Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zamrazení pc

To, co se nehodí jinam..

Moderátor: Moderátoři

Zamčeno
Zpráva
Autor
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Zamrazení pc

#1 Příspěvek od PacandaMilan »

Zdravím, kamarádovi dochází k náhodnému zamrzání pc. PC jede třeba 10minut jindy 2 hodiny poté se zasekne a začne 10sek. zrňet.
Problém nastává tak, že najednou nelze se systémem nic dělat (klávesnice ani myš nereagují, ale větrák na chladiči i disky běží, žádná BlueScreen) a pomůže jen "reset".
PC jsem kompletně projel AVG.
Zkoušel jsem obnovovat systém jenže nestihne ani dokončit akci a zase se zasekne.
Přemýšlel jsem jestli nezkusit reinstall win.

Tady kdyžtak přikládám screen z CPUID HWMonitor:
Obrázek
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#2 Příspěvek od Rudy »

Zdravím!
Z uvedeného screenu není patrno nic chybného. Koukneme, co v systému běží. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#3 Příspěvek od PacandaMilan »

Tady to je:

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-07-2016 01
Ran by PXXR (administrator) on PXXR-PC (12-07-2016 10:08:37)
Running from C:\Users\PXXR\Desktop
Loaded Profiles: PXXR (Available Profiles: PXXR)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
() C:\Windows\System32\PnkBstrA.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguirnx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [186640 2016-06-21] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: I - I:\Autorun.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {6d2e1b04-8c1c-11e4-9afa-001d7d921b23} - I:\Install.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2014-12-26] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5C44438F-FD10-4A6D-B5C4-0B3710CD06C6}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-05] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-05] (Oracle Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-07-01] ()
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-05] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-01]
CHR Extension: (Dokumenty Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-01]
CHR Extension: (Disk Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-01]
CHR Extension: (YouTube) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-01]
CHR Extension: (Vyhledávání Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-01]
CHR Extension: (Who Deleted Me) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiepnnbjenknnjgabbodaihlnkkpkgll [2016-07-01]
CHR Extension: (Tabulky Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-01]
CHR Extension: (AdBlock) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-05]
CHR Extension: (Downloads) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbcgifdaopbfflfhbcfeomijfbbcadi [2016-07-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-01]
CHR Extension: (Gmail) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-01]
CHR HKLM\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [890128 2016-06-21] (AVG Technologies CZ, s.r.o.)
S3 npggsvc; C:\Windows\system32\GameMon.des [3071632 2014-05-06] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-12-25] ()
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [771456 2015-02-24] (Enigma Software Group USA, LLC.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [3874576 2016-06-01] (AVG Technologies CZ, s.r.o.)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 cpuz138; C:\Users\PXXR\AppData\Local\Temp\cpuz138\cpuz138_x32.sys [27832 2016-07-11] (CPUID)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-02-24] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2015-07-14] (LogMeIn, Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [31792 2016-06-01] (AVG Netherlands B.V.)
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S2 SPDRIVER_1453.0.0.0; \??\C:\Program Files\ShopperPro\JSDriver\1453.0.0.0\jsdrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 93B49FA857F7036A4EFF32371F6E7391
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\amdiox86.sys FF258424F0B2EF25EB98F04EE386E6E3
C:\Windows\System32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmdag.sys 92D358D9E637F4BF4C2F87CF0B85B494
C:\Windows\System32\DRIVERS\atikmpag.sys 6DC621388E76DC43D8558A20603B5A9E
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\system32\drivers\appid.sys C7F5CAE0B450BE875EEE0E6DDFA771FE
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\drivers\AtihdW73.sys 434192D027A6A11E32E1C74C7C43E1ED
C:\Windows\System32\DRIVERS\atikmdag.sys 92D358D9E637F4BF4C2F87CF0B85B494
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys 33A60554882FDF59CDA3E1806370BBA1
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys AEC572F808592750F4C0880CFF94EEA5
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Users\PXXR\AppData\Local\Temp\cpuz138\cpuz138_x32.sys 8D14B013FC2B555E404B1C3301150C34
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys B7B470F163002A0D0E381EE45834BF6B
C:\Windows\system32\drivers\drmkaud.sys A3F684B866A7D89AE396276CE7AFD416
C:\Windows\System32\drivers\dxgkrnl.sys 4B21D102E49E9D44C478D6766A7FCBE5
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\EsgScanner.sys 01CE484FF6D70A39479BC6D619DE7ED6
C:\Windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hamachi.sys 833051C6C6C42117191935F734CFBD97
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ANDROIDUSB.sys 950CC1E6AE3A6CD23E0945CDE089B02C
C:\Windows\System32\drivers\HTTP.sys 487569E5DA56A5A432FF8AF6D3599CF9
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys B2071121098F35650C62DE7D9CB45E60
C:\Windows\System32\Drivers\ksecpkg.sys AA4D0F9EFDE0178F90C0EF3E82A42DB1
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys BAD9C0366134BA181514E9263C8CE606
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 6430A074F6E32176FBEF2DEB110AE952
C:\Windows\System32\DRIVERS\mrxsmb.sys 89CC31A9E81F840D914ABC2E3BD70F9C
C:\Windows\System32\DRIVERS\mrxsmb10.sys 36E6FFBBEC96725A33CEDE538258CCDA
C:\Windows\System32\DRIVERS\mrxsmb20.sys 7974D617D78D78689BF3AA7D51EC6AD5
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 9804FB2E46077F2977552347DFCA7E05
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys A00996C9BFEF29A93B9F21DBE1DC502D
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Ntfs.sys 978E7A2E4BF4E8E70D0776EF0D9E97FB
C:\Windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nvm62x32.sys B5E37E31C053BC9950455A257526514B
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\System32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys AEBC369F7DC72AB3F5B9BDF34FA0D43F
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys EAC76854C359D2534B25296AE425410D
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 96F6EC5161B177272900847C2AC9808B
C:\Windows\System32\DRIVERS\srv2.sys B6498636ECD025E9B334199347FAB2A1
C:\Windows\System32\DRIVERS\srvnet.sys FA3853686F5287E5DB8F5199E13CF27C
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys BB8817D0508DD5EA69C770C8DEF5AB67
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys CFF07F29BAA07D2F259BAE264769E707
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\System32\DRIVERS\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys FC6B21DB4B5B398AB93DBE59CBF11036
C:\Windows\system32\drivers\USBSTOR.SYS 144DA53294922A84FFAA3D90B1453745
C:\Windows\system32\drivers\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\Windows\System32\DRIVERS\usb8023x.sys AF77716205C97E902E6C5B78DECE2CCA
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\system32\drivers\WinUsb.sys A67E5F9A400F3BD1BE3D80613B45F708
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\system32\drivers\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-12 10:08 - 2016-07-12 10:09 - 00025099 _____ C:\Users\PXXR\Desktop\FRST.txt
2016-07-12 09:56 - 2016-07-12 10:08 - 00000000 ____D C:\FRST
2016-07-12 09:56 - 2016-07-12 09:56 - 00007921 _____ C:\Users\PXXR\Downloads\FRST.txt
2016-07-12 09:55 - 2016-07-12 09:56 - 01741312 _____ (Farbar) C:\Users\PXXR\Desktop\FRST.exe
2016-07-11 21:38 - 2016-07-11 21:39 - 01361206 _____ C:\Users\PXXR\Desktop\rawes.bmp
2016-07-11 21:33 - 2016-07-11 21:33 - 00001058 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2016-07-11 21:32 - 2016-07-11 21:32 - 01199856 _____ ( ) C:\Users\PXXR\Downloads\hwmonitor_1.28.exe
2016-07-11 21:32 - 2016-07-11 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-07-11 21:32 - 2016-07-11 21:32 - 00000000 ____D C:\Program Files\CPUID
2016-07-11 21:30 - 2016-07-11 21:30 - 00000000 ____D C:\Users\PXXR\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2016-07-11 21:10 - 2016-07-11 21:10 - 00000900 _____ C:\Users\PXXR\Desktop\OCCT.lnk
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\Windows\system32\directx
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\Program Files\OCCTPT
2016-07-11 21:05 - 2016-07-11 21:06 - 14383688 _____ C:\Users\PXXR\Downloads\OCCTPT4.4.2.exe
2016-07-11 09:44 - 2016-07-11 09:45 - 00000000 ___HD C:\$WINDOWS.~BT
2016-07-11 09:28 - 2016-07-11 13:51 - 00273764 _____ C:\Windows\ntbtlog.txt
2016-07-10 23:42 - 2016-07-10 23:42 - 00000000 ____D C:\Users\PXXR\Desktop\backups
2016-07-10 23:40 - 2016-07-10 23:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\PXXR\Desktop\hijackthis.exe
2016-07-10 21:56 - 2016-07-10 21:56 - 00923006 _____ C:\Users\PXXR\Downloads\DEW_TOWN_DOGZ_-_Ma_Chanell_prod_Cony_Forsen[YoutubeConverter.Me].mp3.crdownload
2016-07-09 19:16 - 2016-07-09 19:16 - 00001613 _____ C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk
2016-07-09 19:16 - 2016-07-09 19:16 - 00001583 _____ C:\Users\PXXR\Desktop\Counter-Strike.lnk
2016-07-09 19:13 - 2016-07-11 09:12 - 00000000 ____D C:\Counter-Strike 1.6
2016-07-09 19:02 - 2016-07-09 19:13 - 372506411 _____ () C:\Users\PXXR\Downloads\CS16_install.exe
2016-07-09 18:05 - 2016-07-09 18:05 - 00002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2016-07-09 18:05 - 2016-07-09 18:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp
2016-07-09 18:05 - 2016-06-01 15:13 - 00049936 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\TURegOpt.exe
2016-07-09 18:05 - 2016-06-01 15:05 - 00039696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\authuitu.dll
2016-07-09 15:39 - 2016-07-09 15:39 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\AVG
2016-07-09 15:38 - 2016-07-09 15:38 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\TuneUp Software
2016-07-09 15:36 - 2016-07-10 23:19 - 00000000 ___HD C:\$AVG
2016-07-09 15:32 - 2016-07-10 23:52 - 00000000 ____D C:\ProgramData\MFAData
2016-07-09 15:32 - 2016-07-09 15:32 - 00000000 ____D C:\Users\PXXR\AppData\Local\MFAData
2016-07-09 15:30 - 2016-07-09 15:30 - 00000832 _____ C:\Users\Public\Desktop\AVG.lnk
2016-07-09 15:30 - 2016-07-09 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-07-09 15:28 - 2016-07-10 23:52 - 00000000 ____D C:\Program Files\AVG
2016-07-09 15:26 - 2016-07-10 23:52 - 00000000 ____D C:\Users\PXXR\AppData\Local\Avg
2016-07-09 15:26 - 2016-07-10 23:20 - 00000000 ____D C:\Users\PXXR\AppData\Local\AvgSetupLog
2016-07-09 15:26 - 2016-07-09 18:12 - 00000000 ____D C:\ProgramData\Avg
2016-07-09 15:26 - 2016-07-09 15:26 - 03143504 _____ (AVG Technologies CZ, s.r.o.) C:\Users\PXXR\Downloads\AVG_Protection_Free_1064.exe
2016-07-09 14:57 - 2016-07-09 15:14 - 00000000 ____D C:\ProgramData\SearchModule
2016-07-09 12:58 - 2016-07-09 12:58 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-07-09 12:58 - 2016-07-09 12:58 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-07-09 12:52 - 2016-07-09 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Healer
2016-07-09 12:52 - 2016-07-09 12:57 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\System Healer
2016-07-09 12:52 - 2016-07-09 12:52 - 00000000 ____D C:\ProgramData\5513df8c-1ba7-1
2016-07-09 12:52 - 2016-07-09 12:52 - 00000000 ____D C:\ProgramData\5513df8c-0491-0
2016-07-09 12:43 - 2016-07-09 15:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-09 12:43 - 2016-07-09 15:14 - 00000000 ____D C:\Program Files\ContentPush
2016-07-09 12:43 - 2016-07-09 15:14 - 00000000 ____D C:\Program Files\badu
2016-07-09 12:43 - 2016-07-09 12:43 - 00000000 ____D C:\Program Files\WeatherChickn
2016-07-09 12:41 - 2016-07-09 15:14 - 00000000 ____D C:\ProgramData\Quoteex
2016-07-09 12:41 - 2016-07-09 15:14 - 00000000 ____D C:\ProgramData\Logic Handler
2016-07-09 12:41 - 2016-07-09 15:14 - 00000000 ____D C:\Program Files\Common Files\Sunsing
2016-07-09 12:41 - 2016-07-09 12:41 - 07101952 _____ C:\Users\PXXR\AppData\Roaming\agent.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 00126464 _____ C:\Users\PXXR\AppData\Roaming\noah.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 00070176 _____ C:\Users\PXXR\AppData\Roaming\Config.xml
2016-07-09 12:41 - 2016-07-09 12:41 - 00018432 _____ C:\Users\PXXR\AppData\Roaming\Main.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 00000000 ____D C:\ProgramData\Quoteexs
2016-07-09 12:40 - 2016-07-09 12:41 - 00005568 _____ C:\Users\PXXR\AppData\Roaming\md.xml
2016-07-09 12:40 - 2016-07-09 12:40 - 01878389 _____ C:\Users\PXXR\AppData\Roaming\VoltTough.tst
2016-07-09 12:40 - 2016-07-09 12:40 - 00848437 _____ C:\Users\PXXR\AppData\Roaming\Lamlab.bin
2016-07-09 12:40 - 2016-07-09 12:40 - 00126464 _____ C:\Users\PXXR\AppData\Roaming\lobby.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 00072704 _____ C:\Users\PXXR\AppData\Roaming\Yeartax.tst
2016-07-09 12:40 - 2016-07-09 12:40 - 00054272 _____ C:\Users\PXXR\AppData\Roaming\ApplicationHosting.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-07-09 12:39 - 2016-07-09 12:39 - 00128512 _____ C:\Users\PXXR\AppData\Roaming\Installer.dat
2016-07-09 12:39 - 2016-07-09 12:39 - 00018432 _____ C:\Users\PXXR\AppData\Roaming\InstallationConfiguration.xml
2016-07-09 12:38 - 2016-07-09 01:44 - 00856080 ___SH C:\Users\PXXR\AppData\Roaming\iGcdTfJIIWFc
2016-07-09 12:38 - 2016-07-09 01:44 - 00036471 ___SH C:\Users\PXXR\AppData\Roaming\PQEACFcZWOIKfQYWgeW
2016-07-09 12:21 - 2016-07-09 12:21 - 00000000 ____D C:\ProgramData\AVAST Software
2016-07-09 11:10 - 2016-07-09 15:14 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\vlc
2016-07-09 11:09 - 2016-07-09 11:09 - 00000000 ____D C:\Program Files\VideoLAN
2016-07-08 14:10 - 2016-07-08 14:10 - 00000000 ____D C:\Users\PXXR\AppData\Local\SmartGuard
2016-07-07 22:41 - 2016-07-07 22:41 - 00000000 ____D C:\Users\PXXR\AppData\Local\GWX
2016-07-07 20:34 - 2009-04-06 09:08 - 00005174 _____ C:\Windows\system32\nppt9x.vxd
2016-07-07 20:34 - 2009-04-06 09:08 - 00004682 _____ (INCA Internet Co., Ltd.) C:\Windows\system32\npptNT2.sys
2016-07-07 20:23 - 2016-07-07 20:23 - 00000000 ____D C:\Program Files\NCsoft
2016-07-07 04:13 - 2016-07-07 10:15 - 00000000 ___SD C:\Windows\system32\GWX
2016-07-07 03:03 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-06 16:12 - 2016-06-06 17:26 - 00037096 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-07-06 16:12 - 2016-06-06 17:23 - 01001472 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-07-06 16:12 - 2016-06-03 15:04 - 01225216 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00461824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-07-06 16:12 - 2016-05-22 15:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-07-06 16:12 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-07-06 16:12 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-07-06 16:12 - 2016-05-13 23:49 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-07-06 16:12 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-07-06 16:12 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-07-06 16:12 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-07-06 16:12 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-07-06 16:12 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-07-06 16:12 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-07-06 16:12 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-07-06 16:12 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-07-06 16:12 - 2016-03-24 00:39 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-07-06 16:12 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-07-06 16:12 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-07-06 16:12 - 2016-02-09 11:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-07-06 16:12 - 2016-02-03 19:59 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-07-06 16:12 - 2016-02-02 20:48 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-07-06 16:12 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-07-06 16:12 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-07-06 16:12 - 2015-11-10 20:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-07-06 16:12 - 2015-11-10 20:39 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-07-06 16:12 - 2015-11-10 20:39 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-07-06 16:12 - 2015-07-10 19:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-07-06 16:12 - 2015-07-10 19:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-07-06 16:12 - 2015-07-10 19:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2016-07-06 16:12 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-07-06 16:12 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-07-06 16:12 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-07-06 16:12 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-07-06 16:12 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-07-06 16:11 - 2016-04-06 12:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-07-06 16:11 - 2016-03-18 00:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-07-06 16:11 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-07-06 16:11 - 2016-03-18 00:26 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-07-06 16:11 - 2016-03-18 00:26 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:36 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-07-06 16:11 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-07-06 16:11 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-07-06 16:11 - 2016-02-12 20:39 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-07-06 16:11 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-07-06 16:11 - 2016-02-12 20:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-07-06 16:11 - 2016-02-12 20:07 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-07-06 16:11 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-07-06 16:11 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-07-06 16:11 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-07-06 16:11 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-07-06 16:11 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-07-06 16:11 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-07-06 16:11 - 2015-08-05 19:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-07-06 16:11 - 2015-06-11 19:57 - 00919552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-07-06 16:11 - 2015-06-11 19:15 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-07-06 16:11 - 2015-06-11 19:15 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2016-07-06 16:10 - 2016-05-12 17:22 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-07-06 16:10 - 2016-05-12 17:22 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-07-06 16:10 - 2016-05-12 17:18 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-07-06 16:10 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-07-06 16:10 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-07-06 16:10 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-07-06 16:10 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-07-06 16:10 - 2016-05-12 16:52 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-07-06 16:10 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-07-06 16:10 - 2016-05-12 16:51 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-07-06 16:10 - 2016-05-12 16:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-07-06 16:10 - 2016-05-12 15:04 - 00370784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-07-06 16:10 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-07-06 16:10 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-07-06 16:10 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-07-06 16:10 - 2016-02-03 20:49 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-07-06 16:10 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-07-06 16:10 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-07-06 16:10 - 2015-10-29 19:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-07-06 16:10 - 2015-10-29 19:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-07-06 16:10 - 2015-10-29 19:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-07-06 16:10 - 2015-10-29 19:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-07-06 16:10 - 2015-10-13 18:31 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-07-06 16:10 - 2015-10-13 18:31 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-07-06 16:10 - 2015-10-13 06:50 - 00712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-07-06 16:10 - 2015-07-15 19:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-07-06 16:10 - 2015-07-15 19:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-07-06 16:10 - 2015-07-15 19:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-07-06 16:10 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-07-06 16:10 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-07-06 16:10 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-07-06 16:09 - 2016-03-16 01:53 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-07-06 16:09 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-07-06 16:09 - 2016-01-07 19:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-07-06 16:09 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-07-06 16:09 - 2015-07-22 19:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-07-06 16:09 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-07-06 16:09 - 2015-07-22 18:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-07-06 16:09 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-07-06 16:09 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-07-06 16:08 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-07-06 16:08 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-07-06 16:08 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-07-06 16:08 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-07-06 16:08 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-07-06 16:08 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-07-06 16:07 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-07-06 16:07 - 2016-05-12 16:54 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-06 16:07 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-07-06 16:07 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-07-06 16:07 - 2016-04-09 08:57 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-07-06 16:07 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-07-06 16:07 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-07-06 16:07 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-07-06 16:07 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-07-06 16:07 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-07-06 16:07 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-07-06 16:07 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-07-06 16:07 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-07-06 16:07 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-07-06 16:07 - 2015-11-05 11:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-07-06 16:07 - 2015-11-03 20:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-07-06 16:07 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-07-06 16:07 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-07-06 16:07 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-07-06 16:07 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-07-06 16:07 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-07-06 16:07 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-07-06 16:07 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-07-06 16:06 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-07-06 16:06 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-07-06 16:06 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-07-06 16:06 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-07-06 16:06 - 2016-05-11 16:52 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-07-06 16:06 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-07-06 16:06 - 2016-04-09 07:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-07-06 16:06 - 2016-04-09 07:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-07-06 16:06 - 2016-04-09 07:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-07-06 16:06 - 2016-04-09 07:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-07-06 16:06 - 2016-04-09 07:40 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-07-06 16:06 - 2016-04-09 07:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-07-06 16:06 - 2016-03-24 00:39 - 00534816 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-07-06 16:06 - 2016-03-24 00:39 - 00470704 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-07-06 16:06 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-07-06 16:06 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-07-06 16:06 - 2015-07-15 04:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-07-06 16:06 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-07-06 16:06 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-07-06 16:05 - 2016-05-24 00:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-06 16:05 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-06 16:05 - 2016-05-21 00:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-06 16:05 - 2016-05-21 00:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-06 16:05 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-06 16:05 - 2016-05-20 23:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-06 16:05 - 2016-05-20 23:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-06 16:05 - 2016-05-20 23:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-06 16:05 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-06 16:05 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-06 16:05 - 2016-05-20 23:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-06 16:05 - 2016-05-20 23:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-06 16:05 - 2016-05-20 23:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-06 16:05 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-06 16:05 - 2016-05-20 23:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-06 16:05 - 2016-05-20 23:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-06 16:05 - 2016-05-20 23:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-06 16:05 - 2016-05-20 23:36 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-06 16:05 - 2016-05-20 23:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-06 16:05 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-06 16:05 - 2016-05-20 23:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-06 16:05 - 2016-05-20 23:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-06 16:05 - 2016-05-20 23:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-06 16:05 - 2016-05-20 23:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-06 16:05 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-06 16:05 - 2016-05-20 23:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-06 16:05 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-06 16:05 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-06 16:05 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-06 16:05 - 2016-05-20 23:09 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-06 16:05 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-06 16:05 - 2016-05-20 23:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-06 16:05 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-06 16:05 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-06 16:05 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-06 16:05 - 2016-04-14 17:38 - 00105192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-07-06 16:05 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-07-06 16:05 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-07-06 16:05 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-07-06 16:05 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-07-06 16:05 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-07-06 16:05 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-07-06 16:05 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-07-06 16:05 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-07-06 16:05 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-07-06 16:05 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-07-06 16:05 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-07-06 16:05 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-07-06 16:05 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-07-06 16:05 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-07-06 16:05 - 2015-12-08 23:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-07-06 16:05 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-07-06 16:05 - 2015-12-08 23:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-07-06 16:05 - 2015-12-08 23:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-07-06 16:05 - 2015-12-08 23:11 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-07-06 16:05 - 2015-12-08 23:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-07-06 16:05 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-07-06 15:42 - 2016-01-11 20:54 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-07-06 15:36 - 2016-05-18 18:10 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-07-06 14:34 - 2016-07-06 14:34 - 00000359 _____ C:\Users\PXXR\Desktop\Počítač.lnk
2016-07-03 12:45 - 2016-07-03 12:45 - 00000000 ____D C:\Users\PXXR\Documents\League of Legends
2016-07-02 21:29 - 2016-07-02 21:31 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\avidemux
2016-07-02 21:29 - 2016-07-02 21:29 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Mozilla
2016-07-02 21:28 - 2016-07-02 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-07-02 21:28 - 2016-07-02 21:28 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2016-07-02 20:43 - 2016-07-02 20:43 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2016-07-02 20:43 - 2016-07-02 20:43 - 00000000 ____D C:\ProgramData\Pinnacle
2016-07-01 16:34 - 2016-07-01 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-07-01 16:34 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-07-01 16:34 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-07-01 16:34 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-07-01 16:31 - 2016-07-01 16:34 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Riot Games
2016-07-01 16:04 - 2016-07-01 16:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-07-01 14:24 - 2016-07-09 19:03 - 00000000 ____D C:\Users\PXXR\Desktop\Hudba

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-12 10:08 - 2015-04-01 20:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-12 10:08 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-11 21:23 - 2015-04-01 20:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-11 21:02 - 2014-12-25 02:55 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-11 14:56 - 2009-07-14 06:34 - 00009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-11 14:56 - 2009-07-14 06:34 - 00009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-11 09:46 - 2014-12-25 09:56 - 00000000 ____D C:\Windows\Panther
2016-07-11 09:12 - 2014-12-26 02:52 - 00668160 _____ C:\Windows\system32\perfh005.dat
2016-07-11 09:12 - 2014-12-26 02:52 - 00140806 _____ C:\Windows\system32\perfc005.dat
2016-07-11 09:12 - 2014-12-25 01:58 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-11 09:12 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-07-10 23:40 - 2014-12-25 01:50 - 00000000 ____D C:\Users\PXXR\AppData\Local\VirtualStore
2016-07-09 18:33 - 2015-04-01 20:28 - 00002100 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-09 18:17 - 2015-03-27 17:30 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-07-09 15:16 - 2014-12-25 01:50 - 00000000 ____D C:\Users\PXXR
2016-07-09 15:14 - 2015-08-01 11:32 - 00000000 ____D C:\Program Files\CCleaner
2016-07-09 15:14 - 2015-04-01 19:07 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Winamp
2016-07-09 15:14 - 2015-04-01 19:07 - 00000000 ____D C:\Program Files\Winamp
2016-07-09 15:14 - 2014-12-25 20:17 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Seznam.cz
2016-07-09 15:14 - 2014-12-25 02:32 - 00000000 ____D C:\Program Files\WinRAR
2016-07-09 15:14 - 2014-12-25 02:07 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\uTorrent
2016-07-09 15:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2016-07-08 12:33 - 2015-04-05 14:26 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\TeamViewer
2016-07-08 12:23 - 2014-12-25 02:42 - 00000000 ____D C:\Users\PXXR\AppData\Local\Google
2016-07-08 10:07 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-08 04:03 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2016-07-08 03:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\AppCompat
2016-07-07 20:34 - 2014-12-29 00:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCsoft
2016-07-07 20:22 - 2014-12-25 21:29 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-07-07 15:23 - 2014-06-30 12:10 - 00000000 ____D C:\Lineage II C6
2016-07-07 10:14 - 2009-07-14 06:33 - 00268128 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-07 04:13 - 2014-12-25 20:28 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-07-07 04:13 - 2014-12-25 20:28 - 00000000 ____D C:\Windows\system32\appraiser
2016-07-07 04:13 - 2009-07-14 09:50 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-07 04:13 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-07-07 04:13 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-07-07 03:52 - 2014-12-25 12:02 - 00000000 ____D C:\Windows\system32\MRT
2016-07-07 03:40 - 2014-12-25 12:02 - 139785240 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-06 13:32 - 2014-12-25 20:16 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\DAEMON Tools Lite
2016-07-03 08:54 - 2014-12-25 12:21 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\LolClient
2016-07-01 18:03 - 2014-12-25 02:55 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-07-01 18:03 - 2014-12-25 02:55 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-07-01 17:25 - 2015-04-01 20:28 - 00002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-01 16:34 - 2013-07-29 12:22 - 00000000 ____D C:\Riot Games
2016-07-01 16:14 - 2015-06-14 16:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2016-07-01 16:14 - 2015-04-05 12:44 - 00000000 ____D C:\Users\PXXR\AppData\Local\LogMeIn Hamachi
2016-07-01 16:14 - 2015-04-05 10:54 - 00000000 ____D C:\ProgramData\MySQL
2016-07-01 16:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2016-07-01 16:11 - 2015-04-05 11:02 - 00000000 ____D C:\Program Files\MySQL
2016-07-01 15:59 - 2015-08-08 11:26 - 00000000 ____D C:\Users\PXXR\AppData\Local\TomTom
2016-07-01 12:40 - 2015-02-24 19:13 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2016-06-21 12:13 - 2014-12-25 10:16 - 00400552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2014-12-26 11:56 - 2014-12-26 11:56 - 0181736 _____ () C:\Program Files\Common Files\33121ce0-0a0b-4de3-9e5d-dc42a4029d81.dll
2016-07-09 12:41 - 2016-07-09 12:41 - 7101952 _____ () C:\Users\PXXR\AppData\Roaming\agent.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 0054272 _____ () C:\Users\PXXR\AppData\Roaming\ApplicationHosting.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 0070176 _____ () C:\Users\PXXR\AppData\Roaming\Config.xml
2016-07-09 12:38 - 2016-07-09 01:44 - 0856080 ___SH () C:\Users\PXXR\AppData\Roaming\iGcdTfJIIWFc
2016-07-09 12:39 - 2016-07-09 12:39 - 0018432 _____ () C:\Users\PXXR\AppData\Roaming\InstallationConfiguration.xml
2016-07-09 12:39 - 2016-07-09 12:39 - 0128512 _____ () C:\Users\PXXR\AppData\Roaming\Installer.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 0848437 _____ () C:\Users\PXXR\AppData\Roaming\Lamlab.bin
2016-07-09 12:40 - 2016-07-09 12:40 - 0126464 _____ () C:\Users\PXXR\AppData\Roaming\lobby.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 0018432 _____ () C:\Users\PXXR\AppData\Roaming\Main.dat
2016-07-09 12:40 - 2016-07-09 12:41 - 0005568 _____ () C:\Users\PXXR\AppData\Roaming\md.xml
2016-07-09 12:41 - 2016-07-09 12:41 - 0126464 _____ () C:\Users\PXXR\AppData\Roaming\noah.dat
2016-07-09 12:38 - 2016-07-09 01:44 - 0036471 ___SH () C:\Users\PXXR\AppData\Roaming\PQEACFcZWOIKfQYWgeW
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\PXXR\AppData\Roaming\UUFBB
2016-07-09 12:40 - 2016-07-09 12:40 - 1878389 _____ () C:\Users\PXXR\AppData\Roaming\VoltTough.tst
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\PXXR\AppData\Roaming\XGIU
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\PXXR\AppData\Roaming\XPEQGO
2016-07-09 12:40 - 2016-07-09 12:40 - 0072704 _____ () C:\Users\PXXR\AppData\Roaming\Yeartax.tst
2015-04-21 16:44 - 2015-04-21 16:44 - 0069441 _____ () C:\Users\PXXR\AppData\Local\26017E18_stp.CIS
2015-04-21 16:44 - 2015-04-21 16:44 - 0000293 _____ () C:\Users\PXXR\AppData\Local\26017E18_stp.CIS.part
2015-04-21 16:44 - 2015-04-21 16:44 - 0385602 _____ () C:\Users\PXXR\AppData\Local\5DEA8E28_stp.CIS
2015-04-21 16:44 - 2015-04-21 16:44 - 0000204 _____ () C:\Users\PXXR\AppData\Local\5DEA8E28_stp.CIS.part
2015-05-01 10:29 - 2015-05-01 10:29 - 0007605 _____ () C:\Users\PXXR\AppData\Local\Resmon.ResmonCfg
2015-10-02 20:24 - 2015-10-02 20:25 - 0000000 _____ () C:\Users\PXXR\AppData\Local\{B336064A-537E-4058-A3A8-516DE7426FEF}

Files to move or delete:
====================
C:\Users\PXXR\createfileassoc.exe
C:\Users\PXXR\error_report.exe
C:\Users\PXXR\libeay32.dll
C:\Users\PXXR\msvcp110.dll
C:\Users\PXXR\msvcr110.dll
C:\Users\PXXR\OverwolfTeamSpeakInstaller.exe
C:\Users\PXXR\package_inst.exe
C:\Users\PXXR\Qt5Core.dll
C:\Users\PXXR\Qt5Gui.dll
C:\Users\PXXR\Qt5Network.dll
C:\Users\PXXR\Qt5Sql.dll
C:\Users\PXXR\Qt5Widgets.dll
C:\Users\PXXR\quazip.dll
C:\Users\PXXR\ssleay32.dll
C:\Users\PXXR\ts3client_win32.exe
C:\Users\PXXR\update.exe


Some files in TEMP:
====================
C:\Users\PXXR\AppData\Local\Temp\13-9-legacy_vista_win7_32_dd_ccc_whql.exe
C:\Users\PXXR\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\PXXR\AppData\Local\Temp\comver.dll
C:\Users\PXXR\AppData\Local\Temp\install_flashplayer16x32ax_gtbd_chrd_dn_aaa_aih[1].exe
C:\Users\PXXR\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\PXXR\AppData\Local\Temp\MouseKeyboardCenterx86_1033.exe
C:\Users\PXXR\AppData\Local\Temp\Quarantine.exe
C:\Users\PXXR\AppData\Local\Temp\Runner2.exe
C:\Users\PXXR\AppData\Local\Temp\Runner4.exe
C:\Users\PXXR\AppData\Local\Temp\scpC814.tmp.exe
C:\Users\PXXR\AppData\Local\Temp\sqlite3.dll
C:\Users\PXXR\AppData\Local\Temp\vsdel.exe
C:\Users\PXXR\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Spr vce spouçtŘnˇ syst‚mu Windows
--------------------
identifik tor           {bootmgr}
device                  partition=C:
description             Windows Boot Manager
locale                  en-US
inherit                 {globalsettings}
default                 {current}
resumeobject            {7e0207a8-cd8b-11e1-80bc-d6103a5b222e}
displayorder            {current}
toolsdisplayorder       {memdiag}
timeout                 30

Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor           {7e0207a2-cd8b-11e1-80bc-d6103a5b222e}
device                  ramdisk=[C:]\Recovery\7e0207a2-cd8b-11e1-80bc-d6103a5b222e\Winre.wim,{7e0207a3-cd8b-11e1-80bc-d6103a5b222e}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\7e0207a2-cd8b-11e1-80bc-d6103a5b222e\Winre.wim,{7e0207a3-cd8b-11e1-80bc-d6103a5b222e}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor           {7e0207a6-cd8b-11e1-80bc-d6103a5b222e}
device                  ramdisk=[C:]\Recovery\7e0207a6-cd8b-11e1-80bc-d6103a5b222e\Winre.wim,{7e0207a7-cd8b-11e1-80bc-d6103a5b222e}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\7e0207a6-cd8b-11e1-80bc-d6103a5b222e\Winre.wim,{7e0207a7-cd8b-11e1-80bc-d6103a5b222e}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor           {current}
device                  partition=C:
path                    \Windows\system32\winload.exe
description             Windows 7
locale                  en-US
inherit                 {bootloadersettings}
recoverysequence        {7e0207aa-cd8b-11e1-80bc-d6103a5b222e}
recoveryenabled         Yes
osdevice                partition=C:
systemroot              \Windows
resumeobject            {7e0207a8-cd8b-11e1-80bc-d6103a5b222e}
nx                      OptIn

Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor           {7e0207aa-cd8b-11e1-80bc-d6103a5b222e}
device                  ramdisk=[C:]\Recovery\7e0207aa-cd8b-11e1-80bc-d6103a5b222e\Winre.wim,{7e0207ab-cd8b-11e1-80bc-d6103a5b222e}
path                    \windows\system32\winload.exe
description             Windows Recovery Environment
inherit                 {bootloadersettings}
osdevice                ramdisk=[C:]\Recovery\7e0207aa-cd8b-11e1-80bc-d6103a5b222e\Winre.wim,{7e0207ab-cd8b-11e1-80bc-d6103a5b222e}
systemroot              \windows
nx                      OptIn
winpe                   Yes

Obnovenˇ z hibernace
---------------------
identifik tor           {7e0207a8-cd8b-11e1-80bc-d6103a5b222e}
device                  partition=C:
path                    \Windows\system32\winresume.exe
description             Windows Resume Application
locale                  en-US
inherit                 {resumeloadersettings}
filedevice              partition=C:
filepath                \hiberfil.sys
pae                     Yes
debugoptionenabled      No

Testov nˇ pamŘti syst‚mu Windows
---------------------
identifik tor           {memdiag}
device                  partition=C:
path                    \boot\memtest.exe
description             Windows Memory Diagnostic
locale                  en-US
inherit                 {globalsettings}
badmemoryaccess         Yes

Nastavenˇ slu§by EMS
------------
identifik tor           {emssettings}
bootems                 Yes

Nastavenˇ ladicˇho programu
-----------------
identifik tor           {dbgsettings}
debugtype               Serial
debugport               1
baudrate                115200

Chyby pamŘti RAM
-----------
identifik tor           {badmemory}

Glob lnˇ nastavenˇ
---------------
identifik tor           {globalsettings}
inherit                 {dbgsettings}
                        {emssettings}
                        {badmemory}

Nastavenˇ spouçtŘcˇho zavadŘźe
--------------------
identifik tor           {bootloadersettings}
inherit                 {globalsettings}
                        {hypervisorsettings}

Nastavenˇ hypervisoru
-------------------
identifik tor           {hypervisorsettings}
hypervisordebugtype     Serial
hypervisordebugport     1
hypervisorbaudrate      115200

Nastavenˇ zavadŘźe obnovenˇ
----------------------
identifik tor           {resumeloadersettings}
inherit                 {globalsettings}

Parametry zaýˇzenˇ
--------------
identifik tor           {7e0207a3-cd8b-11e1-80bc-d6103a5b222e}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\7e0207a2-cd8b-11e1-80bc-d6103a5b222e\boot.sdi

Parametry zaýˇzenˇ
--------------
identifik tor           {7e0207a7-cd8b-11e1-80bc-d6103a5b222e}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\7e0207a6-cd8b-11e1-80bc-d6103a5b222e\boot.sdi

Parametry zaýˇzenˇ
--------------
identifik tor           {7e0207ab-cd8b-11e1-80bc-d6103a5b222e}
description             Ramdisk Options
ramdisksdidevice        partition=C:
ramdisksdipath          \Recovery\7e0207aa-cd8b-11e1-80bc-d6103a5b222e\boot.sdi
PERGL
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#4 Příspěvek od PacandaMilan »

Myslíte, že teplota graf. karty je ok?
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#5 Příspěvek od Rudy »

Teplota nepřekračuje trvale 75°C a většinou se drží pod 70°C, což by mělo být v normě. Chladnější by sice být mohla, nicméně si nemyslím, že způsobuje vámi popisovaný problém. Spusťte teď tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#6 Příspěvek od PacandaMilan »

Kód: Vybrat vše

# AdwCleaner v5.201 - Logfile created 12/07/2016 at 19:30:34
# Updated 30/06/2016 by ToolsLib
# Database : 2016-07-12.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (X86)
# Username : PXXR - PXXR-PC
# Running from : C:\Users\PXXR\Downloads\adwcleaner_5.201.exe
# Option : Clean
# Support : https://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : SPDRIVER_1453.0.0.0

***** [ Folders ] *****

[-] Folder Deleted : C:\rei
[-] Folder Deleted : C:\ProgramData\SearchModule
[-] Folder Deleted : C:\ProgramData\CloudPrinter
[-] Folder Deleted : C:\ProgramData\SlimWare Utilities, Inc
[-] Folder Deleted : C:\ProgramData\Logic Handler
[-] Folder Deleted : C:\ProgramData\Quoteex
[-] Folder Deleted : C:\ProgramData\Quoteexs
[-] Folder Deleted : C:\ProgramData\5513df8c-0491-0
[-] Folder Deleted : C:\ProgramData\5513df8c-1ba7-1
[#] Folder Deleted : C:\ProgramData\Application Data\SearchModule
[#] Folder Deleted : C:\ProgramData\Application Data\CloudPrinter
[#] Folder Deleted : C:\ProgramData\Application Data\SlimWare Utilities, Inc
[#] Folder Deleted : C:\ProgramData\Application Data\Logic Handler
[#] Folder Deleted : C:\ProgramData\Application Data\Quoteex
[#] Folder Deleted : C:\ProgramData\Application Data\Quoteexs
[#] Folder Deleted : C:\ProgramData\Application Data\5513df8c-0491-0
[#] Folder Deleted : C:\ProgramData\Application Data\5513df8c-1ba7-1
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Healer
[-] Folder Deleted : C:\Users\Public\Documents\Downloaded Installers
[-] Folder Deleted : C:\Program Files\WeatherChickn
[-] Folder Deleted : C:\Program Files\badu
[-] Folder Deleted : C:\Program Files\ContentPush
[-] Folder Deleted : C:\Users\PXXR\AppData\Local\Temp\Reverse Page
[-] Folder Deleted : C:\Users\PXXR\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\PXXR\AppData\Roaming\OpenCandy
[-] Folder Deleted : C:\Users\PXXR\AppData\Roaming\System Healer

***** [ Files ] *****

[-] File Deleted : C:\Windows\system32\roboot.exe
[-] File Deleted : C:\Users\PXXR\AppData\Local\Temp\Utils.dll
[-] File Deleted : C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cikkigamncoobkmpenfdeniclmehdidh_0.localstorage
[-] File Deleted : C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cikkigamncoobkmpenfdeniclmehdidh
[-] File Deleted : C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pinhfkamckbogjgmbmdkdebbbpnmlaef_0.localstorage
[-] File Deleted : C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pinhfkamckbogjgmbmdkdebbbpnmlaef_0.localstorage-journal

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKCU\Software\Google\Chrome\Extensions\hegneaniplmfjcmohoclabblbahcbjoe
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hegneaniplmfjcmohoclabblbahcbjoe
[-] Key Deleted : HKCU\Software\Classes\TornTvDownloader.File
[-] Key Deleted : HKLM\SOFTWARE\Classes\TornTvDownloader.File
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKCU\Software\DriverTuner
[-] Key Deleted : HKCU\Software\DriverTuner_Init
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Ge-Force
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Key Deleted : HKLM\SOFTWARE\Ge-Force
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKU\.DEFAULT\Software\TornTv Downloader
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[-] Key Deleted : HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Ge-Force
[-] Key Deleted : HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\SavePass 1.1

***** [ Web browsers ] *****

[-] [C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : hegneaniplmfjcmohoclabblbahcbjoe

*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [6990 bytes] - [12/07/2016 19:30:34]
C:\AdwCleaner\AdwCleaner[R0].txt - [2588 bytes] - [29/03/2015 16:02:16]
C:\AdwCleaner\AdwCleaner[S0].txt - [2569 bytes] - [29/03/2015 16:09:47]
C:\AdwCleaner\AdwCleaner[S1].txt - [7537 bytes] - [12/07/2016 19:28:54]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [7282 bytes] ##########
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#7 Příspěvek od Rudy »

Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#8 Příspěvek od PacandaMilan »

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-07-2016 01
Ran by PXXR (administrator) on PXXR-PC (12-07-2016 20:04:12)
Running from C:\Users\PXXR\Desktop
Loaded Profiles: PXXR (Available Profiles: PXXR)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Windows\System32\PnkBstrA.exe
(Altrixsoft) C:\Program Files32\Hard Drive Inspector\HDInspector.exe
(AltrixSoft (hxxp://www.altrixsoft.com/)) C:\Program Files\Common Files\AltrixSoft\HDDInfoService\HDDSvc.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe
() C:\Users\PXXR\Desktop\memtest.exe
() C:\Users\PXXR\Downloads\ati-catalyst-drivers_Autodetekce.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Users\PXXR\AppData\Local\Temp\ati-catalyst-drivers\seznamSoftware.exe
() C:\Users\PXXR\AppData\Local\Temp\nsm6FE4.tmp\nsBB29.tmp
() C:\Users\PXXR\AppData\Roaming\Seznam.cz\szninstall.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [186640 2016-06-21] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [HDInspector.exe] => C:\Program Files32\Hard Drive Inspector\HDInspector.exe [3171584 2015-07-27] (Altrixsoft)
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\PXXR\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\PXXR\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: I - I:\Autorun.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {3296f2fe-480b-11e6-826c-001d7d921b23} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {6d2e1b04-8c1c-11e4-9afa-001d7d921b23} - I:\Install.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2014-12-26] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{5C44438F-FD10-4A6D-B5C4-0B3710CD06C6}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-05] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-05] (Oracle Corporation)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-07-01] ()
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-05] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-01]
CHR Extension: (Dokumenty Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-01]
CHR Extension: (Disk Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-01]
CHR Extension: (YouTube) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-01]
CHR Extension: (Vyhledávání Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-01]
CHR Extension: (Who Deleted Me) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiepnnbjenknnjgabbodaihlnkkpkgll [2016-07-01]
CHR Extension: (Tabulky Google) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-01]
CHR Extension: (AdBlock) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-05]
CHR Extension: (Downloads) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbcgifdaopbfflfhbcfeomijfbbcadi [2016-07-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-01]
CHR Extension: (Gmail) - C:\Users\PXXR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
S2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [890128 2016-06-21] (AVG Technologies CZ, s.r.o.)
R3 HDDSvc; C:\Program Files\Common Files\AltrixSoft\HDDInfoService\HDDSvc.exe [484600 2015-03-26] (AltrixSoft (hxxp://www.altrixsoft.com/))
S3 npggsvc; C:\Windows\system32\GameMon.des [3071632 2014-05-06] (INCA Internet Co., Ltd.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2014-12-25] ()
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [771456 2015-02-24] (Enigma Software Group USA, LLC.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-02-24] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2015-07-14] (LogMeIn, Inc.)
S3 RTCore32; C:\Program Files\MSI Afterburner\RTCore32.sys [5632 2015-04-24] () [File not signed]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-12 19:49 - 2016-07-12 19:51 - 09618770 _____ C:\Users\PXXR\Downloads\ati-catalyst-drivers_Autodetekce.exe
2016-07-12 19:48 - 2016-07-12 19:48 - 04952336 _____ (Advanced Micro Devices, Inc.) C:\Users\PXXR\Downloads\autodetectutility.exe
2016-07-12 19:23 - 2016-07-12 19:24 - 03712064 _____ C:\Users\PXXR\Downloads\adwcleaner_5.201.exe
2016-07-12 15:22 - 2016-07-12 15:33 - 156676640 _____ (Advanced Micro Devices, Inc.) C:\Users\PXXR\Downloads\13-9_win7_win8_32_dd_ccc_whql.exe
2016-07-12 15:21 - 2016-07-12 15:24 - 00000000 ____D C:\Program Files\MSI Afterburner
2016-07-12 15:21 - 2016-07-12 15:21 - 00001019 _____ C:\Users\PXXR\Desktop\MSI Afterburner.lnk
2016-07-12 15:21 - 2016-07-12 15:21 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-07-12 15:21 - 2016-07-12 15:21 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-07-12 15:21 - 2016-07-12 15:21 - 00000000 ____D C:\Program Files\RivaTuner Statistics Server
2016-07-12 15:20 - 2015-12-09 10:00 - 38325080 _____ C:\Users\PXXR\Desktop\MSIAfterburnerSetup420.exe
2016-07-12 15:17 - 2016-07-12 15:20 - 38094793 _____ C:\Users\PXXR\Downloads\MSIAfterburnerSetup.zip
2016-07-12 15:01 - 2016-07-12 15:01 - 00000896 _____ C:\Users\Public\Desktop\Hard Drive Inspector.lnk
2016-07-12 15:01 - 2016-07-12 15:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Drive Inspector Professional
2016-07-12 15:01 - 2016-07-12 15:01 - 00000000 ____D C:\ProgramData\AltrixSoft
2016-07-12 15:01 - 2016-07-12 15:01 - 00000000 ____D C:\Program Files32
2016-07-12 15:01 - 2016-07-12 15:01 - 00000000 ____D C:\Program Files\Common Files\AltrixSoft
2016-07-12 14:15 - 2016-07-12 14:15 - 10244896 _____ C:\Users\PXXR\Downloads\hddinsp.exe
2016-07-12 13:43 - 2016-07-12 14:12 - 08101056 _____ C:\Users\PXXR\Downloads\hdtune_255.exe
2016-07-12 13:19 - 2016-07-12 13:19 - 00015654 _____ C:\Users\PXXR\Downloads\MemTest.zip
2016-07-12 13:19 - 2016-05-26 16:25 - 00032768 _____ () C:\Users\PXXR\Desktop\memtest.exe
2016-07-12 12:57 - 2016-07-12 13:06 - 242029080 _____ (AMD Inc.) C:\Users\PXXR\Downloads\non-whql-32bit-radeon-software-crimson-16.4.1-win10-win8.1-win7-apr4.exe
2016-07-12 12:50 - 2016-07-12 12:50 - 04952336 _____ (Advanced Micro Devices, Inc.) C:\Users\PXXR\Desktop\autodetectutility.exe
2016-07-12 10:10 - 2016-07-12 10:10 - 00007058 _____ C:\Users\PXXR\Desktop\Addition.txt
2016-07-12 10:08 - 2016-07-12 20:04 - 00010031 _____ C:\Users\PXXR\Desktop\FRST.txt
2016-07-12 09:56 - 2016-07-12 20:04 - 00000000 ____D C:\FRST
2016-07-12 09:56 - 2016-07-12 09:56 - 00007921 _____ C:\Users\PXXR\Downloads\FRST.txt
2016-07-12 09:55 - 2016-07-12 09:56 - 01741312 _____ (Farbar) C:\Users\PXXR\Desktop\FRST.exe
2016-07-11 21:38 - 2016-07-11 21:39 - 01361206 _____ C:\Users\PXXR\Desktop\rawes.bmp
2016-07-11 21:33 - 2016-07-11 21:33 - 00001058 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2016-07-11 21:32 - 2016-07-11 21:32 - 01199856 _____ ( ) C:\Users\PXXR\Downloads\hwmonitor_1.28.exe
2016-07-11 21:32 - 2016-07-11 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-07-11 21:32 - 2016-07-11 21:32 - 00000000 ____D C:\Program Files\CPUID
2016-07-11 21:30 - 2016-07-11 21:30 - 00000000 ____D C:\Users\PXXR\AppData\Local\OCCT_-_Ocbase_-_Adrien_Me
2016-07-11 21:10 - 2016-07-12 15:22 - 00000000 ___HD C:\Windows\msdownld.tmp
2016-07-11 21:10 - 2016-07-12 15:21 - 00000000 ____D C:\Windows\system32\directx
2016-07-11 21:10 - 2016-07-11 21:10 - 00000900 _____ C:\Users\PXXR\Desktop\OCCT.lnk
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OCCT
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OCCT
2016-07-11 21:10 - 2016-07-11 21:10 - 00000000 ____D C:\Program Files\OCCTPT
2016-07-11 21:05 - 2016-07-11 21:06 - 14383688 _____ C:\Users\PXXR\Downloads\OCCTPT4.4.2.exe
2016-07-11 09:44 - 2016-07-11 09:45 - 00000000 ___HD C:\$WINDOWS.~BT
2016-07-11 09:28 - 2016-07-11 13:51 - 00273764 _____ C:\Windows\ntbtlog.txt
2016-07-10 23:42 - 2016-07-10 23:42 - 00000000 ____D C:\Users\PXXR\Desktop\backups
2016-07-10 23:40 - 2016-07-10 23:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\PXXR\Desktop\hijackthis.exe
2016-07-10 21:56 - 2016-07-10 21:56 - 00923006 _____ C:\Users\PXXR\Downloads\DEW_TOWN_DOGZ_-_Ma_Chanell_prod_Cony_Forsen[YoutubeConverter.Me].mp3.crdownload
2016-07-09 19:16 - 2016-07-09 19:16 - 00001613 _____ C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk
2016-07-09 19:16 - 2016-07-09 19:16 - 00001583 _____ C:\Users\PXXR\Desktop\Counter-Strike.lnk
2016-07-09 19:13 - 2016-07-11 09:12 - 00000000 ____D C:\Counter-Strike 1.6
2016-07-09 19:02 - 2016-07-09 19:13 - 372506411 _____ () C:\Users\PXXR\Downloads\CS16_install.exe
2016-07-09 15:39 - 2016-07-09 15:39 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\AVG
2016-07-09 15:38 - 2016-07-09 15:38 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\TuneUp Software
2016-07-09 15:36 - 2016-07-10 23:19 - 00000000 ___HD C:\$AVG
2016-07-09 15:32 - 2016-07-10 23:52 - 00000000 ____D C:\ProgramData\MFAData
2016-07-09 15:32 - 2016-07-09 15:32 - 00000000 ____D C:\Users\PXXR\AppData\Local\MFAData
2016-07-09 15:28 - 2016-07-12 19:31 - 00000000 ____D C:\Program Files\AVG
2016-07-09 15:26 - 2016-07-12 19:27 - 00000000 ____D C:\Users\PXXR\AppData\Local\AvgSetupLog
2016-07-09 15:26 - 2016-07-12 19:27 - 00000000 ____D C:\ProgramData\Avg
2016-07-09 15:26 - 2016-07-10 23:52 - 00000000 ____D C:\Users\PXXR\AppData\Local\Avg
2016-07-09 15:26 - 2016-07-09 15:26 - 03143504 _____ (AVG Technologies CZ, s.r.o.) C:\Users\PXXR\Downloads\AVG_Protection_Free_1064.exe
2016-07-09 12:58 - 2016-07-09 12:58 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-07-09 12:58 - 2016-07-09 12:58 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-07-09 12:43 - 2016-07-09 15:14 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-07-09 12:41 - 2016-07-09 15:14 - 00000000 ____D C:\Program Files\Common Files\Sunsing
2016-07-09 12:41 - 2016-07-09 12:41 - 07101952 _____ C:\Users\PXXR\AppData\Roaming\agent.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 00126464 _____ C:\Users\PXXR\AppData\Roaming\noah.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 00070176 _____ C:\Users\PXXR\AppData\Roaming\Config.xml
2016-07-09 12:41 - 2016-07-09 12:41 - 00018432 _____ C:\Users\PXXR\AppData\Roaming\Main.dat
2016-07-09 12:40 - 2016-07-09 12:41 - 00005568 _____ C:\Users\PXXR\AppData\Roaming\md.xml
2016-07-09 12:40 - 2016-07-09 12:40 - 01878389 _____ C:\Users\PXXR\AppData\Roaming\VoltTough.tst
2016-07-09 12:40 - 2016-07-09 12:40 - 00848437 _____ C:\Users\PXXR\AppData\Roaming\Lamlab.bin
2016-07-09 12:40 - 2016-07-09 12:40 - 00126464 _____ C:\Users\PXXR\AppData\Roaming\lobby.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 00072704 _____ C:\Users\PXXR\AppData\Roaming\Yeartax.tst
2016-07-09 12:40 - 2016-07-09 12:40 - 00054272 _____ C:\Users\PXXR\AppData\Roaming\ApplicationHosting.dat
2016-07-09 12:39 - 2016-07-09 12:39 - 00128512 _____ C:\Users\PXXR\AppData\Roaming\Installer.dat
2016-07-09 12:39 - 2016-07-09 12:39 - 00018432 _____ C:\Users\PXXR\AppData\Roaming\InstallationConfiguration.xml
2016-07-09 12:38 - 2016-07-09 01:44 - 00856080 ___SH C:\Users\PXXR\AppData\Roaming\iGcdTfJIIWFc
2016-07-09 12:38 - 2016-07-09 01:44 - 00036471 ___SH C:\Users\PXXR\AppData\Roaming\PQEACFcZWOIKfQYWgeW
2016-07-09 12:21 - 2016-07-09 12:21 - 00000000 ____D C:\ProgramData\AVAST Software
2016-07-09 11:10 - 2016-07-09 15:14 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\vlc
2016-07-09 11:09 - 2016-07-09 11:09 - 00000000 ____D C:\Program Files\VideoLAN
2016-07-08 14:10 - 2016-07-08 14:10 - 00000000 ____D C:\Users\PXXR\AppData\Local\SmartGuard
2016-07-07 22:41 - 2016-07-07 22:41 - 00000000 ____D C:\Users\PXXR\AppData\Local\GWX
2016-07-07 20:34 - 2009-04-06 09:08 - 00005174 _____ C:\Windows\system32\nppt9x.vxd
2016-07-07 20:34 - 2009-04-06 09:08 - 00004682 _____ (INCA Internet Co., Ltd.) C:\Windows\system32\npptNT2.sys
2016-07-07 20:23 - 2016-07-07 20:23 - 00000000 ____D C:\Program Files\NCsoft
2016-07-07 04:13 - 2016-07-07 10:15 - 00000000 ___SD C:\Windows\system32\GWX
2016-07-07 03:03 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-06 16:12 - 2016-06-06 17:26 - 00037096 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-07-06 16:12 - 2016-06-06 17:23 - 01001472 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-07-06 16:12 - 2016-06-03 15:04 - 01225216 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00461824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-07-06 16:12 - 2016-05-27 15:05 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-07-06 16:12 - 2016-05-22 15:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-07-06 16:12 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-07-06 16:12 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-07-06 16:12 - 2016-05-13 23:49 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-07-06 16:12 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-07-06 16:12 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-07-06 16:12 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-07-06 16:12 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-07-06 16:12 - 2016-04-09 08:54 - 12881408 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-07-06 16:12 - 2016-04-09 08:54 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-07-06 16:12 - 2016-04-09 07:44 - 02973184 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-07-06 16:12 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-07-06 16:12 - 2016-03-24 00:39 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-07-06 16:12 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-07-06 16:12 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-07-06 16:12 - 2016-02-09 11:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-07-06 16:12 - 2016-02-03 19:59 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-07-06 16:12 - 2016-02-02 20:48 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-07-06 16:12 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-07-06 16:12 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-07-06 16:12 - 2015-11-10 20:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-07-06 16:12 - 2015-11-10 20:39 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-07-06 16:12 - 2015-11-10 20:39 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-07-06 16:12 - 2015-07-10 19:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-07-06 16:12 - 2015-07-10 19:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2016-07-06 16:12 - 2015-07-10 19:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2016-07-06 16:12 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2016-07-06 16:12 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2016-07-06 16:12 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-07-06 16:12 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-07-06 16:12 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2016-07-06 16:11 - 2016-04-06 12:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-07-06 16:11 - 2016-03-18 00:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-07-06 16:11 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-07-06 16:11 - 2016-03-18 00:26 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-07-06 16:11 - 2016-03-18 00:26 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-07-06 16:11 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:36 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-07-06 16:11 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-07-06 16:11 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-07-06 16:11 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-07-06 16:11 - 2016-02-12 20:39 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-07-06 16:11 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-07-06 16:11 - 2016-02-12 20:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-07-06 16:11 - 2016-02-12 20:07 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-07-06 16:11 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-07-06 16:11 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-07-06 16:11 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-07-06 16:11 - 2016-02-12 20:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-07-06 16:11 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-07-06 16:11 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-07-06 16:11 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-07-06 16:11 - 2015-08-05 19:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-07-06 16:11 - 2015-06-11 19:57 - 00919552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-07-06 16:11 - 2015-06-11 19:15 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-07-06 16:11 - 2015-06-11 19:15 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2016-07-06 16:10 - 2016-05-12 17:22 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-07-06 16:10 - 2016-05-12 17:22 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-07-06 16:10 - 2016-05-12 17:18 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-07-06 16:10 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\winipsec.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-07-06 16:10 - 2016-05-12 17:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-07-06 16:10 - 2016-05-12 16:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-07-06 16:10 - 2016-05-12 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-07-06 16:10 - 2016-05-12 16:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-07-06 16:10 - 2016-05-12 16:52 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-07-06 16:10 - 2016-05-12 16:52 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-07-06 16:10 - 2016-05-12 16:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-07-06 16:10 - 2016-05-12 16:51 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-07-06 16:10 - 2016-05-12 16:51 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-07-06 16:10 - 2016-05-12 15:04 - 00370784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-07-06 16:10 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-07-06 16:10 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-07-06 16:10 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-07-06 16:10 - 2016-02-03 20:49 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-07-06 16:10 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-07-06 16:10 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-07-06 16:10 - 2015-10-29 19:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2016-07-06 16:10 - 2015-10-29 19:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2016-07-06 16:10 - 2015-10-29 19:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2016-07-06 16:10 - 2015-10-29 19:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2016-07-06 16:10 - 2015-10-13 18:31 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-07-06 16:10 - 2015-10-13 18:31 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-07-06 16:10 - 2015-10-13 06:50 - 00712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-07-06 16:10 - 2015-07-15 19:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-07-06 16:10 - 2015-07-15 19:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-07-06 16:10 - 2015-07-15 19:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-07-06 16:10 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2016-07-06 16:10 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-07-06 16:10 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2016-07-06 16:09 - 2016-03-16 01:53 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-07-06 16:09 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-07-06 16:09 - 2016-01-07 19:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-07-06 16:09 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-07-06 16:09 - 2015-07-22 19:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-07-06 16:09 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-07-06 16:09 - 2015-07-22 18:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-07-06 16:09 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-07-06 16:09 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-07-06 16:08 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-07-06 16:08 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-07-06 16:08 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-07-06 16:08 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2016-07-06 16:08 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2016-07-06 16:08 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2016-07-06 16:08 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-07-06 16:07 - 2016-05-12 17:18 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-07-06 16:07 - 2016-05-12 16:54 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-06 16:07 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-07-06 16:07 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-07-06 16:07 - 2016-04-09 08:57 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-07-06 16:07 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-07-06 16:07 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-07-06 16:07 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-07-06 16:07 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-07-06 16:07 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-07-06 16:07 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-07-06 16:07 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-07-06 16:07 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-07-06 16:07 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-07-06 16:07 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-07-06 16:07 - 2015-11-05 11:48 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-07-06 16:07 - 2015-11-03 20:56 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-07-06 16:07 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-07-06 16:07 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-07-06 16:07 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-07-06 16:07 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-07-06 16:07 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-07-06 16:07 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-07-06 16:07 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-07-06 16:06 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-07-06 16:06 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-07-06 16:06 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-07-06 16:06 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2016-07-06 16:06 - 2016-05-11 16:52 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-07-06 16:06 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-07-06 16:06 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-07-06 16:06 - 2016-04-09 07:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-07-06 16:06 - 2016-04-09 07:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-07-06 16:06 - 2016-04-09 07:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-07-06 16:06 - 2016-04-09 07:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-07-06 16:06 - 2016-04-09 07:40 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-07-06 16:06 - 2016-04-09 07:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-07-06 16:06 - 2016-03-24 00:39 - 00534816 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-07-06 16:06 - 2016-03-24 00:39 - 00470704 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-07-06 16:06 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-07-06 16:06 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-07-06 16:06 - 2015-07-15 04:55 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-07-06 16:06 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2016-07-06 16:06 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-07-06 16:05 - 2016-05-24 00:54 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-06 16:05 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-06 16:05 - 2016-05-21 00:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-07-06 16:05 - 2016-05-21 00:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-07-06 16:05 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-06 16:05 - 2016-05-20 23:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-07-06 16:05 - 2016-05-20 23:57 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-07-06 16:05 - 2016-05-20 23:56 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-07-06 16:05 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-07-06 16:05 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-06 16:05 - 2016-05-20 23:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-07-06 16:05 - 2016-05-20 23:48 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-07-06 16:05 - 2016-05-20 23:45 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-07-06 16:05 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-06 16:05 - 2016-05-20 23:44 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-07-06 16:05 - 2016-05-20 23:44 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-07-06 16:05 - 2016-05-20 23:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-07-06 16:05 - 2016-05-20 23:36 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-07-06 16:05 - 2016-05-20 23:33 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-07-06 16:05 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-06 16:05 - 2016-05-20 23:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-07-06 16:05 - 2016-05-20 23:26 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-07-06 16:05 - 2016-05-20 23:23 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-07-06 16:05 - 2016-05-20 23:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-06 16:05 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-06 16:05 - 2016-05-20 23:19 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-07-06 16:05 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-06 16:05 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-06 16:05 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-06 16:05 - 2016-05-20 23:09 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-06 16:05 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-06 16:05 - 2016-05-20 23:07 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-07-06 16:05 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-06 16:05 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-06 16:05 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-06 16:05 - 2016-04-14 17:38 - 00105192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-07-06 16:05 - 2016-04-14 17:33 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-07-06 16:05 - 2016-04-14 17:33 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2016-07-06 16:05 - 2016-04-14 17:11 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-07-06 16:05 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-07-06 16:05 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-07-06 16:05 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-07-06 16:05 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-07-06 16:05 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-07-06 16:05 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-07-06 16:05 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-07-06 16:05 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-07-06 16:05 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-07-06 16:05 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-07-06 16:05 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-07-06 16:05 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 03209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00728576 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-07-06 16:05 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-07-06 16:05 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-07-06 16:05 - 2015-12-08 23:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-07-06 16:05 - 2015-12-08 23:53 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-07-06 16:05 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-07-06 16:05 - 2015-12-08 23:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-07-06 16:05 - 2015-12-08 23:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-07-06 16:05 - 2015-12-08 23:11 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-07-06 16:05 - 2015-12-08 23:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-07-06 16:05 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-07-06 15:42 - 2016-01-11 20:54 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-07-06 15:36 - 2016-05-18 18:10 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-07-06 14:34 - 2016-07-06 14:34 - 00000359 _____ C:\Users\PXXR\Desktop\Počítač.lnk
2016-07-03 12:45 - 2016-07-03 12:45 - 00000000 ____D C:\Users\PXXR\Documents\League of Legends
2016-07-02 21:29 - 2016-07-02 21:31 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\avidemux
2016-07-02 21:29 - 2016-07-02 21:29 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Mozilla
2016-07-02 21:28 - 2016-07-02 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-07-02 21:28 - 2016-07-02 21:28 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2016-07-02 20:43 - 2016-07-02 20:43 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2016-07-02 20:43 - 2016-07-02 20:43 - 00000000 ____D C:\ProgramData\Pinnacle
2016-07-01 16:34 - 2016-07-01 16:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-07-01 16:34 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-07-01 16:34 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-07-01 16:34 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-07-01 16:31 - 2016-07-01 16:34 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Riot Games
2016-07-01 16:04 - 2016-07-01 16:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-07-01 14:24 - 2016-07-09 19:03 - 00000000 ____D C:\Users\PXXR\Desktop\Hudba

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-12 20:04 - 2014-12-25 20:17 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Seznam.cz
2016-07-12 20:02 - 2014-12-25 02:55 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-12 19:33 - 2015-04-01 20:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-12 19:31 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-12 19:30 - 2014-12-28 23:31 - 00000000 ____D C:\AdwCleaner
2016-07-12 19:30 - 2009-07-14 06:34 - 00009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-12 19:30 - 2009-07-14 06:34 - 00009904 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-12 19:23 - 2015-04-01 20:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-12 15:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\LiveKernelReports
2016-07-12 13:08 - 2015-02-22 12:35 - 00000000 ____D C:\AMD
2016-07-11 09:46 - 2014-12-25 09:56 - 00000000 ____D C:\Windows\Panther
2016-07-11 09:12 - 2014-12-26 02:52 - 00668160 _____ C:\Windows\system32\perfh005.dat
2016-07-11 09:12 - 2014-12-26 02:52 - 00140806 _____ C:\Windows\system32\perfc005.dat
2016-07-11 09:12 - 2014-12-25 01:58 - 01582262 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-11 09:12 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-07-10 23:40 - 2014-12-25 01:50 - 00000000 ____D C:\Users\PXXR\AppData\Local\VirtualStore
2016-07-09 18:33 - 2015-04-01 20:28 - 00002100 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-09 18:17 - 2015-03-27 17:30 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-07-09 15:16 - 2014-12-25 01:50 - 00000000 ____D C:\Users\PXXR
2016-07-09 15:14 - 2015-08-01 11:32 - 00000000 ____D C:\Program Files\CCleaner
2016-07-09 15:14 - 2015-04-01 19:07 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Winamp
2016-07-09 15:14 - 2015-04-01 19:07 - 00000000 ____D C:\Program Files\Winamp
2016-07-09 15:14 - 2014-12-25 02:32 - 00000000 ____D C:\Program Files\WinRAR
2016-07-09 15:14 - 2014-12-25 02:07 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\uTorrent
2016-07-09 15:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2016-07-08 12:33 - 2015-04-05 14:26 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\TeamViewer
2016-07-08 12:23 - 2014-12-25 02:42 - 00000000 ____D C:\Users\PXXR\AppData\Local\Google
2016-07-08 10:07 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-07-08 04:03 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2016-07-08 03:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\AppCompat
2016-07-07 20:34 - 2014-12-29 00:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCsoft
2016-07-07 20:22 - 2014-12-25 21:29 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-07-07 15:23 - 2014-06-30 12:10 - 00000000 ____D C:\Lineage II C6
2016-07-07 10:14 - 2009-07-14 06:33 - 00268128 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-07 04:13 - 2014-12-25 20:28 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-07-07 04:13 - 2014-12-25 20:28 - 00000000 ____D C:\Windows\system32\appraiser
2016-07-07 04:13 - 2009-07-14 09:50 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-07 04:13 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-07-07 04:13 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-07-07 03:52 - 2014-12-25 12:02 - 00000000 ____D C:\Windows\system32\MRT
2016-07-07 03:40 - 2014-12-25 12:02 - 139785240 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-06 13:32 - 2014-12-25 20:16 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\DAEMON Tools Lite
2016-07-03 08:54 - 2014-12-25 12:21 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\LolClient
2016-07-01 18:03 - 2014-12-25 02:55 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-07-01 18:03 - 2014-12-25 02:55 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-07-01 17:25 - 2015-04-01 20:28 - 00002112 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-01 16:34 - 2013-07-29 12:22 - 00000000 ____D C:\Riot Games
2016-07-01 16:14 - 2015-06-14 16:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2016-07-01 16:14 - 2015-04-05 12:44 - 00000000 ____D C:\Users\PXXR\AppData\Local\LogMeIn Hamachi
2016-07-01 16:14 - 2015-04-05 10:54 - 00000000 ____D C:\ProgramData\MySQL
2016-07-01 16:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2016-07-01 16:11 - 2015-04-05 11:02 - 00000000 ____D C:\Program Files\MySQL
2016-07-01 15:59 - 2015-08-08 11:26 - 00000000 ____D C:\Users\PXXR\AppData\Local\TomTom
2016-07-01 12:40 - 2015-02-24 19:13 - 00000000 ____D C:\Users\PXXR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2016-06-21 12:13 - 2014-12-25 10:16 - 00400552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2014-12-26 11:56 - 2014-12-26 11:56 - 0181736 _____ () C:\Program Files\Common Files\33121ce0-0a0b-4de3-9e5d-dc42a4029d81.dll
2016-07-09 12:41 - 2016-07-09 12:41 - 7101952 _____ () C:\Users\PXXR\AppData\Roaming\agent.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 0054272 _____ () C:\Users\PXXR\AppData\Roaming\ApplicationHosting.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 0070176 _____ () C:\Users\PXXR\AppData\Roaming\Config.xml
2016-07-09 12:38 - 2016-07-09 01:44 - 0856080 ___SH () C:\Users\PXXR\AppData\Roaming\iGcdTfJIIWFc
2016-07-09 12:39 - 2016-07-09 12:39 - 0018432 _____ () C:\Users\PXXR\AppData\Roaming\InstallationConfiguration.xml
2016-07-09 12:39 - 2016-07-09 12:39 - 0128512 _____ () C:\Users\PXXR\AppData\Roaming\Installer.dat
2016-07-09 12:40 - 2016-07-09 12:40 - 0848437 _____ () C:\Users\PXXR\AppData\Roaming\Lamlab.bin
2016-07-09 12:40 - 2016-07-09 12:40 - 0126464 _____ () C:\Users\PXXR\AppData\Roaming\lobby.dat
2016-07-09 12:41 - 2016-07-09 12:41 - 0018432 _____ () C:\Users\PXXR\AppData\Roaming\Main.dat
2016-07-09 12:40 - 2016-07-09 12:41 - 0005568 _____ () C:\Users\PXXR\AppData\Roaming\md.xml
2016-07-09 12:41 - 2016-07-09 12:41 - 0126464 _____ () C:\Users\PXXR\AppData\Roaming\noah.dat
2016-07-09 12:38 - 2016-07-09 01:44 - 0036471 ___SH () C:\Users\PXXR\AppData\Roaming\PQEACFcZWOIKfQYWgeW
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\PXXR\AppData\Roaming\UUFBB
2016-07-09 12:40 - 2016-07-09 12:40 - 1878389 _____ () C:\Users\PXXR\AppData\Roaming\VoltTough.tst
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\PXXR\AppData\Roaming\XGIU
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\PXXR\AppData\Roaming\XPEQGO
2016-07-09 12:40 - 2016-07-09 12:40 - 0072704 _____ () C:\Users\PXXR\AppData\Roaming\Yeartax.tst
2015-04-21 16:44 - 2015-04-21 16:44 - 0069441 _____ () C:\Users\PXXR\AppData\Local\26017E18_stp.CIS
2015-04-21 16:44 - 2015-04-21 16:44 - 0000293 _____ () C:\Users\PXXR\AppData\Local\26017E18_stp.CIS.part
2015-04-21 16:44 - 2015-04-21 16:44 - 0385602 _____ () C:\Users\PXXR\AppData\Local\5DEA8E28_stp.CIS
2015-04-21 16:44 - 2015-04-21 16:44 - 0000204 _____ () C:\Users\PXXR\AppData\Local\5DEA8E28_stp.CIS.part
2015-05-01 10:29 - 2015-05-01 10:29 - 0007605 _____ () C:\Users\PXXR\AppData\Local\Resmon.ResmonCfg
2015-10-02 20:24 - 2015-10-02 20:25 - 0000000 _____ () C:\Users\PXXR\AppData\Local\{B336064A-537E-4058-A3A8-516DE7426FEF}

Files to move or delete:
====================
C:\Users\PXXR\createfileassoc.exe
C:\Users\PXXR\error_report.exe
C:\Users\PXXR\libeay32.dll
C:\Users\PXXR\msvcp110.dll
C:\Users\PXXR\msvcr110.dll
C:\Users\PXXR\OverwolfTeamSpeakInstaller.exe
C:\Users\PXXR\package_inst.exe
C:\Users\PXXR\Qt5Core.dll
C:\Users\PXXR\Qt5Gui.dll
C:\Users\PXXR\Qt5Network.dll
C:\Users\PXXR\Qt5Sql.dll
C:\Users\PXXR\Qt5Widgets.dll
C:\Users\PXXR\quazip.dll
C:\Users\PXXR\ssleay32.dll
C:\Users\PXXR\ts3client_win32.exe
C:\Users\PXXR\update.exe


Some files in TEMP:
====================
C:\Users\PXXR\AppData\Local\Temp\13-9-legacy_vista_win7_32_dd_ccc_whql.exe
C:\Users\PXXR\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\PXXR\AppData\Local\Temp\comver.dll
C:\Users\PXXR\AppData\Local\Temp\install_flashplayer16x32ax_gtbd_chrd_dn_aaa_aih[1].exe
C:\Users\PXXR\AppData\Local\Temp\libeay32.dll
C:\Users\PXXR\AppData\Local\Temp\listicka-partner-13415-1.1.2-offline.exe
C:\Users\PXXR\AppData\Local\Temp\MouseKeyboardCenterx86_1033.exe
C:\Users\PXXR\AppData\Local\Temp\msvcr120.dll
C:\Users\PXXR\AppData\Local\Temp\Quarantine.exe
C:\Users\PXXR\AppData\Local\Temp\Runner2.exe
C:\Users\PXXR\AppData\Local\Temp\Runner4.exe
C:\Users\PXXR\AppData\Local\Temp\scpC814.tmp.exe
C:\Users\PXXR\AppData\Local\Temp\sqlite3.dll
C:\Users\PXXR\AppData\Local\Temp\vsdel.exe
C:\Users\PXXR\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-07-07 00:51

==================== End of FRST.txt ============================
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#9 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: I - I:\Autorun.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {3296f2fe-480b-11e6-826c-001d7d921b23} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {6d2e1b04-8c1c-11e4-9afa-001d7d921b23} - I:\Install.exe
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\PXXR\createfileassoc.exe
C:\Users\PXXR\error_report.exe
C:\Users\PXXR\libeay32.dll
C:\Users\PXXR\msvcp110.dll
C:\Users\PXXR\msvcr110.dll
C:\Users\PXXR\OverwolfTeamSpeakInstaller.exe
C:\Users\PXXR\package_inst.exe
C:\Users\PXXR\Qt5Core.dll
C:\Users\PXXR\Qt5Gui.dll
C:\Users\PXXR\Qt5Network.dll
C:\Users\PXXR\Qt5Sql.dll
C:\Users\PXXR\Qt5Widgets.dll
C:\Users\PXXR\quazip.dll
C:\Users\PXXR\ssleay32.dll
C:\Users\PXXR\ts3client_win32.exe
C:\Users\PXXR\update.exe
C:\Users\PXXR\AppData\Local\Temp
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#10 Příspěvek od PacandaMilan »

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x86) Version: 10-07-2016 01
Ran by PXXR (2016-07-12 21:14:04) Run:1
Running from C:\Users\PXXR\Desktop
Loaded Profiles: PXXR (Available Profiles: PXXR)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: I - I:\Autorun.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {3296f2fe-480b-11e6-826c-001d7d921b23} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\...\MountPoints2: {6d2e1b04-8c1c-11e4-9afa-001d7d921b23} - I:\Install.exe
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\PXXR\createfileassoc.exe
C:\Users\PXXR\error_report.exe
C:\Users\PXXR\libeay32.dll
C:\Users\PXXR\msvcp110.dll
C:\Users\PXXR\msvcr110.dll
C:\Users\PXXR\OverwolfTeamSpeakInstaller.exe
C:\Users\PXXR\package_inst.exe
C:\Users\PXXR\Qt5Core.dll
C:\Users\PXXR\Qt5Gui.dll
C:\Users\PXXR\Qt5Network.dll
C:\Users\PXXR\Qt5Sql.dll
C:\Users\PXXR\Qt5Widgets.dll
C:\Users\PXXR\quazip.dll
C:\Users\PXXR\ssleay32.dll
C:\Users\PXXR\ts3client_win32.exe
C:\Users\PXXR\update.exe
C:\Users\PXXR\AppData\Local\Temp
End
*****************

"HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\I" => key removed successfully.
"HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3296f2fe-480b-11e6-826c-001d7d921b23}" => key removed successfully.
HKCR\CLSID\{3296f2fe-480b-11e6-826c-001d7d921b23} => key not found. 
"HKU\S-1-5-21-3083330044-1479157397-2373799822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6d2e1b04-8c1c-11e4-9afa-001d7d921b23}" => key removed successfully.
HKCR\CLSID\{6d2e1b04-8c1c-11e4-9afa-001d7d921b23} => key not found. 
"HKLM\SOFTWARE\Policies\Google" => key removed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Users\PXXR\createfileassoc.exe => moved successfully
C:\Users\PXXR\error_report.exe => moved successfully
C:\Users\PXXR\libeay32.dll => moved successfully
C:\Users\PXXR\msvcp110.dll => moved successfully
C:\Users\PXXR\msvcr110.dll => moved successfully
C:\Users\PXXR\OverwolfTeamSpeakInstaller.exe => moved successfully
C:\Users\PXXR\package_inst.exe => moved successfully
C:\Users\PXXR\Qt5Core.dll => moved successfully
C:\Users\PXXR\Qt5Gui.dll => moved successfully
C:\Users\PXXR\Qt5Network.dll => moved successfully
C:\Users\PXXR\Qt5Sql.dll => moved successfully
C:\Users\PXXR\Qt5Widgets.dll => moved successfully
C:\Users\PXXR\quazip.dll => moved successfully
C:\Users\PXXR\ssleay32.dll => moved successfully
C:\Users\PXXR\ts3client_win32.exe => moved successfully
C:\Users\PXXR\update.exe => moved successfully

"C:\Users\PXXR\AppData\Local\Temp" folder move:

Could not move "C:\Users\PXXR\AppData\Local\Temp" => Scheduled to move on reboot.


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-07-12 21:18:06)

C:\Users\PXXR\AppData\Local\Temp => moved successfully

==== End of Fixlog 21:18:06 ====
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#11 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#12 Příspěvek od PacandaMilan »

Řek bych že pc teď vydržel při větším výkonu se na nějakou dobu neseknout, bohužel po cca hodině a půl se zas zastavil.
Myslíte že bych měl zkusit reinstallovat windowsy?

//EDIT: teď už cca 2 hodiny šlape normálně, což předtím nebylo možný... uvidíme zda se zas sekne.
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#13 Příspěvek od Rudy »

Jestli se znovu zasekne, zkontrolujte disk. Stáhněte, nainstalujte a spusťte CrystaldiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Uživatelský avatar
PacandaMilan
Návštěvník
Návštěvník
Příspěvky: 171
Registrován: 04 úno 2011 19:55
Bydliště: Znojmo

Re: Zamrazení pc

#14 Příspěvek od PacandaMilan »

Kolem poledne jsem windows reinstaloval a doteď se ani jednou nezasekl.
Takže nejspíš vyřešeno, děkuji za pomoc. :idea:

Pokud nastane chyba tak napíšu a testnu ten disk.
PERGL
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119402
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zamrazení pc

#15 Příspěvek od Rudy »

OK. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Všehochuť“