VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

PC se seká

https://forum.viry.cz:443/viewtopic.php?t=149412

Stránka 1 z 2

PC se seká

Napsal: 05 črc 2016 19:54
od tajfun
Dobrý večer počítač se neustále seká díky za kontrolu

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; D:\Windows\system32\drivers\aswRvrt.sys [2016-06-26 60424]
R0 aswVmm;avast! VM Monitor; D:\Windows\system32\drivers\aswVmm.sys [2016-06-26 222056]
R0 rdyboost;ReadyBoost; D:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; D:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; D:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswKbd;aswKbd; D:\Windows\system32\drivers\aswKbd.sys [2016-06-26 35096]
R1 aswRdr;aswRdr; D:\Windows\system32\drivers\aswRdr2.sys [2016-06-26 91232]
R1 aswSnx;aswSnx; D:\Windows\system32\drivers\aswSnx.sys [2016-06-26 816304]
R1 aswSP;aswSP; D:\Windows\system32\drivers\aswSP.sys [2016-06-27 438296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; D:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; D:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; D:\Windows\system32\drivers\aswHwid.sys [2016-06-26 34008]
R2 aswMonFlt;aswMonFlt; D:\Windows\system32\drivers\aswMonFlt.sys [2016-06-26 91680]
R2 aswStm;aswStm; D:\Windows\system32\drivers\aswStm.sys [2016-06-26 118152]
R3 atikmdag;atikmdag; D:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 RTL8167;Ovladač Realtek 8167 NT; D:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; D:\Windows\system32\DRIVERS\rtl8192se.sys [2009-08-27 859136]
S2 Parvdm;Parvdm; D:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; D:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; D:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; D:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 pciide;pciide; D:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; D:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; D:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; D:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; D:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; D:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; D:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; D:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; D:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; D:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; D:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; D:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; D:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 wdm_usb;wdm_usb; D:\Windows\system32\DRIVERS\usb2ser.sys [2016-03-10 119952]
S3 WinUsb;WinUsb; D:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;Avast Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-06-26 197128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; D:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ssinstall;SInstalátor; D:\Windows\System32\ssins.exe [2016-06-26 2324216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-27 270016]
S3 AppMgmt;@appmgmts.dll,-3250; D:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service; D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [2015-12-02 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-05 146888]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; D:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Re: PC se seká

Napsal: 05 črc 2016 20:21
od Rudy
Zdravím!
Toto je log z čeho?

Re: PC se seká

Napsal: 05 črc 2016 20:29
od tajfun
jsem to udělal asi blbě .. co ?

Re: PC se seká

Napsal: 05 črc 2016 20:49
od tajfun
Logfile of random's system information tool 1.10 (written by random/random)
Run by pepa at 2016-07-05 20:46:30
Microsoft Windows 7 Ultimate Service Pack 1
System drive D: has 162 GB (68%) free of 238 GB
Total RAM: 2043 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:47:26, on 5.7.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
D:\Windows\system32\Dwm.exe
D:\Windows\Explorer.EXE
D:\Windows\system32\taskhost.exe
D:\Program Files\AVAST Software\Avast\AvastUI.exe
D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
D:\Windows\system32\wbem\unsecapp.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Users\pepa\Downloads\RSIT.exe
D:\Program Files\trend micro\pepa.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "D:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "D:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Skype] "D:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "D:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "D:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Global Startup: McAfee Security Scan Plus.lnk = D:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - D:\Windows\system32\atiesrxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - D:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - D:\Windows\System32\ssins.exe

--
End of file - 4937 bytes

======Scheduled tasks folder======

D:\Windows\tasks\Adobe Flash Player Updater.job - D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"wrc@avast.com"=D:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=D:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.192 Plugin
"Path"=D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll


D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-26 716632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=D:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-06-26 8897712]
"GrooveMonitor"=D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"seznam-listicka-distribuce"=D:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Skype"=D:\Program Files\Skype\Phone\Skype.exe [2016-06-29 26424960]

D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - D:\Program Files\McAfee Security Scan\3.11.266\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=D:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - D:\Windows\System32\Notepad.exe %1
.js - open - D:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-07-05 20:46:30 ----D---- D:\rsit
2016-07-05 20:46:30 ----D---- D:\Program Files\trend micro
2016-07-03 09:37:43 ----D---- D:\Windows\EOONotify
2016-07-03 09:19:51 ----A---- D:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-02 16:29:00 ----A---- D:\Windows\system32\shell32.dll
2016-07-02 16:28:58 ----A---- D:\Windows\system32\shdocvw.dll
2016-07-02 15:24:23 ----A---- D:\Windows\system32\winhttp.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\ws2_32.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\netbtugc.exe
2016-07-02 15:24:22 ----A---- D:\Windows\system32\mswsock.dll
2016-07-02 15:24:22 ----A---- D:\Windows\system32\drivers\netbt.sys
2016-07-02 15:24:18 ----A---- D:\Windows\system32\WMVDECOD.DLL
2016-07-02 15:24:16 ----A---- D:\Windows\system32\msmpeg2adec.dll
2016-07-02 15:24:16 ----A---- D:\Windows\system32\mf.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMVSDECD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMSPDMOD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMADMOE.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\WMADMOD.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\quartz.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\qdvd.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\MSMPEG2ENC.DLL
2016-07-02 15:24:15 ----A---- D:\Windows\system32\evr.dll
2016-07-02 15:24:15 ----A---- D:\Windows\system32\COLORCNV.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVXENCD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVSENCD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMVENCOD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\wmpmde.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\WMALFXGFXDSP.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\qasf.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MPG4DECD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MP43DECD.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\MFWMAAEC.DLL
2016-07-02 15:24:14 ----A---- D:\Windows\system32\mfplat.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\mcmde.dll
2016-07-02 15:24:14 ----A---- D:\Windows\system32\devenum.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\WMSPDMOE.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\VIDRESZR.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\SysFxUI.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\rrinstaller.exe
2016-07-02 15:24:13 ----A---- D:\Windows\system32\RESAMPLEDMO.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\MP4SDECD.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\MP3DMOD.DLL
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfvdsp.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfps.dll
2016-07-02 15:24:13 ----A---- D:\Windows\system32\mfpmp.exe
2016-07-02 15:24:13 ----A---- D:\Windows\system32\drivers\portcls.sys
2016-07-02 15:24:12 ----A---- D:\Windows\system32\mferror.dll
2016-07-02 15:24:12 ----A---- D:\Windows\system32\ksuser.dll
2016-07-02 15:24:12 ----A---- D:\Windows\system32\drivers\drmkaud.sys
2016-07-02 15:24:12 ----A---- D:\Windows\system32\drivers\drmk.sys
2016-07-02 15:24:04 ----A---- D:\Windows\system32\Wdfres.dll
2016-07-02 15:24:04 ----A---- D:\Windows\system32\drivers\WdfLdr.sys
2016-07-02 15:24:04 ----A---- D:\Windows\system32\drivers\Wdf01000.sys
2016-07-02 15:24:02 ----A---- D:\Windows\system32\WMPhoto.dll
2016-07-02 15:24:00 ----A---- D:\Windows\system32\msi.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msimsg.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msihnd.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\msiexec.exe
2016-07-02 15:23:59 ----A---- D:\Windows\system32\consent.exe
2016-07-02 15:23:59 ----A---- D:\Windows\system32\authui.dll
2016-07-02 15:23:59 ----A---- D:\Windows\system32\appinfo.dll
2016-07-02 15:23:52 ----A---- D:\Windows\system32\wmp.dll
2016-07-02 15:23:51 ----A---- D:\Windows\system32\wmploc.DLL
2016-07-02 15:23:51 ----A---- D:\Windows\system32\spwmp.dll
2016-07-02 15:23:51 ----A---- D:\Windows\system32\dxmasf.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml6r.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml6.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml3r.dll
2016-07-02 15:23:47 ----A---- D:\Windows\system32\msxml3.dll
2016-07-02 15:23:32 ----A---- D:\Windows\system32\drivers\usbehci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbuhci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbport.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbohci.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbhub.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbd.sys
2016-07-02 15:23:31 ----A---- D:\Windows\system32\drivers\usbccgp.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\drivers\dxgmms1.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\drivers\dxgkrnl.sys
2016-07-02 15:23:29 ----A---- D:\Windows\system32\cdd.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\wmdrmsdk.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\msmpeg2vdec.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\drmv2clt.dll
2016-07-02 15:23:19 ----A---- D:\Windows\system32\blackbox.dll
2016-07-02 15:23:16 ----A---- D:\Windows\system32\ntkrnlpa.exe
2016-07-02 15:23:15 ----A---- D:\Windows\system32\schannel.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\ntoskrnl.exe
2016-07-02 15:23:15 ----A---- D:\Windows\system32\lsasrv.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\kerberos.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\drmmgrtn.dll
2016-07-02 15:23:15 ----A---- D:\Windows\system32\AUDIOKSE.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\wintrust.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\msv1_0.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\drivers\PEAuth.sys
2016-07-02 15:23:14 ----A---- D:\Windows\system32\crypt32.dll
2016-07-02 15:23:14 ----A---- D:\Windows\system32\ci.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\winresume.exe
2016-07-02 15:23:13 ----A---- D:\Windows\system32\winload.exe
2016-07-02 15:23:13 ----A---- D:\Windows\system32\cryptsvc.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\audiosrv.dll
2016-07-02 15:23:13 ----A---- D:\Windows\system32\adtschema.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\srcore.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\pcasvc.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\ncrypt.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\drivers\ksecpkg.sys
2016-07-02 15:23:12 ----A---- D:\Windows\system32\drivers\cng.sys
2016-07-02 15:23:12 ----A---- D:\Windows\system32\cryptui.dll
2016-07-02 15:23:12 ----A---- D:\Windows\system32\cryptnet.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\wdigest.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\TSpkg.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\EncDump.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\drivers\mountmgr.sys
2016-07-02 15:23:11 ----A---- D:\Windows\system32\drivers\ksecdd.sys
2016-07-02 15:23:11 ----A---- D:\Windows\system32\csrsrv.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\cryptsp.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\AudioSes.dll
2016-07-02 15:23:11 ----A---- D:\Windows\system32\AudioEng.dll
2016-07-02 15:23:10 ----A---- D:\Windows\system32\rstrui.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\smss.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\msscp.dll
2016-07-02 15:23:09 ----A---- D:\Windows\system32\msnetobj.dll
2016-07-02 15:23:09 ----A---- D:\Windows\system32\lsass.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\audiodg.exe
2016-07-02 15:23:09 ----A---- D:\Windows\system32\appidapi.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\sspicli.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\pcadm.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\auditpol.exe
2016-07-02 15:23:08 ----A---- D:\Windows\system32\appidsvc.dll
2016-07-02 15:23:08 ----A---- D:\Windows\system32\appidpolicyconverter.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\sspisrv.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\srclient.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\setbcdlocale.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\secur32.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\pcawrk.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\pcalua.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\msmmsp.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\msaudite.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\drivers\appid.sys
2016-07-02 15:23:07 ----A---- D:\Windows\system32\credssp.dll
2016-07-02 15:23:07 ----A---- D:\Windows\system32\appidcertstorecheck.exe
2016-07-02 15:23:07 ----A---- D:\Windows\system32\apisetschema.dll
2016-07-02 15:23:06 ----A---- D:\Windows\system32\pcaevts.dll
2016-07-02 15:23:06 ----A---- D:\Windows\system32\msobjs.dll
2016-07-02 15:22:16 ----A---- D:\Windows\system32\rdpcorets.dll
2016-07-02 15:22:12 ----A---- D:\Windows\system32\RMActivate_isv.exe
2016-07-02 15:22:12 ----A---- D:\Windows\system32\RMActivate.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_ssp_isv.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_ssp.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc_isv.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\secproc.dll
2016-07-02 15:22:11 ----A---- D:\Windows\system32\RMActivate_ssp_isv.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\RMActivate_ssp.exe
2016-07-02 15:22:11 ----A---- D:\Windows\system32\msdrm.dll
2016-07-02 15:21:32 ----A---- D:\Windows\system32\termsrv.dll
2016-07-02 15:21:06 ----A---- D:\Windows\system32\comctl32.dll
2016-07-02 15:21:04 ----A---- D:\Windows\system32\scesrv.dll
2016-07-02 15:21:02 ----A---- D:\Windows\system32\drivers\ntfs.sys
2016-07-02 15:21:00 ----A---- D:\Windows\system32\WsmSvc.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WsmWmiPl.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WsmAuto.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WSManMigrationPlugin.dll
2016-07-02 15:20:59 ----A---- D:\Windows\system32\WSManHTTPConfig.exe
2016-07-02 15:20:30 ----A---- D:\Windows\system32\gdi32.dll
2016-07-02 13:00:44 ----D---- D:\Windows\Minidump
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wups2.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wucltux.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wuaueng.dll
2016-07-02 09:53:24 ----A---- D:\Windows\system32\wuauclt.exe
2016-07-02 09:52:01 ----A---- D:\Windows\system32\wuwebv.dll
2016-07-02 09:52:01 ----A---- D:\Windows\system32\wuapp.exe
2016-07-02 03:02:15 ----D---- D:\Windows\system32\SPReview
2016-07-02 03:00:44 ----D---- D:\Windows\Migration
2016-07-02 00:22:14 ----A---- D:\Windows\system32\EOSNotify.exe
2016-07-01 15:35:50 ----D---- D:\Users\pepa\AppData\Roaming\BitTorrent
2016-06-30 12:50:29 ----D---- D:\Windows\system32\EventProviders
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmictimeprovider.dll
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmicsvc.exe
2016-06-29 13:01:09 ----A---- D:\Windows\system32\vmicres.dll
2016-06-29 13:01:09 ----A---- D:\Windows\system32\IcCoinstall.dll
2016-06-29 13:01:08 ----A---- D:\Windows\system32\drivers\VMBusHID.sys
2016-06-29 13:01:07 ----A---- D:\Windows\system32\vmbusres.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\vmbuspipe.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\VmbusCoinstaller.dll
2016-06-29 13:01:07 ----A---- D:\Windows\system32\drivers\winhv.sys
2016-06-29 13:01:06 ----A---- D:\Windows\system32\drivers\vmbus.sys
2016-06-29 13:01:06 ----A---- D:\Windows\system32\drivers\storvsc.sys
2016-06-29 13:01:05 ----A---- D:\Windows\system32\WSDApi.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\vmstorfltres.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\VmdCoinstall.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\PresentationHostProxy.dll
2016-06-29 13:01:05 ----A---- D:\Windows\system32\PresentationHost.exe
2016-06-29 13:01:05 ----A---- D:\Windows\system32\drivers\vmstorfl.sys
2016-06-29 13:01:05 ----A---- D:\Windows\system32\drivers\vms3cap.sys
2016-06-29 13:01:03 ----A---- D:\Windows\system32\tquery.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\StructuredQuery.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssvp.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssrch.dll
2016-06-29 13:01:03 ----A---- D:\Windows\system32\mssphtb.dll
2016-06-29 13:00:56 ----A---- D:\Windows\system32\drivers\volsnap.sys
2016-06-29 13:00:56 ----A---- D:\Windows\system32\drivers\vhdmp.sys
2016-06-29 13:00:55 ----A---- D:\Windows\system32\drivers\usbvideo.sys
2016-06-29 13:00:55 ----A---- D:\Windows\system32\drivers\USBSTOR.SYS
2016-06-29 13:00:54 ----A---- D:\Windows\system32\umb.dll
2016-06-29 13:00:54 ----A---- D:\Windows\system32\drivers\umbus.sys
2016-06-29 13:00:53 ----A---- D:\Windows\system32\drivers\winusb.sys
2016-06-29 13:00:50 ----A---- D:\Windows\system32\drivers\sffp_sd.sys
2016-06-29 13:00:45 ----A---- D:\Windows\system32\drivers\sbp2port.sys
2016-06-29 13:00:42 ----A---- D:\Windows\system32\drivers\nvstor.sys
2016-06-29 13:00:42 ----A---- D:\Windows\system32\drivers\nvraid.sys
2016-06-29 13:00:41 ----A---- D:\Windows\system32\MPSSVC.dll
2016-06-29 13:00:41 ----A---- D:\Windows\system32\FirewallControlPanel.dll
2016-06-29 13:00:40 ----A---- D:\Windows\system32\AuthFWSnapin.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\netfxperf.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscories.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscorier.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\mscoree.dll
2016-06-29 13:00:36 ----A---- D:\Windows\system32\dfshim.dll
2016-06-29 13:00:35 ----A---- D:\Windows\system32\Narrator.exe
2016-06-29 13:00:35 ----A---- D:\Windows\system32\NAPHLPR.DLL
2016-06-29 13:00:35 ----A---- D:\Windows\system32\NAPCRYPT.DLL
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\msdsm.sys
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\msahci.sys
2016-06-29 13:00:34 ----A---- D:\Windows\system32\drivers\ataport.sys
2016-06-29 13:00:33 ----A---- D:\Windows\system32\wpd_ci.dll
2016-06-29 13:00:33 ----A---- D:\Windows\system32\drivers\scsiport.sys
2016-06-29 13:00:33 ----A---- D:\Windows\system32\drivers\mpio.sys
2016-06-29 13:00:31 ----A---- D:\Windows\system32\zipfldr.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wwanprotdim.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wwanconn.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wusa.exe
2016-06-29 13:00:31 ----A---- D:\Windows\system32\wsdchngr.dll
2016-06-29 13:00:31 ----A---- D:\Windows\system32\CertEnroll.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\WPDShServiceObj.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wpdshext.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wpdbusenum.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\wkssvc.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\PortableDeviceStatus.dll
2016-06-29 13:00:30 ----A---- D:\Windows\system32\PortableDeviceApi.dll
2016-06-29 13:00:29 ----A---- D:\Windows\system32\framedynos.dll
2016-06-29 13:00:29 ----A---- D:\Windows\system32\framedyn.dll
2016-06-29 13:00:28 ----A---- D:\Windows\system32\wbemcomn.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wmicmiplugin.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanui.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanpref.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlanmsm.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\wlangpui.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\winsrv.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\winlogon.exe
2016-06-29 13:00:27 ----A---- D:\Windows\system32\WindowsCodecs.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\ReAgentc.exe
2016-06-29 13:00:27 ----A---- D:\Windows\system32\ReAgent.dll
2016-06-29 13:00:27 ----A---- D:\Windows\system32\drivers\afd.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\win32k.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wimserv.exe
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wimgapi.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\webservices.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\webio.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\WebClnt.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\wcncsvc.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\fphc.dll
2016-06-29 13:00:26 ----A---- D:\Windows\system32\drivers\mrxdav.sys
2016-06-29 13:00:26 ----A---- D:\Windows\system32\davclnt.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\WinSAT.exe
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiaservc.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiarpc.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\wiadefui.dll
2016-06-29 13:00:25 ----A---- D:\Windows\system32\audiodev.dll
2016-06-29 13:00:23 ----A---- D:\Windows\twain_32.dll
2016-06-29 13:00:23 ----A---- D:\Windows\system32\wpdwcn.dll
2016-06-29 13:00:21 ----A---- D:\Windows\system32\WinSATAPI.dll
2016-06-29 13:00:21 ----A---- D:\Windows\system32\wiavideo.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\WPDSp.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\wkscli.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\VSSVC.exe
2016-06-29 13:00:19 ----A---- D:\Windows\system32\vssapi.dll
2016-06-29 13:00:19 ----A---- D:\Windows\system32\drivers\usbrpm.sys
2016-06-29 13:00:18 ----A---- D:\Windows\system32\vdsutil.dll
2016-06-29 13:00:18 ----A---- D:\Windows\system32\vds.exe
2016-06-29 13:00:17 ----A---- D:\Windows\system32\VAN.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\MSVidCtl.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msvidc32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msvfw32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\msrle32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\mciavi32.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\iccvid.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\cca.dll
2016-06-29 13:00:17 ----A---- D:\Windows\system32\avifil32.dll
2016-06-29 13:00:15 ----A---- D:\Windows\system32\vdsbas.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\usp10.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\userinit.exe
2016-06-29 13:00:11 ----A---- D:\Windows\system32\userenv.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\usercpl.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\user32.dll
2016-06-29 13:00:11 ----A---- D:\Windows\system32\umpo.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\upnp.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\unimdmat.dll
2016-06-29 13:00:10 ----A---- D:\Windows\system32\drivers\USBCAMD2.sys
2016-06-29 13:00:10 ----A---- D:\Windows\system32\drivers\USBCAMD.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UserAccountControlSettings.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UIRibbonRes.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\UIRibbon.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\tzutil.exe
2016-06-29 13:00:09 ----A---- D:\Windows\system32\twext.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\EncDec.dll
2016-06-29 13:00:09 ----A---- D:\Windows\system32\drivers\udfs.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\drivers\tunnel.sys
2016-06-29 13:00:09 ----A---- D:\Windows\system32\djoin.exe
2016-06-29 13:00:08 ----A---- D:\Windows\system32\w32tm.exe
2016-06-29 13:00:08 ----A---- D:\Windows\system32\TRAPI.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\thumbcache.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\themeui.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\themecpl.dll
2016-06-29 13:00:08 ----A---- D:\Windows\system32\drivers\rdpdr.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\termmgr.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\tcpipcfg.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\taskschd.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\taskeng.exe
2016-06-29 13:00:07 ----A---- D:\Windows\system32\schedsvc.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\schedcli.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\netiougc.exe
2016-06-29 13:00:07 ----A---- D:\Windows\system32\netiohlp.dll
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tdx.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tdi.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\tcpip.sys
2016-06-29 13:00:07 ----A---- D:\Windows\system32\drivers\FWPKCLNT.SYS
2016-06-29 13:00:06 ----A---- D:\Windows\system32\wavemsp.dll
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskmgr.exe
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskhost.exe
2016-06-29 13:00:06 ----A---- D:\Windows\system32\taskbarcpl.dll
2016-06-29 13:00:06 ----A---- D:\Windows\system32\tapisrv.dll
2016-06-29 13:00:05 ----A---- D:\Windows\system32\takeown.exe
2016-06-29 13:00:05 ----A---- D:\Windows\system32\tabcal.exe
2016-06-29 13:00:05 ----A---- D:\Windows\system32\MultiDigiMon.exe
2016-06-29 13:00:04 ----A---- D:\Windows\system32\drivers\TsUsbFlt.sys
2016-06-29 13:00:03 ----A---- D:\Windows\system32\wtsapi32.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\tsgqec.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\SessEnv.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\remotepg.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\regapi.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpencom.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpdd.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\rdpd3d.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\perfts.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\mstscax.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\input.dll
2016-06-29 13:00:03 ----A---- D:\Windows\system32\aaclient.dll
2016-06-29 13:00:02 ----A---- D:\Windows\system32\wisptis.exe
2016-06-29 13:00:02 ----A---- D:\Windows\system32\TabSvc.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\winsta.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\utildll.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\TSWorkspace.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\tspubwmi.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpsign.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpshell.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\RDPENCDD.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\rdpclip.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\mstsc.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\mstask.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\lsm.exe
2016-06-29 13:00:01 ----A---- D:\Windows\system32\icaapi.dll
2016-06-29 13:00:01 ----A---- D:\Windows\system32\drivers\tssecsrv.sys
2016-06-29 13:00:01 ----A---- D:\Windows\system32\drivers\RDPCDD.sys
2016-06-29 13:00:00 ----A---- D:\Windows\system32\rdpinit.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\wksprt.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\umrdp.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tssrvlic.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tskill.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tsdiscon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tscon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\tscfgwmi.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\shadow.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rwinsta.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\reset.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpwsx.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdprefdrvapi.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\RDPREFDD.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpendp.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\rdpcorekmts.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\query.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\qprocess.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\qappsrv.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\msutb.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\LSCSHostPolicy.dll
2016-06-29 12:59:59 ----A---- D:\Windows\system32\logoff.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chgusr.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chgport.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\chglogon.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\change.exe
2016-06-29 12:59:59 ----A---- D:\Windows\system32\drivers\tdtcp.sys
2016-06-29 12:59:59 ----A---- D:\Windows\system32\drivers\tdpipe.sys
2016-06-29 12:59:58 ----A---- D:\Windows\system32\tsmf.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\taskcomp.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\rdpcfgex.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\qwinsta.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\quser.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\msg.exe
2016-06-29 12:59:58 ----A---- D:\Windows\system32\DShowRdpFilter.dll
2016-06-29 12:59:58 ----A---- D:\Windows\system32\drivers\rdpwd.sys
2016-06-29 12:59:57 ----A---- D:\Windows\system32\tlscsp.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\systemcpl.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\syssetup.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\sysclass.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\spopk.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\spbcd.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\rdpcore.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\lsmproxy.dll
2016-06-29 12:59:57 ----A---- D:\Windows\system32\IPHLPAPI.DLL
2016-06-29 12:59:56 ----A---- D:\Windows\system32\syncui.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sxs.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sud.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\sbe.dll
2016-06-29 12:59:56 ----A---- D:\Windows\system32\PortableDeviceSyncProvider.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\wsqmcons.exe
2016-06-29 12:59:55 ----A---- D:\Windows\system32\stobject.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\ssText3d.scr
2016-06-29 12:59:55 ----A---- D:\Windows\system32\sqmapi.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\sqlcese30.dll
2016-06-29 12:59:55 ----A---- D:\Windows\system32\drivers\storport.sys
2016-06-29 12:59:54 ----A---- D:\Windows\system32\spp.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\wsnmp32.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\WavDest.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\sscore.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\srvsvc.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\SmiEngine.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\inetmib1.dll
2016-06-29 12:59:53 ----A---- D:\Windows\system32\drivers\srv2.sys
2016-06-29 12:59:53 ----A---- D:\Windows\system32\drivers\srv.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\srvcli.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\sisbkup.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\srvnet.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\scfilter.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb20.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb10.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\drivers\mrxsmb.sys
2016-06-29 12:59:52 ----A---- D:\Windows\system32\certprop.dll
2016-06-29 12:59:52 ----A---- D:\Windows\system32\basecsp.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shwebsvc.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shunimpl.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shsvcs.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shlwapi.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shimgvw.dll
2016-06-29 12:59:51 ----A---- D:\Windows\system32\shgina.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\unattend.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\shsetup.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\shacct.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\setupcl.exe
2016-06-29 12:59:50 ----A---- D:\Windows\system32\setupapi.dll
2016-06-29 12:59:50 ----A---- D:\Windows\system32\prevhost.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spwizui.dll
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spreview.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\spinstall.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\setupcln.dll
2016-06-29 12:59:49 ----A---- D:\Windows\system32\sethc.exe
2016-06-29 12:59:49 ----A---- D:\Windows\system32\ActionQueue.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\wscapi.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\vaultsvc.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\Vault.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppuinotify.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppsvc.exe
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppinst.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppcomapi.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\sppc.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\slwga.dll
2016-06-29 12:59:48 ----A---- D:\Windows\system32\slui.exe
2016-06-29 12:59:48 ----A---- D:\Windows\system32\nltest.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\vbscript.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sppobjs.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\schtasks.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\SearchFolder.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdrsvc.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdengin2.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\sdclt.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\scavengeui.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\scansetting.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\netlogon.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\manage-bde.exe
2016-06-29 12:59:47 ----A---- D:\Windows\system32\jscript.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\fvecpl.dll
2016-06-29 12:59:47 ----A---- D:\Windows\system32\fveapi.dll
2016-06-29 12:59:45 ----A---- D:\Windows\system32\scecli.dll
2016-06-29 12:59:45 ----A---- D:\Windows\system32\repair-bde.exe
2016-06-29 12:59:45 ----A---- D:\Windows\system32\drivers\fvevol.sys
2016-06-29 12:59:45 ----A---- D:\Windows\system32\BdeHdCfg.exe
2016-06-29 12:59:43 ----A---- D:\Windows\system32\uxlib.dll
2016-06-29 12:59:43 ----A---- D:\Windows\system32\spwizres.dll
2016-06-29 12:59:43 ----A---- D:\Windows\system32\spwizeng.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\sysmain.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\logoncli.dll
2016-06-29 12:59:42 ----A---- D:\Windows\system32\CertPolEng.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\WinSCard.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\srrstr.dll
2016-06-29 12:59:41 ----A---- D:\Windows\system32\sharemediacpl.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\sppwinob.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\runonce.exe
2016-06-29 12:59:40 ----A---- D:\Windows\system32\rpchttp.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\RpcRtRemote.dll
2016-06-29 12:59:40 ----A---- D:\Windows\system32\rpcrt4.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\Robocopy.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\riched32.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\riched20.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\Ribbons.scr
2016-06-29 12:59:39 ----A---- D:\Windows\system32\RelPost.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\recovery.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\recdisc.exe
2016-06-29 12:59:39 ----A---- D:\Windows\system32\rastls.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\rastapi.dll
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rmcast.sys
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rdyboost.sys
2016-06-29 12:59:39 ----A---- D:\Windows\system32\drivers\rdbss.sys
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rtutils.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rasppp.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\rasmans.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\mprddm.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\iprtrmgr.dll
2016-06-29 12:59:38 ----A---- D:\Windows\system32\cmstp.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\vpnikeapi.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\vpnike.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\TsUsbGDCoInstaller.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\RDVGHelper.exe
2016-06-29 12:59:37 ----A---- D:\Windows\system32\rdpudd.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\raschap.dll
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\wanarp.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\rdpvideominiport.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\ndproxy.sys
2016-06-29 12:59:37 ----A---- D:\Windows\system32\drivers\ndiswan.sys
2016-06-29 12:59:36 ----A---- D:\Windows\system32\RacEngn.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\XpsPrint.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\spoolsv.exe
2016-06-29 12:59:35 ----A---- D:\Windows\system32\qedit.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\proquota.exe
2016-06-29 12:59:35 ----A---- D:\Windows\system32\propsys.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\profsvc.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\profprov.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\prncache.dll
2016-06-29 12:59:35 ----A---- D:\Windows\system32\hgprint.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\sppnp.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\powercpl.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\pifmgr.dll
2016-06-29 12:59:34 ----A---- D:\Windows\system32\PhotoScreensaver.scr
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wvc.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wpccpl.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wdscore.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\wdc.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\unlodctr.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PrintBrmUi.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PnPUnattend.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PkgMgr.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\photowiz.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\perfmon.exe
2016-06-29 12:59:33 ----A---- D:\Windows\system32\PerfCenterCPL.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\pdhui.dll
2016-06-29 12:59:33 ----A---- D:\Windows\system32\drivers\partmgr.sys
2016-06-29 12:59:32 ----A---- D:\Windows\system32\win32spl.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\prnfldr.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\printui.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\pla.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\pdh.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\ntprint.dll
2016-06-29 12:59:32 ----A---- D:\Windows\system32\inetpp.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\relog.exe
2016-06-29 12:59:31 ----A---- D:\Windows\system32\puiobj.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\PrintIsolationProxy.dll
2016-06-29 12:59:31 ----A---- D:\Windows\system32\logman.exe
2016-06-29 12:59:31 ----A---- D:\Windows\system32\localspl.dll
2016-06-29 12:59:27 ----A---- D:\Windows\system32\PushPrinterConnections.exe
2016-06-29 12:59:27 ----A---- D:\Windows\system32\prntvpt.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\OnLineIDCpl.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\onexui.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\onex.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\olepro32.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\oleaut32.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\ocsetup.exe
2016-06-29 12:59:25 ----A---- D:\Windows\system32\ocsetapi.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\drivers\csc.sys
2016-06-29 12:59:25 ----A---- D:\Windows\system32\cscui.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\cscsvc.dll
2016-06-29 12:59:25 ----A---- D:\Windows\system32\CscMig.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscobj.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscdll.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\cscapi.dll
2016-06-29 12:59:24 ----A---- D:\Windows\system32\asycfilt.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntshrui.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntlanman.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ntdll.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nslookup.exe
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nlasvc.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\nlaapi.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\networkmap.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\ncsi.dll
2016-06-29 12:59:23 ----A---- D:\Windows\system32\dosx.exe
2016-06-29 12:59:22 ----A---- D:\Windows\system32\pnidui.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\nshwfp.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\networkexplorer.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netutils.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netshell.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netplwiz.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netjoin.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\netcenter.dll
2016-06-29 12:59:22 ----A---- D:\Windows\system32\IKEEXT.DLL
2016-06-29 12:59:22 ----A---- D:\Windows\system32\FWPUCLNT.DLL
2016-06-29 12:59:22 ----A---- D:\Windows\system32\drivers\netio.sys
2016-06-29 12:59:22 ----A---- D:\Windows\system32\BFE.DLL
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netcfgx.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netcfg.exe
2016-06-29 12:59:21 ----A---- D:\Windows\system32\netapi32.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\net1.exe
2016-06-29 12:59:21 ----A---- D:\Windows\system32\ncryptui.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\nci.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\NaturalLanguage6.dll
2016-06-29 12:59:21 ----A---- D:\Windows\system32\drivers\ndisuio.sys
2016-06-29 12:59:21 ----A---- D:\Windows\system32\drivers\ndis.sys
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QUTIL.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QSVRMGMT.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\QSHVHOST.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\KMSVC.DLL
2016-06-29 12:59:19 ----A---- D:\Windows\system32\ipsmsnap.dll
2016-06-29 12:59:18 ----A---- D:\Windows\system32\nshipsec.dll
2016-06-29 12:59:18 ----A---- D:\Windows\system32\iasrecst.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QCLIPROV.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QAGENTRT.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\QAGENT.DLL
2016-06-29 12:59:17 ----A---- D:\Windows\system32\netdiagfx.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\napdsnap.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\iasrad.dll
2016-06-29 12:59:17 ----A---- D:\Windows\system32\iasacct.dll
2016-06-29 12:59:16 ----A---- D:\Windows\system32\Mystify.scr
2016-06-29 12:59:16 ----A---- D:\Windows\system32\mydocs.dll
2016-06-29 12:59:16 ----A---- D:\Windows\system32\mcbuilder.exe
2016-06-29 12:59:16 ----A---- D:\Windows\system32\IPSECSVC.DLL
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msinfo32.exe
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msieftp.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msftedit.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msconfig.exe
2016-06-29 12:59:15 ----A---- D:\Windows\system32\msasn1.dll
2016-06-29 12:59:15 ----A---- D:\Windows\system32\MSAC3ENC.DLL
2016-06-29 12:59:14 ----A---- D:\Windows\system32\SyncCenter.dll
2016-06-29 12:59:14 ----A---- D:\Windows\system32\mprapi.dll
2016-06-29 12:59:14 ----A---- D:\Windows\system32\mobsync.exe
2016-06-29 12:59:13 ----A---- D:\Windows\system32\WMVCORE.DLL
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpsrcwp.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpshell.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpps.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\WMPEncEn.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpeffects.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmpdxm.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmdrmnet.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\wmdrmdev.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\SensorsCpl.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\MMDevAPI.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfreadwrite.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\MFPlay.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfds.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc42u.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc40u.dll
2016-06-29 12:59:13 ----A---- D:\Windows\system32\mfc40.dll
2016-06-29 12:59:12 ----A---- D:\Windows\system32\WMNetMgr.dll
2016-06-29 12:59:11 ----A---- D:\Windows\system32\logagent.exe
2016-06-29 12:59:10 ----A---- D:\Windows\system32\MediaMetadataHandler.dll
2016-06-29 12:59:10 ----A---- D:\Windows\system32\mapistub.dll
2016-06-29 12:59:10 ----A---- D:\Windows\system32\mapi32.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\mcupdate_GenuineIntel.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\inetcomm.dll
2016-06-29 12:59:08 ----A---- D:\Windows\system32\AuxiliaryDisplayCpl.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\sqlsrv32.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\PresentationSettings.exe
2016-06-29 12:59:07 ----A---- D:\Windows\system32\odbcconf.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\migisol.dll
2016-06-29 12:59:07 ----A---- D:\Windows\system32\AuxiliaryDisplayServices.dll
2016-06-29 12:59:03 ----A---- D:\Windows\system32\mblctr.exe
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbctrac.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbcjt32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbccp32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\odbc32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\msorcl32.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\mmcndmgr.dll
2016-06-29 12:59:01 ----A---- D:\Windows\system32\MdSched.exe
2016-06-29 12:59:01 ----A---- D:\Windows\system32\defaultlocationcpl.dll
2016-06-29 12:59:00 ----A---- D:\Windows\system32\luainstall.dll
2016-06-29 12:59:00 ----A---- D:\Windows\system32\lpremove.exe
2016-06-29 12:59:00 ----A---- D:\Windows\system32\lpksetup.exe
2016-06-29 12:58:59 ----A---- D:\Windows\system32\Wldap32.dll
2016-06-29 12:58:59 ----A---- D:\Windows\system32\nrpsrv.dll
2016-06-29 12:58:53 ----A---- D:\Windows\system32\drivers\tcpipreg.sys
2016-06-29 12:58:45 ----A---- D:\Windows\system32\KernelBase.dll
2016-06-29 12:58:45 ----A---- D:\Windows\system32\kernel32.dll
2016-06-29 12:58:45 ----A---- D:\Windows\system32\drivers\ks.sys
2016-06-29 12:58:44 ----A---- D:\Windows\system32\iTVData.dll
2016-06-29 12:58:44 ----A---- D:\Windows\system32\isoburn.exe
2016-06-29 12:58:43 ----A---- D:\Windows\system32\wshirda.dll
2016-06-29 12:58:43 ----A---- D:\Windows\system32\nlsbres.dll
2016-06-29 12:58:43 ----A---- D:\Windows\system32\MuiUnattend.exe
2016-06-29 12:58:41 ----A---- D:\Windows\system32\imm32.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\imapi2.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\dbghelp.dll
2016-06-29 12:58:41 ----A---- D:\Windows\system32\dbgeng.dll
2016-06-29 12:58:39 ----A---- D:\Windows\system32\ieframe.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\inseng.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\iesysprep.dll
2016-06-29 12:58:38 ----A---- D:\Windows\system32\ie4uinit.exe
2016-06-29 12:58:37 ----A---- D:\Windows\system32\webcheck.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\occache.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\msrating.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\imgutil.dll
2016-06-29 12:58:37 ----A---- D:\Windows\system32\ieUnatt.exe
2016-06-29 12:58:37 ----A---- D:\Windows\system32\iertutil.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\RegisterIEPKEYs.exe
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mshtmled.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mshtml.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeedssync.exe
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeedsbs.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\msfeeds.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\mscms.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\licmgr10.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\iepeers.dll
2016-06-29 12:58:36 ----A---- D:\Windows\system32\iedkcs32.dll
2016-06-29 12:58:35 ----A---- D:\Windows\system32\wininet.dll
2016-06-29 12:58:34 ----A---- D:\Windows\system32\tzres.dll
2016-06-29 12:58:33 ----A---- D:\Windows\system32\kbdlk41a.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\mstime.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDUS.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDUGHR1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDTUF.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDSG.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDSF.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDPO.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDMAORI.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDLT1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDINHIN.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDGR1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDGKL.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDCZ1.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\KBDBULG.DLL
2016-06-29 12:58:31 ----A---- D:\Windows\system32\iphlpsvc.dll
2016-06-29 12:58:31 ----A---- D:\Windows\system32\C_ISCII.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTURME.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTUQ.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDTAJIK.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDNEPR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDMON.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINTEL.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINTAM.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINORI.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINMAR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINKAN.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDINBEN.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDGEO.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDBLR.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\KBDBASH.DLL
2016-06-29 12:58:30 ----A---- D:\Windows\system32\iscsium.dll
2016-06-29 12:58:30 ----A---- D:\Windows\system32\iscsicli.exe
2016-06-29 12:58:30 ----A---- D:\Windows\system32\elsTrans.dll
2016-06-29 12:58:29 ----A---- D:\Windows\system32\urlmon.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\provsvc.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\ListSvc.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\itircl.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\imapi2fs.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\httpapi.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\HotStartUserAgent.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\hgcpl.dll
2016-06-29 12:58:28 ----A---- D:\Windows\system32\drivers\http.sys
2016-06-29 12:58:27 ----A---- D:\Windows\system32\hbaapi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\halmacpi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\halacpi.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\hal.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\drivers\hwpolicy.sys
2016-06-29 12:58:27 ----A---- D:\Windows\system32\ActionCenterCPL.dll
2016-06-29 12:58:27 ----A---- D:\Windows\system32\ActionCenter.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\gpsvc.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\gameux.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\fontsub.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\atmlib.dll
2016-06-29 12:58:19 ----A---- D:\Windows\system32\atmfd.dll
2016-06-29 12:58:18 ----A---- D:\Windows\system32\gpprefcl.dll
2016-06-29 12:58:18 ----A---- D:\Windows\system32\appmgr.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\scrptadm.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\ftp.exe
2016-06-29 12:58:17 ----A---- D:\Windows\system32\fontext.dll
2016-06-29 12:58:17 ----A---- D:\Windows\system32\AdmTmpl.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\t2embed.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\muifontsetup.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\FXSSVC.exe
2016-06-29 12:58:15 ----A---- D:\Windows\system32\FXSMON.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fms.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\findstr.exe
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fdeploy.dll
2016-06-29 12:58:15 ----A---- D:\Windows\system32\fde.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\resutils.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\ifsutil.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\FXSTIFF.dll
2016-06-29 12:58:14 ----A---- D:\Windows\system32\clusapi.dll
2016-06-29 12:58:13 ----A---- D:\Windows\system32\WFS.exe
2016-06-29 12:58:13 ----A---- D:\Windows\system32\untfs.dll
2016-06-29 12:58:13 ----A---- D:\Windows\system32\FXSCOVER.exe
2016-06-29 12:58:12 ----A---- D:\Windows\system32\wevtsvc.dll
2016-06-29 12:58:12 ----A---- D:\Windows\system32\ExplorerFrame.dll
2016-06-29 12:58:12 ----A---- D:\Windows\system32\eudcedit.exe
2016-06-29 12:58:12 ----A---- D:\Windows\explorer.exe
2016-06-29 12:58:11 ----A---- D:\Windows\system32\WerFaultSecure.exe
2016-06-29 12:58:11 ----A---- D:\Windows\system32\werconcpl.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\wer.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\mspbda.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\msdri.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\Faultrep.dll
2016-06-29 12:58:11 ----A---- D:\Windows\system32\EhStorAPI.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\Mcx2Svc.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\MCEWMDRMNDBootstrap.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\esent.dll
2016-06-29 12:58:10 ----A---- D:\Windows\system32\efscore.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eapphost.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eappgnui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\eapp3hst.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DxpTaskSync.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DXPTaskRingtone.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\DXP.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dskquoui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\drvstore.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3ui.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3svc.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3msm.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3cfg.dll
2016-06-29 12:58:09 ----A---- D:\Windows\system32\dot3api.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dxgi.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\drivers\Diskdump.sys
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dpnaddr.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnsrslvr.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnscmmc.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnscacheugc.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\dnsapi.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\Display.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\diskraid.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\diskpart.exe
2016-06-29 12:58:08 ----A---- D:\Windows\system32\d3d9.dll
2016-06-29 12:58:08 ----A---- D:\Windows\system32\d3d10warp.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\vfwwdm32.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\mciqtz32.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\FntCache.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\DWrite.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d11.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d10level9.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\d3d10_1core.dll
2016-06-29 12:58:07 ----A---- D:\Windows\system32\amstream.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\qdv.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\qcap.dll
2016-06-29 12:58:06 ----A---- D:\Windows\system32\msdmo.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\setupugc.exe
2016-06-29 12:58:05 ----A---- D:\Windows\system32\samsrv.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dxdiagn.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dsauth.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\drivers\dfsc.sys
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dpx.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DiagCpl.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dhcpcore.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\dfrgui.exe
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DevicePairingFolder.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\DeviceCenter.dll
2016-06-29 12:58:05 ----A---- D:\Windows\system32\d2d1.dll
2016-06-29 12:58:04 ----A---- D:\Windows\system32\samcli.dll
2016-06-29 12:58:03 ----A---- D:\Windows\system32\dwmredir.dll
2016-06-29 12:58:02 ----A---- D:\Windows\system32\tsbyuv.dll
2016-06-29 12:58:02 ----A---- D:\Windows\system32\dwmcore.dll
2016-06-29 12:58:01 ----A---- D:\Windows\system32\msyuv.dll
2016-06-29 12:58:01 ----A---- D:\Windows\system32\iyuv_32.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFx.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFSvc.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\WUDFPlatform.dll
2016-06-29 12:57:59 ----A---- D:\Windows\system32\drivers\WUDFRd.sys
2016-06-29 12:57:59 ----A---- D:\Windows\system32\dps.dll
2016-06-29 12:57:58 ----A---- D:\Windows\system32\WUDFHost.exe
2016-06-29 12:57:58 ----A---- D:\Windows\system32\WUDFCoinstaller.dll
2016-06-29 12:57:58 ----A---- D:\Windows\system32\drivers\WUDFPf.sys
2016-06-29 12:57:57 ----A---- D:\Windows\system32\localsec.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\umpnpmgr.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\OpcServices.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\netid.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\mimefilt.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\imagehlp.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\credui.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\CPFilters.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\conhost.exe
2016-06-29 12:57:55 ----A---- D:\Windows\system32\cfgmgr32.dll
2016-06-29 12:57:55 ----A---- D:\Windows\system32\autoconv.exe
2016-06-29 12:57:54 ----A---- D:\Windows\system32\rpcss.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\olethk32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\ole32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\msdtctm.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\comdlg32.dll
2016-06-29 12:57:54 ----A---- D:\Windows\system32\cmd.exe
2016-06-29 12:57:53 ----A---- D:\Windows\system32\xpsservices.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\diagperf.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\certcli.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cdosys.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\calc.exe
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cabview.dll
2016-06-29 12:57:53 ----A---- D:\Windows\system32\cabinet.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\XpsRasterService.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\XpsGdiConverter.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\Query.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\mtxclu.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\certmgr.dll
2016-06-29 12:57:51 ----A---- D:\Windows\system32\Bubbles.scr
2016-06-29 12:57:50 ----A---- D:\Windows\system32\wshbth.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browseui.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browser.dll
2016-06-29 12:57:50 ----A---- D:\Windows\system32\browcli.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\wbengine.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\sdcpl.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\qmgr.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bootres.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\BlbEvents.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bitsperf.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bitsadmin.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\biocpl.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bcdsrv.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\bcdboot.exe
2016-06-29 12:57:49 ----A---- D:\Windows\system32\batmeter.dll
2016-06-29 12:57:49 ----A---- D:\Windows\system32\basesrv.dll
2016-06-29 12:57:49 ----A---- D:\Windows\bfsvc.exe
2016-06-29 12:57:47 ----A---- D:\Windows\system32\bcdedit.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\winmm.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\SndVolSSO.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\SndVol.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\LogonUI.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\AzSqlExt.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\azroleui.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\azroles.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\AxInstSv.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autoplay.dll
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autochk.exe
2016-06-29 12:57:45 ----A---- D:\Windows\system32\autofmt.exe
2016-06-29 12:57:44 ----A---- D:\Windows\system32\wdiasqmmodule.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\advapi32.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\actxprxy.dll
2016-06-29 12:57:44 ----A---- D:\Windows\system32\accessibilitycpl.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aitagent.exe
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aepdu.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\aeinv.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\adsldp.dll
2016-06-29 12:57:43 ----A---- D:\Windows\system32\acppage.dll
2016-06-29 12:57:42 ----A---- D:\Windows\system32\activeds.dll
2016-06-29 12:57:41 ----A---- D:\Windows\system32\SmartcardCredentialProvider.dll
2016-06-29 12:57:41 ----A---- D:\Windows\system32\apphelp.dll
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\volmgr.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\termdd.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\pci.sys
2016-06-29 12:57:40 ----A---- D:\Windows\system32\drivers\kbdhid.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\msiscsi.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\IPMIDrv.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\iaStorV.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hidusb.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hidclass.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\HdAudio.sys
2016-06-29 12:57:39 ----A---- D:\Windows\system32\drivers\hdaudbus.sys
2016-06-29 12:57:38 ----A---- D:\Windows\system32\srchadmin.dll
2016-06-29 12:57:38 ----A---- D:\Windows\system32\OobeFldr.dll
2016-06-29 12:57:38 ----A---- D:\Windows\system32\dsuiext.dll
2016-06-29 12:57:37 ----A---- D:\Windows\system32\drivers\CompositeBus.sys
2016-06-29 12:57:37 ----A---- D:\Windows\system32\drivers\cdrom.sys
2016-06-29 12:57:36 ----A---- D:\Windows\system32\drivers\amdxata.sys
2016-06-29 12:57:36 ----A---- D:\Windows\system32\drivers\amdsata.sys
2016-06-29 12:57:34 ----A---- D:\Windows\system32\drivers\acpipmi.sys
2016-06-29 12:57:34 ----A---- D:\Windows\system32\drivers\acpi.sys
2016-06-29 12:57:33 ----A---- D:\Windows\system32\drivers\1394ohci.sys
2016-06-29 12:14:50 ----D---- D:\Users\pepa\AppData\Roaming\Opera Software
2016-06-29 12:13:32 ----D---- D:\Program Files\Opera
2016-06-29 11:18:01 ----A---- D:\Windows\ntbtlog.txt
2016-06-28 19:35:39 ----D---- D:\Users\pepa\AppData\Roaming\uTorrent
2016-06-27 18:41:46 ----HD---- D:\ProgramData\CanonBJ
2016-06-27 18:41:42 ----HD---- D:\Windows\system32\CanonIJ Uninstaller Information
2016-06-27 18:41:37 ----A---- D:\Windows\system32\CNMLM78.DLL
2016-06-27 18:41:33 ----HD---- D:\Program Files\CanonBJ
2016-06-27 10:44:12 ----D---- D:\Users\pepa\AppData\Roaming\Skype
2016-06-27 10:43:57 ----RD---- D:\Program Files\Skype
2016-06-27 10:43:57 ----D---- D:\Program Files\Common Files\Skype
2016-06-27 10:43:52 ----D---- D:\ProgramData\Skype
2016-06-27 10:11:42 ----D---- D:\ProgramData\McAfee Security Scan
2016-06-27 10:11:40 ----D---- D:\ProgramData\McAfee
2016-06-27 10:11:40 ----D---- D:\Program Files\McAfee Security Scan
2016-06-27 10:10:54 ----D---- D:\Users\pepa\AppData\Roaming\Macromedia
2016-06-27 10:10:54 ----D---- D:\Users\pepa\AppData\Roaming\Adobe
2016-06-27 10:10:26 ----D---- D:\Program Files\Seznam.cz
2016-06-27 10:09:59 ----D---- D:\Users\pepa\AppData\Roaming\Seznam.cz
2016-06-27 10:09:58 ----D---- D:\Program Files\Adobe Flash Player
2016-06-27 10:06:01 ----A---- D:\Windows\system32\FlashPlayerApp.exe
2016-06-27 10:05:57 ----D---- D:\Windows\system32\Macromed
2016-06-27 09:44:35 ----A---- D:\Windows\system32\poqexec.exe
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wups.dll
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wudriver.dll
2016-06-27 07:57:42 ----A---- D:\Windows\system32\wuapi.dll
2016-06-27 00:13:58 ----D---- D:\Windows\Panther
2016-06-27 00:13:31 ----D---- D:\Windows\system32\OEM
2016-06-27 00:04:23 ----D---- D:\Windows.old.000
2016-06-26 17:58:33 ----A---- D:\Windows\system32\msonpmon.dll
2016-06-26 17:57:31 ----D---- D:\Program Files\Microsoft Works
2016-06-26 17:57:08 ----D---- D:\Program Files\Microsoft Visual Studio
2016-06-26 17:57:08 ----D---- D:\Program Files\Common Files\DESIGNER
2016-06-26 17:56:46 ----D---- D:\Windows\PCHEALTH
2016-06-26 17:56:46 ----D---- D:\Program Files\Microsoft.NET
2016-06-26 17:55:18 ----D---- D:\Program Files\Microsoft Visual Studio 8
2016-06-26 17:54:37 ----D---- D:\Program Files\Microsoft Office
2016-06-26 17:54:36 ----D---- D:\ProgramData\Microsoft Help
2016-06-26 17:53:35 ----RHD---- D:\MSOCache
2016-06-26 17:52:09 ----D---- D:\Users\pepa\AppData\Roaming\WinRAR
2016-06-26 17:51:48 ----D---- D:\Program Files\WinRAR
2016-06-26 16:54:06 ----N---- D:\Windows\system32\MpSigStub.exe
2016-06-26 16:51:52 ----D---- D:\Users\pepa\AppData\Roaming\Mozilla
2016-06-26 16:51:38 ----D---- D:\Program Files\Mozilla Maintenance Service
2016-06-26 16:51:33 ----D---- D:\Program Files\Mozilla Firefox
2016-06-26 16:37:50 ----A---- D:\Windows\system32\ssinstall-uninstall.bat
2016-06-26 16:37:49 ----A---- D:\Windows\system32\ssins.exe
2016-06-26 16:35:25 ----A---- D:\Windows\system32\drivers\aswKbd.sys
2016-06-26 16:32:46 ----D---- D:\Users\pepa\AppData\Roaming\AVAST Software
2016-06-26 16:32:29 ----D---- D:\Program Files\Common Files\AV
2016-06-26 16:32:21 ----A---- D:\Windows\system32\drivers\aswVmm.sys
2016-06-26 16:32:21 ----A---- D:\Windows\system32\drivers\aswStm.sys
2016-06-26 16:32:20 ----A---- D:\Windows\system32\drivers\aswsp.sys
2016-06-26 16:32:20 ----A---- D:\Windows\system32\drivers\aswRvrt.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswRdr2.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswMonFlt.sys
2016-06-26 16:32:19 ----A---- D:\Windows\system32\drivers\aswHwid.sys
2016-06-26 16:32:18 ----A---- D:\Windows\system32\drivers\aswSnx.sys
2016-06-26 16:32:05 ----A---- D:\Windows\ucrtbase.dll
2016-06-26 16:32:05 ----A---- D:\Windows\system32\aswBoot.exe
2016-06-26 16:31:57 ----A---- D:\Windows\avastSS.scr
2016-06-26 16:30:22 ----D---- D:\Program Files\AVAST Software
2016-06-26 16:29:48 ----D---- D:\ProgramData\AVAST Software
2016-06-26 16:21:38 ----D---- D:\Program Files\InstallShield Installation Information
2016-06-26 16:21:38 ----A---- D:\Windows\system32\drivers\rtl8192se.sys
2016-06-26 16:21:34 ----D---- D:\Program Files\Realtek WLAN Driver
2016-06-26 16:21:10 ----SHD---- D:\Windows\Installer
2016-06-26 16:20:56 ----D---- D:\Users\pepa\AppData\Roaming\WinBatch
2016-06-26 16:03:11 ----A---- D:\Windows\system32\PerfStringBackup.INI
2016-06-26 15:59:18 ----D---- D:\Users\pepa\AppData\Roaming\Identities
2016-06-26 15:57:38 ----SD---- D:\Users\pepa\AppData\Roaming\Microsoft
2016-06-26 15:57:38 ----D---- D:\Users\pepa\AppData\Roaming\Media Center Programs
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Šablony
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Plocha
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Oblíbené položky
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Nabídka Start
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Dokumenty
2016-06-26 15:56:34 ----SHD---- D:\ProgramData\Data aplikací
2016-06-26 14:17:58 ----D---- D:\Windows\SoftwareDistribution
2016-06-26 14:14:37 ----D---- D:\Windows\Prefetch

======List of files/folders modified in the last 1 month======

2016-07-05 20:46:35 ----D---- D:\Windows\Temp
2016-07-05 20:46:30 ----RD---- D:\Program Files
2016-07-05 17:19:55 ----SHD---- D:\System Volume Information
2016-07-05 15:22:16 ----D---- D:\Windows\system32\config
2016-07-05 15:13:29 ----D---- D:\Windows\system32\wdi
2016-07-05 11:35:22 ----SHD---- D:\Config.Msi
2016-07-05 07:31:09 ----D---- D:\Windows\System32
2016-07-05 07:31:09 ----D---- D:\Windows\inf
2016-07-04 23:07:10 ----D---- D:\Windows\system32\wbem
2016-07-04 10:18:17 ----HD---- D:\ProgramData
2016-07-03 16:18:57 ----D---- D:\Windows\Microsoft.NET
2016-07-03 16:18:56 ----RSD---- D:\Windows\assembly
2016-07-03 09:53:33 ----D---- D:\Windows\system32\NDF
2016-07-03 09:48:19 ----D---- D:\Windows\winsxs
2016-07-03 09:46:41 ----D---- D:\Windows\system32\catroot2
2016-07-03 09:37:52 ----D---- D:\Windows\system32\drivers
2016-07-03 09:37:45 ----D---- D:\Windows\system32\sk-SK
2016-07-03 09:37:45 ----D---- D:\Windows\system32\en-US
2016-07-03 09:37:45 ----D---- D:\Windows\system32\cs-CZ
2016-07-03 09:37:45 ----D---- D:\Program Files\Windows Media Player
2016-07-03 09:37:43 ----D---- D:\Windows
2016-07-03 09:37:31 ----D---- D:\Windows\system32\Dism
2016-07-03 09:37:23 ----D---- D:\Windows\system32\CodeIntegrity
2016-07-03 09:37:23 ----D---- D:\Windows\system32\Boot
2016-07-03 09:37:19 ----D---- D:\Windows\PolicyDefinitions
2016-07-03 09:36:47 ----D---- D:\Windows\system32\DriverStore
2016-07-03 09:30:55 ----D---- D:\Windows\system32\catroot
2016-07-03 09:28:24 ----D---- D:\Windows\Logs
2016-07-02 05:18:01 ----D---- D:\Windows\rescache
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Sidebar
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Portable Devices
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Photo Viewer
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Mail
2016-07-02 03:33:55 ----D---- D:\Program Files\Windows Journal
2016-07-02 03:33:55 ----D---- D:\Program Files\Internet Explorer
2016-07-02 03:33:55 ----D---- D:\Program Files\DVD Maker
2016-07-02 03:33:54 ----D---- D:\Windows\servicing
2016-07-02 03:33:54 ----D---- D:\Windows\ehome
2016-07-02 03:33:54 ----D---- D:\Program Files\Windows Defender
2016-07-02 03:33:52 ----SHD---- D:\Windows\BitLockerDiscoveryVolumeContents
2016-07-02 03:33:51 ----D---- D:\Windows\system32\da-DK
2016-07-02 03:33:49 ----D---- D:\Windows\system32\oobe
2016-07-02 03:33:47 ----D---- D:\Windows\system32\sysprep
2016-07-02 03:33:47 ----D---- D:\Windows\system32\Setup
2016-07-02 03:33:47 ----D---- D:\Windows\system32\migration
2016-07-02 03:33:47 ----D---- D:\Windows\system32\cs
2016-07-02 03:33:47 ----D---- D:\Windows\system32\AdvancedInstallers
2016-07-02 03:33:46 ----D---- D:\Windows\system32\sppui
2016-07-02 03:33:46 ----D---- D:\Windows\system32\manifeststore
2016-07-02 03:33:46 ----D---- D:\Windows\system32\es-ES
2016-07-02 03:33:46 ----D---- D:\Windows\system32\en
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\UMDF
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\en-US
2016-07-02 03:33:46 ----D---- D:\Windows\system32\drivers\cs-CZ
2016-07-02 03:33:44 ----D---- D:\Windows\system32\migwiz
2016-07-02 03:33:34 ----RSD---- D:\Windows\Fonts
2016-07-02 03:33:34 ----D---- D:\Windows\AppPatch
2016-07-02 03:11:20 ----A---- D:\Windows\system32\msclmd.dll
2016-07-01 15:52:07 ----SD---- D:\ProgramData\Microsoft
2016-06-29 11:40:53 ----D---- D:\Windows.old
2016-06-27 10:43:57 ----D---- D:\Program Files\Common Files
2016-06-27 10:06:02 ----D---- D:\Windows\Tasks
2016-06-27 10:06:02 ----D---- D:\Windows\system32\Tasks
2016-06-26 17:57:29 ----D---- D:\Program Files\Common Files\microsoft shared
2016-06-26 17:57:23 ----D---- D:\Program Files\MSBuild
2016-06-26 17:57:06 ----D---- D:\Windows\ShellNew
2016-06-26 17:54:56 ----A---- D:\Windows\win.ini
2016-06-26 17:54:54 ----D---- D:\Program Files\Common Files\System
2016-06-26 16:21:16 ----D---- D:\Windows\system32\restore
2016-06-26 15:59:13 ----SHD---- D:\$Recycle.Bin
2016-06-26 15:57:38 ----RD---- D:\Users
2016-06-26 15:57:30 ----D---- D:\Windows\Setup
2016-06-26 15:56:34 ----SHD---- D:\Recovery
2016-06-26 15:56:34 ----D---- D:\Program Files\Windows NT
2016-06-26 15:56:28 ----D---- D:\Windows\debug
2016-06-26 14:15:40 ----D---- D:\Windows\CSC
2016-06-19 20:31:06 ----RD---- D:\Program Files (x86)

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; D:\Windows\system32\drivers\aswRvrt.sys [2016-06-26 60424]
R0 aswVmm;avast! VM Monitor; D:\Windows\system32\drivers\aswVmm.sys [2016-06-26 222056]
R0 rdyboost;ReadyBoost; D:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; D:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; D:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswKbd;aswKbd; D:\Windows\system32\drivers\aswKbd.sys [2016-06-26 35096]
R1 aswRdr;aswRdr; D:\Windows\system32\drivers\aswRdr2.sys [2016-06-26 91232]
R1 aswSnx;aswSnx; D:\Windows\system32\drivers\aswSnx.sys [2016-06-26 816304]
R1 aswSP;aswSP; D:\Windows\system32\drivers\aswSP.sys [2016-06-27 438296]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; D:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; D:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; D:\Windows\system32\drivers\aswHwid.sys [2016-06-26 34008]
R2 aswMonFlt;aswMonFlt; D:\Windows\system32\drivers\aswMonFlt.sys [2016-06-26 91680]
R2 aswStm;aswStm; D:\Windows\system32\drivers\aswStm.sys [2016-06-26 118152]
R3 atikmdag;atikmdag; D:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 RTL8167;Ovladač Realtek 8167 NT; D:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; D:\Windows\system32\DRIVERS\rtl8192se.sys [2009-08-27 859136]
S2 Parvdm;Parvdm; D:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; D:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; D:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; D:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 pciide;pciide; D:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; D:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; D:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; D:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; D:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; D:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; D:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; D:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; D:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; D:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; D:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; D:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; D:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 wdm_usb;wdm_usb; D:\Windows\system32\DRIVERS\usb2ser.sys [2016-03-10 119952]
S3 WinUsb;WinUsb; D:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;Avast Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-06-26 197128]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; D:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ssinstall;SInstalátor; D:\Windows\System32\ssins.exe [2016-06-26 2324216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; D:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; D:\Program Files\Skype\Updater\Updater.exe [2016-05-23 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-27 270016]
S3 AppMgmt;@appmgmts.dll,-3250; D:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 McComponentHostService;McAfee Security Scan Component Host Service; D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe [2015-12-02 235696]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-05 146888]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; D:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; D:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

Re: PC se seká

Napsal: 05 črc 2016 20:55
od Rudy
Tohle je lepší. Jak je na tom váš oper. systém s legalitou?

Re: PC se seká

Napsal: 05 črc 2016 20:58
od tajfun
je koupenej .. byl tam chvilku win 10 a mladej dal zpět win7 a od té doby to blbne

Re: PC se seká

Napsal: 05 črc 2016 21:00
od Rudy
OK Udělejte tento sken:

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s
a klikněte na >Prohledat<. Dejte oby logy.

Re: PC se seká

Napsal: 05 črc 2016 21:09
od tajfun
mi to píše pořád server nenalezen na ten odkaz...

Re: PC se seká

Napsal: 05 črc 2016 21:42
od Rudy
Mně to funguje. Zde ho máte.
OTL.rar
(583.47 KiB) Staženo 69 x

Re: PC se seká

Napsal: 06 črc 2016 10:24
od tajfun
OTL Extras logfile created on: 6.7.2016 10:40:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,13% Memory free
4,02 Gb Paging File | 1,12 Gb Available in Paging File | 27,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,08 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =

Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b

Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe

ID
hlášení:

[ System Events ]
Error - 6.7.2016 4:11:43 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:23:57 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).

Error - 6.7.2016 4:24:32 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).

Error - 6.7.2016 4:25:43 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.


< End of report >

Re: PC se seká

Napsal: 06 črc 2016 10:26
od tajfun
OTL Extras logfile created on: 6.7.2016 10:40:50 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,13% Memory free
4,02 Gb Paging File | 1,12 Gb Available in Paging File | 27,78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,08 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =

Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b

Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe

ID
hlášení:

[ System Events ]
Error - 6.7.2016 4:11:43 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:23:57 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).

Error - 6.7.2016 4:24:32 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).

Error - 6.7.2016 4:25:43 | Computer Name = pepa-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby TrustedInstaller bylo dosaženo
časového limitu (30000 ms).

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 4:44:26 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 5:01:33 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.


< End of report >

Re: PC se seká

Napsal: 06 črc 2016 11:26
od Rudy
Log není kompletní. Kompletní log vypadá takto: http://forum.viry.cz/viewtopic.php?f=13 ... t#p1451332 . Chybí ty fialové sekce.

Re: PC se seká

Napsal: 06 črc 2016 11:47
od tajfun
OTL Extras logfile created on: 6.7.2016 12:28:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,85 Gb Available Physical Memory | 42,52% Memory free
4,02 Gb Paging File | 0,98 Gb Available in Paging File | 24,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,35 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =

Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b

Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe

ID
hlášení:

[ System Events ]
Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 6:12:19 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.


< End of report >

Re: PC se seká

Napsal: 06 črc 2016 11:51
od tajfun
OTL logfile created on: 6.7.2016 12:28:11 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,85 Gb Available Physical Memory | 42,52% Memory free
4,02 Gb Paging File | 0,98 Gb Available in Paging File | 24,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,35 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
PRC - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
PRC - [2016.06.26 16:31:57 | 008,897,712 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016.06.05 01:47:10 | 000,392,136 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
PRC - [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- D:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- D:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- D:\Windows\System32\atiesrxx.exe


========== Modules (No Company Name) ==========

MOD - [2016.06.26 16:31:58 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016.06.26 16:31:57 | 000,479,288 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016.06.26 16:31:56 | 000,146,232 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.11.19 23:17:08 | 000,845,824 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2015.05.26 13:38:34 | 000,862,888 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2015.05.26 13:37:42 | 000,078,504 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\4963libfoxloader.dll


========== Services (SafeList) ==========

SRV - [2016.06.27 10:48:30 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) [Auto | Running] -- D:\Windows\System32\ssins.exe -- (ssinstall)
SRV - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016.06.05 01:47:30 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016.05.23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.12.02 17:06:48 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - [2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- D:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2016.03.10 06:17:36 | 000,119,952 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\usb2ser.sys -- (wdm_usb)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.08.27 22:19:22 | 000,859,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007.11.09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes,DefaultScope = {E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0A447989-B2FA-4956-8E90-02B188861A67}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{43CAC651-59DA-4BC7-961B-A7E7428D80D1}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{5C05CD77-BBD9-4950-B2B6-378B59A3B415}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{69956676-49FE-40F4-98DA-6671A2754B0C}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{762C8A46-F41B-4464-A295-BB788C5ECF19}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{818B7620-02A0-4560-8F8C-A1F5A63A6233}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{B4BAE67E-65C6-491A-BEE1-E33149143ADC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{DDBDB549-4DB2-4195-911A-29767889C9A9}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2016.06.26 16:32:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016.06.26 16:32:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins

[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (Seznam lištička) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2016.06.26 16:51:36 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions

O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [seznam-listicka-distribuce] D:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.autoupdate] D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.szndesktop] D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [Skype] D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - D:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0055C17-9EF0-47D5-B4C1-5A00DF15B481}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - D:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - D:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2016.07.06 10:38:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 21:31:42 | 000,000,000 | ---D | C] -- D:\FRST
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\Program Files\trend micro
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\rsit
[2016.07.03 09:37:43 | 000,000,000 | ---D | C] -- D:\Windows\EOONotify
[2016.07.03 09:19:51 | 000,103,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2016.07.02 15:24:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netbtugc.exe
[2016.07.02 15:24:18 | 001,620,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVDECOD.DLL
[2016.07.02 15:24:16 | 003,209,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mf.dll
[2016.07.02 15:24:16 | 000,970,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2adec.dll
[2016.07.02 15:24:15 | 001,329,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quartz.dll
[2016.07.02 15:24:15 | 000,902,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOD.DLL
[2016.07.02 15:24:15 | 000,829,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSMPEG2ENC.DLL
[2016.07.02 15:24:15 | 000,815,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOE.DLL
[2016.07.02 15:24:15 | 000,739,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOD.DLL
[2016.07.02 15:24:15 | 000,541,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSDECD.DLL
[2016.07.02 15:24:15 | 000,519,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdvd.dll
[2016.07.02 15:24:15 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\evr.dll
[2016.07.02 15:24:15 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\COLORCNV.DLL
[2016.07.02 15:24:14 | 001,568,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVENCOD.DLL
[2016.07.02 15:24:14 | 001,202,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMALFXGFXDSP.dll
[2016.07.02 15:24:14 | 000,740,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpmde.dll
[2016.07.02 15:24:14 | 000,728,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcmde.dll
[2016.07.02 15:24:14 | 000,665,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVXENCD.DLL
[2016.07.02 15:24:14 | 000,609,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFWMAAEC.DLL
[2016.07.02 15:24:14 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSENCD.DLL
[2016.07.02 15:24:14 | 000,354,816 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfplat.dll
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MPG4DECD.DLL
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP43DECD.DLL
[2016.07.02 15:24:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qasf.dll
[2016.07.02 15:24:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\devenum.dll
[2016.07.02 15:24:13 | 001,325,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOE.DLL
[2016.07.02 15:24:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP4SDECD.DLL
[2016.07.02 15:24:13 | 000,338,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SysFxUI.dll
[2016.07.02 15:24:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RESAMPLEDMO.DLL
[2016.07.02 15:24:13 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksproxy.ax
[2016.07.02 15:24:13 | 000,177,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\portcls.sys
[2016.07.02 15:24:13 | 000,154,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VIDRESZR.DLL
[2016.07.02 15:24:13 | 000,103,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfps.dll
[2016.07.02 15:24:13 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP3DMOD.DLL
[2016.07.02 15:24:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfvdsp.dll
[2016.07.02 15:24:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rrinstaller.exe
[2016.07.02 15:24:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfpmp.exe
[2016.07.02 15:24:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\drmk.sys
[2016.07.02 15:24:12 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksuser.dll
[2016.07.02 15:24:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mferror.dll
[2016.07.02 15:24:04 | 000,047,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\WdfLdr.sys
[2016.07.02 15:24:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Wdfres.dll
[2016.07.02 15:24:02 | 000,318,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPhoto.dll
[2016.07.02 15:23:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\authui.dll
[2016.07.02 15:23:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msihnd.dll
[2016.07.02 15:23:59 | 000,105,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\consent.exe
[2016.07.02 15:23:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msimsg.dll
[2016.07.02 15:23:51 | 012,625,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmploc.DLL
[2016.07.02 15:23:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwmp.dll
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdxm.ocx
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxmasf.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml6r.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml3r.dll
[2016.07.02 15:23:31 | 000,284,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbport.sys
[2016.07.02 15:23:31 | 000,006,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbd.sys
[2016.07.02 15:23:29 | 000,218,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\dxgmms1.sys
[2016.07.02 15:23:29 | 000,107,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdd.dll
[2016.07.02 15:23:19 | 002,135,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2vdec.dll
[2016.07.02 15:23:19 | 000,988,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmv2clt.dll
[2016.07.02 15:23:19 | 000,744,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\blackbox.dll
[2016.07.02 15:23:19 | 000,617,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmsdk.dll
[2016.07.02 15:23:16 | 003,973,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntkrnlpa.exe
[2016.07.02 15:23:15 | 003,917,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntoskrnl.exe
[2016.07.02 15:23:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AUDIOKSE.dll
[2016.07.02 15:23:15 | 000,406,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmmgrtn.dll
[2016.07.02 15:23:14 | 000,409,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ci.dll
[2016.07.02 15:23:13 | 000,686,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adtschema.dll
[2016.07.02 15:23:13 | 000,521,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winload.exe
[2016.07.02 15:23:13 | 000,455,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winresume.exe
[2016.07.02 15:23:12 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srcore.dll
[2016.07.02 15:23:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncrypt.dll
[2016.07.02 15:23:11 | 000,374,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioEng.dll
[2016.07.02 15:23:11 | 000,275,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDump.dll
[2016.07.02 15:23:11 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioSes.dll
[2016.07.02 15:23:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\csrsrv.dll
[2016.07.02 15:23:10 | 000,262,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rstrui.exe
[2016.07.02 15:23:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msscp.dll
[2016.07.02 15:23:09 | 000,265,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msnetobj.dll
[2016.07.02 15:23:09 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\audiodg.exe
[2016.07.02 15:23:09 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidapi.dll
[2016.07.02 15:23:08 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidpolicyconverter.exe
[2016.07.02 15:23:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\auditpol.exe
[2016.07.02 15:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcadm.dll
[2016.07.02 15:23:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msaudite.dll
[2016.07.02 15:23:07 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setbcdlocale.dll
[2016.07.02 15:23:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidcertstorecheck.exe
[2016.07.02 15:23:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sspisrv.dll
[2016.07.02 15:23:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmmsp.dll
[2016.07.02 15:23:07 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcawrk.exe
[2016.07.02 15:23:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcalua.exe
[2016.07.02 15:23:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\apisetschema.dll
[2016.07.02 15:23:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msobjs.dll
[2016.07.02 15:23:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcaevts.dll
[2016.07.02 15:22:16 | 000,919,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorets.dll
[2016.07.02 15:22:12 | 000,594,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_isv.exe
[2016.07.02 15:22:12 | 000,572,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate.exe
[2016.07.02 15:22:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp.exe
[2016.07.02 15:22:11 | 000,508,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp_isv.exe
[2016.07.02 15:22:11 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc.dll
[2016.07.02 15:22:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_isv.dll
[2016.07.02 15:22:11 | 000,390,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdrm.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp_isv.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp.dll
[2016.07.02 15:20:59 | 000,248,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManMigrationPlugin.dll
[2016.07.02 15:20:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmWmiPl.dll
[2016.07.02 15:20:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManHTTPConfig.exe
[2016.07.02 15:20:59 | 000,145,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmAuto.dll
[2016.07.02 13:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Minidump
[2016.07.02 09:53:24 | 002,425,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wucltux.dll
[2016.07.02 09:53:24 | 000,045,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups2.dll
[2016.07.02 09:52:01 | 000,179,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuwebv.dll
[2016.07.02 09:52:01 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapp.exe
[2016.07.02 03:02:15 | 000,000,000 | ---D | C] -- D:\Windows\System32\SPReview
[2016.07.02 03:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Migration

Re: PC se seká

Napsal: 06 črc 2016 11:52
od tajfun
[2016.07.02 00:22:14 | 000,301,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.07.01 15:35:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.30 12:50:29 | 000,000,000 | ---D | C] -- D:\Windows\System32\EventProviders
[2016.06.29 14:30:21 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\ElevatedDiagnostics
[2016.06.29 13:01:09 | 000,215,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicsvc.exe
[2016.06.29 13:01:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IcCoinstall.dll
[2016.06.29 13:01:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicres.dll
[2016.06.29 13:01:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmictimeprovider.dll
[2016.06.29 13:01:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\VMBusHID.sys
[2016.06.29 13:01:07 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmbusCoinstaller.dll
[2016.06.29 13:01:07 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbusres.dll
[2016.06.29 13:01:07 | 000,043,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winhv.sys
[2016.06.29 13:01:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbuspipe.dll
[2016.06.29 13:01:06 | 000,175,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmbus.sys
[2016.06.29 13:01:06 | 000,028,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storvsc.sys
[2016.06.29 13:01:05 | 000,458,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSDApi.dll
[2016.06.29 13:01:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHost.exe
[2016.06.29 13:01:05 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmdCoinstall.dll
[2016.06.29 13:01:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHostProxy.dll
[2016.06.29 13:01:05 | 000,040,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmstorfl.sys
[2016.06.29 13:01:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmstorfltres.dll
[2016.06.29 13:01:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vms3cap.sys
[2016.06.29 13:01:03 | 001,548,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tquery.dll
[2016.06.29 13:01:03 | 001,401,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssrch.dll
[2016.06.29 13:01:03 | 000,666,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssvp.dll
[2016.06.29 13:01:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssphtb.dll
[2016.06.29 13:00:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\umb.dll
[2016.06.29 13:00:53 | 000,035,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winusb.sys
[2016.06.29 13:00:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FirewallControlPanel.dll
[2016.06.29 13:00:40 | 005,066,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuthFWSnapin.dll
[2016.06.29 13:00:36 | 000,155,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscorier.dll
[2016.06.29 13:00:36 | 000,080,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscories.dll
[2016.06.29 13:00:36 | 000,049,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netfxperf.dll
[2016.06.29 13:00:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Narrator.exe
[2016.06.29 13:00:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPHLPR.DLL
[2016.06.29 13:00:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPCRYPT.DLL
[2016.06.29 13:00:34 | 000,132,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ataport.sys
[2016.06.29 13:00:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpd_ci.dll
[2016.06.29 13:00:33 | 000,140,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\scsiport.sys
[2016.06.29 13:00:31 | 001,334,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertEnroll.dll
[2016.06.29 13:00:31 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wusa.exe
[2016.06.29 13:00:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanconn.dll
[2016.06.29 13:00:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanprotdim.dll
[2016.06.29 13:00:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsdchngr.dll
[2016.06.29 13:00:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceApi.dll
[2016.06.29 13:00:30 | 000,427,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceStatus.dll
[2016.06.29 13:00:29 | 000,206,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedynos.dll
[2016.06.29 13:00:29 | 000,202,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedyn.dll
[2016.06.29 13:00:28 | 000,363,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wbemcomn.dll
[2016.06.29 13:00:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanpref.dll
[2016.06.29 13:00:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanmsm.dll
[2016.06.29 13:00:27 | 000,411,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlangpui.dll
[2016.06.29 13:00:27 | 000,410,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanui.dll
[2016.06.29 13:00:27 | 000,351,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmicmiplugin.dll
[2016.06.29 13:00:27 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgent.dll
[2016.06.29 13:00:27 | 000,169,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winsrv.dll
[2016.06.29 13:00:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgentc.exe
[2016.06.29 13:00:26 | 002,329,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\win32k.sys
[2016.06.29 13:00:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webservices.dll
[2016.06.29 13:00:26 | 000,406,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimgapi.dll
[2016.06.29 13:00:26 | 000,327,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimserv.exe
[2016.06.29 13:00:26 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webio.dll
[2016.06.29 13:00:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fphc.dll
[2016.06.29 13:00:25 | 003,367,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSAT.exe
[2016.06.29 13:00:25 | 000,416,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiadefui.dll
[2016.06.29 13:00:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiarpc.dll
[2016.06.29 13:00:23 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpdwcn.dll
[2016.06.29 13:00:23 | 000,051,200 | ---- | C] (Twain Working Group) -- D:\Windows\twain_32.dll
[2016.06.29 13:00:21 | 000,335,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSATAPI.dll
[2016.06.29 13:00:21 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiavideo.dll
[2016.06.29 13:00:19 | 000,350,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WPDSp.dll
[2016.06.29 13:00:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wkscli.dll
[2016.06.29 13:00:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbrpm.sys
[2016.06.29 13:00:18 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsutil.dll
[2016.06.29 13:00:17 | 000,638,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VAN.dll
[2016.06.29 13:00:17 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VBICodec.ax
[2016.06.29 13:00:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciavi32.dll
[2016.06.29 13:00:17 | 000,082,944 | ---- | C] (Radius Inc.) -- D:\Windows\System32\iccvid.dll
[2016.06.29 13:00:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSTPager.ax
[2016.06.29 13:00:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cca.dll
[2016.06.29 13:00:15 | 000,160,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsbas.dll
[2016.06.29 13:00:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSNP.ax
[2016.06.29 13:00:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\psisrndr.ax
[2016.06.29 13:00:13 | 000,072,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mpeg2Data.ax
[2016.06.29 13:00:13 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSDvbNP.ax
[2016.06.29 13:00:11 | 000,600,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\usercpl.dll
[2016.06.29 13:00:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\userinit.exe
[2016.06.29 13:00:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unimdmat.dll
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD2.sys
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD.sys
[2016.06.29 13:00:09 | 002,983,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbon.dll
[2016.06.29 13:00:09 | 001,164,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbonRes.dll
[2016.06.29 13:00:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDec.dll
[2016.06.29 13:00:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UserAccountControlSettings.dll
[2016.06.29 13:00:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\djoin.exe
[2016.06.29 13:00:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzutil.exe
[2016.06.29 13:00:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\themecpl.dll
[2016.06.29 13:00:08 | 000,478,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\timedate.cpl
[2016.06.29 13:00:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\w32tm.exe
[2016.06.29 13:00:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TRAPI.dll
[2016.06.29 13:00:07 | 000,505,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskschd.dll
[2016.06.29 13:00:07 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\termmgr.dll
[2016.06.29 13:00:07 | 000,187,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\FWPKCLNT.SYS
[2016.06.29 13:00:07 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tcpipcfg.dll
[2016.06.29 13:00:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiohlp.dll
[2016.06.29 13:00:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiougc.exe
[2016.06.29 13:00:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\tdi.sys
[2016.06.29 13:00:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schedcli.dll
[2016.06.29 13:00:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskbarcpl.dll
[2016.06.29 13:00:06 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wavemsp.dll
[2016.06.29 13:00:06 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
[2016.06.29 13:00:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TabletPC.cpl
[2016.06.29 13:00:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tabcal.exe
[2016.06.29 13:00:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MultiDigiMon.exe
[2016.06.29 13:00:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\takeown.exe
[2016.06.29 13:00:05 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\g711codc.ax
[2016.06.29 13:00:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\TsUsbFlt.sys
[2016.06.29 13:00:03 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\input.dll
[2016.06.29 13:00:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpencom.dll
[2016.06.29 13:00:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aaclient.dll
[2016.06.29 13:00:03 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpd3d.dll
[2016.06.29 13:00:03 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsgqec.dll
[2016.06.29 13:00:03 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfts.dll
[2016.06.29 13:00:01 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TSWorkspace.dll
[2016.06.29 13:00:01 | 000,260,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpshell.exe
[2016.06.29 13:00:01 | 000,173,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpclip.exe
[2016.06.29 13:00:01 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tspubwmi.dll
[2016.06.29 13:00:01 | 000,121,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPENCDD.dll
[2016.06.29 13:00:01 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpsign.exe
[2016.06.29 13:00:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\utildll.dll
[2016.06.29 13:00:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpinit.exe
[2016.06.29 12:59:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wksprt.exe
[2016.06.29 12:59:59 | 000,154,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscfgwmi.dll
[2016.06.29 12:59:59 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpendp.dll
[2016.06.29 12:59:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorekmts.dll
[2016.06.29 12:59:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tssrvlic.dll
[2016.06.29 12:59:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpwsx.dll
[2016.06.29 12:59:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\LSCSHostPolicy.dll
[2016.06.29 12:59:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPREFDD.dll
[2016.06.29 12:59:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qprocess.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tskill.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgport.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsdiscon.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chglogon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdprefdrvapi.dll
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qappsrv.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoff.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shadow.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rwinsta.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgusr.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\reset.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\change.exe
[2016.06.29 12:59:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\query.exe
[2016.06.29 12:59:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskcomp.dll
[2016.06.29 12:59:58 | 000,270,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsmf.dll
[2016.06.29 12:59:58 | 000,252,928 | ---- | C] (Microsoft) -- D:\Windows\System32\DShowRdpFilter.dll
[2016.06.29 12:59:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qwinsta.exe
[2016.06.29 12:59:58 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msg.exe
[2016.06.29 12:59:58 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quser.exe
[2016.06.29 12:59:58 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcfgex.dll
[2016.06.29 12:59:57 | 000,826,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcore.dll
[2016.06.29 12:59:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\systemcpl.dll
[2016.06.29 12:59:57 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysclass.dll
[2016.06.29 12:59:57 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tlscsp.dll
[2016.06.29 12:59:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spbcd.dll
[2016.06.29 12:59:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lsmproxy.dll
[2016.06.29 12:59:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spopk.dll
[2016.06.29 12:59:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\syssetup.dll
[2016.06.29 12:59:56 | 000,850,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sbe.dll
[2016.06.29 12:59:56 | 000,755,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sud.dll
[2016.06.29 12:59:56 | 000,183,296 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceSyncProvider.dll
[2016.06.29 12:59:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlcese30.dll
[2016.06.29 12:59:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ssText3d.scr
[2016.06.29 12:59:55 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsqmcons.exe
[2016.06.29 12:59:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqmapi.dll
[2016.06.29 12:59:55 | 000,148,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storport.sys
[2016.06.29 12:59:53 | 000,697,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmiEngine.dll
[2016.06.29 12:59:53 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetmib1.dll
[2016.06.29 12:59:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsnmp32.dll
[2016.06.29 12:59:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WavDest.dll
[2016.06.29 12:59:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sscore.dll
[2016.06.29 12:59:52 | 000,144,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basecsp.dll
[2016.06.29 12:59:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sisbkup.dll
[2016.06.29 12:59:51 | 000,428,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shwebsvc.dll
[2016.06.29 12:59:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shunimpl.dll
[2016.06.29 12:59:50 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unattend.dll
[2016.06.29 12:59:50 | 000,111,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shsetup.dll
[2016.06.29 12:59:50 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shacct.dll
[2016.06.29 12:59:50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcl.exe
[2016.06.29 12:59:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prevhost.exe
[2016.06.29 12:59:49 | 000,456,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spinstall.exe
[2016.06.29 12:59:49 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spreview.exe
[2016.06.29 12:59:49 | 000,270,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sethc.exe
[2016.06.29 12:59:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizui.dll
[2016.06.29 12:59:49 | 000,179,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionQueue.dll
[2016.06.29 12:59:49 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcln.dll
[2016.06.29 12:59:48 | 000,933,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Vault.dll
[2016.06.29 12:59:48 | 000,327,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nltest.exe
[2016.06.29 12:59:48 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slui.exe
[2016.06.29 12:59:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vaultsvc.dll
[2016.06.29 12:59:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppcomapi.dll
[2016.06.29 12:59:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppc.dll
[2016.06.29 12:59:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppinst.dll
[2016.06.29 12:59:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wscapi.dll
[2016.06.29 12:59:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slwga.dll
[2016.06.29 12:59:47 | 001,131,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdclt.exe
[2016.06.29 12:59:47 | 000,974,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppobjs.dll
[2016.06.29 12:59:47 | 000,907,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdengin2.dll
[2016.06.29 12:59:47 | 000,271,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fveapi.dll
[2016.06.29 12:59:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scansetting.dll
[2016.06.29 12:59:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schtasks.exe
[2016.06.29 12:59:47 | 000,175,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fvecpl.dll
[2016.06.29 12:59:47 | 000,136,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scavengeui.dll
[2016.06.29 12:59:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\manage-bde.exe
[2016.06.29 12:59:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BdeHdCfg.exe
[2016.06.29 12:59:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\repair-bde.exe
[2016.06.29 12:59:43 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizeng.dll
[2016.06.29 12:59:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\uxlib.dll
[2016.06.29 12:59:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizres.dll
[2016.06.29 12:59:42 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoncli.dll
[2016.06.29 12:59:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertPolEng.dll
[2016.06.29 12:59:41 | 000,316,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sharemediacpl.dll
[2016.06.29 12:59:41 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srrstr.dll
[2016.06.29 12:59:40 | 000,412,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppwinob.dll
[2016.06.29 12:59:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rpchttp.dll
[2016.06.29 12:59:40 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\runonce.exe
[2016.06.29 12:59:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Ribbons.scr
[2016.06.29 12:59:39 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recdisc.exe
[2016.06.29 12:59:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RelPost.exe
[2016.06.29 12:59:39 | 000,135,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recovery.dll
[2016.06.29 12:59:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rmcast.sys
[2016.06.29 12:59:39 | 000,098,816 | ---- | C] (Microsoft) -- D:\Windows\System32\Robocopy.exe
[2016.06.29 12:59:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\riched32.dll
[2016.06.29 12:59:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iprtrmgr.dll
[2016.06.29 12:59:38 | 000,268,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mprddm.dll
[2016.06.29 12:59:38 | 000,084,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmstp.exe
[2016.06.29 12:59:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnike.dll
[2016.06.29 12:59:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpudd.dll
[2016.06.29 12:59:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbGDCoInstaller.dll
[2016.06.29 12:59:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnikeapi.dll
[2016.06.29 12:59:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rdpvideominiport.sys
[2016.06.29 12:59:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2016.06.29 12:59:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2016.06.29 12:59:36 | 001,115,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RacEngn.dll
[2016.06.29 12:59:35 | 000,870,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsPrint.dll
[2016.06.29 12:59:35 | 000,509,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qedit.dll
[2016.06.29 12:59:35 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgprint.dll
[2016.06.29 12:59:35 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prncache.dll
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\proquota.exe
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\profprov.dll
[2016.06.29 12:59:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercpl.dll
[2016.06.29 12:59:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PhotoScreensaver.scr
[2016.06.29 12:59:34 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercfg.cpl
[2016.06.29 12:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppnp.dll
[2016.06.29 12:59:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pifmgr.dll
[2016.06.29 12:59:33 | 001,227,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdc.dll
[2016.06.29 12:59:33 | 000,766,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpccpl.dll
[2016.06.29 12:59:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PerfCenterCPL.dll
[2016.06.29 12:59:33 | 000,444,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wvc.dll
[2016.06.29 12:59:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysmon.ocx
[2016.06.29 12:59:33 | 000,209,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PkgMgr.exe
[2016.06.29 12:59:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdscore.dll
[2016.06.29 12:59:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfmon.exe
[2016.06.29 12:59:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PnPUnattend.exe
[2016.06.29 12:59:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pdhui.dll
[2016.06.29 12:59:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unlodctr.exe
[2016.06.29 12:59:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prnfldr.dll
[2016.06.29 12:59:32 | 000,297,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntprint.dll
[2016.06.29 12:59:31 | 000,324,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\puiobj.dll
[2016.06.29 12:59:31 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logman.exe
[2016.06.29 12:59:31 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\relog.exe
[2016.06.29 12:59:31 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PrintIsolationProxy.dll
[2016.06.29 12:59:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prntvpt.dll
[2016.06.29 12:59:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PushPrinterConnections.exe
[2016.06.29 12:59:25 | 001,111,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\onexui.dll
[2016.06.29 12:59:25 | 000,218,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OnLineIDCpl.dll
[2016.06.29 12:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetup.exe
[2016.06.29 12:59:25 | 000,174,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetapi.dll
[2016.06.29 12:59:25 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CscMig.dll
[2016.06.29 12:59:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cscobj.dll
[2016.06.29 12:59:24 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\asycfilt.dll
[2016.06.29 12:59:23 | 002,130,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\networkmap.dll
[2016.06.29 12:59:23 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncsi.dll
[2016.06.29 12:59:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nslookup.exe
[2016.06.29 12:59:22 | 001,750,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pnidui.dll
[2016.06.29 12:59:22 | 001,644,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcenter.dll
[2016.06.29 12:59:22 | 000,656,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshwfp.dll
[2016.06.29 12:59:22 | 000,240,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\netio.sys
[2016.06.29 12:59:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FWPUCLNT.DLL
[2016.06.29 12:59:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netjoin.dll
[2016.06.29 12:59:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NaturalLanguage6.dll
[2016.06.29 12:59:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\net1.exe
[2016.06.29 12:59:21 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nci.dll
[2016.06.29 12:59:21 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncryptui.dll
[2016.06.29 12:59:21 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcfg.exe
[2016.06.29 12:59:19 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ipsmsnap.dll
[2016.06.29 12:59:19 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSHVHOST.DLL
[2016.06.29 12:59:19 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSVRMGMT.DLL
[2016.06.29 12:59:18 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshipsec.dll
[2016.06.29 12:59:18 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrecst.dll
[2016.06.29 12:59:17 | 000,225,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netdiagfx.dll
[2016.06.29 12:59:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrad.dll
[2016.06.29 12:59:17 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QAGENT.DLL
[2016.06.29 12:59:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasacct.dll
[2016.06.29 12:59:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QCLIPROV.DLL
[2016.06.29 12:59:17 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\napdsnap.dll
[2016.06.29 12:59:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mystify.scr
[2016.06.29 12:59:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcbuilder.exe
[2016.06.29 12:59:15 | 000,592,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msftedit.dll
[2016.06.29 12:59:15 | 000,303,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msinfo32.exe
[2016.06.29 12:59:15 | 000,233,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msconfig.exe
[2016.06.29 12:59:15 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSAC3ENC.DLL
[2016.06.29 12:59:14 | 002,146,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SyncCenter.dll
[2016.06.29 12:59:13 | 002,504,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVCORE.DLL
[2016.06.29 12:59:13 | 002,202,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SensorsCpl.dll
[2016.06.29 12:59:13 | 001,624,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPEncEn.dll
[2016.06.29 12:59:13 | 001,163,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc42u.dll
[2016.06.29 12:59:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40.dll
[2016.06.29 12:59:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40u.dll
[2016.06.29 12:59:13 | 000,507,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmdev.dll
[2016.06.29 12:59:13 | 000,436,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmnet.dll
[2016.06.29 12:59:13 | 000,352,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpeffects.dll
[2016.06.29 12:59:13 | 000,296,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfds.dll
[2016.06.29 12:59:13 | 000,213,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MMDevAPI.dll
[2016.06.29 12:59:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfreadwrite.dll
[2016.06.29 12:59:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpsrcwp.dll
[2016.06.29 12:59:13 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFPlay.dll
[2016.06.29 12:59:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpps.dll
[2016.06.29 12:59:12 | 001,003,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMNetMgr.dll
[2016.06.29 12:59:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logagent.exe
[2016.06.29 12:59:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MediaMetadataHandler.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapistub.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapi32.dll
[2016.06.29 12:59:09 | 000,516,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\main.cpl
[2016.06.29 12:59:08 | 000,665,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayCpl.dll
[2016.06.29 12:59:08 | 000,520,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcupdate_GenuineIntel.dll
[2016.06.29 12:59:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlsrv32.dll
[2016.06.29 12:59:07 | 000,170,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationSettings.exe
[2016.06.29 12:59:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayServices.dll
[2016.06.29 12:59:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\migisol.dll
[2016.06.29 12:59:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcconf.dll
[2016.06.29 12:59:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vbisurf.ax
[2016.06.29 12:59:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kstvtune.ax
[2016.06.29 12:59:06 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksxbar.ax
[2016.06.29 12:59:03 | 000,941,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mblctr.exe
[2016.06.29 12:59:01 | 002,151,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mmcndmgr.dll
[2016.06.29 12:59:01 | 000,319,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcjt32.dll
[2016.06.29 12:59:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\defaultlocationcpl.dll
[2016.06.29 12:59:01 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msorcl32.dll
[2016.06.29 12:59:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbctrac.dll
[2016.06.29 12:59:01 | 000,132,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MdSched.exe
[2016.06.29 12:59:01 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbccp32.dll
[2016.06.29 12:59:00 | 000,477,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpksetup.exe
[2016.06.29 12:59:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpremove.exe
[2016.06.29 12:59:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\luainstall.dll
[2016.06.29 12:58:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nrpsrv.dll
[2016.06.29 12:58:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ks.sys
[2016.06.29 12:58:44 | 000,219,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iTVData.dll
[2016.06.29 12:58:44 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Kswdmcap.ax
[2016.06.29 12:58:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\isoburn.exe
[2016.06.29 12:58:43 | 000,345,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\intl.cpl
[2016.06.29 12:58:43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MuiUnattend.exe
[2016.06.29 12:58:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nlsbres.dll
[2016.06.29 12:58:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wshirda.dll
[2016.06.29 12:58:41 | 002,522,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dbgeng.dll
[2016.06.29 12:58:41 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imkr80.ime
[2016.06.29 12:58:41 | 000,392,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2.dll
[2016.06.29 12:58:38 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ie4uinit.exe
[2016.06.29 12:58:38 | 000,114,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iesysprep.dll
[2016.06.29 12:58:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inseng.dll
[2016.06.29 12:58:37 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msrating.dll
[2016.06.29 12:58:37 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ieUnatt.exe
[2016.06.29 12:58:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imgutil.dll
[2016.06.29 12:58:36 | 000,599,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeeds.dll
[2016.06.29 12:58:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscms.dll
[2016.06.29 12:58:36 | 000,389,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iedkcs32.dll
[2016.06.29 12:58:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\html.iec
[2016.06.29 12:58:36 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iepeers.dll
[2016.06.29 12:58:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RegisterIEPKEYs.exe
[2016.06.29 12:58:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedsbs.dll
[2016.06.29 12:58:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\licmgr10.dll
[2016.06.29 12:58:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedssync.exe
[2016.06.29 12:58:34 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzres.dll
[2016.06.29 12:58:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kbdlk41a.dll
[2016.06.29 12:58:31 | 001,466,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetcpl.cpl
[2016.06.29 12:58:31 | 000,606,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mstime.dll
[2016.06.29 12:58:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\C_ISCII.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSG.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDCZ1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDPO.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGR1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGKL.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUS.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUGHR1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMAORI.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDLT1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINHIN.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBULG.DLL
[2016.06.29 12:58:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsicli.exe
[2016.06.29 12:58:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsium.dll
[2016.06.29 12:58:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\elsTrans.dll
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUQ.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDNEPR.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINBEN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTURME.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTAJIK.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMON.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTEL.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTAM.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINORI.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINMAR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINKAN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBLR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBASH.DLL
[2016.06.29 12:58:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGEO.DLL
[2016.06.29 12:58:28 | 000,732,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2fs.dll
[2016.06.29 12:58:28 | 000,312,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgcpl.dll
[2016.06.29 12:58:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\itircl.dll
[2016.06.29 12:58:28 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\HotStartUserAgent.dll
[2016.06.29 12:58:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenter.dll
[2016.06.29 12:58:27 | 000,537,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenterCPL.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halmacpi.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hal.dll
[2016.06.29 12:58:27 | 000,137,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halacpi.dll
[2016.06.29 12:58:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hbaapi.dll
[2016.06.29 12:58:19 | 002,576,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gameux.dll
[2016.06.29 12:58:19 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\atmfd.dll
[2016.06.29 12:58:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fontsub.dll
[2016.06.29 12:58:19 | 000,034,304 | ---- | C] (Adobe Systems) -- D:\Windows\System32\atmlib.dll
[2016.06.29 12:58:18 | 000,584,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gpprefcl.dll
[2016.06.29 12:58:18 | 000,339,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appmgr.dll
[2016.06.29 12:58:17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scrptadm.dll
[2016.06.29 12:58:17 | 000,438,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AdmTmpl.dll
[2016.06.29 12:58:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ftp.exe
[2016.06.29 12:58:15 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fde.dll
[2016.06.29 12:58:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\t2embed.dll
[2016.06.29 12:58:15 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- D:\Windows\System32\fms.dll
[2016.06.29 12:58:15 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\findstr.exe
[2016.06.29 12:58:15 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fdeploy.dll
[2016.06.29 12:58:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSMON.dll
[2016.06.29 12:58:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\muifontsetup.dll
[2016.06.29 12:58:14 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSTIFF.dll
[2016.06.29 12:58:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ifsutil.dll
[2016.06.29 12:58:13 | 000,802,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WFS.exe
[2016.06.29 12:58:13 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\untfs.dll
[2016.06.29 12:58:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSCOVER.exe
[2016.06.29 12:58:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\explorer.exe
[2016.06.29 12:58:12 | 001,493,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ExplorerFrame.dll
[2016.06.29 12:58:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eudcedit.exe
[2016.06.29 12:58:11 | 001,063,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\werconcpl.dll
[2016.06.29 12:58:11 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdri.dll
[2016.06.29 12:58:11 | 000,414,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mspbda.dll
[2016.06.29 12:58:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wer.dll
[2016.06.29 12:58:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Faultrep.dll
[2016.06.29 12:58:11 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EhStorAPI.dll
[2016.06.29 12:58:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WerFaultSecure.exe
[2016.06.29 12:58:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2016.06.29 12:58:10 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\efscore.dll
[2016.06.29 12:58:09 | 001,400,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DxpTaskSync.dll
[2016.06.29 12:58:09 | 000,630,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXPTaskRingtone.dll
[2016.06.29 12:58:09 | 000,399,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXP.dll
[2016.06.29 12:58:09 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3ui.dll
[2016.06.29 12:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drvstore.dll
[2016.06.29 12:58:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapp3hst.dll
[2016.06.29 12:58:09 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapphost.dll
[2016.06.29 12:58:09 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3msm.dll
[2016.06.29 12:58:09 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eappgnui.dll
[2016.06.29 12:58:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3cfg.dll
[2016.06.29 12:58:08 | 001,828,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d9.dll
[2016.06.29 12:58:08 | 001,171,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10warp.dll
[2016.06.29 12:58:08 | 001,040,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Display.dll
[2016.06.29 12:58:08 | 000,508,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxgi.dll
[2016.06.29 12:58:08 | 000,276,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskraid.exe
[2016.06.29 12:58:08 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskpart.exe
[2016.06.29 12:58:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscmmc.dll
[2016.06.29 12:58:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscacheugc.exe
[2016.06.29 12:58:08 | 000,027,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\Diskdump.sys
[2016.06.29 12:58:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpnaddr.dll
[2016.06.29 12:58:07 | 001,076,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DWrite.dll
[2016.06.29 12:58:07 | 000,522,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d11.dll
[2016.06.29 12:58:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10level9.dll
[2016.06.29 12:58:07 | 000,219,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10_1core.dll
[2016.06.29 12:58:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\amstream.dll
[2016.06.29 12:58:07 | 000,056,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vfwwdm32.dll
[2016.06.29 12:58:07 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciqtz32.dll
[2016.06.29 12:58:06 | 000,283,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdv.dll
[2016.06.29 12:58:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mpg2splt.ax
[2016.06.29 12:58:06 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qcap.dll
[2016.06.29 12:58:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdmo.dll
[2016.06.29 12:58:05 | 001,188,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DiagCpl.dll
[2016.06.29 12:58:05 | 000,739,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d2d1.dll
[2016.06.29 12:58:05 | 000,586,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dfrgui.exe
[2016.06.29 12:58:05 | 000,484,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DeviceCenter.dll
[2016.06.29 12:58:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpx.dll
[2016.06.29 12:58:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DevicePairingFolder.dll
[2016.06.29 12:58:05 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxdiagn.dll
[2016.06.29 12:58:05 | 000,128,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\desk.cpl
[2016.06.29 12:58:05 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupugc.exe
[2016.06.29 12:58:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dsauth.dll
[2016.06.29 12:58:03 | 001,027,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IMJP10.IME
[2016.06.29 12:58:03 | 000,097,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmredir.dll
[2016.06.29 12:58:02 | 001,371,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmcore.dll
[2016.06.29 12:57:59 | 000,567,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFx.dll
[2016.06.29 12:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFPlatform.dll
[2016.06.29 12:57:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFCoinstaller.dll
[2016.06.29 12:57:57 | 000,429,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\localsec.dll
[2016.06.29 12:57:55 | 001,160,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OpcServices.dll
[2016.06.29 12:57:55 | 000,679,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoconv.exe
[2016.06.29 12:57:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CPFilters.dll
[2016.06.29 12:57:55 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\conhost.exe
[2016.06.29 12:57:55 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netid.dll
[2016.06.29 12:57:55 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mimefilt.dll
[2016.06.29 12:57:54 | 001,066,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdtctm.dll
[2016.06.29 12:57:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmd.exe
[2016.06.29 12:57:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\olethk32.dll
[2016.06.29 12:57:53 | 001,712,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xpsservices.dll
[2016.06.29 12:57:53 | 000,863,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diagperf.dll
[2016.06.29 12:57:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdosys.dll
[2016.06.29 12:57:53 | 000,776,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\calc.exe
[2016.06.29 12:57:51 | 001,555,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\certmgr.dll
[2016.06.29 12:57:51 | 000,878,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Bubbles.scr
[2016.06.29 12:57:51 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsGdiConverter.dll
[2016.06.29 12:57:51 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsRasterService.dll
[2016.06.29 12:57:50 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bthprops.cpl
[2016.06.29 12:57:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\browcli.dll
[2016.06.29 12:57:49 | 002,217,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bootres.dll
[2016.06.29 12:57:49 | 000,750,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdcpl.dll
[2016.06.29 12:57:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\biocpl.dll
[2016.06.29 12:57:49 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsadmin.exe
[2016.06.29 12:57:49 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdboot.exe
[2016.06.29 12:57:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdsrv.dll
[2016.06.29 12:57:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\bfsvc.exe
[2016.06.29 12:57:49 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BlbEvents.dll
[2016.06.29 12:57:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basesrv.dll
[2016.06.29 12:57:49 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsperf.dll
[2016.06.29 12:57:47 | 000,295,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdedit.exe
[2016.06.29 12:57:45 | 000,762,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroles.dll
[2016.06.29 12:57:45 | 000,658,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autofmt.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVol.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroleui.dll
[2016.06.29 12:57:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVolSSO.dll
[2016.06.29 12:57:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoplay.dll
[2016.06.29 12:57:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AzSqlExt.dll
[2016.06.29 12:57:44 | 003,727,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\accessibilitycpl.dll
[2016.06.29 12:57:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdiasqmmodule.dll
[2016.06.29 12:57:43 | 000,321,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aepdu.dll
[2016.06.29 12:57:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aeinv.dll
[2016.06.29 12:57:43 | 000,292,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2016.06.29 12:57:43 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adsldp.dll
[2016.06.29 12:57:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aitagent.exe
[2016.06.29 12:57:43 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\acppage.dll
[2016.06.29 12:57:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmartcardCredentialProvider.dll
[2016.06.29 12:57:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\hidclass.sys
[2016.06.29 12:57:38 | 000,859,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OobeFldr.dll
[2016.06.29 12:57:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srchadmin.dll
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Opera Software
[2016.06.29 12:13:32 | 000,000,000 | ---D | C] -- D:\Program Files\Opera
[2016.06.29 12:04:16 | 028,043,832 | ---- | C] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 22:18:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SygicTruck13.5.0
[2016.06.28 19:44:30 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SG_14.3.1
[2016.06.28 19:35:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.28 16:40:58 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\All voices Sygic
[2016.06.27 18:41:46 | 000,000,000 | -H-D | C] -- D:\ProgramData\CanonBJ
[2016.06.27 18:41:42 | 000,000,000 | -H-D | C] -- D:\Windows\System32\CanonIJ Uninstaller Information
[2016.06.27 18:41:42 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4200
[2016.06.27 18:41:37 | 000,197,632 | ---- | C] (CANON INC.) -- D:\Windows\System32\CNMLM78.DLL
[2016.06.27 18:41:33 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ
[2016.06.27 10:44:45 | 000,000,000 | ---D | C] -- D:\Users\pepa\Tracing
[2016.06.27 10:44:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Skype
[2016.06.27 10:43:58 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.06.27 10:43:57 | 000,000,000 | R--D | C] -- D:\Program Files\Skype
[2016.06.27 10:43:57 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Skype
[2016.06.27 10:43:52 | 000,000,000 | ---D | C] -- D:\ProgramData\Skype
[2016.06.27 10:11:42 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\Program Files\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Adobe
[2016.06.27 10:10:44 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Adobe
[2016.06.27 10:10:26 | 000,000,000 | ---D | C] -- D:\Program Files\Seznam.cz
[2016.06.27 10:09:59 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.27 10:09:58 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe Flash Player
[2016.06.27 10:09:53 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Programs
[2016.06.27 10:06:01 | 000,796,352 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:06:01 | 000,142,528 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:05:57 | 000,000,000 | ---D | C] -- D:\Windows\System32\Macromed
[2016.06.27 09:44:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\poqexec.exe
[2016.06.27 07:57:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapi.dll
[2016.06.27 07:57:42 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wudriver.dll
[2016.06.27 07:57:42 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups.dll
[2016.06.27 00:13:58 | 000,000,000 | ---D | C] -- D:\Windows\Panther
[2016.06.27 00:13:31 | 000,000,000 | ---D | C] -- D:\Windows\System32\OEM
[2016.06.27 00:04:23 | 000,000,000 | ---D | C] -- D:\Windows.old.000
[2016.06.26 17:59:01 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2016.06.26 17:58:33 | 000,032,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msonpmon.dll
[2016.06.26 17:57:31 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Works
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DESIGNER
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Windows\PCHEALTH
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft.NET
[2016.06.26 17:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio 8
[2016.06.26 17:54:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft Help
[2016.06.26 17:54:37 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Office
[2016.06.26 17:54:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft Help
[2016.06.26 17:53:35 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2016.06.26 17:52:09 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:48 | 000,000,000 | ---D | C] -- D:\Program Files\WinRAR
[2016.06.26 16:54:06 | 000,400,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Mozilla
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Mozilla
[2016.06.26 16:51:38 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Maintenance Service
[2016.06.26 16:51:33 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2016.06.26 16:37:49 | 002,324,216 | ---- | C] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:36:05 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\CEF
[2016.06.26 16:35:25 | 000,035,096 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:46 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.06.26 16:32:43 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016.06.26 16:32:29 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AV
[2016.06.26 16:32:21 | 000,222,056 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:32:21 | 000,118,152 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:32:20 | 000,438,296 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.26 16:32:20 | 000,060,424 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:32:19 | 000,091,680 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:32:19 | 000,091,232 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:32:19 | 000,034,008 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:32:18 | 000,816,304 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:32:05 | 000,921,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:32:05 | 000,319,248 | ---- | C] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | C] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:30:22 | 000,000,000 | ---D | C] -- D:\Program Files\AVAST Software
[2016.06.26 16:29:48 | 000,000,000 | ---D | C] -- D:\ProgramData\AVAST Software
[2016.06.26 16:26:03 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Diagnostics
[2016.06.26 16:21:38 | 000,859,136 | ---- | C] (Realtek Semiconductor Corporation ) -- D:\Windows\System32\drivers\rtl8192se.sys
[2016.06.26 16:21:38 | 000,000,000 | ---D | C] -- D:\Program Files\InstallShield Installation Information
[2016.06.26 16:21:34 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek WLAN Driver
[2016.06.26 16:21:10 | 000,000,000 | -HSD | C] -- D:\Windows\Installer
[2016.06.26 16:20:56 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinBatch
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\Searches
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.06.26 15:59:18 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Identities
[2016.06.26 15:59:15 | 000,000,000 | R--D | C] -- D:\Users\pepa\Contacts
[2016.06.26 15:57:42 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\VirtualStore
[2016.06.26 15:57:38 | 000,000,000 | --SD | C] -- D:\Users\pepa\AppData\Roaming\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Videos
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Saved Games
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Pictures
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Music
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Links
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Favorites
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Downloads
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Documents
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Desktop
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Temporary Internet Files
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Šablony
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Soubory cookie
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\SendTo
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Poslední
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní tiskárny
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní síť
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Obrázky
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Nabídka Start
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Local Settings
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Hudba
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\History
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Filmy
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Dokumenty
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -H-D | C] -- D:\Users\pepa\AppData
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Temp
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Media Center Programs
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Šablony
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Plocha
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Obrázky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Oblíbené položky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Nabídka Start
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Hudba
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Filmy
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Dokumenty
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Data aplikací
[2016.06.26 14:17:58 | 000,000,000 | ---D | C] -- D:\Windows\SoftwareDistribution
[2016.06.26 14:14:37 | 000,000,000 | ---D | C] -- D:\Windows\Prefetch

========== Files - Modified Within 30 Days ==========

[2016.07.06 11:48:09 | 000,000,914 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.07.06 08:41:20 | 000,668,376 | ---- | M] () -- D:\Windows\System32\perfh005.dat
[2016.07.06 08:41:20 | 000,653,724 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2016.07.06 08:41:20 | 000,141,004 | ---- | M] () -- D:\Windows\System32\perfc005.dat
[2016.07.06 08:41:20 | 000,121,596 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2016.07.06 07:54:45 | 000,000,512 | ---- | M] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:24 | 000,597,473 | ---- | M] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.06 07:34:38 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 07:25:32 | 1606,578,176 | -HS- | M] () -- D:\hiberfil.sys
[2016.07.05 07:12:44 | 000,000,000 | ---- | M] () -- D:\Windows\System32\last.dump
[2016.07.02 03:36:41 | 000,413,336 | ---- | M] () -- D:\Windows\System32\FNTCACHE.DAT
[2016.07.02 03:11:20 | 000,152,576 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\msclmd.dll
[2016.06.30 13:52:43 | 000,007,602 | ---- | M] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagerr.xml
[2016.06.29 17:19:15 | 000,002,058 | ---- | M] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 12:14:48 | 000,001,095 | ---- | M] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.29 12:09:32 | 028,043,832 | ---- | M] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 13:52:48 | 000,013,723 | ---- | M] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.27 10:48:29 | 000,796,352 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:48:29 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:43:58 | 000,002,719 | ---- | M] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.26 20:35:12 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | M] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | M] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:35:50 | 000,001,122 | ---- | M] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:43 | 000,002,083 | ---- | M] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:31:57 | 000,921,280 | ---- | M] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:31:57 | 000,319,248 | ---- | M] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | M] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:20:33 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 14:19:15 | 000,068,220 | ---- | M] () -- D:\Windows\System32\license.rtf
[2016.06.26 14:17:41 | 000,000,000 | ---- | M] () -- D:\Windows\ativpsrm.bin
[2016.06.26 10:28:20 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2016.06.25 17:43:13 | 000,301,056 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.06.25 11:45:09 | 000,619,841 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.25 11:45:01 | 000,657,217 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.13 19:31:08 | 000,400,040 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe

========== Files Created - No Company Name ==========

[2016.07.06 07:54:45 | 000,000,512 | ---- | C] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:19 | 000,597,473 | ---- | C] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.02 15:24:04 | 000,000,003 | ---- | C] () -- D:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.06.30 23:43:10 | 000,000,000 | ---- | C] () -- D:\Windows\System32\last.dump
[2016.06.30 13:52:43 | 000,007,602 | ---- | C] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:19:15 | 000,002,058 | ---- | C] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagerr.xml
[2016.06.29 12:59:47 | 000,010,429 | ---- | C] () -- D:\Windows\System32\ScavengeSpace.xml
[2016.06.29 12:59:42 | 000,146,852 | ---- | C] () -- D:\Windows\System32\systemsf.ebd
[2016.06.29 12:59:37 | 000,080,896 | ---- | C] () -- D:\Windows\System32\RDVGHelper.exe
[2016.06.29 12:59:35 | 000,105,559 | ---- | C] () -- D:\Windows\System32\RacRules.xml
[2016.06.29 12:59:33 | 000,066,048 | ---- | C] () -- D:\Windows\System32\PrintBrmUi.exe
[2016.06.29 12:14:48 | 000,001,095 | ---- | C] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.28 18:55:55 | 000,619,841 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.28 18:55:52 | 000,657,217 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.28 13:41:31 | 000,013,723 | ---- | C] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 10:43:58 | 000,002,719 | ---- | C] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.27 10:06:02 | 000,000,914 | ---- | C] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.06.26 20:35:12 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | C] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | C] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
[2016.06.26 16:32:43 | 000,002,083 | ---- | C] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:20:33 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 15:59:33 | 000,001,421 | ---- | C] () -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.06.26 14:19:08 | 000,001,326 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.06.26 14:19:00 | 000,001,345 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.06.26 14:17:41 | 000,000,000 | ---- | C] () -- D:\Windows\ativpsrm.bin

========== ZeroAccess Check ==========

[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2016.06.26 16:32:46 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.07.02 18:51:45 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.29 12:14:50 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.07.05 07:34:13 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.29 13:03:05 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.26 16:20:56 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\WinBatch

========== Purity Check ==========



< End of report >
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz