Prosím o kontrolu NTB

[Murdoc]

Pěkný večer, dostal se mi do rukou NTB mojí neteře. Počítač je tak zasekaný, že na něm nějde vůbec nic udělat, jedině v nouzovém režimu.

Prosím o Vaši pomoc přikládám log RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by Adelinka at 2016-05-12 21:49:55
Microsoft Windows 10 Home
System drive C: has 861 GB (94%) free of 912 GB
Total RAM: 7632 MB (89% free)

HijackThis download failed

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k appmodel
sihost.exe
C:\WINDOWS\Explorer.EXE
ctfmon.exe
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\helppane.exe -Embedding
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\CCleaner\CCleaner64.exe"
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files\totalcmd\TOTALCMD64.EXE"
"F:\ANTI BALAST\RSITx64.exe"
wmiadap.exe /R /T
C:\WINDOWS\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-04-29 213192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-29 2096424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2014-04-10 1830616]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2014-11-20 919768]
"PhoneCompanion"=C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [2015-02-27 836592]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2015-02-27 16094704]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2015-02-27 10842096]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-27 3945672]
"StartCN"=C:\Program Files\AMD\CNext\CNext\cnext.exe [2015-11-29 4866760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Adela\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-04-11 551104]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-12-08 8590760]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2016-03-01 50670720]
"cz.seznam.software.autoupdate"=C:\Users\Adela\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Adela\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2014-09-09 110344]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2014-09-09 492808]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-05-10 7391632]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcapexe]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeaack.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfeavfk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfemms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfencbdc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfencbdc.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfetdi2k.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableCAD"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-05-12 21:49:56 ----D---- C:\Program Files\trend micro
2016-05-12 21:49:55 ----D---- C:\rsit
2016-05-12 21:39:25 ----A---- C:\WINDOWS\ntbtlog.txt
2016-05-10 15:58:24 ----D---- C:\Users\Adela\AppData\Roaming\Netscape
2016-05-10 15:58:24 ----D---- C:\Users\Adela\AppData\Roaming\Mozilla
2016-05-10 15:58:24 ----D---- C:\Program Files (x86)\Photodex Presenter
2016-05-10 15:57:14 ----D---- C:\Program Files (x86)\Photodex
2016-05-10 15:52:38 ----D---- C:\Users\Adela\AppData\Roaming\Photodex
2016-05-10 15:52:31 ----D---- C:\ProgramData\Photodex
2016-05-10 15:49:53 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2016-05-10 15:46:34 ----D---- C:\Users\Adela\AppData\Roaming\AVAST Software
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswSnx.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2016-05-10 15:45:53 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2016-05-10 15:45:32 ----A---- C:\WINDOWS\system32\aswBoot.exe
2016-05-10 15:45:00 ----A---- C:\WINDOWS\avastSS.scr
2016-05-10 15:42:37 ----D---- C:\Program Files\AVAST Software
2016-05-10 15:42:08 ----D---- C:\ProgramData\AVAST Software
2016-04-25 14:29:03 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2016-04-24 10:13:44 ----AD---- C:\Program Files (x86)\AMD
2016-04-24 10:13:39 ----AD---- C:\Program Files\ATI Technologies
2016-04-24 10:06:11 ----D---- C:\WINDOWS\LastGood.Tmp
2016-04-22 17:52:36 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\mantle64.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\dgtrayicon.exe
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\detoured.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\coinst_15.30.dll
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\atio6axx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\clinfo.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atitmm64.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atisamu64.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\ATIODE.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atimuixx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atieah64.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2016-04-22 17:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2016-04-22 17:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2016-04-22 17:52:32 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2016-04-22 17:52:32 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdmantle32.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdlvr32.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\amdmantle64.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\amdlvr64.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\system32\amdxc64.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\system32\atimpc64.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\system32\amdave64.dll
2016-04-13 21:12:44 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2016-04-13 21:12:43 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2016-04-13 21:12:43 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2016-04-13 21:12:36 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2016-04-13 21:12:36 ----A---- C:\WINDOWS\system32\jsproxy.dll
2016-04-13 21:12:35 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2016-04-13 21:12:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2016-04-13 21:12:35 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2016-04-13 21:12:32 ----A---- C:\WINDOWS\SYSWOW64\wininetlui.dll
2016-04-13 21:12:32 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2016-04-13 21:12:31 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2016-04-13 21:12:31 ----A---- C:\WINDOWS\system32\wininet.dll
2016-04-13 21:12:31 ----A---- C:\WINDOWS\system32\atmfd.dll
2016-04-13 21:12:30 ----A---- C:\WINDOWS\system32\kerberos.dll
2016-04-13 21:12:29 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2016-04-13 21:12:26 ----A---- C:\WINDOWS\system32\wininetlui.dll
2016-04-13 21:12:26 ----A---- C:\WINDOWS\system32\urlmon.dll
2016-04-13 21:12:25 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2016-04-13 21:12:24 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2016-04-13 21:12:24 ----A---- C:\WINDOWS\system32\storewuauth.dll
2016-04-13 21:12:24 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2016-04-13 21:12:23 ----A---- C:\WINDOWS\system32\edgehtml.dll
2016-04-13 21:12:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2016-04-13 21:12:18 ----A---- C:\WINDOWS\system32\wwansvc.dll
2016-04-13 21:12:18 ----A---- C:\WINDOWS\system32\atmlib.dll
2016-04-13 21:12:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 21:12:16 ----A---- C:\WINDOWS\system32\wuaueng.dll
2016-04-13 21:12:15 ----A---- C:\WINDOWS\system32\win32kfull.sys
2016-04-13 21:12:14 ----A---- C:\WINDOWS\system32\lsasrv.dll
2016-04-13 21:12:14 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 21:12:12 ----A---- C:\WINDOWS\system32\mshtml.dll
2016-04-13 21:11:44 ----A---- C:\WINDOWS\SYSWOW64\SRHInproc.dll
2016-04-13 21:11:44 ----A---- C:\WINDOWS\SYSWOW64\SRH.dll
2016-04-13 21:11:44 ----A---- C:\WINDOWS\system32\SRHInproc.dll
2016-04-13 21:11:44 ----A---- C:\WINDOWS\system32\SRH.dll
2016-04-13 21:11:43 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-13 21:11:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2016-04-13 21:11:33 ----A---- C:\WINDOWS\system32\twinui.dll
2016-04-13 21:11:31 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2016-04-13 21:11:30 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2016-04-13 21:11:29 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2016-04-13 21:11:29 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2016-04-13 21:11:29 ----A---- C:\WINDOWS\system32\InputService.dll
2016-04-13 21:11:29 ----A---- C:\WINDOWS\system32\fontsub.dll
2016-04-13 21:11:28 ----A---- C:\WINDOWS\system32\Chakra.dll
2016-04-13 21:11:24 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2016-04-13 21:11:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-13 21:11:20 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2016-04-13 21:11:19 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-13 21:11:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2016-04-13 21:11:16 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2016-04-13 21:11:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2016-04-13 21:11:14 ----A---- C:\WINDOWS\system32\XblAuthManager.dll
2016-04-13 21:11:13 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2016-04-13 21:11:12 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2016-04-13 21:11:11 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-13 21:11:11 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2016-04-13 21:11:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2016-04-13 21:11:10 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2016-04-13 21:11:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 21:11:09 ----A---- C:\WINDOWS\system32\dosvc.dll
2016-04-13 21:11:09 ----A---- C:\WINDOWS\system32\audiosrv.dll
2016-04-13 21:11:08 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-13 21:11:07 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2016-04-13 21:11:07 ----A---- C:\WINDOWS\system32\win32kbase.sys
2016-04-13 21:11:06 ----A---- C:\WINDOWS\system32\esent.dll
2016-04-13 21:11:05 ----A---- C:\WINDOWS\system32\BingMaps.dll
2016-04-13 21:11:04 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2016-04-13 21:11:04 ----A---- C:\WINDOWS\SYSWOW64\esent.dll
2016-04-13 21:11:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-13 21:11:03 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-13 21:11:02 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2016-04-13 21:11:02 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2016-04-13 21:11:02 ----A---- C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-13 21:11:02 ----A---- C:\WINDOWS\system32\MapsStore.dll
2016-04-13 21:11:02 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2016-04-13 21:11:01 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2016-04-13 21:11:00 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2016-04-13 21:11:00 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2016-04-13 21:11:00 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 21:10:59 ----A---- C:\WINDOWS\system32\winload.exe
2016-04-13 21:10:59 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-13 21:10:59 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-13 21:10:58 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2016-04-13 21:10:58 ----A---- C:\WINDOWS\system32\bisrv.dll
2016-04-13 21:10:57 ----A---- C:\WINDOWS\system32\RDXService.dll
2016-04-13 21:10:57 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-13 21:10:56 ----A---- C:\WINDOWS\system32\winresume.exe
2016-04-13 21:10:55 ----A---- C:\WINDOWS\SYSWOW64\StoreAgent.dll
2016-04-13 21:10:55 ----A---- C:\WINDOWS\SYSWOW64\NetSetupEngine.dll
2016-04-13 21:10:54 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-13 21:10:54 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-13 21:10:54 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2016-04-13 21:10:54 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-13 21:10:54 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2016-04-13 21:10:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2016-04-13 21:10:53 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2016-04-13 21:10:53 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2016-04-13 21:10:53 ----A---- C:\WINDOWS\system32\SensorService.dll
2016-04-13 21:10:53 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2016-04-13 21:10:53 ----A---- C:\WINDOWS\system32\audiodg.exe
2016-04-13 21:10:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2016-04-13 21:10:52 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2016-04-13 21:10:52 ----A---- C:\WINDOWS\system32\NMAA.dll
2016-04-13 21:10:52 ----A---- C:\WINDOWS\system32\fveapi.dll
2016-04-13 21:10:52 ----A---- C:\WINDOWS\system32\drivers\http.sys
2016-04-13 21:10:52 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2016-04-13 21:10:52 ----A---- C:\WINDOWS\system32\AccountsRt.dll
2016-04-13 21:10:51 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2016-04-13 21:10:51 ----A---- C:\WINDOWS\SYSWOW64\AccountsRt.dll
2016-04-13 21:10:51 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2016-04-13 21:10:51 ----A---- C:\WINDOWS\system32\StorSvc.dll
2016-04-13 21:10:51 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-13 21:10:51 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2016-04-13 21:10:50 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2016-04-13 21:10:50 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2016-04-13 21:10:50 ----A---- C:\WINDOWS\system32\msxml3.dll
2016-04-13 21:10:50 ----A---- C:\WINDOWS\system32\msv1_0.dll
2016-04-13 21:10:50 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-13 21:10:49 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2016-04-13 21:10:49 ----A---- C:\WINDOWS\SYSWOW64\InputLocaleManager.dll
2016-04-13 21:10:49 ----A---- C:\WINDOWS\system32\SyncController.dll
2016-04-13 21:10:49 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-13 21:10:49 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-13 21:10:49 ----A---- C:\WINDOWS\system32\JpMapControl.dll
2016-04-13 21:10:48 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2016-04-13 21:10:48 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-13 21:10:48 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-13 21:10:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2016-04-13 21:10:47 ----A---- C:\WINDOWS\SYSWOW64\JpMapControl.dll
2016-04-13 21:10:46 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-13 21:10:46 ----A---- C:\WINDOWS\system32\moshostcore.dll
2016-04-13 21:10:46 ----A---- C:\WINDOWS\system32\drivers\rfcomm.sys
2016-04-13 21:10:44 ----A---- C:\WINDOWS\system32\wuapi.dll
2016-04-13 21:10:44 ----A---- C:\WINDOWS\system32\bdesvc.dll
2016-04-13 21:10:43 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2016-04-13 21:10:43 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-13 21:10:43 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2016-04-13 21:10:42 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2016-04-13 21:10:42 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2016-04-13 21:10:42 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-13 21:10:42 ----A---- C:\WINDOWS\system32\accountaccessor.dll
2016-04-13 21:10:41 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2016-04-13 21:10:41 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2016-04-13 21:10:41 ----A---- C:\WINDOWS\system32\Windows.Web.dll
2016-04-13 21:10:41 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2016-04-13 21:10:40 ----A---- C:\WINDOWS\system32\msi.dll
2016-04-13 21:10:40 ----A---- C:\WINDOWS\system32\drivers\ufx01000.sys
2016-04-13 21:10:40 ----A---- C:\WINDOWS\system32\dnsapi.dll
2016-04-13 21:10:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2016-04-13 21:10:39 ----A---- C:\WINDOWS\SYSWOW64\NetSetupApi.dll
2016-04-13 21:10:39 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2016-04-13 21:10:39 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-13 21:10:39 ----A---- C:\WINDOWS\system32\dafBth.dll
2016-04-13 21:10:39 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Input.Inking.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\SYSWOW64\msorcl32.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\profsvc.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\MosStorage.dll
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\LsaIso.exe
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2016-04-13 21:10:38 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-13 21:10:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2016-04-13 21:10:37 ----A---- C:\WINDOWS\SYSWOW64\MosStorage.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\samsrv.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\policymanager.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\ncbservice.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\fveui.dll
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2016-04-13 21:10:35 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2016-04-13 21:10:34 ----A---- C:\WINDOWS\SYSWOW64\srvcli.dll
2016-04-13 21:10:34 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2016-04-13 21:10:34 ----A---- C:\WINDOWS\system32\Windows.Networking.dll
2016-04-13 21:10:34 ----A---- C:\WINDOWS\system32\omadmapi.dll
2016-04-13 21:10:34 ----A---- C:\WINDOWS\system32\NetSetupApi.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Devices.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\netapi32.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\system32\wkscli.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\system32\srvcli.dll
2016-04-13 21:10:33 ----A---- C:\WINDOWS\system32\netapi32.dll
2016-04-13 21:10:32 ----A---- C:\WINDOWS\SYSWOW64\wkscli.dll
2016-04-13 21:10:32 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.dll
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\oleacc.dll
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\iuilp.dll
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\easinvoker.exe
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2016-04-13 21:10:32 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-13 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2016-04-13 21:10:31 ----A---- C:\WINDOWS\SYSWOW64\oleacc.dll
2016-04-13 21:10:31 ----A---- C:\WINDOWS\system32\win32spl.dll
2016-04-13 21:10:31 ----A---- C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-13 21:10:31 ----A---- C:\WINDOWS\system32\ieproxy.dll
2016-04-13 21:10:31 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2016-04-13 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.dll
2016-04-13 21:10:30 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2016-04-13 21:10:30 ----A---- C:\WINDOWS\system32\wsdchngr.dll
2016-04-13 21:10:30 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 21:10:30 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 21:10:30 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2016-04-13 21:10:30 ----A---- C:\WINDOWS\system32\DAFWSD.dll
2016-04-13 21:10:30 ----A---- C:\WINDOWS\system32\credprovhost.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\SYSWOW64\wsdchngr.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\system32\easwrt.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\system32\dmcsps.dll
2016-04-13 21:10:26 ----A---- C:\WINDOWS\system32\browserbroker.dll
2016-04-13 21:10:25 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2016-04-13 21:10:25 ----A---- C:\WINDOWS\SYSWOW64\credprovhost.dll
2016-04-13 21:10:25 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-13 21:10:25 ----A---- C:\WINDOWS\system32\WSDApi.dll
2016-04-13 21:10:25 ----A---- C:\WINDOWS\system32\tzautoupdate.dll
2016-04-13 21:10:24 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 21:10:24 ----A---- C:\WINDOWS\system32\fvewiz.dll
2016-04-13 21:10:24 ----A---- C:\WINDOWS\system32\basesrv.dll
2016-04-13 21:10:24 ----A---- C:\WINDOWS\system32\actxprxy.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\SYSWOW64\browcli.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\tbauth.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\fvecpl.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\browser.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\browcli.dll
2016-04-13 21:10:23 ----A---- C:\WINDOWS\system32\BFE.DLL
2016-04-13 21:10:22 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2016-04-13 21:10:22 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-13 21:10:22 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2016-04-13 21:10:22 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2016-04-13 21:10:22 ----A---- C:\WINDOWS\system32\drivers\BthLEEnum.sys
2016-04-13 21:10:21 ----A---- C:\WINDOWS\system32\wups.dll
2016-04-13 21:10:21 ----A---- C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-13 21:10:21 ----A---- C:\WINDOWS\system32\samlib.dll
2016-04-13 21:10:20 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerCookies.exe
2016-04-13 21:10:20 ----A---- C:\WINDOWS\SYSWOW64\tbauth.dll
2016-04-13 21:10:20 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2016-04-13 21:10:20 ----A---- C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-13 21:10:20 ----A---- C:\WINDOWS\system32\moshost.dll
2016-04-13 21:10:20 ----A---- C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-13 21:10:20 ----A---- C:\WINDOWS\system32\FontProvider.dll
2016-04-13 21:10:20 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2016-04-13 21:10:20 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-13 21:10:19 ----A---- C:\WINDOWS\system32\mos.dll
2016-04-13 21:10:18 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2016-04-13 21:10:18 ----A---- C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-13 21:10:17 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\SYSWOW64\OnDemandConnRouteHelper.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\SYSWOW64\mtxoci.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\system32\mtxoci.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\system32\MapsCSP.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\system32\fveapibase.dll
2016-04-13 21:10:17 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-13 21:10:16 ----A---- C:\WINDOWS\SYSWOW64\oleacchooks.dll
2016-04-13 21:10:16 ----A---- C:\WINDOWS\SYSWOW64\MapsBtSvc.dll
2016-04-13 21:10:16 ----A---- C:\WINDOWS\system32\oleacchooks.dll
2016-04-13 21:10:15 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2016-04-13 21:10:15 ----A---- C:\WINDOWS\SYSWOW64\InstallAgent.exe
2016-04-13 21:10:15 ----A---- C:\WINDOWS\system32\MTF.dll
2016-04-13 21:10:15 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2016-04-13 21:10:15 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2016-04-13 21:10:15 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2016-04-13 21:10:15 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2016-04-13 21:10:15 ----A---- C:\WINDOWS\system32\AppCapture.dll

======List of files/folders modified in the last 1 month======

2016-05-12 21:49:56 ----RD---- C:\Program Files
2016-05-12 21:49:54 ----D---- C:\WINDOWS\System32
2016-05-12 21:49:54 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-12 21:49:04 ----D---- C:\Program Files\totalcmd
2016-05-12 21:40:26 ----D---- C:\WINDOWS\Tasks
2016-05-12 21:39:25 ----D---- C:\Windows
2016-05-12 21:37:17 ----D---- C:\WINDOWS\Temp
2016-05-12 21:36:21 ----D---- C:\WINDOWS\system32\sru
2016-05-12 21:05:41 ----D---- C:\WINDOWS\Prefetch
2016-05-11 08:48:17 ----D---- C:\WINDOWS\SysWOW64
2016-05-11 08:02:57 ----HD---- C:\ProgramData
2016-05-10 15:58:24 ----RD---- C:\Program Files (x86)
2016-05-10 15:50:29 ----D---- C:\WINDOWS\system32\Tasks
2016-05-10 15:49:53 ----D---- C:\WINDOWS\system32\drivers
2016-05-10 15:45:43 ----D---- C:\WINDOWS\WinSxS
2016-05-10 15:38:09 ----D---- C:\WINDOWS\AppReadiness
2016-05-10 15:38:06 ----HD---- C:\Program Files\WindowsApps
2016-05-10 15:36:31 ----D---- C:\Users\Adela\AppData\Roaming\Seznam.cz
2016-05-08 11:56:29 ----D---- C:\WINDOWS\Microsoft.NET
2016-05-08 11:37:57 ----SHD---- C:\WINDOWS\Installer
2016-05-08 11:37:56 ----SHD---- C:\Config.Msi
2016-05-08 11:37:54 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2016-05-08 11:37:20 ----D---- C:\Program Files (x86)\Common Files
2016-05-08 11:34:27 ----AD---- C:\Program Files (x86)\Microsoft Office
2016-05-05 14:12:27 ----SHD---- C:\System Volume Information
2016-05-04 19:02:43 ----RSD---- C:\WINDOWS\assembly
2016-04-30 09:37:09 ----D---- C:\Users\Adela\AppData\Roaming\vlc
2016-04-28 19:25:56 ----D---- C:\WINDOWS\INF
2016-04-28 16:21:03 ----D---- C:\WINDOWS\rescache
2016-04-28 15:34:20 ----D---- C:\WINDOWS\system32\config
2016-04-25 14:46:30 ----SD---- C:\Users\Adela\AppData\Roaming\Microsoft
2016-04-24 10:13:01 ----AD---- C:\Program Files\AMD
2016-04-24 10:12:55 ----D---- C:\ProgramData\Package Cache
2016-04-24 10:12:11 ----D---- C:\ProgramData\AMD
2016-04-24 10:08:26 ----D---- C:\AMD
2016-04-24 10:06:04 ----D---- C:\WINDOWS\system32\catroot2
2016-04-24 10:06:03 ----D---- C:\WINDOWS\system32\DriverStore
2016-04-24 09:23:37 ----D---- C:\Users\Adela\AppData\Roaming\LSC
2016-04-24 09:14:14 ----D---- C:\Users\Adela\AppData\Roaming\dvdcss
2016-04-22 17:52:36 ----A---- C:\WINDOWS\system32\amdocl64.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atig6txx.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atieclxx.exe
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\atidemgy.dll
2016-04-22 17:52:34 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2016-04-22 17:52:30 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\system32\atiumd64.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2016-04-22 17:50:34 ----A---- C:\WINDOWS\system32\atidxx64.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2016-04-22 17:50:32 ----A---- C:\WINDOWS\system32\aticfx64.dll
2016-04-17 21:27:00 ----D---- C:\Users\Adela\AppData\Roaming\Skype
2016-04-17 16:51:23 ----RD---- C:\Program Files (x86)\Skype
2016-04-17 16:51:17 ----D---- C:\ProgramData\Skype
2016-04-17 13:28:45 ----D---- C:\WINDOWS\SYSWOW64\en-US
2016-04-17 13:28:45 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2016-04-17 13:28:41 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2016-04-17 13:28:41 ----D---- C:\WINDOWS\system32\en-US
2016-04-17 13:28:41 ----D---- C:\WINDOWS\system32\cs-CZ
2016-04-17 13:28:41 ----D---- C:\WINDOWS\system32\Boot
2016-04-17 13:28:41 ----D---- C:\WINDOWS\system32\appraiser
2016-04-17 13:28:37 ----D---- C:\WINDOWS\PolicyDefinitions
2016-04-17 13:28:36 ----D---- C:\WINDOWS\bcastdvr
2016-04-17 13:28:36 ----D---- C:\WINDOWS\AppPatch
2016-04-14 21:40:57 ----D---- C:\ProgramData\McAfee
2016-04-14 21:31:16 ----D---- C:\WINDOWS\CbsTemp
2016-04-14 21:25:54 ----D---- C:\WINDOWS\system32\MRT
2016-04-14 21:07:10 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2014-03-21 81608]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2014-03-21 23752]
R0 amdkmpfd;@oem9.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-12-13 36608]
R0 BTATH_BUS;@oem12.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2014-02-26 35016]
R0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-10-30 104800]
R0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-10-30 99168]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2015-11-25 245096]
R0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-10-30 58208]
R0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-10-30 58720]
R0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-10-30 34144]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-05-10 37144]
R3 ACPIVPC;@oem8.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-02-27 35576]
R3 RTSUER;@oem17.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-05-14 402960]
S0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-05-10 74544]
S0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-05-10 287528]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2015-11-25 83096]
S0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2015-11-25 846080]
S1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-05-10 103064]
S1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-05-10 1070904]
S1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-05-10 465792]
S1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-11-13 91912]
S1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-10-30 87040]
S1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-10-30 8192]
S2 APXACC;@oem1.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2014-08-08 228032]
S2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-05-10 37656]
S2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-05-10 107792]
S2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-05-10 166432]
S2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-10-30 47616]
S2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-10-30 78848]
S3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2016-04-22 23969776]
S3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2016-04-22 679912]
S3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\System32\drivers\athw8x.sys [2015-10-30 4207104]
S3 AtiHDAudioService;@oem19.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2015-10-30 9728]
S3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2015-03-09 599240]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-03-29 112640]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2016-03-29 245760]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-10-30 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2016-03-29 954368]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-03-29 84992]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-10-30 37376]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-12-26 117248]
S3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2015-11-25 79248]
S3 CnxtHdAudService;@oem20.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-10-30 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-10-30 50016]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\WINDOWS\system32\drivers\HipShieldK.sys [2015-05-19 207208]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2015-10-30 81408]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2015-10-30 165888]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-10-30 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-10-30 26624]
S3 mfeaack;McAfee Inc. mfeaack; C:\WINDOWS\system32\drivers\mfeaack.sys [2015-11-25 419624]
S3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2015-11-25 351144]
S3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2015-11-25 496368]
S3 mfencbdc;McAfee Inc. mfencbdc; C:\WINDOWS\system32\DRIVERS\mfencbdc.sys [2015-11-20 539496]
S3 mfencrk;McAfee Inc. mfencrk; C:\WINDOWS\system32\DRIVERS\mfencrk.sys [2015-11-20 109480]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-10-30 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-10-30 76128]
S3 netr28ux;@netr28ux.inf,%Generic.Service.DispName%;RT2870 USB Extensible Wireless LAN Card Driver; C:\WINDOWS\System32\drivers\netr28ux.sys [2015-10-30 2196480]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-10-30 930656]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-03-29 181248]
S3 RTL8168;@oem4.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2013-12-18 839896]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 AdaptiveSleepService;AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2015-11-29 138752]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-12-14 82128]
S2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2016-04-22 254960]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-10 243296]
S2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2014-07-10 592880]
S2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-04-29 2911464]
S2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2014-10-20 207576]
S2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-28 144200]
S2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
S2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
S2 LUService;LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [2014-02-18 38896]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2016-03-03 863448]
S2 mcbootdelaystartsvc;McAfee Boot Delay Start Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
S2 mccspsvc;McAfee CSP Service; C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe [2016-02-23 1696712]
S2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
S2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
S2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
S2 mfemms;McAfee Service Controller; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [2016-01-21 380896]
S2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2015-11-18 275368]
S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2016-01-03 453520]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2015-07-07 785904]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1112a9ec;Sync Host_1112a9ec; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_1f073;Sync Host_1f073; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_40740;Sync Host_40740; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_42af7;Sync Host_42af7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_4b47e;Sync Host_4b47e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_56d8e;Sync Host_56d8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_5dc92;Sync Host_5dc92; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_65ce7;Sync Host_65ce7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_6c4fe;Sync Host_6c4fe; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_85b67;Sync Host_85b67; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 OneSyncSvc_e94b84f;Sync Host_e94b84f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S2 PEFService;Intel Security PEF Service; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [2016-03-02 896456]
S2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [2015-02-27 288240]
S2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
S2 SAService;Conexant SmartAudio service; C:\WINDOWS\syswow64\SAsrv.exe [2011-09-01 447104]
S2 ScsiAccess;ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [2016-05-10 186760]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-01-29 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-10-30 31744]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-10-24 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-28 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-09-23 561408]
S3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-09-04 272776]
S3 McAWFwk;McAfee Activation Service; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [2014-03-13 332528]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2016-02-26 681680]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1112a9ec;MessagingService_1112a9ec; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_1f073;MessagingService_1f073; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_40740;MessagingService_40740; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_42af7;MessagingService_42af7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_4b47e;MessagingService_4b47e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_56d8e;MessagingService_56d8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_5dc92;MessagingService_5dc92; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_65ce7;MessagingService_65ce7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_6c4fe;MessagingService_6c4fe; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_85b67;MessagingService_85b67; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 MessagingService_e94b84f;MessagingService_e94b84f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2015-11-18 234192]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-04-28 202288]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [2015-02-27 308720]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1112a9ec;Contact Data_1112a9ec; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_1f073;Contact Data_1f073; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_40740;Contact Data_40740; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_42af7;Contact Data_42af7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_4b47e;Contact Data_4b47e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_56d8e;Contact Data_56d8e; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_5dc92;Contact Data_5dc92; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_65ce7;Contact Data_65ce7; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_6c4fe;Contact Data_6c4fe; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_85b67;Contact Data_85b67; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 PimIndexMaintenanceSvc_e94b84f;Contact Data_e94b84f; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-10-30 43944]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-10-30 1297408]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-10-30 43944]
S4 McOobeSv2;McAfee OOBE Service2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [2016-01-03 453520]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Murdoc]

log mi po restartu nevyskočil, musel jsem opět do nouzového režimu a vyhledat jej ručně. snad je to ten správný.

# AdwCleaner v5.116 - Logfile created 12/05/2016 at 22:21:45
# Updated 09/05/2016 by Xplode
# Database : 2016-05-09.1 [Local]
# Operating system : Windows 10 Home (X64)
# Username : Adelinka - ADUS
# Running from : C:\Users\Adela\Desktop\adwcleaner_5.116.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\pokki
[#] Folder Deleted : C:\ProgramData\Application Data\pokki
[-] Folder Deleted : C:\Users\Adela\AppData\Local\pokki

***** [ Files ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki_Start_Menu
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
[-] Data Restored : HKU\S-1-5-21-3369482514-3343354743-587186471-1001\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
[-] Data Restored : HKU\S-1-5-21-3369482514-3343354743-587186471-1001\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]

***** [ Web browsers ] *****


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [1513 bytes] - [12/05/2016 22:21:45]
C:\AdwCleaner\AdwCleaner[S1].txt - [1751 bytes] - [12/05/2016 22:18:25]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1659 bytes] ##########

[Rudy]

Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .

[Murdoc]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:09-05-2016
Ran by Adelinka (administrator) on ADUS (13-05-2016 20:05:39)
Running from C:\Users\Adela\Desktop
Loaded Profiles: Adelinka (Available Profiles: Adelinka)
Platform: Windows 10 Home Version 1511 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe
(forum.viry.cz) C:\Users\Adela\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc.)
HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2015-02-27] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16094704 2015-02-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [10842096 2015-02-27] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945672 2015-07-27] (Synaptics Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4866760 2015-11-29] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7391632 2016-05-10] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50670720 2016-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Adela\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Adela\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[C1].txt [1738 2016-05-12] ()
AppInit_DLLs: C:\PROGRA~2\Amazon\AMAZON~1\AMAZON~2.DLL => C:\Program Files (x86)\Amazon\Amazon1ButtonApp\AmazonExtIE64.dll [119616 2014-09-27] (Amazon Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-10] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1118313a-f5c2-4234-8bb5-db493a01c8fb}: [DhcpNameServer] 150.208.1.3
Tcpip\..\Interfaces\{8536af24-147d-42af-9637-2ca4bfc23be1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{85c1c500-2801-4b9d-a6ef-e330145581bc}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-3369482514-3343354743-587186471-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {07833157-32F7-4D9F-86E0-03F85B9FB2DB} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {14042CA9-1426-436A-A001-5F0EAB16DE1A} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {40681A1E-E00D-475A-897D-9D0C48096E6E} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {6BDF7E23-714B-4C47-9C6F-5240C89B8F09} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {9D70D1BB-BC04-497F-81ED-11B6C3F24B4B} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {A4E08771-F148-4B30-8FAD-3EF5054EA4E6} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {B363CCE4-29FC-47B1-BA33-4D8420071883} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {DE443471-9384-442F-9AF2-70CFB06E9DD4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3369482514-3343354743-587186471-1001 -> {E4EC821D-7053-42CD-B23C-92250282FF50} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-04-29] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-04-29] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-03-03] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-03-03] (McAfee, Inc.)

FireFox:
========
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-03-03] ()
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-03-03] ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-04-29] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2016-05-10] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-03-06] [not signed]

Chrome:
=======
CHR Profile: C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-28]
CHR Extension: (Dokumenty Google) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-28]
CHR Extension: (Disk Google) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-28]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-01-06]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-11]
CHR Extension: (YouTube) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-28]
CHR Extension: (Vyhledávání Google) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-28]
CHR Extension: (Tabulky Google) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-04-17]
CHR Extension: (Into The Mist) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgihmkgobaljfehcadcckdggpeojaadh [2016-03-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-10]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-01-06]
CHR Extension: (Gmail) - C:\Users\Adela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-28]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-10]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2015-11-29] () [File not signed]
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-10] (AVAST Software)
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-10] ()
S2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2911464 2016-04-29] (Microsoft Corporation)
S2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-23] (Lenovo)
S2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272776 2014-09-04] ()
S2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [38896 2014-02-18] (Lenovo(beijing) Limited)
S2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [863448 2016-03-03] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [332528 2014-03-13] (McAfee, Inc.)
S2 mcbootdelaystartsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.8.267.0\McCSPServiceHost.exe [1696712 2016-02-23] (McAfee, Inc.)
S2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [681680 2016-02-26] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [234192 2015-11-18] (McAfee, Inc.)
S2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [380896 2016-01-21] (McAfee, Inc.)
S2 mfevtp; C:\windows\system32\mfevtps.exe [275368 2015-11-18] (McAfee, Inc.)
S2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [453520 2016-01-03] (McAfee, Inc.)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [202288 2016-04-28] (Microsoft Corporation) [File not signed]
S2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [896456 2016-03-02] (Intel Security, Inc.)
S2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2015-02-27] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [308720 2015-02-27] (Lenovo)
S2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
S2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShow Producer\ScsiAccess.exe [186760 2016-05-10] ()
S2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-27] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
S2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-26] (Atheros) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-13] (Advanced Micro Devices, Inc.)
S2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [228032 2014-08-08] (AppEx Networks Corporation)
S2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-05-10] (AVAST Software)
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-10] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-10] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-10] (AVAST Software)
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-10] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-10] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-10] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-10] (AVAST Software)
S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [79248 2015-11-25] (McAfee, Inc.)
S1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-13] (CyberLink)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207208 2015-05-19] (McAfee, Inc.)
S3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419624 2015-11-25] (McAfee, Inc.)
S3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [351144 2015-11-25] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [83096 2015-11-25] (McAfee, Inc.)
S3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [496368 2015-11-25] (McAfee, Inc.)
S0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [846080 2015-11-25] (McAfee, Inc.)
S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [539496 2015-11-20] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109480 2015-11-20] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [245096 2015-11-25] (McAfee, Inc.)
S3 netr28ux; C:\Windows\System32\drivers\netr28ux.sys [2196480 2015-10-30] (MediaTek Inc.)
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-13 20:05 - 2016-05-13 20:06 - 00019507 _____ C:\Users\Adela\Desktop\FRST.txt
2016-05-13 20:05 - 2016-05-13 20:05 - 00000000 ____D C:\FRST
2016-05-13 20:04 - 2016-05-13 20:03 - 02381312 _____ (Farbar) C:\Users\Adela\Desktop\FRST64.exe
2016-05-13 20:04 - 2016-05-13 20:03 - 00112640 _____ (forum.viry.cz) C:\Users\Adela\Desktop\FRSTLauncher.exe
2016-05-12 22:45 - 2016-05-12 22:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2016-05-12 22:43 - 2016-05-12 22:43 - 00000000 ____D C:\Users\Adela\AppData\Local\GHISLER
2016-05-12 22:17 - 2016-05-12 22:21 - 00000000 ____D C:\AdwCleaner
2016-05-12 22:17 - 2016-05-12 22:15 - 03640384 _____ C:\Users\Adela\Desktop\adwcleaner_5.116.exe
2016-05-12 21:49 - 2016-05-12 21:50 - 00000000 ____D C:\rsit
2016-05-12 21:49 - 2016-05-12 21:49 - 00000000 ____D C:\Program Files\trend micro
2016-05-12 21:43 - 2016-05-12 21:43 - 00072790 _____ C:\Users\Adela\Documents\cc_20160512_214316.reg
2016-05-12 21:40 - 2016-05-12 22:39 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-05-12 21:39 - 2016-05-13 20:06 - 00315630 _____ C:\WINDOWS\ntbtlog.txt
2016-05-11 08:48 - 2016-05-11 08:48 - 00000000 _____ C:\WINDOWS\SysWOW64\last.dump
2016-05-10 15:58 - 2016-05-10 15:58 - 00002225 _____ C:\Users\Public\Desktop\ProShow Producer.lnk
2016-05-10 15:58 - 2016-05-10 15:58 - 00000000 ____D C:\Users\Adela\AppData\Roaming\Netscape
2016-05-10 15:58 - 2016-05-10 15:58 - 00000000 ____D C:\Users\Adela\AppData\Roaming\Mozilla
2016-05-10 15:58 - 2016-05-10 15:58 - 00000000 ____D C:\Program Files (x86)\Photodex Presenter
2016-05-10 15:57 - 2016-05-10 15:57 - 00000000 ____D C:\Program Files (x86)\Photodex
2016-05-10 15:52 - 2016-05-10 15:57 - 00000000 ____D C:\ProgramData\Photodex
2016-05-10 15:52 - 2016-05-10 15:52 - 00000000 ____D C:\Users\Adela\AppData\Roaming\Photodex
2016-05-10 15:50 - 2016-05-10 15:50 - 00003998 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1462888225
2016-05-10 15:50 - 2016-05-10 15:50 - 00001093 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-05-10 15:50 - 2016-05-10 15:50 - 00001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-05-10 15:49 - 2016-05-10 15:49 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-05-10 15:46 - 2016-05-12 21:15 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-05-10 15:46 - 2016-05-10 15:46 - 00001990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-05-10 15:46 - 2016-05-10 15:46 - 00001978 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-05-10 15:46 - 2016-05-10 15:46 - 00000000 ____D C:\Users\Adela\AppData\Roaming\AVAST Software
2016-05-10 15:45 - 2016-05-10 15:45 - 00465792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-05-10 15:45 - 2016-05-10 15:45 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-05-10 15:45 - 2016-05-10 15:45 - 00287528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-05-10 15:45 - 2016-05-10 15:45 - 00166432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-05-10 15:45 - 2016-05-10 15:45 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-05-10 15:45 - 2016-05-10 15:45 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-05-10 15:45 - 2016-05-10 15:45 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-05-10 15:45 - 2016-05-10 15:45 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-05-10 15:45 - 2016-05-10 15:45 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-05-10 15:45 - 2016-05-10 15:44 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-05-10 15:42 - 2016-05-10 15:49 - 00000000 ____D C:\ProgramData\AVAST Software
2016-05-10 15:42 - 2016-05-10 15:49 - 00000000 ____D C:\Program Files\AVAST Software
2016-05-10 15:41 - 2016-05-10 15:42 - 05168776 _____ (AVAST Software) C:\Users\Adela\Downloads\avast_free_antivirus_setup_online.exe
2016-05-10 15:38 - 2016-05-10 15:51 - 62179016 _____ C:\Users\Adela\Downloads\pspro_70_3527.exe
2016-05-10 15:37 - 2016-05-10 15:37 - 00001254 _____ C:\Users\Adela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CNext.lnk
2016-04-30 10:08 - 2016-04-30 10:08 - 04139101 _____ C:\Users\Adela\Desktop\AMAZONKA.wma
2016-04-30 09:47 - 2016-04-30 09:47 - 00239616 _____ C:\Users\Adela\Downloads\2. a další kola přijímacího řízení pro rok 2016-2017.xls
2016-04-30 09:39 - 2016-04-30 09:41 - 41654504 _____ C:\Users\Adela\Downloads\AMAZONKA-STŘIHLÁ-SOUTĚŽNÍ-4-minuty.wav
2016-04-28 14:47 - 2016-04-28 14:49 - 33467250 _____ C:\Users\Adela\Downloads\!-GHI.wav
2016-04-25 14:46 - 2016-04-25 14:46 - 00102912 _____ C:\Users\Adela\Downloads\bodovaci-tab.-2016-scitaci.xls
2016-04-25 14:29 - 2016-04-22 09:57 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-24 10:14 - 2016-04-24 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2016-04-24 10:13 - 2016-04-24 10:13 - 00000000 ____D C:\Program Files\ATI Technologies
2016-04-24 10:13 - 2016-04-24 10:13 - 00000000 ____D C:\Program Files (x86)\AMD
2016-04-24 10:06 - 2016-04-24 10:07 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-04-22 17:52 - 2016-04-22 17:52 - 41519600 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 31385584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 25848808 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 22357488 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 15720424 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 14310896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 06651888 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 05232624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00950256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00950256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00873960 _____ (AMD) C:\WINDOWS\system32\coinst_15.30.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00686576 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00571368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00375784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00232424 _____ C:\WINDOWS\system32\dgtrayicon.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00203760 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00199664 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00183272 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00170992 _____ C:\WINDOWS\system32\atieah64.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00154096 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00151016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00136168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00122344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00104944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00097776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00097776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00089584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00084464 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00078832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00078832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00068080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00060912 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00059880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2016-04-22 17:52 - 2016-04-22 17:52 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00057840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00052200 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00040432 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-04-22 17:52 - 2016-04-22 17:52 - 00012776 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 10338984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 09158464 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 08426344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 08168824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00471320 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00151936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00128536 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00120168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00112368 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00081168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-04-22 17:50 - 2016-04-22 17:50 - 00081168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-04-17 16:49 - 2016-04-17 16:50 - 01503872 _____ (Skype Technologies S.A.) C:\Users\Adela\Downloads\SkypeSetup (2).exe
2016-04-13 21:12 - 2016-03-29 12:20 - 07474016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 21:12 - 2016-03-29 12:20 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 21:12 - 2016-03-29 12:18 - 02152280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-13 21:12 - 2016-03-29 11:37 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-13 21:12 - 2016-03-29 10:41 - 00630632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-13 21:12 - 2016-03-29 10:06 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-13 21:12 - 2016-03-29 10:01 - 00541304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-13 21:12 - 2016-03-29 09:58 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-13 21:12 - 2016-03-29 09:58 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-13 21:12 - 2016-03-29 09:46 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-13 21:12 - 2016-03-29 09:36 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-13 21:12 - 2016-03-29 09:19 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-13 21:12 - 2016-03-29 09:15 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-13 21:12 - 2016-03-29 09:12 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-13 21:12 - 2016-03-29 09:12 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-13 21:12 - 2016-03-29 09:07 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-13 21:12 - 2016-03-29 09:02 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-13 21:12 - 2016-03-29 08:42 - 03592704 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-13 21:12 - 2016-03-29 08:37 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-13 21:12 - 2016-03-29 08:32 - 01731584 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-13 21:12 - 2016-03-29 08:31 - 02275328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-13 21:12 - 2016-03-29 08:26 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-13 21:12 - 2016-03-29 08:05 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-13 21:12 - 2016-03-29 08:05 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-13 21:12 - 2016-03-29 08:02 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-13 21:12 - 2016-03-29 07:51 - 22378496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-13 21:12 - 2016-03-29 07:41 - 24602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-13 21:12 - 2016-03-29 07:41 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-13 21:12 - 2016-03-29 07:39 - 13382656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-13 21:12 - 2016-03-29 07:38 - 18673664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-13 21:12 - 2016-03-29 07:37 - 19340800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-13 21:11 - 2016-04-02 05:26 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-13 21:11 - 2016-04-02 05:19 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-13 21:11 - 2016-04-02 05:18 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-13 21:11 - 2016-04-02 05:14 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-13 21:11 - 2016-04-02 05:09 - 01832448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 21:11 - 2016-04-02 05:07 - 03575296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-13 21:11 - 2016-04-02 05:07 - 02158592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 21:11 - 2016-04-02 05:00 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-13 21:11 - 2016-03-29 11:56 - 01297752 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-13 21:11 - 2016-03-29 11:28 - 00696664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-13 21:11 - 2016-03-29 11:13 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-13 21:11 - 2016-03-29 11:11 - 00605440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-13 21:11 - 2016-03-29 10:02 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-13 21:11 - 2016-03-29 09:34 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-13 21:11 - 2016-03-29 09:20 - 00948736 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-13 21:11 - 2016-03-29 09:16 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-13 21:11 - 2016-03-29 09:15 - 01714688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-13 21:11 - 2016-03-29 09:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-13 21:11 - 2016-03-29 09:14 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-13 21:11 - 2016-03-29 09:12 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-13 21:11 - 2016-03-29 09:10 - 01388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-13 21:11 - 2016-03-29 09:10 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-13 21:11 - 2016-03-29 09:05 - 01395712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-13 21:11 - 2016-03-29 09:02 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-13 21:11 - 2016-03-29 09:00 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-13 21:11 - 2016-03-29 08:37 - 01444352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-13 21:11 - 2016-03-29 08:37 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-13 21:11 - 2016-03-29 08:36 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-13 21:11 - 2016-03-29 08:34 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-13 21:11 - 2016-03-29 08:32 - 01098240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-13 21:11 - 2016-03-29 08:31 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-13 21:11 - 2016-03-29 08:30 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-13 21:11 - 2016-03-29 08:28 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-13 21:11 - 2016-03-29 08:27 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-13 21:11 - 2016-03-29 08:19 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-13 21:11 - 2016-03-29 08:05 - 07199232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-13 21:11 - 2016-03-29 08:05 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-13 21:11 - 2016-03-29 08:01 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-13 21:11 - 2016-03-29 07:58 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-13 21:11 - 2016-03-29 07:56 - 16985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-13 21:11 - 2016-03-29 07:52 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-13 21:11 - 2016-03-29 07:51 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-13 21:11 - 2016-03-29 07:49 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-13 21:11 - 2016-03-29 07:45 - 03078144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-13 21:11 - 2016-03-29 07:43 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-13 21:11 - 2016-03-29 07:38 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-13 21:11 - 2016-03-29 07:36 - 02722816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-13 21:11 - 2016-03-29 07:27 - 07836160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-13 21:11 - 2016-03-29 07:27 - 05662208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-13 21:10 - 2016-04-02 06:13 - 00369912 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-13 21:10 - 2016-04-02 06:10 - 00770640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-13 21:10 - 2016-04-02 06:10 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-13 21:10 - 2016-04-02 06:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 21:10 - 2016-04-02 05:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-13 21:10 - 2016-04-02 05:29 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-13 21:10 - 2016-04-02 05:29 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-13 21:10 - 2016-04-02 05:25 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-13 21:10 - 2016-04-02 05:25 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-13 21:10 - 2016-04-02 05:23 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-13 21:10 - 2016-04-02 05:23 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-13 21:10 - 2016-04-02 05:21 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-13 21:10 - 2016-04-02 05:15 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-13 21:10 - 2016-04-02 05:08 - 02193408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-13 21:10 - 2016-04-02 05:03 - 04774912 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-13 21:10 - 2016-03-29 12:23 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-13 21:10 - 2016-03-29 12:22 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-13 21:10 - 2016-03-29 12:22 - 00874968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-13 21:10 - 2016-03-29 12:20 - 01317640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-13 21:10 - 2016-03-29 12:20 - 01141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-13 21:10 - 2016-03-29 12:15 - 00100232 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-13 21:10 - 2016-03-29 12:11 - 00686976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-13 21:10 - 2016-03-29 12:05 - 01152864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-13 21:10 - 2016-03-29 12:02 - 00989536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-13 21:10 - 2016-03-29 12:02 - 00334736 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-13 21:10 - 2016-03-29 11:28 - 00535080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-13 21:10 - 2016-03-29 11:28 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-13 21:10 - 2016-03-29 11:25 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-13 21:10 - 2016-03-29 11:25 - 00058400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-13 21:10 - 2016-03-29 11:19 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-13 21:10 - 2016-03-29 11:18 - 00185184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-13 21:10 - 2016-03-29 11:17 - 00300104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-13 21:10 - 2016-03-29 11:11 - 00074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-13 21:10 - 2016-03-29 11:10 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-13 21:10 - 2016-03-29 11:09 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-13 21:10 - 2016-03-29 11:08 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-13 21:10 - 2016-03-29 11:08 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-13 21:10 - 2016-03-29 11:07 - 00081144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-13 21:10 - 2016-03-29 10:44 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-13 21:10 - 2016-03-29 10:44 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-13 21:10 - 2016-03-29 10:41 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-13 21:10 - 2016-03-29 10:32 - 00253088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-13 21:10 - 2016-03-29 10:26 - 02403680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-13 21:10 - 2016-03-29 10:26 - 01089888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-13 21:10 - 2016-03-29 10:26 - 00073872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-13 21:10 - 2016-03-29 10:25 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-13 21:10 - 2016-03-29 10:24 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-13 21:10 - 2016-03-29 10:23 - 00069744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-13 21:10 - 2016-03-29 10:21 - 00378208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-13 21:10 - 2016-03-29 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-13 21:10 - 2016-03-29 10:16 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-13 21:10 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-13 21:10 - 2016-03-29 10:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-13 21:10 - 2016-03-29 10:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-13 21:10 - 2016-03-29 10:07 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-13 21:10 - 2016-03-29 10:07 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-13 21:10 - 2016-03-29 10:06 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-13 21:10 - 2016-03-29 10:00 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-13 21:10 - 2016-03-29 10:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-13 21:10 - 2016-03-29 10:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-13 21:10 - 2016-03-29 09:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-13 21:10 - 2016-03-29 09:57 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-13 21:10 - 2016-03-29 09:57 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-13 21:10 - 2016-03-29 09:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-13 21:10 - 2016-03-29 09:57 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-13 21:10 - 2016-03-29 09:55 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-13 21:10 - 2016-03-29 09:55 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-13 21:10 - 2016-03-29 09:55 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-13 21:10 - 2016-03-29 09:54 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-13 21:10 - 2016-03-29 09:54 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-04-13 21:10 - 2016-03-29 09:53 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-13 21:10 - 2016-03-29 09:52 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-13 21:10 - 2016-03-29 09:51 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-04-13 21:10 - 2016-03-29 09:51 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-13 21:10 - 2016-03-29 09:51 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-13 21:10 - 2016-03-29 09:50 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-13 21:10 - 2016-03-29 09:50 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-13 21:10 - 2016-03-29 09:50 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-13 21:10 - 2016-03-29 09:50 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-13 21:10 - 2016-03-29 09:50 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-13 21:10 - 2016-03-29 09:49 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2016-04-13 21:10 - 2016-03-29 09:49 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-13 21:10 - 2016-03-29 09:48 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-13 21:10 - 2016-03-29 09:48 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-13 21:10 - 2016-03-29 09:46 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-13 21:10 - 2016-03-29 09:44 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-13 21:10 - 2016-03-29 09:42 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-13 21:10 - 2016-03-29 09:39 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-13 21:10 - 2016-03-29 09:38 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-13 21:10 - 2016-03-29 09:37 - 00617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-13 21:10 - 2016-03-29 09:36 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-13 21:10 - 2016-03-29 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-13 21:10 - 2016-03-29 09:35 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-13 21:10 - 2016-03-29 09:34 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-13 21:10 - 2016-03-29 09:34 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-13 21:10 - 2016-03-29 09:34 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-13 21:10 - 2016-03-29 09:33 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-13 21:10 - 2016-03-29 09:32 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-13 21:10 - 2016-03-29 09:32 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-13 21:10 - 2016-03-29 09:30 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-13 21:10 - 2016-03-29 09:30 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-13 21:10 - 2016-03-29 09:28 - 00460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-13 21:10 - 2016-03-29 09:27 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-13 21:10 - 2016-03-29 09:26 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-13 21:10 - 2016-03-29 09:23 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-13 21:10 - 2016-03-29 09:23 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-13 21:10 - 2016-03-29 09:23 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-13 21:10 - 2016-03-29 09:22 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-13 21:10 - 2016-03-29 09:21 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 21:10 - 2016-03-29 09:20 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-13 21:10 - 2016-03-29 09:20 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-13 21:10 - 2016-03-29 09:20 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-13 21:10 - 2016-03-29 09:19 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-13 21:10 - 2016-03-29 09:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-13 21:10 - 2016-03-29 09:18 - 00676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-13 21:10 - 2016-03-29 09:17 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-13 21:10 - 2016-03-29 09:17 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-13 21:10 - 2016-03-29 09:17 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-13 21:10 - 2016-03-29 09:16 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-13 21:10 - 2016-03-29 09:14 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-04-13 21:10 - 2016-03-29 09:14 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-04-13 21:10 - 2016-03-29 09:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-13 21:10 - 2016-03-29 09:11 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-13 21:10 - 2016-03-29 09:11 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-13 21:10 - 2016-03-29 09:11 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-13 21:10 - 2016-03-29 09:11 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-13 21:10 - 2016-03-29 09:11 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-13 21:10 - 2016-03-29 09:11 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-13 21:10 - 2016-03-29 09:09 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-13 21:10 - 2016-03-29 09:09 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-13 21:10 - 2016-03-29 09:09 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-13 21:10 - 2016-03-29 09:08 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-13 21:10 - 2016-03-29 09:08 - 00841216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-13 21:10 - 2016-03-29 09:08 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-13 21:10 - 2016-03-29 09:07 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-13 21:10 - 2016-03-29 09:06 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-13 21:10 - 2016-03-29 09:06 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-13 21:10 - 2016-03-29 09:06 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-13 21:10 - 2016-03-29 09:05 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-13 21:10 - 2016-03-29 09:04 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-13 21:10 - 2016-03-29 09:03 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-13 21:10 - 2016-03-29 09:02 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-13 21:10 - 2016-03-29 09:00 - 00235008 _____ C:\WINDOWS\system32\MTF.dll
2016-04-13 21:10 - 2016-03-29 09:00 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-13 21:10 - 2016-03-29 09:00 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-13 21:10 - 2016-03-29 08:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-13 21:10 - 2016-03-29 08:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-13 21:10 - 2016-03-29 08:59 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-13 21:10 - 2016-03-29 08:56 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-13 21:10 - 2016-03-29 08:56 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-13 21:10 - 2016-03-29 08:55 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-13 21:10 - 2016-03-29 08:53 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-13 21:10 - 2016-03-29 08:53 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-13 21:10 - 2016-03-29 08:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-13 21:10 - 2016-03-29 08:52 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-13 21:10 - 2016-03-29 08:49 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-13 21:10 - 2016-03-29 08:48 - 00346624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-13 21:10 - 2016-03-29 08:44 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-13 21:10 - 2016-03-29 08:43 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-13 21:10 - 2016-03-29 08:42 - 01410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-13 21:10 - 2016-03-29 08:42 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 21:10 - 2016-03-29 08:41 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-13 21:10 - 2016-03-29 08:40 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-13 21:10 - 2016-03-29 08:39 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-13 21:10 - 2016-03-29 08:39 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-13 21:10 - 2016-03-29 08:39 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-13 21:10 - 2016-03-29 08:38 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-13 21:10 - 2016-03-29 08:36 - 03351040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-13 21:10 - 2016-03-29 08:35 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-13 21:10 - 2016-03-29 08:34 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-13 21:10 - 2016-03-29 08:34 - 00682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-13 21:10 - 2016-03-29 08:34 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-13 21:10 - 2016-03-29 08:32 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-13 21:10 - 2016-03-29 08:32 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-13 21:10 - 2016-03-29 08:32 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-13 21:10 - 2016-03-29 08:32 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-13 21:10 - 2016-03-29 08:32 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-13 21:10 - 2016-03-29 08:32 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-13 21:10 - 2016-03-29 08:31 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-13 21:10 - 2016-03-29 08:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-13 21:10 - 2016-03-29 08:29 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-13 21:10 - 2016-03-29 08:29 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-13 21:10 - 2016-03-29 08:28 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-13 21:10 - 2016-03-29 08:27 - 07979008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-13 21:10 - 2016-03-29 08:27 - 00162816 _____ C:\WINDOWS\SysWOW64\MTF.dll
2016-04-13 21:10 - 2016-03-29 08:27 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-13 21:10 - 2016-03-29 08:27 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-13 21:10 - 2016-03-29 08:23 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-13 21:10 - 2016-03-29 08:22 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-13 21:10 - 2016-03-29 08:17 - 00765952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-13 21:10 - 2016-03-29 08:14 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-13 21:10 - 2016-03-29 08:13 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-13 21:10 - 2016-03-29 08:10 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-13 21:10 - 2016-03-29 08:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-13 21:10 - 2016-03-29 08:05 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-13 21:10 - 2016-03-29 08:05 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-13 21:10 - 2016-03-29 08:04 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-13 21:10 - 2016-03-29 08:04 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-13 21:10 - 2016-03-29 08:01 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 21:10 - 2016-03-29 08:00 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-13 21:10 - 2016-03-29 07:45 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-13 21:10 - 2016-03-29 07:43 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-13 21:10 - 2016-03-29 07:35 - 00821248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-13 21:10 - 2016-03-29 07:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-13 21:10 - 2016-03-29 07:27 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-13 21:10 - 2016-03-29 07:26 - 00958976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-13 21:10 - 2016-03-29 07:26 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 21:10 - 2016-03-29 07:25 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-13 21:10 - 2016-03-29 07:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-13 21:10 - 2016-03-29 07:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-12 22:39 - 2015-12-26 10:18 - 00000000 ____D C:\Users\Adela
2016-05-12 22:37 - 2015-12-26 10:33 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-12 22:37 - 2015-12-26 10:13 - 00065536 _____ C:\WINDOWS\system32\spu_storage.bin
2016-05-12 22:37 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-05-12 22:35 - 2015-12-28 12:28 - 00000966 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-12 22:25 - 2016-01-23 19:19 - 00214528 ___SH C:\Users\Adela\Desktop\Thumbs.db
2016-05-12 22:08 - 2015-12-28 12:31 - 00000000 ____D C:\Users\Adela\AppData\Roaming\vlc
2016-05-12 21:49 - 2015-12-28 13:51 - 00000000 ____D C:\Program Files\totalcmd
2016-05-12 21:49 - 2015-12-26 18:46 - 00750014 _____ C:\WINDOWS\system32\perfh005.dat
2016-05-12 21:49 - 2015-12-26 18:46 - 00150658 _____ C:\WINDOWS\system32\perfc005.dat
2016-05-12 21:49 - 2015-12-26 10:36 - 01771468 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-12 21:49 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-05-11 14:33 - 2015-12-28 12:29 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-10 15:38 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-10 15:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-10 15:36 - 2016-01-05 17:35 - 00000000 ____D C:\Users\Adela\AppData\Roaming\Seznam.cz
2016-05-10 15:33 - 2015-12-26 07:28 - 00004188 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{6DD9A3AB-6B90-421A-9788-D5AC1B6ABBE3}
2016-05-08 11:37 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-08 11:34 - 2015-02-27 02:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-05-04 19:03 - 2015-12-26 05:37 - 00003122 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2016-05-04 19:03 - 2015-12-26 05:37 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-05-04 19:00 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-05-03 19:45 - 2015-12-25 13:08 - 00000000 ____D C:\Users\Adela\AppData\Local\Packages
2016-05-03 17:01 - 2015-12-28 12:31 - 00002283 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-03 17:01 - 2015-12-28 12:31 - 00002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-30 15:37 - 2015-02-27 02:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2016-04-30 10:09 - 2016-01-06 17:47 - 00000000 ____D C:\Users\Adela\AppData\Local\WMTools Downloaded Files
2016-04-30 10:04 - 2016-01-06 17:38 - 00024576 _____ C:\Users\Adela\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-04-30 09:33 - 2015-12-26 10:13 - 00000000 ____D C:\ProgramData\AMD
2016-04-28 16:21 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-04-25 15:43 - 2015-12-28 17:55 - 00000000 ____D C:\Users\Adela\Desktop\Fotky
2016-04-24 10:14 - 2015-12-25 18:48 - 00000000 ____D C:\Users\Adela\AppData\Local\AMD
2016-04-24 10:13 - 2015-12-26 10:12 - 00000000 ____D C:\Program Files\AMD
2016-04-24 10:12 - 2015-12-26 10:12 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-24 10:08 - 2015-12-26 10:12 - 00000000 ____D C:\AMD
2016-04-24 09:23 - 2015-12-25 13:19 - 00000000 ____D C:\Users\Adela\AppData\Roaming\LSC
2016-04-24 09:14 - 2016-01-02 12:48 - 00000000 ____D C:\Users\Adela\AppData\Roaming\dvdcss
2016-04-22 17:52 - 2015-12-16 21:07 - 49993192 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-04-22 17:52 - 2015-12-16 21:07 - 27604976 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-04-22 17:52 - 2015-12-16 21:07 - 23969776 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-04-22 17:52 - 2015-12-16 21:07 - 01281512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-04-22 17:52 - 2015-12-16 21:07 - 00679912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-04-22 17:52 - 2015-12-16 21:07 - 00561136 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-04-22 17:52 - 2015-12-16 21:07 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-04-22 17:52 - 2015-12-16 21:07 - 00254960 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-04-22 17:52 - 2015-12-16 21:07 - 00166376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 13313512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 11011528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 10919072 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 09105520 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 01519200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 01249632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 00162744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 00143048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-04-22 17:50 - 2015-12-16 21:06 - 00130584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-04-20 20:19 - 2016-04-11 17:54 - 02307284 _____ C:\Users\Adela\Desktop\Královéhradecký.pptx
2016-04-17 21:27 - 2015-12-28 17:30 - 00000000 ____D C:\Users\Adela\AppData\Roaming\Skype
2016-04-17 16:51 - 2015-12-28 17:30 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-04-17 16:51 - 2015-12-28 17:30 - 00000000 ____D C:\ProgramData\Skype
2016-04-17 15:55 - 2015-12-26 10:05 - 00354008 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-17 13:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-17 13:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-17 13:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-17 13:28 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-14 21:40 - 2015-02-27 02:23 - 00000000 ____D C:\ProgramData\McAfee
2016-04-14 21:31 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-14 21:25 - 2015-12-28 12:40 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-14 21:07 - 2015-12-28 12:40 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2016-01-06 17:38 - 2016-04-30 10:04 - 0024576 _____ () C:\Users\Adela\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-26 10:12 - 2015-12-26 10:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Adela\AppData\Local\Temp\LenovoExperienceImprovement.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================


==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: McAfee Anti-Virus a Antispyware (Disabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: McAfee Anti-Virus a Antispyware (Disabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Disabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Adela\Desktop" je 803 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Adela\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\ProgramData\DP45977C.lfl
C:\Users\Adela\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Murdoc]

Fix result of Farbar Recovery Scan Tool (x64) Version:09-05-2016
Ran by Adelinka (2016-05-13 20:51:31) Run:1
Running from C:\Users\Adela\Desktop
Loaded Profiles: Adelinka (Available Profiles: Adelinka)
Boot Mode: Safe Mode (minimal)
==============================================

fixlist content:
*****************
Start
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Adela\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\ProgramData\DP45977C.lfl
C:\Users\Adela\AppData\Local\Temp
End
*****************

C:\WINDOWS\LastGood.Tmp => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Users\Adela\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\Users\Adela\AppData\Local\Temp => moved successfully

==== End of Fixlog 20:52:01 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Murdoc]

Bohužel, zatím jsem pořád na stejném bodu.
Jen jsem přišel na novou věc. Když se snažím kliknout na systémovou dolní lištu a vyvolat např. nabídku start, po nějaké době vyskočí okno s nadpisem "Microsoft Windows" a text "The application is not responding. The program may respond again if you wait. Do you want to end this process?" a možnosti "End Process" a "Cancel". Při End Proces se obrazovka zabarví do barvy zvoleného schématu a tím to končí - nic nejde udělat ani na nic kliknout a je třeba tvrdý restart.
Nemůže se třeba hádat McAfee s Avastem?

[Rudy]

To může. Jeden z těch AV odinstalujte.

[Murdoc]

Dobrý den bylo to opravdu antivirem, měl jsem to vyzkoušet jako první, moje chyba. Omlouvám se, že jsem plýtval Vaším časem. I tak děkuji za ochotu a pomoc!

[Rudy]

Nic se neděje, od toho tu jsme. Nemáte zač!