windows\system32\secproc.dll
2015-12-17 13:31:02 ----A---- C:\Windows\system32\msdrm.dll
2015-12-17 13:30:28 ----A---- C:\Windows\system32\apphelp.dll
2015-12-17 13:30:27 ----A---- C:\Windows\system32\shimeng.dll
2015-12-17 13:30:27 ----A---- C:\Windows\system32\sdbinst.exe
2015-12-17 13:30:27 ----A---- C:\Windows\system32\aelupsvc.dll
2015-12-17 13:30:26 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-12-17 13:30:26 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-12-17 13:30:26 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-12-17 13:30:26 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-12-17 13:30:26 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\ucrtbase.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-12-17 13:30:25 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-12-17 13:30:24 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-12-17 13:30:11 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-12-17 13:29:49 ----A---- C:\Windows\system32\WebClnt.dll
2015-12-17 13:29:49 ----A---- C:\Windows\system32\davclnt.dll
2015-12-17 13:29:47 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2015-12-17 13:29:47 ----A---- C:\Windows\system32\dhcpcore6.dll
2015-12-17 13:29:42 ----A---- C:\Windows\system32\powertracker.dll
2015-12-17 13:29:42 ----A---- C:\Windows\system32\perftrack.dll
2015-12-17 13:29:41 ----A---- C:\Windows\system32\wdi.dll
2015-12-17 13:29:38 ----A---- C:\Windows\system32\InkEd.dll
2015-12-17 13:29:37 ----A---- C:\Windows\system32\jnwmon.dll
2015-12-17 13:29:36 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-12-17 13:29:36 ----A---- C:\Windows\system32\drivers\netio.sys
2015-12-17 13:29:35 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-12-17 13:29:34 ----A---- C:\Windows\system32\OxpsConverter.exe
2015-12-17 13:29:28 ----A---- C:\Windows\system32\poqexec.exe
2015-12-17 13:29:23 ----A---- C:\Windows\system32\lpk.dll
2015-12-17 13:29:23 ----A---- C:\Windows\system32\fontsub.dll
2015-12-17 13:29:23 ----A---- C:\Windows\system32\dciman32.dll
2015-12-17 13:29:23 ----A---- C:\Windows\system32\atmlib.dll
2015-12-17 13:29:23 ----A---- C:\Windows\system32\atmfd.dll
2015-12-17 13:29:16 ----A---- C:\Windows\system32\mscories.dll
2015-12-17 13:29:16 ----A---- C:\Windows\system32\mscorier.dll
2015-12-17 13:29:16 ----A---- C:\Windows\system32\dfshim.dll
2015-12-17 13:29:13 ----A---- C:\Windows\system32\cdosys.dll
2015-12-17 13:29:06 ----A---- C:\Windows\system32\ole32.dll
2015-12-17 13:29:04 ----A---- C:\Windows\system32\schedsvc.dll
2015-12-17 13:29:02 ----A---- C:\Windows\system32\oleacc.dll
2015-12-17 13:29:01 ----A---- C:\Windows\system32\wscript.exe
2015-12-17 13:29:00 ----A---- C:\Windows\system32\scrrun.dll
2015-12-17 13:29:00 ----A---- C:\Windows\system32\cscript.exe
2015-12-17 13:28:57 ----A---- C:\Windows\system32\drivers\fvevol.sys
2015-12-17 13:28:53 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-17 13:28:53 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-17 13:28:50 ----A---- C:\Windows\system32\netapi32.dll
2015-12-17 13:28:50 ----A---- C:\Windows\system32\browser.dll
2015-12-17 13:28:50 ----A---- C:\Windows\system32\browcli.dll
2015-12-17 13:28:48 ----A---- C:\Windows\system32\localspl.dll
2015-12-17 13:28:46 ----A---- C:\Windows\system32\services.exe
2015-12-17 13:28:45 ----A---- C:\Windows\system32\msxml6r.dll
2015-12-17 13:28:45 ----A---- C:\Windows\system32\msxml6.dll
2015-12-17 13:28:45 ----A---- C:\Windows\system32\msxml3r.dll
2015-12-17 13:28:45 ----A---- C:\Windows\system32\msxml3.dll
2015-12-17 13:28:43 ----A---- C:\Windows\system32\dnsrslvr.dll
2015-12-17 13:28:43 ----A---- C:\Windows\system32\dnscacheugc.exe
2015-12-17 13:28:43 ----A---- C:\Windows\system32\dnsapi.dll
2015-12-17 13:28:38 ----A---- C:\Windows\system32\CPFilters.dll
2015-12-17 13:28:37 ----A---- C:\Windows\system32\sbe.dll
2015-12-17 13:28:35 ----A---- C:\Windows\system32\notepad.exe
2015-12-17 13:28:35 ----A---- C:\Windows\notepad.exe
2015-12-17 13:28:34 ----A---- C:\Windows\system32\odbcjt32.dll
2015-12-17 13:28:34 ----A---- C:\Windows\system32\odbccr32.dll
2015-12-17 13:28:33 ----A---- C:\Windows\system32\odbctrac.dll
2015-12-17 13:28:33 ----A---- C:\Windows\system32\odbccu32.dll
2015-12-17 13:28:33 ----A---- C:\Windows\system32\odbccp32.dll
2015-12-17 13:28:31 ----A---- C:\Windows\system32\drivers\hidparse.sys
2015-12-17 13:28:31 ----A---- C:\Windows\system32\drivers\hidclass.sys
2015-12-17 13:28:28 ----A---- C:\Windows\system32\qedit.dll
2015-12-17 13:28:27 ----A---- C:\Windows\system32\clfsw32.dll
2015-12-17 13:28:27 ----A---- C:\Windows\system32\clfs.sys
2015-12-17 13:28:23 ----A---- C:\Windows\system32\packager.dll
2015-12-17 13:28:21 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-12-17 13:28:19 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-12-17 13:28:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-12-17 13:28:18 ----A---- C:\Windows\system32\cdd.dll
2015-12-17 13:28:17 ----A---- C:\Windows\system32\usp10.dll
2015-12-17 13:28:16 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-12-17 13:28:12 ----A---- C:\Windows\system32\prevhost.exe
2015-12-17 13:28:11 ----A---- C:\Windows\system32\msieftp.dll
2015-12-17 13:28:10 ----A---- C:\Windows\system32\drivers\srv2.sys
2015-12-17 13:28:10 ----A---- C:\Windows\system32\drivers\srv.sys
2015-12-17 13:28:09 ----A---- C:\Windows\system32\drivers\srvnet.sys
2015-12-17 13:28:08 ----A---- C:\Windows\system32\imagehlp.dll
2015-12-17 13:28:06 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-12-17 13:28:06 ----A---- C:\Windows\system32\drivers\drmk.sys
2015-12-17 13:28:05 ----A---- C:\Windows\system32\Wdfres.dll
2015-12-17 13:28:05 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2015-12-17 13:28:05 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-12-17 13:28:02 ----A---- C:\Windows\system32\xmllite.dll
2015-12-17 13:27:58 ----A---- C:\Windows\system32\gdi32.dll
2015-12-17 13:27:52 ----A---- C:\Windows\system32\win32spl.dll
2015-12-17 13:27:49 ----A---- C:\Windows\system32\webio.dll
2015-12-17 13:27:45 ----A---- C:\Windows\system32\drivers\afd.sys
2015-12-17 13:27:44 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-12-17 13:27:39 ----A---- C:\Windows\system32\psisdecd.dll
2015-12-17 13:27:37 ----A---- C:\Windows\system32\nshwfp.dll
2015-12-17 13:27:37 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-12-17 13:27:37 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-12-17 13:27:34 ----A---- C:\Windows\system32\rastls.dll
2015-12-17 13:27:33 ----A---- C:\Windows\system32\umpnpmgr.dll
2015-12-17 13:27:27 ----A---- C:\Windows\system32\oleaut32.dll
2015-12-17 13:27:26 ----A---- C:\Windows\system32\msvcrt.dll
2015-12-17 13:27:24 ----A---- C:\Windows\system32\EncDec.dll
2015-12-17 13:27:22 ----A---- C:\Windows\system32\drivers\partmgr.sys
2015-12-17 13:27:12 ----A---- C:\Windows\system32\wshrm.dll
2015-12-17 13:27:12 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-17 13:27:08 ----A---- C:\Windows\system32\synceng.dll
2015-12-17 13:27:03 ----A---- C:\Windows\system32\wmp.dll
2015-12-17 13:27:02 ----A---- C:\Windows\system32\wmploc.DLL
2015-12-17 13:27:02 ----A---- C:\Windows\system32\spwmp.dll
2015-12-17 13:27:02 ----A---- C:\Windows\system32\dxmasf.dll
2015-12-17 13:27:00 ----A---- C:\Windows\system32\drivers\usbehci.sys
2015-12-17 13:26:59 ----A---- C:\Windows\system32\drivers\usbport.sys
2015-12-17 13:26:59 ----A---- C:\Windows\system32\drivers\usbohci.sys
2015-12-17 13:26:59 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-12-17 13:26:59 ----A---- C:\Windows\system32\drivers\usbd.sys
2015-12-17 13:26:59 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2015-12-17 13:26:57 ----A---- C:\Windows\system32\profsvc.dll
2015-12-17 13:26:55 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-12-17 13:26:54 ----A---- C:\Windows\system32\drivers\ataport.sys
2015-12-17 13:26:52 ----A---- C:\Windows\system32\ubpm.dll
2015-12-17 13:26:50 ----A---- C:\Windows\system32\charmap.exe
2015-12-17 13:26:49 ----A---- C:\Windows\system32\scesrv.dll
2015-12-17 13:26:47 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2015-12-17 13:26:47 ----A---- C:\Windows\system32\drivers\usbcir.sys
2015-12-17 13:22:53 ----A---- C:\Windows\system32\termsrv.dll
2015-12-17 13:22:46 ----A---- C:\Windows\system32\comctl32.dll
2015-12-17 13:08:16 ----A---- C:\Windows\system32\rdpcore.dll
2015-12-17 13:08:15 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2015-12-17 12:51:06 ----A---- C:\Windows\system32\WsmSvc.dll
2015-12-17 12:51:05 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-12-17 12:51:05 ----A---- C:\Windows\system32\WsmAuto.dll
2015-12-17 12:51:05 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-12-17 12:51:05 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-12-17 09:56:36 ----N---- C:\Windows\system32\MpSigStub.exe
2015-12-17 08:16:18 ----D---- C:\Program Files\Microsoft Security Client
2015-12-17 08:12:35 ----D---- C:\Users\veronika\AppData\Roaming\Adobe
2015-12-17 08:12:25 ----D---- C:\Program Files\WinRAR
2015-12-17 08:11:38 ----D---- C:\Users\veronika\AppData\Roaming\IrfanView
2015-12-17 08:11:38 ----D---- C:\Program Files\IrfanView
2015-12-17 08:11:11 ----D---- C:\Users\veronika\AppData\Roaming\GHISLER
2015-12-17 08:11:11 ----D---- C:\totalcmd
2015-12-17 08:11:11 ----A---- C:\Windows\UC.PIF
2015-12-17 08:11:11 ----A---- C:\Windows\RAR.PIF
2015-12-17 08:11:11 ----A---- C:\Windows\PKZIP.PIF
2015-12-17 08:11:11 ----A---- C:\Windows\PKUNZIP.PIF
2015-12-17 08:11:11 ----A---- C:\Windows\LHA.PIF
2015-12-17 08:11:11 ----A---- C:\Windows\ARJ.PIF
2015-12-17 08:07:29 ----D---- C:\Program Files\Google
2015-12-17 08:06:29 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-12-17 08:04:39 ----D---- C:\Program Files\Common Files\Adobe
2015-12-17 08:04:39 ----D---- C:\Program Files\Adobe
2015-12-17 08:03:00 ----D---- C:\ProgramData\Adobe
2015-12-17 07:57:41 ----A---- C:\Windows\system32\drivers\amdhub30.sys
2015-12-17 07:55:51 ----A---- C:\Windows\system32\drivers\BCMWL6.SYS
2015-12-17 07:55:51 ----A---- C:\Windows\system32\bcmihvui.dll
2015-12-17 07:55:51 ----A---- C:\Windows\system32\bcmihvsrv.dll
2015-12-17 07:55:32 ----A---- C:\Windows\system32\bcmwlcoi.dll
2015-12-17 07:53:47 ----A---- C:\Windows\system32\drivers\amdxhc.sys
2015-12-17 07:50:40 ----D---- C:\Users\veronika\AppData\Roaming\ATI
2015-12-17 07:50:40 ----D---- C:\ProgramData\ATI
2015-12-17 07:48:07 ----D---- C:\Program Files\AMD AVT
2015-12-17 07:47:05 ----D---- C:\ProgramData\AMD
2015-12-17 07:46:29 ----D---- C:\Program Files\AMD
2015-12-17 07:46:06 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-12-17 07:43:37 ----D---- C:\Program Files\Microsoft.NET
2015-12-17 07:42:42 ----D---- C:\ProgramData\Package Cache
2015-12-17 07:35:50 ----A---- C:\Windows\system32\RTNUninst32.dll
2015-12-17 07:35:50 ----A---- C:\Windows\system32\RtNicProp32.dll
2015-12-17 07:35:50 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2015-12-17 07:35:42 ----D---- C:\Program Files\Realtek
2015-12-17 07:35:39 ----HD---- C:\Program Files\InstallShield Installation Information
2015-12-17 07:34:31 ----SHD---- C:\Windows\Installer
2015-12-17 07:34:17 ----D---- C:\Program Files\ATI Technologies
2015-12-17 07:34:14 ----D---- C:\Program Files\ATI
2015-12-16 14:25:57 ----D---- C:\Users\veronika\AppData\Roaming\Identities
2015-12-16 14:25:38 ----SD---- C:\Users\veronika\AppData\Roaming\Microsoft
2015-12-16 14:25:38 ----D---- C:\Users\veronika\AppData\Roaming\Media Center Programs
2015-12-16 14:25:29 ----SHD---- C:\Recovery
2015-12-16 14:25:29 ----SHD---- C:\ProgramData\Šablony
2015-12-16 14:25:29 ----SHD---- C:\ProgramData\Plocha
2015-12-16 14:25:29 ----SHD---- C:\ProgramData\Oblíbené položky
2015-12-16 14:25:29 ----SHD---- C:\ProgramData\Nabídka Start
2015-12-16 14:25:29 ----SHD---- C:\ProgramData\Dokumenty
2015-12-16 14:25:29 ----SHD---- C:\ProgramData\Data aplikací
2015-12-16 14:18:53 ----D---- C:\Windows\SoftwareDistribution
2015-12-16 14:16:47 ----D---- C:\Windows\Prefetch
2015-12-16 14:15:56 ----ASH---- C:\pagefile.sys
2015-12-16 14:15:55 ----SHD---- C:\System Volume Information
2015-12-16 14:15:55 ----ASH---- C:\hiberfil.sys
2015-12-16 14:15:18 ----D---- C:\Windows\Panther

======List of files/folders modified in the last 1 month======

2015-12-19 10:10:33 ----RD---- C:\Program Files
2015-12-19 10:10:30 ----D---- C:\Windows\Temp
2015-12-19 10:00:00 ----D---- C:\Windows
2015-12-19 09:52:51 ----D---- C:\Windows\inf
2015-12-19 09:51:55 ----D---- C:\Windows\AppCompat
2015-12-19 09:51:16 ----D---- C:\Windows\Logs
2015-12-19 09:51:14 ----D---- C:\Windows\debug
2015-12-19 09:49:50 ----D---- C:\Windows\System32
2015-12-19 09:49:50 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-19 09:49:21 ----D---- C:\Windows\system32\Tasks
2015-12-19 09:47:28 ----D---- C:\Windows\system32\config
2015-12-19 09:46:23 ----D---- C:\Program Files\Common Files
2015-12-18 21:56:15 ----D---- C:\Windows\system32\NDF
2015-12-18 21:53:47 ----D---- C:\Windows\system32\LogFiles
2015-12-18 20:43:02 ----D---- C:\Windows\LiveKernelReports
2015-12-18 19:26:24 ----D---- C:\Windows\rescache
2015-12-18 18:14:44 ----D---- C:\Windows\Tasks
2015-12-18 18:13:10 ----SD---- C:\ProgramData\Microsoft
2015-12-18 17:48:03 ----D---- C:\Windows\Microsoft.NET
2015-12-18 17:48:00 ----RSD---- C:\Windows\assembly
2015-12-18 12:29:23 ----D---- C:\Windows\winsxs
2015-12-18 12:26:34 ----RSD---- C:\Windows\Fonts
2015-12-18 12:26:10 ----D---- C:\Windows\ShellNew
2015-12-18 12:26:05 ----D---- C:\Program Files\Common Files\microsoft shared
2015-12-18 12:25:51 ----D---- C:\Program Files\MSBuild
2015-12-18 12:22:24 ----A---- C:\Windows\win.ini
2015-12-18 12:22:22 ----D---- C:\Program Files\Common Files\System
2015-12-18 12:20:49 ----HD---- C:\ProgramData
2015-12-18 11:32:45 ----D---- C:\Windows\system32\cs-CZ
2015-12-18 11:32:44 ----D---- C:\Windows\system32\DriverStore
2015-12-18 11:32:43 ----D---- C:\Windows\system32\drivers
2015-12-18 11:02:39 ----D---- C:\Windows\system32\catroot2
2015-12-18 10:21:54 ----D---- C:\Windows\system32\en-US
2015-12-18 10:21:54 ----D---- C:\Windows\PolicyDefinitions
2015-12-18 10:21:53 ----D---- C:\Windows\tracing
2015-12-18 10:21:52 ----D---- C:\Windows\ehome
2015-12-18 10:21:50 ----D---- C:\Program Files\Internet Explorer
2015-12-18 10:21:49 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-12-18 10:21:49 ----D---- C:\Windows\AppPatch
2015-12-18 10:21:48 ----D---- C:\Windows\system32\wbem
2015-12-18 10:21:48 ----D---- C:\Windows\system32\drivers\en-US
2015-12-18 10:21:41 ----D---- C:\Windows\system32\migration
2015-12-18 10:21:39 ----D---- C:\Windows\system32\CodeIntegrity
2015-12-18 10:21:33 ----D---- C:\Program Files\Windows Journal
2015-12-18 10:21:32 ----D---- C:\Program Files\Windows Media Player
2015-12-17 16:02:36 ----D---- C:\Windows\system32\AdvancedInstallers
2015-12-17 16:02:31 ----D---- C:\Windows\system32\Dism
2015-12-17 16:02:18 ----D---- C:\Program Files\Windows Defender
2015-12-17 16:02:08 ----D---- C:\Windows\system32\zh-TW
2015-12-17 16:02:08 ----D---- C:\Windows\system32\zh-HK
2015-12-17 16:02:08 ----D---- C:\Windows\system32\zh-CN
2015-12-17 16:02:08 ----D---- C:\Windows\system32\tr-TR
2015-12-17 16:02:08 ----D---- C:\Windows\system32\sv-SE
2015-12-17 16:02:08 ----D---- C:\Windows\system32\ru-RU
2015-12-17 16:02:08 ----D---- C:\Windows\system32\pt-PT
2015-12-17 16:02:08 ----D---- C:\Windows\system32\pt-BR
2015-12-17 16:02:08 ----D---- C:\Windows\system32\pl-PL
2015-12-17 16:02:08 ----D---- C:\Windows\system32\nl-NL
2015-12-17 16:02:08 ----D---- C:\Windows\system32\nb-NO
2015-12-17 16:02:08 ----D---- C:\Windows\system32\ko-KR
2015-12-17 16:02:08 ----D---- C:\Windows\system32\ja-JP
2015-12-17 16:02:08 ----D---- C:\Windows\system32\it-IT
2015-12-17 16:02:08 ----D---- C:\Windows\system32\hu-HU
2015-12-17 16:02:08 ----D---- C:\Windows\system32\fr-FR
2015-12-17 16:02:08 ----D---- C:\Windows\system32\fi-FI
2015-12-17 16:02:08 ----D---- C:\Windows\system32\es-ES
2015-12-17 16:02:08 ----D---- C:\Windows\system32\el-GR
2015-12-17 16:02:08 ----D---- C:\Windows\system32\de-DE
2015-12-17 16:02:08 ----D---- C:\Windows\system32\da-DK
2015-12-17 16:02:01 ----D---- C:\Windows\system32\Boot
2015-12-17 15:33:38 ----D---- C:\Windows\system32\catroot
2015-12-17 10:43:54 ----D---- C:\Windows\system32\wdi
2015-12-16 14:55:24 ----D---- C:\Windows\system32\restore
2015-12-16 14:25:52 ----SHD---- C:\$Recycle.Bin
2015-12-16 14:25:37 ----RD---- C:\Users
2015-12-16 14:25:29 ----D---- C:\Windows\system32\Recovery
2015-12-16 14:25:29 ----D---- C:\Program Files\Windows NT
2015-12-16 14:19:18 ----D---- C:\Windows\system32\sysprep
2015-12-16 14:18:03 ----D---- C:\Windows\system32\drivers\UMDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 245096]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 95408]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2013-05-28 85312]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-09-15 14798336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-09-15 463360]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2013-05-28 178496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2014-06-21 77824]
R3 BCM43XX;Ovladač pro bezdrátovou síťovou kartu DW WLAN; C:\Windows\system32\DRIVERS\bcmwl6.sys [2012-05-24 5193792]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2014-06-17 718552]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 84992]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-09-15 208896]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-09-15 276992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 22216]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 284504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-17 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-17 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-11-10 102912]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-12-18 147624]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

[Roli]

Zdravím, Microsoft Security essentials je slušná ochrana.

Jen to trochu poladíme.


Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)
Služba Google Update (gupdatem)
Mozilla Maintenance Service
Skype Updater

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.


V Knihovně Plánovače úloh zakaž GoogleUpdate bude to tam vícekrát.


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.

[marfy]

AdwCleaner v5.025 - Logfile created 19/12/2015 at 18:38:49
# Updated 13/12/2015 by Xplode
# Database : 2015-12-13.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x86)
# Username : veronika - VERONIKA-PC
# Running from : C:\Users\veronika\Desktop\adwcleaner_5.025.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [689 bytes] ##########

[Roli]

Ještě pro jistotu mrknem hlouběji.


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.

[marfy]

ComboFix 15-12-16.01 - veronika 20.12.2015 18:05:39.1.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.2040.913 [GMT 1:00]
Spuštěný z: c:\users\veronika\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
SP: Microsoft Security Essentials *Enabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-11-20 do 2015-12-20 )))))))))))))))))))))))))))))))
.
.
2015-12-20 17:13 . 2015-12-20 17:13 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-12-20 16:55 . 2015-12-20 16:55 39168 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{67019AEE-9004-40D0-BFC1-3BC23935236A}\MpKsl822e4c24.sys
2015-12-19 22:54 . 2015-12-19 22:54 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2015-12-19 17:37 . 2015-12-19 17:38 -------- d-----w- C:\AdwCleaner
2015-12-19 09:10 . 2015-12-19 09:11 -------- d-----w- c:\program files\trend micro
2015-12-19 09:10 . 2015-12-19 09:11 -------- d-----w- C:\rsit
2015-12-19 09:02 . 2015-11-25 01:43 9014120 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{67019AEE-9004-40D0-BFC1-3BC23935236A}\mpengine.dll
2015-12-19 08:59 . 2015-12-19 09:08 -------- d-----w- C:\FRST
2015-12-19 08:48 . 2015-12-19 08:49 -------- d-----w- c:\program files\CCleaner
2015-12-19 08:46 . 2015-12-19 08:46 -------- d-----w- c:\program files\Common Files\Skype
2015-12-19 08:46 . 2015-12-19 08:46 -------- d-----r- c:\program files\Skype
2015-12-18 11:35 . 2015-12-18 17:14 -------- d-----w- c:\windows\AutoKMS
2015-12-18 11:24 . 2015-12-18 11:24 -------- d-----w- c:\program files\Microsoft Synchronization Services
2015-12-18 11:24 . 2015-12-18 11:24 -------- d-----w- c:\windows\PCHEALTH
2015-12-18 11:24 . 2015-12-18 11:24 -------- d-----w- c:\program files\Microsoft Sync Framework
2015-12-18 11:24 . 2015-12-18 11:24 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2015-12-18 11:22 . 2015-12-18 11:22 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2015-12-18 11:22 . 2015-12-18 11:22 -------- d-----w- c:\program files\Microsoft Analysis Services
2015-12-18 11:20 . 2015-12-19 22:58 -------- d-----w- c:\programdata\Microsoft Help
2015-12-18 11:20 . 2015-12-18 11:20 -------- d-----r- C:\MSOCache
2015-12-18 10:19 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\system32\esent.dll
2015-12-18 10:19 . 2011-03-11 05:31 74240 ----a-w- c:\windows\system32\fsutil.exe
2015-12-18 10:19 . 2011-03-11 05:39 143744 ----a-w- c:\windows\system32\drivers\nvstor.sys
2015-12-18 10:19 . 2011-03-11 05:39 117120 ----a-w- c:\windows\system32\drivers\nvraid.sys
2015-12-18 10:19 . 2011-03-11 05:38 332160 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2015-12-18 10:19 . 2011-03-11 05:38 80256 ----a-w- c:\windows\system32\drivers\amdsata.sys
2015-12-18 10:19 . 2011-03-11 05:38 22400 ----a-w- c:\windows\system32\drivers\amdxata.sys
2015-12-18 10:19 . 2015-07-16 19:12 6131200 ----a-w- c:\windows\system32\mstscax.dll
2015-12-18 10:19 . 2015-07-16 19:12 856064 ----a-w- c:\windows\system32\rdvidcrl.dll
2015-12-18 10:19 . 2015-07-16 19:12 53248 ----a-w- c:\windows\system32\tsgqec.dll
2015-12-18 10:19 . 2015-07-16 15:14 355840 ----a-w- c:\windows\system32\wksprt.exe
2015-12-18 10:18 . 2014-12-11 17:47 74240 ----a-w- c:\windows\system32\TSWbPrxy.exe
2015-12-18 10:18 . 2012-07-06 19:23 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2015-12-18 10:18 . 2011-04-28 03:15 60416 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2015-12-18 10:17 . 2015-06-09 19:35 2745856 ----a-w- c:\windows\system32\rdpcorets.dll
2015-12-18 10:17 . 2015-06-09 15:17 221184 ----a-w- c:\windows\system32\rdpudd.dll
2015-12-18 10:17 . 2015-06-09 19:35 13824 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2015-12-18 10:17 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDYAK.DLL
2015-12-18 10:17 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDBASH.DLL
2015-12-18 09:43 . 2015-10-08 23:17 69120 ----a-w- c:\windows\system32\nlsbres.dll
2015-12-18 09:43 . 2015-10-08 23:13 6144 ----a-w- c:\windows\system32\kbdgeoqw.dll
2015-12-18 09:43 . 2015-10-08 23:13 6144 ----a-w- c:\windows\system32\KBDAZEL.DLL
2015-12-18 08:52 . 2012-08-23 14:44 14848 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-12-18 08:52 . 2012-08-23 11:12 192000 ----a-w- c:\windows\system32\rdpendp_winip.dll
2015-12-18 08:49 . 2015-12-19 08:46 -------- d-----w- c:\programdata\Skype
2015-12-18 08:47 . 2015-12-18 08:47 -------- d-----w- c:\program files\Microsoft Silverlight
2015-12-18 08:32 . 2015-11-25 01:43 9014120 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-12-18 08:27 . 2013-10-01 23:45 32256 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2015-12-18 08:27 . 2013-10-02 00:32 12800 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-12-18 08:27 . 2013-10-02 00:42 49152 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2015-12-18 08:27 . 2013-10-02 00:30 14336 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-12-18 08:27 . 2013-10-02 00:14 50176 ----a-w- c:\windows\system32\MsRdpWebAccess.dll
2015-12-18 08:27 . 2013-10-02 00:14 17920 ----a-w- c:\windows\system32\wksprtPS.dll
2015-12-18 08:27 . 2013-10-01 22:34 1068544 ----a-w- c:\windows\system32\mstsc.exe
2015-12-18 08:19 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-12-18 08:14 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-12-18 08:14 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-12-18 08:14 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-12-18 08:14 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-12-18 08:14 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2015-12-18 08:14 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2015-12-18 08:14 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-12-18 08:13 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
2015-12-18 08:13 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
2015-12-18 08:13 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
2015-12-18 08:13 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-12-18 08:12 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-12-18 08:12 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2015-12-18 07:58 . 2015-11-10 00:20 10948096 ----a-w- c:\program files\Internet Explorer\F12Resources.dll
2015-12-18 07:58 . 2015-11-10 00:13 496640 ----a-w- c:\windows\system32\vbscript.dll
2015-12-18 07:58 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\explorer.exe
2015-12-18 07:57 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\system32\d2d1.dll
2015-12-18 07:37 . 2015-11-10 18:39 909824 ----a-w- c:\windows\system32\FntCache.dll
2015-12-18 07:37 . 2015-11-10 18:39 1251328 ----a-w- c:\windows\system32\DWrite.dll
2015-12-18 07:37 . 2015-11-10 18:39 811520 ----a-w- c:\windows\system32\user32.dll
2015-12-18 07:37 . 2015-11-10 17:40 2386944 ----a-w- c:\windows\system32\win32k.sys
2015-12-18 07:37 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-12-18 07:29 . 2015-07-30 17:57 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2015-12-18 07:22 . 2015-02-04 02:54 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2015-12-17 15:02 . 2015-12-18 09:21 -------- d-s---w- c:\windows\system32\GWX
2015-12-17 15:02 . 2015-12-17 15:02 -------- d-s---w- c:\windows\system32\CompatTel
2015-12-17 15:02 . 2015-12-17 15:02 -------- d-----w- c:\windows\system32\appraiser
2015-12-17 13:40 . 2015-12-17 13:40 -------- d-----w- c:\windows\Migration
2015-12-17 13:10 . 2015-12-17 13:10 231424 ----a-w- c:\windows\system32\mswsock.dll
2015-12-17 13:09 . 2015-12-17 13:09 49152 ----a-w- c:\windows\system32\taskhost.exe
2015-12-17 13:04 . 2015-12-17 13:04 1505280 ----a-w- c:\windows\system32\d3d11.dll
2015-12-17 12:51 . 2015-12-17 12:54 -------- d-----w- c:\windows\system32\MRT
2015-12-17 12:45 . 2015-07-22 17:53 937984 ----a-w- c:\windows\system32\diagtrack.dll
2015-12-17 12:45 . 2015-07-22 16:38 41984 ----a-w- c:\windows\system32\UtcResources.dll
2015-12-17 12:45 . 2015-07-22 17:53 635392 ----a-w- c:\windows\system32\tdh.dll
2015-12-17 12:45 . 2015-07-22 17:53 641536 ----a-w- c:\windows\system32\advapi32.dll
2015-12-17 12:42 . 2015-08-05 17:40 15872 ----a-w- c:\windows\system32\icaapi.dll
2015-12-17 12:42 . 2015-08-05 16:58 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2015-12-17 12:42 . 2015-05-25 18:00 364544 ----a-w- c:\windows\system32\tracerpt.exe
2015-12-17 12:42 . 2015-05-25 18:01 92160 ----a-w- c:\windows\system32\sechost.dll
2015-12-17 12:42 . 2015-05-25 18:00 40448 ----a-w- c:\windows\system32\typeperf.exe
2015-12-17 12:42 . 2015-05-25 18:00 82944 ----a-w- c:\windows\system32\logman.exe
2015-12-17 12:42 . 2015-05-25 18:00 37888 ----a-w- c:\windows\system32\relog.exe
2015-12-17 12:42 . 2015-05-25 18:00 17408 ----a-w- c:\windows\system32\diskperf.exe
2015-12-17 12:40 . 2014-07-17 01:39 304128 ----a-w- c:\windows\system32\winlogon.exe
2015-12-17 12:40 . 2014-07-17 01:40 157696 ----a-w- c:\windows\system32\winsta.dll
2015-12-17 12:40 . 2014-07-17 01:39 130048 ----a-w- c:\windows\system32\rdpcorekmts.dll
2015-12-17 12:40 . 2014-07-17 01:03 184320 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2015-12-17 12:40 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2015-12-17 12:40 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2015-12-17 12:38 . 2015-07-15 02:55 44032 ----a-w- c:\windows\system32\basesrv.dll
2015-12-17 12:37 . 2014-03-04 09:17 538112 ----a-w- c:\windows\system32\objsel.dll
2015-12-17 12:37 . 2014-03-04 09:17 47616 ----a-w- c:\windows\system32\dpapiprovider.dll
2015-12-17 12:37 . 2014-03-04 09:17 36864 ----a-w- c:\windows\system32\dimsroam.dll
2015-12-17 12:37 . 2014-03-04 09:17 51200 ----a-w- c:\windows\system32\cngprovider.dll
2015-12-17 12:37 . 2014-03-04 09:17 48128 ----a-w- c:\windows\system32\capiprovider.dll
2015-12-17 12:37 . 2014-03-04 09:17 49664 ----a-w- c:\windows\system32\adprovider.dll
2015-12-17 12:37 . 2014-03-04 09:17 35328 ----a-w- c:\windows\system32\wincredprovider.dll
2015-12-17 12:36 . 2015-04-18 02:56 342016 ----a-w- c:\windows\system32\certcli.dll
2015-12-17 12:36 . 2014-11-11 02:44 186880 ----a-w- c:\windows\system32\pku2u.dll
2015-12-17 12:35 . 2014-06-18 01:52 399360 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2015-12-17 12:35 . 2014-06-18 01:51 646144 ----a-w- c:\windows\system32\osk.exe
2015-12-17 12:35 . 2015-09-23 13:09 371920 ----a-w- c:\windows\system32\drivers\cng.sys
2015-12-17 12:35 . 2015-09-23 13:09 251000 ----a-w- c:\windows\system32\bcryptprimitives.dll
2015-12-17 12:35 . 2013-08-28 00:57 434688 ----a-w- c:\windows\system32\scavengeui.dll
2015-12-17 12:35 . 2015-11-05 19:00 2048 ----a-w- c:\windows\system32\tzres.dll
2015-12-17 12:35 . 2012-10-03 16:42 175104 ----a-w- c:\windows\system32\netcorehc.dll
2015-12-17 12:35 . 2012-10-03 16:40 499712 ----a-w- c:\windows\system32\iphlpsvc.dll
2015-12-17 12:35 . 2012-10-03 16:42 18944 ----a-w- c:\windows\system32\netevent.dll
2015-12-17 12:35 . 2012-10-03 15:21 35328 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-11-09 23:37 . 2015-12-18 07:59 230400 ----a-w- c:\windows\system32\webcheck.dll
2015-10-29 17:49 . 2015-12-17 12:30 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-10-29 17:49 . 2015-12-17 12:30 562176 ----a-w- c:\windows\apppatch\AcLayers.dll
2015-10-29 17:49 . 2015-12-17 12:30 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-10-29 17:49 . 2015-12-17 12:30 211968 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2015-10-29 17:39 . 2015-12-17 12:30 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2015-10-13 00:29 . 2015-10-13 00:29 875720 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2015-12-17 50378880]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2015-11-16 6602152]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe" [2014-09-15 748256]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2015-04-29 981688]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-11-10 102912]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R4 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2015-07-09 327296]
S1 MpKsl822e4c24;MpKsl822e4c24;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{67019AEE-9004-40D0-BFC1-3BC23935236A}\MpKsl822e4c24.sys [2015-12-20 39168]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2014-09-15 208896]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-09-15 276992]
S2 AODDriver4.3;AODDriver4.3;c:\program files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [2014-02-11 50400]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 95408]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys [2013-05-28 85312]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys [2013-05-28 178496]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2014-06-21 77824]
S3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2015-04-30 284504]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2014-06-17 718552]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL822E4C24
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
utcsvc REG_MULTI_SZ DiagTrack
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-12-17 07:09 1000264 ----a-w- c:\program files\Google\Chrome\Application\47.0.2526.106\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2015-12-17 07:07]
.
2015-12-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2015-12-17 07:07]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~4\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~4\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\veronika\AppData\Roaming\Mozilla\Firefox\Profiles\argvhxrp.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-12-20 18:16:48
ComboFix-quarantined-files.txt 2015-12-20 17:16
.
Před spuštěním: Volných bajtů: 316 354 232 320
Po spuštění: Volných bajtů: 315 752 419 328
.
- - End Of File - - A3DF38096E75D8B9DEB3FBFF70E4707F
A36C5E4F47E84449FF07ED3517B43A31

[Roli]

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.


Jinak PC je v pořádku, pokud tedy není žádný problém je to z mé strany vše.

[marfy]

hotovo, díky a at se v Novém roce vše daří))
pěkný den
Martin

[marfy]

ale manžlka mi říká až ted, že prý po každém zapnutí notebooku, musí pro přihlášení na wifi dát odstranit potíže. Jinak funguje bez problému a po odstranění potíží i wifi pak už běží.
¨díky

[Roli]

ale manžlka mi říká až ted, že prý po každém zapnutí notebooku, musí pro přihlášení na wifi dát odstranit potíže. Jinak funguje bez problému a po odstranění potíží i wifi pak už běží.
¨díky

Aktualizuj ovladače pro wifi, pokud nevíš co tam máš použij AIDA 64

Sice se jedná o trial ale náš účel splní.

Nainstaluj ji >> spusť >> klik na Počítač >> dále Přehled,

nahoře v aplikaci klikni na Zpráva vyber Rychlá zpráva >> Prostý text

a zkopíruj mi sem vše po Síť :, kouknu se co se s tím dá dělat.

[marfy]

nějak z toho programu nejsem vůbec moudrej, mimo androidu, nevím co dát stahovat, vše má strašně moc mega nebo Gb,
děkuji
http://prntscr.com/9jij00

[Roli]

nějak z toho programu nejsem vůbec moudrej, mimo androidu, nevím co dát stahovat, vše má strašně moc mega nebo Gb,
děkuji
http://prntscr.com/9jij00

Ježiši kams to vlezl, je to hned první řádek z odkazu a na jeho konci tlačítko Download nebo raději klkni ZDE

[marfy]

no nevím, byl odkaz na ztažení z těch stránek)) ted to jde líp)

[marfy]

a jen pro jistotu, jsem zkusil dát aktualizovat http://prntscr.com/9kbgha, když kliknu pravým tlačítkem, dát aktualizovat, tak mi přijde, že se nic neděje( dělám něco "zase" špatně?))

[Roli]

no nevím, byl odkaz na ztažení z těch stránek)) ted to jde líp)

No aby ne když Ti udělám stažení na jeden klik.

a jen pro jistotu, jsem zkusil dát aktualizovat

Já bych raději ten textový soubor podle návodu než print screen.

když kliknu pravým tlačítkem, dát aktualizovat, tak mi přijde, že se nic neděje( dělám něco "zase" špatně?))

Nevím co chceš aktualizovat, jestli myslíš ovladače, tak to v trialu Aidy nejde.

Jinak nejnovější ovladač pro wifi by měl být TENTO

Nainstaluj jej a dej vědět zda se to zlepšilo.

[marfy]

omlouvám se, že píšu až ted, ale aktualizace pomohla, děkuji a pěkný zbytek víkendu)