VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zaížení HDD 100%

https://forum.viry.cz:443/viewtopic.php?t=151739

Stránka 1 z 2

Zaížení HDD 100%

Napsal: 27 bře 2017 22:59
od mildahk
Dobrý den. Ntb má zatížený HDD na 100% nejde s tím pracovat .
Zasílám log FRST pořízený v nouzovém režimu.
Děkuji za pomoc.



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Frantisek (administrator) on PC2 (27-03-2017 23:46:11)
Running from C:\Users\Frantisek\Desktop
Loaded Profiles: Frantisek (Available Profiles: Frantisek)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\HelpPane.exe
(forum.viry.cz) C:\Users\Frantisek\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\System32\wbem\WMIADAP.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-09-06] (Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [714992 2016-05-13] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [352648 2016-12-26] (RealNetworks, Inc.)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2290016 2015-09-01] (acer)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [BingSvc] => C:\Users\Frantisek\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [PCSpeedUp] => C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe [354760 2015-08-14] (Optimal Software s.r.o.) <===== ATTENTION
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe [2412952 2015-09-30] ()
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify Web Helper] => C:\Users\Frantisek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify] => C:\Users\Frantisek\AppData\Roaming\Spotify\Spotify.exe [8387696 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\RunOnce: [Application Restart #0] => C:\Users\Frantisek\AppData\Roaming\Seznam Browser\Seznam.cz.exe [828600 2017-03-15] (Seznam.cz)
HKU\S-1-5-18\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-19] (Skype Technologies S.A.)
IFEO\bsdiff_patch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\bstgamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\comscore.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\convert.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\crashsender1402.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\dbclean.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffmpeg.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffprobe.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\fixrjb.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole-wt.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelicensing.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\glcheck.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\hd-installchecker.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\msgtest.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\nativeuserproxy.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\park.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\patchhelper.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\proclaunch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\r1puninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realcleaner.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realconverter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realjbox.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realonemessagecenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realplay.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realsched.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realtrimmer.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rndevicedbbuilder.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rnxproc.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rphelperapp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rpsystray.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rtcreator.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\screenorientationx64.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\segmenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\setup.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninstall.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\upgrdhlp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\wtapp_protocolhandler.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2016-12-26]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-12-21]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 62.240.163.170
Tcpip\..\Interfaces\{1b5e622a-9a51-4248-b9dd-b42314b65ed3}: [DhcpNameServer] 8.8.8.8 62.240.163.170
Tcpip\..\Interfaces\{c4d88938-920d-4723-afc2-18d7dd58dc29}: [DhcpNameServer] 8.8.8.8 62.240.163.170

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=14368 ... NL0V5NL0V5
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.mystartsearch.com/?type=hp&ts=14368 ... NL0V5NL0V5
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hp&ts=14368 ... NL0V5NL0V5
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1 ... earchTerms}
SearchScopes: HKLM-x32 -> {a37187ba-df01-4b27-a7c9-a645524b0517} URL = hxxp://int.search.tb.ask.com/search/GGmain.jhtml?p2=^BYM^xdm002^YYA^cz&ptb=9E46C04C-88DE-4F37-9FF5-D7AB8275161B&ind=2015092701&n=781bdfdd&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 0606296DDCD01D5672AEEB208418151E URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 376E4C472E903713EE23F0C884E88710 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 9718EE986FE10BFEFDD205D7CCE5EDCE URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> C19BE935622B379A35226BC19F929B46 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> {6C7A1DE6-080D-40C0-9EEB-5C1996772B16} URL = hxxp://www.search.ask.com/web?tpid=REL3SP-SAT& ... psv=&pt=tb
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> {a37187ba-df01-4b27-a7c9-a645524b0517} URL = hxxp://int.search.tb.ask.com/search/GGmain.jhtml?p2=^BYM^xdm002^YYA^cz&ptb=9E46C04C-88DE-4F37-9FF5-D7AB8275161B&ind=2015092701&n=781bdfdd&psa=&st=sb&searchfor={searchTerms}
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2016-11-11] (RealDownloader)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
BHO-x32: No Name -> {1d970ed5-3eda-438d-bffd-715931e2775b} -> No File
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2016-11-11] (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKU\.DEFAULT -> No Name - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - No File
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> hxxp://www.seznam.cz/?clid=6826

FireFox:
========
FF ProfilePath: C:\Users\Frantisek\AppData\Roaming\Mozilla\Firefox\Profiles\ru03g6f6.default-1490031142948 [2017-03-22]
FF Homepage: Mozilla\Firefox\Profiles\ru03g6f6.default-1490031142948 -> hxxps://www.seznam.cz/
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [searchffv2@gmail.com] - C:\Users\Frantisek\AppData\Roaming\Mozilla\Firefox\Profiles\5mbv7fjs.default\extensions\searchffv2@gmail.com => not found
FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Frantisek\AppData\Roaming\Mozilla\Firefox\Profiles\5mbv7fjs.default\extensions\sweetsearch@gmail.com => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-12-01]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.2.15\coFFPlgn
FF Extension: (Norton Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.2.15\coFFPlgn [2017-03-27] [not signed]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.6.161 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2016-12-26] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.6.161 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-12-26] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> search.ask.com/?gct=hp
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default [2017-03-22]
CHR Extension: (Ask Search) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaejaghnbcjilindpkgmcmdflpgjf [2015-11-13]
CHR Extension: (Prezentace Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-16]
CHR Extension: (Dokumenty Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-16]
CHR Extension: (Disk Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Volání přes Skype) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2015-12-31]
CHR Extension: (YouTube) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Vyhledávání Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (YOU.DJ app) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defekohaofmambflfpfoojkmfdpcbgko [2016-10-29]
CHR Extension: (Bing) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-09-01]
CHR Extension: (Tabulky Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Tlačítko Uložit) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-02-27]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2017-02-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-14]
CHR Extension: (Gmail) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-09]
CHR Profile: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\System Profile [2017-03-22]
CHR HKLM\...\Chrome\Extension: [aaaaaejaghnbcjilindpkgmcmdflpgjf] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\Exts\Chrome.crx [2016-07-11]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKU\S-1-5-21-624710310-1573440917-3902535481-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [aaaaaejaghnbcjilindpkgmcmdflpgjf] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\Exts\Chrome.crx [2016-07-11]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
S2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
S2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [328624 2015-10-28] (Intel Corporation)
S2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
S2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
S2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
S2 NS; C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe [282016 2015-07-16] (Symantec Corporation)
S2 PCSUService; C:\Program Files (x86)\Zrychleni Pocitace\PCSUService.exe [445384 2015-08-14] (Optimal Software s.r.o.)
S2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [35104 2016-11-11] ()
S2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [987408 2016-12-26] (RealNetworks, Inc.)
S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 SCService; C:\Program Files (x86)\Zrychleni Pocitace\SpeedCheckerService.exe [45000 2015-08-18] (Optimal Software s.r.o.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2017-03-04] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\BASHDefs\20170314.001\BHDrvx64.sys [1831064 2017-03-14] (Symantec Corporation)
S3 ccSet_NS; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
S3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497392 2016-07-09] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156912 2016-06-21] (Symantec Corporation)
R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [173384 2014-04-08] (ELAN Microelectronic Corp.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [111336 2014-04-28] (GenesysLogic)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Intel Corporation)
S3 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\IPSDefs\20170316.001\IDSvia64.sys [1038024 2017-03-16] (Symantec Corporation)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
S0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
S1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [79752 2015-12-01] (AO Kaspersky Lab)
S2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78200 2015-12-02] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
S3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [185112 2017-03-13] (AO Kaspersky Lab)
S1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [244448 2017-03-13] (AO Kaspersky Lab)
S1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1000160 2017-03-13] (AO Kaspersky Lab)
S1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [51288 2016-05-05] (AO Kaspersky Lab)
S3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
S3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
S1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [87984 2016-08-16] (AO Kaspersky Lab)
S1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [116448 2017-03-13] (AO Kaspersky Lab)
S1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [194440 2015-12-03] (AO Kaspersky Lab)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2013-12-10] (Intel Corporation)
S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
S3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\VirusDefs\20170317.004\ENG64.SYS [138912 2017-03-17] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\VirusDefs\20170317.004\EX64.SYS [2151072 2017-03-17] (Symantec Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
S3 RRNetCap; C:\WINDOWS\system32\DRIVERS\rrnetcap.sys [37480 2013-07-15] (RapidSolution Software AG)
S3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [615728 2016-01-16] (Realtek Semiconductor Corporation)
S3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [3445248 2015-10-30] (Realtek Semiconductor Corporation )
S3 SRTSP; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SRTSP64.SYS [926448 2015-07-11] (Symantec Corporation)
S3 SRTSPX; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation)
S3 SymEFASI; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SYMEFASI64.SYS [1620720 2015-07-11] (Symantec Corporation)
S4 SymELAM; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SymELAM.sys [24192 2015-07-11] (Symantec Corporation)
S3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [111344 2016-07-11] (Symantec Corporation)
S3 SymIRON; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation)
S3 SymNetS; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SYMNETS.SYS [576248 2015-07-11] (Symantec Corporation)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 cpuz134; \??\C:\Users\FRANTI~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-25 03:48 - 2022-03-25 03:48 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC1.dat
2022-03-25 03:48 - 2022-03-25 03:48 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC0.dat
2022-03-25 02:22 - 2022-03-25 02:22 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTEQEX1.dat
2022-03-25 02:22 - 2022-03-25 02:22 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTEQEX0.dat
2017-03-27 23:46 - 2017-03-27 23:47 - 00032522 _____ C:\Users\Frantisek\Desktop\FRST.txt
2017-03-27 23:46 - 2017-03-27 23:46 - 00000000 ____D C:\FRST
2017-03-27 23:45 - 2017-03-27 23:43 - 02424832 _____ (Farbar) C:\Users\Frantisek\Desktop\FRST64.exe
2017-03-27 23:45 - 2017-01-25 20:12 - 00112640 _____ (forum.viry.cz) C:\Users\Frantisek\Desktop\FRSTLauncher.exe
2017-03-27 16:22 - 2017-03-27 16:22 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-03-27 15:38 - 2017-03-27 15:38 - 00043643 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327153719
2017-03-27 15:35 - 2017-03-27 15:35 - 00000000 ____D C:\WINDOWS\SysWOW64\%Data%
2017-03-27 14:50 - 2017-03-27 14:50 - 00031853 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327144942
2017-03-27 11:55 - 2017-03-27 11:55 - 00204041 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327115412
2017-03-27 11:05 - 2017-03-27 11:05 - 00057805 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327110410
2017-03-27 11:02 - 2017-03-27 23:47 - 00435562 _____ C:\WINDOWS\ntbtlog.txt
2017-03-27 10:15 - 2017-03-27 10:15 - 00054270 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327101442
2017-03-22 19:22 - 2017-03-22 19:22 - 00031872 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322182113
2017-03-22 18:33 - 2017-03-22 19:20 - 00055481 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322173242
2017-03-22 18:11 - 2017-03-22 18:13 - 09274608 _____ (Piriform Ltd) C:\Users\Frantisek\Downloads\ccsetup528.exe
2017-03-22 17:42 - 2017-03-22 17:42 - 00059066 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322164119
2017-03-22 17:10 - 2017-03-22 17:10 - 00035422 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322160916
2017-03-20 19:32 - 2017-03-20 19:32 - 00000000 ____D C:\Users\Frantisek\Desktop\Původní data aplikace Firefox
2017-03-20 19:31 - 2017-03-22 17:36 - 00000000 ____D C:\Users\Frantisek\AppData\LocalLow\Mozilla
2017-03-20 19:29 - 2017-03-20 19:29 - 00001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-20 19:29 - 2017-03-20 19:29 - 00000997 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-03-20 19:29 - 2017-03-20 19:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-03-20 19:29 - 2017-03-20 19:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-20 19:26 - 2017-03-20 19:28 - 47508936 _____ C:\Users\Frantisek\Downloads\Firefox Setup 52.0.1.exe
2017-03-20 18:20 - 2017-03-20 18:20 - 01222441 _____ (FTweak, Inc. ) C:\Users\Frantisek\Documents\fcleaner.exe
2017-03-20 18:17 - 2017-03-20 18:17 - 08813488 _____ (Piriform Ltd) C:\Users\Frantisek\Documents\ccsetup526 (1).exe
2017-03-20 17:18 - 2017-03-20 17:18 - 01129376 _____ (Google Inc.) C:\Users\Frantisek\Downloads\ChromeSetup.exe
2017-03-20 15:44 - 2017-03-22 18:21 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Seznam Browser
2017-03-16 18:35 - 2017-03-04 09:12 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:33 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-16 18:35 - 2017-03-04 08:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-16 18:35 - 2017-03-04 07:58 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-16 18:35 - 2017-03-04 07:19 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2017-03-16 18:35 - 2017-03-04 07:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-16 18:35 - 2017-03-04 07:16 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-16 18:35 - 2017-03-04 07:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2017-03-16 18:35 - 2017-03-04 07:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-03-16 18:35 - 2017-03-04 07:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-03-16 18:35 - 2017-03-04 07:03 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-03-16 18:35 - 2017-03-04 06:51 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-03-16 18:35 - 2017-03-04 06:47 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-16 18:35 - 2017-03-04 06:45 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-16 18:35 - 2017-03-04 06:42 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-03-16 18:35 - 2017-03-04 06:42 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-16 18:35 - 2017-03-04 06:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2017-03-16 18:35 - 2017-03-04 06:31 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-16 18:35 - 2017-03-04 06:31 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-16 18:35 - 2017-03-04 06:30 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-16 18:35 - 2017-03-04 06:29 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-03-16 18:35 - 2017-03-04 06:28 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-03-16 18:35 - 2017-03-04 06:27 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-16 18:35 - 2017-03-04 06:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-16 18:35 - 2017-03-04 06:23 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-16 18:35 - 2017-03-04 06:21 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-16 18:35 - 2017-03-04 06:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-03-16 18:35 - 2017-03-04 06:18 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2017-03-16 18:35 - 2017-03-04 06:08 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-16 18:35 - 2017-03-04 05:59 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-16 18:35 - 2017-03-04 05:55 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-16 18:35 - 2017-03-04 05:54 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-16 18:35 - 2017-03-04 05:54 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-16 18:35 - 2017-03-04 05:44 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-16 18:35 - 2017-03-04 05:38 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-16 18:35 - 2017-03-04 05:35 - 05326336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-16 18:35 - 2017-03-04 05:35 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-16 18:35 - 2017-03-04 05:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-16 18:35 - 2017-03-04 05:31 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-16 18:35 - 2017-03-04 05:31 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-03-16 18:35 - 2017-03-04 05:30 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-16 18:35 - 2017-03-04 05:29 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-16 18:35 - 2017-03-04 05:03 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-16 18:34 - 2017-03-04 09:39 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-16 18:34 - 2017-03-04 09:39 - 00602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-03-16 18:34 - 2017-03-04 09:29 - 00535088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-16 18:34 - 2017-03-04 09:27 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-03-16 18:34 - 2017-03-04 08:43 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-16 18:34 - 2017-03-04 08:34 - 01824272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-03-16 18:34 - 2017-03-04 08:33 - 02942536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 04075184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-16 18:34 - 2017-03-04 08:29 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-16 18:34 - 2017-03-04 08:25 - 00268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-16 18:34 - 2017-03-04 07:57 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-16 18:34 - 2017-03-04 07:55 - 01370224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-03-16 18:34 - 2017-03-04 07:41 - 02448752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-16 18:34 - 2017-03-04 07:41 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2017-03-16 18:34 - 2017-03-04 07:40 - 00473616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-03-16 18:34 - 2017-03-04 07:40 - 00467440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-03-16 18:34 - 2017-03-04 07:27 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-16 18:34 - 2017-03-04 07:15 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2017-03-16 18:34 - 2017-03-04 07:06 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2017-03-16 18:34 - 2017-03-04 07:06 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.dll
2017-03-16 18:34 - 2017-03-04 07:00 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-03-16 18:34 - 2017-03-04 06:57 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-16 18:34 - 2017-03-04 06:57 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-16 18:34 - 2017-03-04 06:57 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\feclient.dll
2017-03-16 18:34 - 2017-03-04 06:56 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-03-16 18:34 - 2017-03-04 06:55 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-03-16 18:34 - 2017-03-04 06:49 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-16 18:34 - 2017-03-04 06:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-03-16 18:34 - 2017-03-04 06:48 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apds.dll
2017-03-16 18:34 - 2017-03-04 06:46 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-03-16 18:34 - 2017-03-04 06:45 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-03-16 18:34 - 2017-03-04 06:45 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-16 18:34 - 2017-03-04 06:37 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-03-16 18:34 - 2017-03-04 06:33 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-16 18:34 - 2017-03-04 06:33 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-03-16 18:34 - 2017-03-04 06:32 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-16 18:34 - 2017-03-04 06:32 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-03-16 18:34 - 2017-03-04 06:29 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-16 18:34 - 2017-03-04 06:26 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-16 18:34 - 2017-03-04 06:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-16 18:34 - 2017-03-04 06:26 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-16 18:34 - 2017-03-04 06:25 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-16 18:34 - 2017-03-04 06:22 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-16 18:34 - 2017-03-04 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-16 18:34 - 2017-03-04 06:19 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-16 18:34 - 2017-03-04 06:15 - 01986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-16 18:34 - 2017-03-04 06:14 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-16 18:34 - 2017-03-04 06:13 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2017-03-16 18:34 - 2017-03-04 06:05 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2017-03-16 18:34 - 2017-03-04 06:03 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2017-03-16 18:34 - 2017-03-04 06:01 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2017-03-16 18:34 - 2017-03-04 06:00 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-16 18:34 - 2017-03-04 05:58 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2017-03-16 18:34 - 2017-03-04 05:57 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-16 18:34 - 2017-03-04 05:57 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-16 18:34 - 2017-03-04 05:57 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-16 18:34 - 2017-03-04 05:52 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-16 18:34 - 2017-03-04 05:52 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-16 18:34 - 2017-03-04 05:51 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-16 18:34 - 2017-03-04 05:51 - 09921024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-16 18:34 - 2017-03-04 05:41 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-16 18:34 - 2017-03-04 05:36 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-16 18:34 - 2017-03-04 05:31 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-16 18:33 - 2017-03-04 10:01 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-03-16 18:33 - 2017-03-04 09:54 - 00989528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-16 18:33 - 2017-03-04 09:18 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-16 18:33 - 2017-03-04 09:18 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-16 18:33 - 2017-03-04 09:12 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-16 18:33 - 2017-03-04 09:07 - 01040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-16 18:33 - 2017-03-04 09:06 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-03-16 18:33 - 2017-03-04 08:00 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-16 18:33 - 2017-03-04 07:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-16 18:33 - 2017-03-04 07:37 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-03-16 18:33 - 2017-03-04 07:35 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-16 18:33 - 2017-03-04 07:19 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-03-16 18:33 - 2017-03-04 07:11 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-03-16 18:33 - 2017-03-04 07:10 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-16 18:33 - 2017-03-04 07:04 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-03-16 18:33 - 2017-03-04 06:57 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-16 18:33 - 2017-03-04 06:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-03-16 18:33 - 2017-03-04 06:53 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-16 18:33 - 2017-03-04 06:41 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-16 18:33 - 2017-03-04 06:23 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-16 18:33 - 2017-03-04 05:31 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-16 18:33 - 2017-03-04 05:20 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-03-16 18:33 - 2017-03-04 05:19 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-16 18:32 - 2017-03-04 09:48 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-16 18:32 - 2017-03-04 09:19 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-16 18:32 - 2017-03-04 09:19 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-16 18:32 - 2017-03-04 08:09 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2017-03-16 18:32 - 2017-03-04 08:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2017-03-16 18:32 - 2017-03-04 08:01 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-16 18:32 - 2017-03-04 07:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2017-03-16 18:32 - 2017-03-04 07:49 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-03-16 18:32 - 2017-03-04 07:41 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-16 18:32 - 2017-03-04 07:27 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-16 18:32 - 2017-03-04 07:20 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-16 18:32 - 2017-03-04 07:19 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-16 18:32 - 2017-03-04 07:19 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-16 18:32 - 2017-03-04 07:17 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-16 18:32 - 2017-03-04 07:17 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-03-16 18:32 - 2017-03-04 07:16 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-16 18:32 - 2017-03-04 07:13 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-16 18:32 - 2017-03-04 07:08 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-16 18:32 - 2017-03-04 07:03 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-03-16 18:32 - 2017-03-04 07:02 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-03-16 18:32 - 2017-03-04 06:35 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-03-16 18:32 - 2017-03-04 06:24 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2017-03-16 18:32 - 2017-03-04 05:26 - 12590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-16 18:31 - 2017-03-04 07:08 - 00852992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-16 18:30 - 2017-03-04 10:13 - 01997832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-16 18:30 - 2017-03-04 10:13 - 00800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-03-16 18:30 - 2017-03-04 09:19 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-16 18:30 - 2017-03-04 09:18 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-16 18:30 - 2017-03-04 09:08 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-16 18:30 - 2017-03-04 09:08 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-16 18:30 - 2017-03-04 08:16 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-16 18:30 - 2017-03-04 08:09 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-16 18:30 - 2017-03-04 07:47 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-03-16 18:30 - 2017-03-04 07:44 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2017-03-16 18:30 - 2017-03-04 07:34 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-03-16 18:30 - 2017-03-04 07:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2017-03-16 18:30 - 2017-03-04 07:31 - 00185856 _____ C:\WINDOWS\system32\ism32k.dll
2017-03-16 18:30 - 2017-03-04 07:29 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-16 18:30 - 2017-03-04 07:29 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-03-16 18:30 - 2017-03-04 07:23 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-16 18:30 - 2017-03-04 07:15 - 00695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-16 18:30 - 2017-03-04 07:11 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-03-16 18:30 - 2017-03-04 07:09 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2017-03-16 18:30 - 2017-03-04 07:08 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-03-16 18:30 - 2017-03-04 07:04 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-16 18:30 - 2017-03-04 07:03 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-03-16 18:30 - 2017-03-04 07:02 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-16 18:30 - 2017-03-04 07:00 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-16 18:30 - 2017-03-04 06:53 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-16 18:30 - 2017-03-04 06:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2017-03-16 18:30 - 2017-03-04 06:32 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-03-16 18:30 - 2017-03-04 06:25 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanpref.dll
2017-03-16 18:30 - 2017-03-04 06:18 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-16 18:30 - 2017-03-04 06:00 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-16 18:30 - 2017-03-04 05:59 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-16 18:30 - 2017-03-04 05:52 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-03-16 18:30 - 2017-03-04 05:36 - 03428352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-16 18:30 - 2017-03-04 05:36 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-16 18:30 - 2017-03-04 05:34 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-16 18:30 - 2017-03-04 05:28 - 14258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-16 18:29 - 2017-03-04 09:56 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-16 18:29 - 2017-03-04 09:49 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-03-16 18:29 - 2017-03-04 09:12 - 03695152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-16 18:29 - 2017-03-04 08:29 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-16 18:29 - 2017-03-04 08:27 - 00431456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-16 18:29 - 2017-03-04 08:24 - 00420704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-16 18:29 - 2017-03-04 08:17 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-16 18:29 - 2017-03-04 08:17 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-16 18:29 - 2017-03-04 07:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-16 18:29 - 2017-03-04 07:59 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2017-03-16 18:29 - 2017-03-04 07:58 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-03-16 18:29 - 2017-03-04 07:57 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2017-03-16 18:29 - 2017-03-04 07:27 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-03-16 18:29 - 2017-03-04 07:23 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-03-16 18:29 - 2017-03-04 07:22 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-03-16 18:29 - 2017-03-04 07:19 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-03-16 18:29 - 2017-03-04 07:16 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-16 18:29 - 2017-03-04 07:09 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-03-16 18:29 - 2017-03-04 07:05 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-03-16 18:29 - 2017-03-04 07:05 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-16 18:29 - 2017-03-04 07:03 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-16 18:29 - 2017-03-04 07:03 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-16 18:29 - 2017-03-04 06:59 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-16 18:29 - 2017-03-04 06:58 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2017-03-16 18:29 - 2017-03-04 06:56 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-03-16 18:29 - 2017-03-04 06:54 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-16 18:29 - 2017-03-04 06:54 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-16 18:29 - 2017-03-04 06:49 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-03-16 18:29 - 2017-03-04 06:48 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-16 18:29 - 2017-03-04 06:41 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwave.dll
2017-03-16 18:29 - 2017-03-04 06:33 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-03-16 18:29 - 2017-03-04 06:31 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-16 18:29 - 2017-03-04 06:30 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-03-16 18:29 - 2017-03-04 06:29 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-16 18:29 - 2017-03-04 06:25 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-03-16 18:29 - 2017-03-04 06:19 - 03404800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-16 18:29 - 2017-03-04 06:13 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-16 18:29 - 2017-03-04 06:11 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-16 18:29 - 2017-03-04 05:50 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-16 18:29 - 2017-03-04 05:48 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-16 18:29 - 2017-03-04 05:39 - 18672128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-16 18:29 - 2017-03-04 05:37 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-16 18:29 - 2017-03-04 05:36 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-16 18:29 - 2017-03-04 05:36 - 12134912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-16 18:29 - 2017-03-04 05:21 - 05671424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-16 18:29 - 2017-01-24 04:22 - 00447095 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-16 18:28 - 2017-03-04 10:13 - 07467872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-16 18:28 - 2017-03-04 10:13 - 01098648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-03-16 18:28 - 2017-03-04 10:12 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-16 18:28 - 2017-03-04 10:04 - 00687496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-16 18:28 - 2017-03-04 09:12 - 02607336 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-16 18:28 - 2017-03-04 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-03-16 18:28 - 2017-03-04 07:45 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-03-16 18:28 - 2017-03-04 07:39 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-16 18:28 - 2017-03-04 07:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-03-16 18:28 - 2017-03-04 07:26 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-16 18:28 - 2017-03-04 07:08 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2017-03-16 18:28 - 2017-03-04 07:05 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-16 18:28 - 2017-03-04 06:59 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-16 18:28 - 2017-03-04 06:59 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-16 18:28 - 2017-03-04 06:58 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-03-16 18:28 - 2017-03-04 06:57 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-16 18:28 - 2017-03-04 06:56 - 01648128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-16 18:28 - 2017-03-04 06:55 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-16 18:28 - 2017-03-04 06:50 - 02054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-03-16 18:28 - 2017-03-04 06:42 - 02436096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-16 18:28 - 2017-03-04 06:22 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-16 18:28 - 2017-03-04 06:04 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-03-16 18:28 - 2017-03-04 05:58 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-16 18:28 - 2017-03-04 05:55 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-03-16 18:28 - 2017-03-04 05:43 - 22375424 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-16 18:28 - 2017-03-04 05:34 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-16 18:28 - 2017-03-04 05:33 - 24603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-16 18:28 - 2017-03-04 05:31 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-16 18:28 - 2017-03-04 05:19 - 07855616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-16 17:37 - 2017-03-04 08:16 - 02831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-16 17:27 - 2017-03-04 08:15 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-03-16 17:11 - 2017-03-04 08:15 - 00521192 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-03-16 17:07 - 2017-03-04 10:09 - 00610632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-16 17:06 - 2017-03-04 08:16 - 01062992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2017-03-16 17:03 - 2017-03-04 07:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2017-03-16 17:02 - 2017-03-04 09:20 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-16 17:00 - 2017-03-04 07:28 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\apds.dll
2017-03-16 16:58 - 2017-03-04 07:39 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabbtnEx.dll
2017-03-16 16:58 - 2017-03-04 06:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-03-16 16:57 - 2017-03-04 07:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-03-16 16:56 - 2017-03-04 06:03 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-16 16:54 - 2017-03-04 07:26 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-03-16 16:52 - 2017-03-04 06:10 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-03-16 16:51 - 2017-03-04 06:46 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinFax.dll
2017-03-16 16:23 - 2017-03-04 07:25 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2017-03-16 16:22 - 2017-03-04 07:21 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2017-03-16 16:22 - 2017-03-04 07:07 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2017-03-16 16:21 - 2017-03-04 10:10 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-16 16:21 - 2017-03-04 07:28 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-16 16:21 - 2017-03-04 07:20 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-16 16:20 - 2017-03-04 08:32 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-16 16:13 - 2017-03-04 07:40 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-03-16 16:13 - 2017-03-04 07:24 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-03-16 16:12 - 2017-03-04 06:34 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-03-16 16:11 - 2017-03-04 06:08 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-16 16:10 - 2017-03-04 07:11 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-16 16:10 - 2017-03-04 06:39 - 01297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-16 16:09 - 2017-03-04 07:26 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-03-16 16:08 - 2017-03-04 07:06 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-03-16 16:06 - 2017-03-04 07:38 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-03-16 16:05 - 2017-03-04 07:21 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2017-03-16 16:05 - 2017-03-04 07:14 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-16 16:04 - 2017-03-04 06:58 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-16 16:03 - 2017-03-04 09:06 - 00742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-03-16 16:03 - 2017-03-04 09:04 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-03-16 16:02 - 2017-03-04 07:28 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-16 16:02 - 2017-03-04 06:53 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-16 16:00 - 2017-03-04 07:31 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-03-16 15:59 - 2017-03-04 09:06 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-03-16 15:59 - 2017-03-04 09:04 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-03-16 15:59 - 2017-03-04 07:24 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-16 15:58 - 2017-03-04 08:31 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-03-16 15:58 - 2017-03-04 07:02 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-16 15:57 - 2017-03-04 09:09 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-16 15:57 - 2017-03-04 06:12 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-16 15:56 - 2017-03-04 07:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-16 15:54 - 2017-03-04 07:05 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-16 15:53 - 2017-03-04 09:07 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-16 15:53 - 2017-03-04 07:26 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-16 15:51 - 2017-03-04 06:55 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-16 15:49 - 2017-03-04 06:53 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-16 15:48 - 2017-03-04 06:03 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-16 15:48 - 2017-03-04 05:42 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-16 15:47 - 2017-03-04 06:47 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-03-16 15:46 - 2017-03-04 06:27 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-03-16 15:45 - 2017-03-04 05:31 - 06976512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-16 15:44 - 2017-03-04 07:07 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-16 15:43 - 2017-03-04 07:07 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-16 15:43 - 2017-03-04 05:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-03-16 15:42 - 2017-03-04 05:34 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-16 15:41 - 2017-03-04 07:03 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-16 15:41 - 2017-03-04 07:02 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-03-16 15:40 - 2017-03-04 06:52 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-03-16 15:39 - 2017-03-04 05:56 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-16 15:38 - 2017-03-04 07:22 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2017-03-16 15:38 - 2017-03-04 07:07 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-16 15:37 - 2017-03-04 08:32 - 01987424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-16 15:37 - 2017-03-04 07:15 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-03-16 15:37 - 2017-03-04 06:20 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-16 15:36 - 2017-03-04 09:08 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-16 15:36 - 2017-03-04 07:02 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-16 15:35 - 2017-03-04 07:02 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-03-16 15:35 - 2017-03-04 06:31 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-16 15:34 - 2017-03-04 05:31 - 03994112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-16 15:33 - 2017-03-04 06:57 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-16 15:31 - 2017-03-04 09:08 - 04516800 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-16 15:31 - 2017-03-04 09:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-16 15:31 - 2017-03-04 07:08 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-16 15:31 - 2017-03-04 07:02 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-16 15:30 - 2017-03-04 05:35 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-16 15:29 - 2017-03-04 06:41 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-16 15:29 - 2017-03-04 05:52 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-16 15:28 - 2017-03-04 07:13 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-03-16 15:27 - 2017-03-04 06:19 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-16 15:26 - 2017-03-04 06:24 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-03-16 15:24 - 2017-03-04 07:09 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-16 15:24 - 2017-03-04 06:35 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-16 15:24 - 2017-03-04 06:08 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-16 15:23 - 2017-03-04 07:02 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-16 15:21 - 2017-03-04 05:41 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-16 15:14 - 2017-03-04 10:15 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-16 15:14 - 2017-03-04 10:15 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-16 15:14 - 2017-03-04 09:55 - 01038176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-16 15:14 - 2017-03-04 09:09 - 00230752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-16 15:14 - 2017-03-04 09:03 - 00341944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-16 15:14 - 2017-03-04 07:49 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-03-16 15:14 - 2017-03-04 07:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-03-16 15:14 - 2017-03-04 07:38 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\feclient.dll
2017-03-16 15:14 - 2017-03-04 07:36 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-03-16 15:14 - 2017-03-04 07:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-03-16 15:14 - 2017-03-04 07:16 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-03-16 15:14 - 2017-03-04 06:58 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-16 15:14 - 2017-03-04 06:47 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-03-16 15:14 - 2017-03-04 06:31 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-16 15:14 - 2017-03-04 06:30 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2017-03-16 15:14 - 2017-03-04 06:27 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-03-16 15:14 - 2017-03-04 06:27 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2017-03-16 15:14 - 2017-03-04 06:18 - 04826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-16 15:14 - 2017-03-04 06:08 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-03-16 15:14 - 2017-03-04 05:13 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-06 16:47 - 2017-03-06 16:47 - 00000000 ____D C:\Users\Frantisek\Tracing

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-27 23:48 - 2015-10-30 20:31 - 00892608 _____ C:\WINDOWS\system32\perfh005.dat
2017-03-27 23:48 - 2015-10-30 20:31 - 00192648 _____ C:\WINDOWS\system32\perfc005.dat
2017-03-27 23:48 - 2015-07-31 09:44 - 00005426 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-03-27 16:14 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-03-27 16:07 - 2016-01-29 09:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-27 16:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-27 15:55 - 2015-07-12 00:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-27 15:55 - 2015-07-11 09:30 - 00000000 __SHD C:\Users\Frantisek\IntelGraphicsProfiles
2017-03-27 15:54 - 2015-08-12 18:11 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-03-27 15:46 - 2016-07-11 18:35 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2017-03-27 15:40 - 2015-08-30 11:24 - 00000000 ____D C:\Program Files (x86)\Zrychleni Pocitace
2017-03-27 15:36 - 2016-01-29 08:57 - 00353680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-27 15:32 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-03-27 15:32 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-27 12:04 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-27 11:01 - 2016-01-29 09:07 - 00000000 ____D C:\Users\Frantisek
2017-03-27 10:32 - 2015-07-11 09:29 - 00000000 ____D C:\Users\Frantisek\AppData\Local\SweetLabs App Platform
2017-03-27 10:17 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2017-03-22 19:20 - 2015-08-30 11:24 - 00000384 _____ C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job
2017-03-22 18:18 - 2015-07-11 11:46 - 00000000 ____D C:\Users\Frantisek\AppData\Local\CrashDumps
2017-03-22 17:25 - 2015-07-11 09:40 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{10F925A2-5A5C-4231-B555-0696BCCE3A96}
2017-03-22 11:00 - 2016-10-15 15:23 - 00000000 ____D C:\Users\Frantisek\Documents\Cestopisy
2017-03-22 10:56 - 2016-10-15 15:20 - 00000000 ____D C:\Users\Frantisek\Documents\Zdraví
2017-03-22 10:34 - 2016-10-15 15:27 - 00000000 ____D C:\Users\Frantisek\Documents\0_Různé
2017-03-21 09:57 - 2016-01-29 08:56 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-21 09:47 - 2016-12-03 00:14 - 00000000 ___HD C:\$WINDOWS.~BT
2017-03-20 17:16 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-20 16:24 - 2015-08-30 11:22 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-20 15:46 - 2016-12-17 11:48 - 00000992 _____ C:\Users\Frantisek\Desktop\Seznam.cz.lnk
2017-03-20 15:46 - 2016-03-01 15:02 - 00000972 _____ C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-03-20 13:03 - 2015-07-16 19:17 - 00000000 ___RD C:\Users\Frantisek\OneDrive
2017-03-19 16:20 - 2015-07-11 14:48 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Skype
2017-03-16 07:09 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Registration
2017-03-16 07:07 - 2015-07-31 08:24 - 00034293 _____ C:\WINDOWS\diagwrn.xml
2017-03-16 07:07 - 2015-07-31 08:24 - 00034293 _____ C:\WINDOWS\diagerr.xml
2017-03-15 12:13 - 2015-07-13 21:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-15 12:06 - 2015-07-13 21:06 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-13 11:49 - 2015-08-12 18:11 - 01000160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2017-03-13 11:49 - 2015-08-12 18:11 - 00185112 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2017-03-13 11:49 - 2015-07-03 02:20 - 00116448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2017-03-13 11:48 - 2015-08-12 18:11 - 00244448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2017-03-10 10:59 - 2017-01-19 18:40 - 00003274 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-10 10:59 - 2015-07-17 16:08 - 00002436 _____ C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-10 06:42 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 06:42 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-09 18:27 - 2015-08-12 16:24 - 00000000 ____D C:\Users\Frantisek\AppData\Local\Microsoft Help
2017-03-05 09:05 - 2015-10-14 09:46 - 00003778 _____ C:\WINDOWS\System32\Tasks\ACC
2017-03-05 09:05 - 2015-10-14 09:46 - 00003060 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2017-03-05 09:05 - 2014-08-29 14:40 - 00005404 _____ C:\WINDOWS\System32\Tasks\Software Update Application
2017-03-05 09:05 - 2014-08-29 14:40 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2017-03-05 03:57 - 2016-01-29 09:01 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-03-02 13:44 - 2016-09-09 06:30 - 00001084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-03-02 13:44 - 2015-08-30 11:23 - 00003946 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1440926626
2017-02-27 11:52 - 2015-07-13 09:38 - 00000000 ____D C:\ProgramData\CanonIJPLM

==================== Files in the root of some directories =======

2017-01-26 12:20 - 2015-07-11 15:17 - 0001121 _____ () C:\Program Files\FastStone Image Viewer.lnk
2015-07-11 09:30 - 2015-07-31 08:23 - 0050514 _____ () C:\Users\Frantisek\AppData\Local\BTServer.log
2016-01-29 09:03 - 2016-01-29 09:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Files to move or delete:
====================
C:\Program Files (x86)\Zrychleni Pocitace\PCSUNotifier.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================


==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Frantisek\Desktop" je 25 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Re: Zaížení HDD 100%

Napsal: 28 bře 2017 09:17
od Márty84
Zdravim :)

:arrow: Odinstalujte PCSpeedUp.

:arrow: Stahnete crystal disk info http://www.slunecnice.cz/sw/crystaldiskinfo/
Nainstalujte (pozor na pripadne doplnky, ty odmitnete zrusenim zatrzitka) a spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

:arrow: Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Re: Zaížení HDD 100%

Napsal: 28 bře 2017 21:33
od mildahk
Program PCspeedup jsem nikde nenašel , takže neodinstaloval.
Posílám logi, HDD stále 100%

----------------------------------------------------------------------------
CrystalDiskInfo 7.0.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 [10.0 Build 10586] (x64)
Date : 2017/03/28 21:47:32

-- Controller Map ----------------------------------------------------------
+ Intel(R) Pentium(R) processor N- and J-series / Intel(R) Celeron(R) processor N- and J-series AHCI - 0F23 [ATA]
- WDC WD5000LPVX-22V0TT0
- MATSHITA DVD-RAM UJ8HC
- Řadič prostorů úložišť [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD5000LPVX-22V0TT0 : 500,1 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD5000LPVX-22V0TT0
----------------------------------------------------------------------------
Model : WDC WD5000LPVX-22V0TT0
Firmware : 01.01A01
Serial Number : WD-WX11AC4NL0V5
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ----
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 5589 hod.
Power On Count : 2085 krát
Temperature : 34 C (93 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 0060h [ON]
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 199 199 _51 00000000EBED Počet chyb čtení
03 152 145 _21 000000000578 Čas na roztočení ploten
04 _87 _87 __0 0000000034F8 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _93 _93 __0 0000000015D5 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 000000000825 Počet cyklů zapnutí zařízení
BF _86 _86 __0 00000000000E Počet udalostí zaznamenaných otřesovým senzorem
C0 200 200 __0 000000000054 Počet vypnutí disku
C1 175 175 __0 000000013003 Počet cyklů načítání/vymazání
C2 109 _99 __0 000000000022 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000001 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 3131 4143 344E 4C30 5635
020: 0000 4000 0000 3031 2E30 3141 3031 5744 4320 5744
030: 3530 3030 4C50 5658 2D32 3256 3054 5430 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0107 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F FF0E 0004 004C 0040
080: 03FE 0000 746B 7D69 6123 7469 BC49 6123 007F 0034
090: 0034 0060 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0000 6003 0000 5001 4EE6
110: 054B C5CB 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 103E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 49A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C7 C7 ED EB 00 00 00 00 00 03 27
010: 00 98 91 78 05 00 00 00 00 00 04 32 00 57 57 F8
020: 34 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 5D 5D D5 15 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 25 08 00 00 00 00 00 BF 32
070: 00 56 56 0E 00 00 00 00 00 00 C0 32 00 C8 C8 54
080: 00 00 00 00 00 00 C1 32 00 AF AF 03 30 01 00 00
090: 00 00 C2 22 00 6D 63 22 00 00 00 00 00 00 C4 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C5 32 00 C8 C8 01
0B0: 00 00 00 00 00 00 C6 30 00 64 FD 00 00 00 00 00
0C0: 00 00 C7 32 00 C8 C8 00 00 00 00 00 00 00 C8 08
0D0: 00 64 FD 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 BC 25 01 7B
170: 03 00 01 00 02 6F 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 02 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C7 00 00 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 BF 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 C8 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 DF



# AdwCleaner v6.045 - Log vytvořen 28/03/2017 v 22:19:39
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-03-28.2 [Místní]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Frantisek - PC2
# Spuštěno z : C:\Users\Frantisek\Desktop\adwcleaner_6.045.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

[-] Služba smazána: pcsuservice
[-] Služba smazána: SCService


***** [ Složky ] *****

[-] Složka smazána: C:\Users\Frantisek\AppData\Local\ProductivityBoss_e5
[-] Složka smazána: C:\Users\Frantisek\AppData\LocalLow\ProductivityBoss_e5
[-] Složka smazána: C:\Program Files (x86)\ProductivityBoss_e5
[#] Složka smazána po restartu: C:\Users\Frantisek\AppData\Local\ProductivityBoss_e5
[#] Složka smazána po restartu: C:\Users\Frantisek\AppData\LocalLow\ProductivityBoss_e5
[#] Složka smazána po restartu: C:\Program Files (x86)\ProductivityBoss_e5
[-] Složka smazána: C:\Users\Frantisek\AppData\Local\Microsoft\Silverlight\OutOfBrowser\Speedchecker.PCSpeedUp
[-] Složka smazána: C:\Users\Frantisek\AppData\Local\SweetLabs App Platform
[#] Složka smazána po restartu: C:\Users\Frantisek\AppData\Local\ProductivityBoss_e5
[#] Složka smazána po restartu: C:\Users\Frantisek\AppData\Local\\Microsoft\Silverlight\OutOfBrowser\Speedchecker.PCSpeedUp
[#] Složka smazána po restartu: C:\Users\Frantisek\AppData\LocalLow\ProductivityBoss_e5
[-] Složka smazána: C:\Program Files\Reimage
[-] Složka smazána: C:\Program Files\Booking.com
[#] Složka smazána po restartu: C:\Program Files\reimage
[-] Složka smazána: C:\ProgramData\apn
[-] Složka smazána: C:\ProgramData\Pokki
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zrychleni Pocitace
[-] Složka smazána: C:\Program Files (x86)\PC Speed Maximizer
[-] Složka smazána: C:\Program Files (x86)\Zrychleni Pocitace
[#] Složka smazána po restartu: C:\Program Files (x86)\ProductivityBoss_e5
[-] Složka smazána: C:\Users\Default User\AppData\Local\Pokki
[#] Složka smazána po restartu: C:\Users\Default\AppData\Local\Pokki
[-] Složka smazána: C:\Users\Public\Pokki
[-] Složka smazána: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Složka smazána: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaejaghnbcjilindpkgmcmdflpgjf


***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Start Menu.lnk
[-] Soubor smazán: C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] Soubor smazán: C:\WINDOWS\Reimage.ini
[-] Soubor smazán: C:\Program Files (x86)\Opera\BestOffer.url
[-] Soubor smazán: C:\Program Files (x86)\Opera\Offer.url
[-] Soubor smazán: C:\Program Files (x86)\Opera\Offer2.url
[-] Soubor smazán: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mppnoffgpafgpgbaigljliadgbnhljfl_0.localstorage
[-] Soubor smazán: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nafaimnnclfjfedmmabolbppcngeolgf_0.localstorage
[-] Soubor smazán: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_fcfenmboojpjinhpgggodefccipikbpd_0.localstorage
[-] Soubor smazán: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaaaejaghnbcjilindpkgmcmdflpgjf_0.localstorage


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****

[-] Úloha smazána: LaunchSignup
[-] Úloha smazána: PC SpeedUp Service Deactivator
[-] Úloha smazána: SweetLabs App Platform
[-] Úloha smazána: Software Update Application
[-] Úloha smazána: launchsignup


***** [ Registry ] *****

[#] Klíč smazán po restartu: HKLM\SYSTEM\CurrentControlSet\services\PCSUService
[#] Klíč smazán po restartu: HKLM\SYSTEM\CurrentControlSet\services\scservice
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\ProductivityBoss_e5_is1
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\AppDataLow\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\AppDataLow\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKCU\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKCU\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\ProductivityBoss_e5_is1
[-] Klíč smazán: HKLM\SOFTWARE\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKLM\SOFTWARE\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: [x64] HKCU\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: [x64] HKCU\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\ProductivityBoss_e5_is1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector.1
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\AppDataLow\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\AppDataLow\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKCU\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKCU\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKLM\SOFTWARE\ProductivityBoss_e5
[#] Klíč smazán po restartu: HKLM\SOFTWARE\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: [x64] HKCU\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: [x64] HKCU\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\ProductivityBoss_e5
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\ProductivityBoss_e5_is1
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu.1
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel.1
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin.1
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector.1
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{190f204e-0647-415a-8d7d-3e8b8b296bcb}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21f21da6-1b78-4981-9eef-f03d20ac7c42}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6a113a86-fde2-4c7b-8767-f1621865ebf5}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b667db4-ae4b-4d59-a2a3-d12a41a2f2cf}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{c37884b1-d4f6-4fc9-b12e-68df687499a5}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{06012b99-2f56-4984-8280-f49015649e87}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{06012b99-2f56-4984-8280-f49015649e87}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel.ProductivityBoss_e5.HTMLPanel
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLPanel.ProductivityBoss_e5.HTMLPanel.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{55885bd8-e699-4866-9e77-87e9df61b2ee}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{55885bd8-e699-4866-9e77-87e9df61b2ee}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{5f200fb4-8adb-4ce6-a081-b3b77b5abcb5}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{5f200fb4-8adb-4ce6-a081-b3b77b5abcb5}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{7a813178-28d6-4455-a4b0-36e538ec7c42}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{7a813178-28d6-4455-a4b0-36e538ec7c42}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin.ProductivityBoss_e5.PseudoTransparentPlugin
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.PseudoTransparentPlugin.ProductivityBoss_e5.PseudoTransparentPlugin.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{7fe15351-69de-4315-a5fb-559bcfb3e92f}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{7fe15351-69de-4315-a5fb-559bcfb3e92f}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{8d7e32c4-aba8-4c05-9aa4-4a85354ef063}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{8d7e32c4-aba8-4c05-9aa4-4a85354ef063}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector.ProductivityBoss_e5.ToolbarProtector
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.ToolbarProtector.ProductivityBoss_e5.ToolbarProtector.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{9b667db4-ae4b-4d59-a2a3-d12a41a2f2cf}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{9b667db4-ae4b-4d59-a2a3-d12a41a2f2cf}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{BA49E624-6144-496B-AAAB-79759B6888D1}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID\{BA49E624-6144-496B-AAAB-79759B6888D1}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu.ProductivityBoss_e5.HTMLMenu
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\ProductivityBoss_e5.HTMLMenu.ProductivityBoss_e5.HTMLMenu.1
[#] Klíč smazán po restartu: {C7333289-3CC2-40DB-98ED-4B5CB281D26F}
[#] Klíč smazán po restartu: {CD6D3114-D014-4A6E-84E6-338D7349DA37}
[#] Klíč smazán po restartu: {D85CC617-78F3-4D5D-8715-BB52F7E43A77}
[#] Klíč smazán po restartu: {EFBE7B38-02F1-4DFC-B74A-AD993760B112}
[#] Klíč smazán po restartu: {F1380A57-0BD5-456D-B0F7-3B499523518A}
[#] Klíč smazán po restartu: {F655D745-B558-422D-AF05-BF6D1E95EAD0}
[#] Klíč smazán po restartu: {F67B7F18-0D4D-4512-BBE9-EFB219345AAA}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{199C163D-4D49-4E9B-9D6C-AC6BB973D4A8}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{252F607D-6B63-437F-81E1-E975EE7272B2}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{4BBACE60-3185-4379-9118-631C9447A61A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6A113A86-FDE2-4C7B-8767-F1621865EBF5}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6A9EB0D5-DF8A-40D7-9889-0EF36CBB0408}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{199C163D-4D49-4E9B-9D6C-AC6BB973D4A8}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{252F607D-6B63-437F-81E1-E975EE7272B2}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{4BBACE60-3185-4379-9118-631C9447A61A}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{6A113A86-FDE2-4C7B-8767-F1621865EBF5}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{6A9EB0D5-DF8A-40D7-9889-0EF36CBB0408}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{78C0333F-10EA-4BA0-B496-FD8F8E1E61E6}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{924C16A8-0E44-402F-9517-2E424E7048E3}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Classes\Interface\{93780D8C-A0F1-4D3C-8AB3-3D7E355D377F}
[-] Klíč smazán: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\SCService
[#] Klíč smazán po restartu: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\SCService
[#] Klíč smazán po restartu: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\scservice
[#] Klíč smazán po restartu: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\scservice
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Classes\pokki
[#] Klíč smazán po restartu: HKCU\Software\Classes\pokki
[-] Klíč smazán: HKLM\SOFTWARE\Classes\PCSU.Registry
[-] Klíč smazán: HKLM\SOFTWARE\Classes\PCSU.Registry.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\PCSU.SysUtils
[-] Klíč smazán: HKLM\SOFTWARE\Classes\PCSU.SysUtils.1
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\pokki
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\PCSU.Registry
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\PCSU.Registry.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\PCSU.SysUtils
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\PCSU.SysUtils.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6C42038D-817A-472C-8C2A-EF46F1DA576D}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{873C7DA8-195D-4D5A-B830-C5E2831901EA}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{F8A4FC32-DDA3-4DD9-8C62-49F778FF630B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{3157E247-2784-4028-BF0F-52D6DDC70E1B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
[-] Klíč smazán: HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
[-] Klíč smazán: HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
[-] Klíč smazán: HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\APN PIP
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Mozilla\Extends
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Reimage
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\reimagerepair
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\simplytech
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Simplytech\HomeTab
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Speedchecker Limited
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\SweetLabs App Platform
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\TNT2
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\csastats
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\SIMPLYTECH
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[#] Klíč smazán po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SEARCHPROTECT
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\AskPartnerNetwork
[#] Klíč smazán po restartu: HKCU\Software\APN PIP
[#] Klíč smazán po restartu: HKCU\Software\Mozilla\Extends
[#] Klíč smazán po restartu: HKCU\Software\Reimage
[#] Klíč smazán po restartu: HKCU\Software\reimagerepair
[#] Klíč smazán po restartu: HKCU\Software\simplytech
[#] Klíč smazán po restartu: HKCU\Software\Simplytech\HomeTab
[#] Klíč smazán po restartu: HKCU\Software\Speedchecker Limited
[#] Klíč smazán po restartu: HKCU\Software\SweetLabs App Platform
[#] Klíč smazán po restartu: HKCU\Software\TNT2
[#] Klíč smazán po restartu: HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartu: HKCU\Software\csastats
[#] Klíč smazán po restartu: HKCU\Software\SIMPLYTECH
[-] Klíč smazán: HKLM\SOFTWARE\FFPluginHp
[-] Klíč smazán: HKLM\SOFTWARE\mystartsearchSoftware
[-] Klíč smazán: HKLM\SOFTWARE\searchult
[-] Klíč smazán: HKLM\SOFTWARE\Speedchecker Limited
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SEARCHPROTECT
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SEARCHPROTECT
[#] Klíč smazán po restartu: [x64] HKCU\Software\APN PIP
[#] Klíč smazán po restartu: [x64] HKCU\Software\Mozilla\Extends
[#] Klíč smazán po restartu: [x64] HKCU\Software\Reimage
[#] Klíč smazán po restartu: [x64] HKCU\Software\reimagerepair
[#] Klíč smazán po restartu: [x64] HKCU\Software\simplytech
[#] Klíč smazán po restartu: [x64] HKCU\Software\Simplytech\HomeTab
[#] Klíč smazán po restartu: [x64] HKCU\Software\Speedchecker Limited
[#] Klíč smazán po restartu: [x64] HKCU\Software\SweetLabs App Platform
[#] Klíč smazán po restartu: [x64] HKCU\Software\TNT2
[#] Klíč smazán po restartu: [x64] HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
[#] Klíč smazán po restartu: [x64] HKCU\Software\csastats
[#] Klíč smazán po restartu: [x64] HKCU\Software\SIMPLYTECH
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Speedchecker Limited
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D01A33E2-0A34-4659-82AA-8A90C51C0D21}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\IminentToolbar
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Vosteran.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\WajIntEnhance
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SEARCHPROTECT
[-] Data obnovena: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data obnovena: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data obnovena: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data obnovena: HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data obnovena: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data obnovena: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data obnovena: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data obnovena: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data obnovena: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6C7A1DE6-080D-40C0-9EEB-5C1996772B16}
[-] Klíč smazán: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\SearchScopes\{a37187ba-df01-4b27-a7c9-a645524b0517}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6C7A1DE6-080D-40C0-9EEB-5C1996772B16}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{a37187ba-df01-4b27-a7c9-a645524b0517}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data obnovena: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{a37187ba-df01-4b27-a7c9-a645524b0517}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6C7A1DE6-080D-40C0-9EEB-5C1996772B16}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{a37187ba-df01-4b27-a7c9-a645524b0517}
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data obnovena: [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akcniceny.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\castplatform.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cdn.castplatform.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\izito.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pestryjidelnicek.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\reimageplus.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\secure.reimageplus.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\slunecnice.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.akcniceny.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.izito.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.pestryjidelnicek.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.slunecnice.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akcniceny.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\castplatform.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\izito.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pestryjidelnicek.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\reimageplus.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\secure.reimageplus.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\slunecnice.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.akcniceny.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.izito.com
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.pestryjidelnicek.cz
[-] Klíč smazán: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.slunecnice.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\akcniceny.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\castplatform.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cdn.castplatform.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\izito.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pestryjidelnicek.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\reimageplus.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\secure.reimageplus.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\slunecnice.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.akcniceny.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.izito.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.pestryjidelnicek.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.slunecnice.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\akcniceny.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\castplatform.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\izito.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pestryjidelnicek.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\reimageplus.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\secure.reimageplus.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\slunecnice.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.akcniceny.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.izito.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.pestryjidelnicek.cz
[#] Klíč smazán po restartu: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.slunecnice.cz
[-] Hodnota smazána: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [ApnTBMon]
[-] Hodnota smazána: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
[-] Hodnota smazána: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [pcspeedup]
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
[-] Hodnota smazána: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Hodnota smazána: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [WeatherBug]
[#] Hodnota smazána po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run [PCSpeedUp]
[#] Hodnota smazána po restartu: HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [PCSpeedUp]
[#] Hodnota smazána po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [PCSpeedUp]
[#] Hodnota smazána po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [PCSpeedUp]
[-] Klíč smazán: HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Klíč smazán: HKCU\Software\Classes\Directory\shell\pokki
[-] Klíč smazán: HKCU\Software\Classes\Drive\shell\pokki
[-] Klíč smazán: HKCU\Software\Classes\lnkfile\shell\pokki
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Hodnota smazána: HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION [WeatherBug.exe]
[-] Hodnota smazána: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchffv2@gmail.com]
[-] Hodnota smazána: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
[#] Hodnota smazána po restartu: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchffv2@gmail.com]
[#] Hodnota smazána po restartu: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
[#] Hodnota smazána po restartu: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [searchffv2@gmail.com]
[#] Hodnota smazána po restartu: HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaejaghnbcjilindpkgmcmdflpgjf
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaaejaghnbcjilindpkgmcmdflpgjf


***** [ Prohlížeče ] *****

[-] [C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: aaaaaejaghnbcjilindpkgmcmdflpgjf
[-] [C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: fcfenmboojpjinhpgggodefccipikbpd


*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [42451 Bajty] - [28/03/2017 22:19:39]
C:\AdwCleaner\AdwCleaner[S0].txt - [40516 Bajty] - [28/03/2017 22:02:59]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [42599 Bajty] ##########

Re: Zaížení HDD 100%

Napsal: 29 bře 2017 11:38
od Márty84
mildahk píše:Program PCspeedup jsem nikde nenašel , takže neodinstaloval.
ADWCleaner ho smaznul :-)

:arrow: Udelejte kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako spravce (pokud vam pri instalaci nabidne nejaky doplnek, odmitnete ho!)
V tom okne kliknete na posledni zalozku - Error Scan (pokud bude zatrzeny quick scan, tak zatrzitko zruste) a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Health a opiste mi (vyfotte), co se tam pise. Melo by tam byt OK http://www.google.cz/imgres?um=1&hl=cs& ... s:20,i:143

:arrow: Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Re: Zaížení HDD 100%

Napsal: 30 bře 2017 16:07
od mildahk
Od včera teprve 4 řádky čtverečků z toho je jeden čtvereček červený.

To je na týden. :-) Lze už z toho usoudit, že disk KO nebo musíme čekat do konce?

Dík za info

Re: Zaížení HDD 100%

Napsal: 30 bře 2017 18:43
od Márty84
To, ze disk neni v nejlepsi forme, je jasne. Kdyby to dojelo do konce, vedeli bychom jak moc :-) Ale nutne to neni, pokracujte s MBAM.

Re: Zaížení HDD 100%

Napsal: 01 dub 2017 20:28
od mildahk
Zdravím, MBAM jsem spustil asi po 18 hodinách byl PC restartovaný a bez logu. Nikde jsem ho nenašel. Po dobu scanování co jsem koukal, žádná hrozba. Toto jsem opakoval a znova stejný, 18 hodin a zas bez logu.

Po třetí to už vzdávám.

Co dál?

Díky moc za pomoc

Re: Zaížení HDD 100%

Napsal: 02 dub 2017 06:18
od Márty84
:arrow: Zkuste spustit aspon Sken hrozeb. Je rychlejsi a snad dobehne.

Kdyby ani to neslo...

:arrow: Dejte nove logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach :)
(Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)

Re: Zaížení HDD 100%

Napsal: 02 dub 2017 21:37
od mildahk
Scan hrozeb se podařil:

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 02.04.17
Čas skenování: 22:23
Logovací soubor: bbbbb.txt
Správce: Ano

-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.96
Aktualizovat verzi balíku komponent: 1.0.1622
Licence: Bezplatný

-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: PC2\Frantisek

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 423548
Uplynulý čas: 7 min, 35 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 2
PUP.Optional.AshampooRegistryCleaner, C:\PROGRAMDATA\ASHAMPOO\ICO_ASHAMPOO_MARKETPLACE.ICO, Žádná uživatelská akce, [2969], [355157],1.0.1622
PUP.Optional.InstallCore, C:\USERS\FRANTISEK\MUSIC\FLVPLAYERSETUP.EXE, Žádná uživatelská akce, [8], [301105],1.0.1622

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Re: Zaížení HDD 100%

Napsal: 03 dub 2017 18:53
od Márty84
:arrow: Nalezy nechte odstranit.

:arrow: Dejte nove logy z FRST.

Re: Zaížení HDD 100%

Napsal: 04 dub 2017 20:53
od mildahk
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Frantisek (administrator) on PC2 (04-04-2017 21:45:30)
Running from C:\Users\Frantisek\Desktop
Loaded Profiles: Frantisek (Available Profiles: Frantisek)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe
(Microsoft Corporation) C:\WINDOWS\System32\mcbuilder.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avpui.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
() C:\WINDOWS\SysWOW64\UMonit64.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
() C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(© 2015 Microsoft Corporation) C:\Users\Frantisek\AppData\Local\Microsoft\BingSvc\BingSvc.exe
() C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe
(Spotify Ltd) C:\Users\Frantisek\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
() C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(forum.viry.cz) C:\Users\Frantisek\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundPlayback.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17012.10301.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8008.42001.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\backgroundTaskHost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-09-06] (Realtek Semiconductor)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [714992 2016-05-13] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [352648 2016-12-26] (RealNetworks, Inc.)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2290016 2015-09-01] (acer)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [BingSvc] => C:\Users\Frantisek\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe [2412952 2015-09-30] ()
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify Web Helper] => C:\Users\Frantisek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify] => C:\Users\Frantisek\AppData\Roaming\Spotify\Spotify.exe [8387696 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\RunOnce: [Application Restart #0] => C:\Users\Frantisek\AppData\Roaming\Seznam Browser\Seznam.cz.exe [828600 2017-03-15] (Seznam.cz)
HKU\S-1-5-18\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-19] (Skype Technologies S.A.)
IFEO\bsdiff_patch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\bstgamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\comscore.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\convert.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\crashsender1402.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\dbclean.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffmpeg.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffprobe.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\fixrjb.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole-wt.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelicensing.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\glcheck.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\hd-installchecker.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\msgtest.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\nativeuserproxy.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\park.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\patchhelper.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\proclaunch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\r1puninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realcleaner.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realconverter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realjbox.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realonemessagecenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realplay.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realsched.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realtrimmer.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rndevicedbbuilder.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rnxproc.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rphelperapp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rpsystray.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rtcreator.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\screenorientationx64.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\segmenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\setup.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninstall.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\upgrdhlp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\wtapp_protocolhandler.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\buShell.dll [2015-07-13] (Symantec Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2016-12-26]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-12-21]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 62.240.163.170
Tcpip\..\Interfaces\{1b5e622a-9a51-4248-b9dd-b42314b65ed3}: [DhcpNameServer] 8.8.8.8 62.240.163.170
Tcpip\..\Interfaces\{c4d88938-920d-4723-afc2-18d7dd58dc29}: [DhcpNameServer] 8.8.8.8 62.240.163.170

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 0606296DDCD01D5672AEEB208418151E URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 376E4C472E903713EE23F0C884E88710 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 9718EE986FE10BFEFDD205D7CCE5EDCE URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> C19BE935622B379A35226BC19F929B46 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2016-11-11] (RealDownloader)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2016-11-11] (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\coIEPlg.dll [2015-07-10] (Symantec Corporation)
Toolbar: HKU\.DEFAULT -> No Name - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - No File
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> hxxp://www.seznam.cz/?clid=6826

FireFox:
========
FF ProfilePath: C:\Users\Frantisek\AppData\Roaming\Mozilla\Firefox\Profiles\ru03g6f6.default-1490031142948 [2017-04-04]
FF Homepage: Mozilla\Firefox\Profiles\ru03g6f6.default-1490031142948 -> hxxps://www.seznam.cz/
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-12-01]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.2.15\coFFPlgn
FF Extension: (Norton Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.5.2.15\coFFPlgn [2017-04-04] [not signed]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.6.161 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2016-12-26] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.6.161 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-12-26] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default [2017-03-22]
CHR Extension: (Prezentace Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-16]
CHR Extension: (Dokumenty Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-16]
CHR Extension: (Disk Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Volání přes Skype) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2015-12-31]
CHR Extension: (YouTube) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Vyhledávání Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (YOU.DJ app) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defekohaofmambflfpfoojkmfdpcbgko [2016-10-29]
CHR Extension: (Tabulky Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Tlačítko Uložit) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-02-27]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2017-02-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-14]
CHR Extension: (Gmail) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-09]
CHR Profile: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\System Profile [2017-03-22]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\Exts\Chrome.crx [2016-07-11]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\Exts\Chrome.crx [2016-07-11]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [328624 2015-10-28] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.5.2.15\NS.exe [282016 2015-07-16] (Symantec Corporation)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [35104 2016-11-11] ()
R2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [987408 2016-12-26] (RealNetworks, Inc.)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2017-03-04] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\BASHDefs\20170314.001\BHDrvx64.sys [1831064 2017-03-14] (Symantec Corporation)
R3 ccSet_NS; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\ccSetx64.sys [173808 2015-07-11] (Symantec Corporation)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497392 2016-07-09] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156912 2016-06-21] (Symantec Corporation)
R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [173384 2014-04-08] (ELAN Microelectronic Corp.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [111336 2014-04-28] (GenesysLogic)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Intel Corporation)
R3 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\IPSDefs\20170316.001\IDSvia64.sys [1038024 2017-03-16] (Symantec Corporation)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [79752 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78200 2015-12-02] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [185112 2017-03-13] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [244448 2017-03-13] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1000160 2017-03-13] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [51288 2016-05-05] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [87984 2016-08-16] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [116448 2017-03-13] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [194440 2015-12-03] (AO Kaspersky Lab)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-04-04] (Malwarebytes)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2013-12-10] (Intel Corporation)
S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
S3 NAVENG; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\VirusDefs\20170317.004\ENG64.SYS [138912 2017-03-17] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\VirusDefs\20170317.004\EX64.SYS [2151072 2017-03-17] (Symantec Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
S3 RRNetCap; C:\WINDOWS\system32\DRIVERS\rrnetcap.sys [37480 2013-07-15] (RapidSolution Software AG)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [615728 2016-01-16] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [3445248 2015-10-30] (Realtek Semiconductor Corporation )
S3 SRTSP; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SRTSP64.SYS [926448 2015-07-11] (Symantec Corporation)
R3 SRTSPX; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SRTSPX64.SYS [50936 2015-07-11] (Symantec Corporation)
R3 SymEFASI; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SYMEFASI64.SYS [1620720 2015-07-11] (Symantec Corporation)
S4 SymELAM; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SymELAM.sys [24192 2015-07-11] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [111344 2016-07-11] (Symantec Corporation)
R3 SymIRON; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\Ironx64.SYS [297720 2015-07-11] (Symantec Corporation)
R3 SymNetS; C:\WINDOWS\system32\drivers\NSx64\1605020.00F\SYMNETS.SYS [576248 2015-07-11] (Symantec Corporation)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 cpuz134; \??\C:\Users\FRANTI~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-25 03:48 - 2022-03-25 03:48 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC1.dat
2022-03-25 03:48 - 2022-03-25 03:48 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC0.dat
2022-03-25 02:22 - 2022-03-25 02:22 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTEQEX1.dat
2022-03-25 02:22 - 2022-03-25 02:22 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTEQEX0.dat
2017-04-04 21:45 - 2017-04-04 21:45 - 00030965 _____ C:\Users\Frantisek\Desktop\FRST.txt
2017-04-04 20:01 - 2017-04-04 20:01 - 00126209 _____ C:\WINDOWS\SysWOW64\rsslogs.20170404200013
2017-04-04 03:42 - 2017-04-04 03:42 - 01154213 _____ C:\WINDOWS\SysWOW64\rsslogs.20170404034217
2017-04-03 10:28 - 2017-04-03 10:28 - 00000000 ___HD C:\$WINDOWS.~BT
2017-04-03 05:29 - 2017-04-03 05:29 - 08388608 ___SH C:\tmpgfile.sys
2017-04-03 04:43 - 2017-04-04 03:42 - 00697281 _____ C:\WINDOWS\SysWOW64\rsslogs.20170403044228
2017-04-02 22:32 - 2017-04-02 22:32 - 00001696 _____ C:\Users\Frantisek\Desktop\bbbbb.txt
2017-04-02 22:18 - 2017-04-02 22:18 - 00397602 _____ C:\WINDOWS\SysWOW64\rsslogs.20170402221700
2017-04-01 14:16 - 2017-04-01 14:16 - 00602698 _____ C:\WINDOWS\SysWOW64\rsslogs.20170401141504
2017-04-01 14:14 - 2017-04-01 14:15 - 00218556 _____ C:\WINDOWS\Minidump\040117-17906-01.dmp
2017-04-01 12:37 - 2017-04-01 12:37 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\31625D30.sys
2017-03-31 23:44 - 2017-04-04 20:00 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-31 23:44 - 2017-03-31 23:44 - 00001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-03-31 23:44 - 2017-03-31 23:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-03-31 23:44 - 2017-03-31 23:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-31 23:44 - 2017-03-31 23:44 - 00000000 ____D C:\Program Files\Malwarebytes
2017-03-31 23:44 - 2017-03-24 04:10 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-03-31 23:28 - 2017-03-31 23:28 - 01042704 _____ C:\WINDOWS\SysWOW64\rsslogs.20170331232745
2017-03-31 06:17 - 2017-03-31 06:17 - 01181386 _____ C:\WINDOWS\SysWOW64\rsslogs.20170331061609
2017-03-31 06:15 - 2017-04-01 14:14 - 4171227094 _____ C:\WINDOWS\MEMORY.DMP
2017-03-31 04:28 - 2017-03-31 04:28 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\38AA1844.sys
2017-03-30 21:25 - 2017-03-30 21:25 - 00627933 _____ C:\WINDOWS\SysWOW64\rsslogs.20170330212421
2017-03-30 21:24 - 2017-03-29 21:10 - 59272008 _____ (Malwarebytes ) C:\Users\Frantisek\Desktop\mb3-setup-consumer-3.0.6.1469-1096.exe
2017-03-29 21:28 - 2017-03-29 21:28 - 00000959 _____ C:\Users\Frantisek\Desktop\HD Tune.lnk
2017-03-29 21:28 - 2017-03-29 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2017-03-29 21:28 - 2017-03-29 21:28 - 00000000 ____D C:\Program Files (x86)\HD Tune
2017-03-29 21:27 - 2017-03-29 21:07 - 08101056 _____ C:\Users\Frantisek\Desktop\hdtune_255.exe
2017-03-29 21:25 - 2017-03-30 21:25 - 01699806 _____ C:\WINDOWS\SysWOW64\rsslogs.20170329212435
2017-03-28 22:26 - 2017-03-29 21:25 - 01627312 _____ C:\WINDOWS\SysWOW64\rsslogs.20170328222504
2017-03-28 22:05 - 2017-03-28 22:05 - 00023615 _____ C:\WINDOWS\SysWOW64\rsslogs.20170328220404
2017-03-28 21:54 - 2017-03-28 22:19 - 00000000 ____D C:\AdwCleaner
2017-03-28 21:45 - 2017-03-28 21:45 - 00001233 _____ C:\Users\Frantisek\Desktop\CrystalDiskInfo.lnk
2017-03-28 21:45 - 2017-03-28 21:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-03-28 21:45 - 2017-03-28 21:45 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2017-03-28 21:44 - 2017-03-28 21:28 - 04089296 _____ C:\Users\Frantisek\Desktop\adwcleaner_6.045.exe
2017-03-28 21:40 - 2017-03-28 21:27 - 11418272 _____ C:\Users\Frantisek\Desktop\CrystalDiskInfo7_0_5.exe
2017-03-28 16:19 - 2017-03-28 22:03 - 00378705 _____ C:\WINDOWS\SysWOW64\rsslogs.20170328161832
2017-03-27 23:46 - 2017-03-27 23:46 - 00000000 ____D C:\FRST
2017-03-27 23:45 - 2017-03-27 23:43 - 02424832 _____ (Farbar) C:\Users\Frantisek\Desktop\FRST64.exe
2017-03-27 23:45 - 2017-01-25 20:12 - 00112640 _____ (forum.viry.cz) C:\Users\Frantisek\Desktop\FRSTLauncher.exe
2017-03-27 16:22 - 2017-03-27 16:22 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-03-27 15:38 - 2017-03-27 15:38 - 00043643 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327153719
2017-03-27 15:35 - 2017-03-27 15:35 - 00000000 ____D C:\WINDOWS\SysWOW64\%Data%
2017-03-27 14:50 - 2017-03-27 14:50 - 00031853 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327144942
2017-03-27 11:55 - 2017-03-27 11:55 - 00204041 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327115412
2017-03-27 11:05 - 2017-03-27 11:05 - 00057805 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327110410
2017-03-27 11:02 - 2017-03-27 23:56 - 00435880 _____ C:\WINDOWS\ntbtlog.txt
2017-03-27 10:15 - 2017-03-27 10:15 - 00054270 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327101442
2017-03-22 19:22 - 2017-03-22 19:22 - 00031872 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322182113
2017-03-22 18:33 - 2017-03-22 19:20 - 00055481 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322173242
2017-03-22 18:11 - 2017-03-22 18:13 - 09274608 _____ (Piriform Ltd) C:\Users\Frantisek\Downloads\ccsetup528.exe
2017-03-22 17:42 - 2017-03-22 17:42 - 00059066 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322164119
2017-03-22 17:10 - 2017-03-22 17:10 - 00035422 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322160916
2017-03-20 19:32 - 2017-03-20 19:32 - 00000000 ____D C:\Users\Frantisek\Desktop\Původní data aplikace Firefox
2017-03-20 19:31 - 2017-03-22 17:36 - 00000000 ____D C:\Users\Frantisek\AppData\LocalLow\Mozilla
2017-03-20 19:29 - 2017-03-20 19:29 - 00001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-20 19:29 - 2017-03-20 19:29 - 00000997 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-03-20 19:29 - 2017-03-20 19:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-03-20 19:29 - 2017-03-20 19:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-20 19:26 - 2017-03-20 19:28 - 47508936 _____ C:\Users\Frantisek\Downloads\Firefox Setup 52.0.1.exe
2017-03-20 18:20 - 2017-03-20 18:20 - 01222441 _____ (FTweak, Inc. ) C:\Users\Frantisek\Documents\fcleaner.exe
2017-03-20 18:17 - 2017-03-20 18:17 - 08813488 _____ (Piriform Ltd) C:\Users\Frantisek\Documents\ccsetup526 (1).exe
2017-03-20 17:18 - 2017-03-20 17:18 - 01129376 _____ (Google Inc.) C:\Users\Frantisek\Downloads\ChromeSetup.exe
2017-03-20 15:44 - 2017-03-22 18:21 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Seznam Browser
2017-03-16 18:35 - 2017-03-04 09:12 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:33 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-16 18:35 - 2017-03-04 08:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-16 18:35 - 2017-03-04 07:58 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-16 18:35 - 2017-03-04 07:19 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2017-03-16 18:35 - 2017-03-04 07:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-16 18:35 - 2017-03-04 07:16 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-16 18:35 - 2017-03-04 07:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2017-03-16 18:35 - 2017-03-04 07:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-03-16 18:35 - 2017-03-04 07:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-03-16 18:35 - 2017-03-04 07:03 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-03-16 18:35 - 2017-03-04 06:51 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-03-16 18:35 - 2017-03-04 06:47 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-16 18:35 - 2017-03-04 06:45 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-16 18:35 - 2017-03-04 06:42 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-03-16 18:35 - 2017-03-04 06:42 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-16 18:35 - 2017-03-04 06:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2017-03-16 18:35 - 2017-03-04 06:31 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-16 18:35 - 2017-03-04 06:31 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-16 18:35 - 2017-03-04 06:30 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-16 18:35 - 2017-03-04 06:29 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-03-16 18:35 - 2017-03-04 06:28 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-03-16 18:35 - 2017-03-04 06:27 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-16 18:35 - 2017-03-04 06:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-16 18:35 - 2017-03-04 06:23 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-16 18:35 - 2017-03-04 06:21 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-16 18:35 - 2017-03-04 06:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-03-16 18:35 - 2017-03-04 06:18 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2017-03-16 18:35 - 2017-03-04 06:08 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-16 18:35 - 2017-03-04 05:59 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-16 18:35 - 2017-03-04 05:55 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-16 18:35 - 2017-03-04 05:54 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-16 18:35 - 2017-03-04 05:54 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-16 18:35 - 2017-03-04 05:44 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-16 18:35 - 2017-03-04 05:38 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-16 18:35 - 2017-03-04 05:35 - 05326336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-16 18:35 - 2017-03-04 05:35 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-16 18:35 - 2017-03-04 05:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-16 18:35 - 2017-03-04 05:31 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-16 18:35 - 2017-03-04 05:31 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-03-16 18:35 - 2017-03-04 05:30 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-16 18:35 - 2017-03-04 05:29 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-16 18:35 - 2017-03-04 05:03 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-16 18:34 - 2017-03-04 09:39 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-16 18:34 - 2017-03-04 09:39 - 00602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-03-16 18:34 - 2017-03-04 09:29 - 00535088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-16 18:34 - 2017-03-04 09:27 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-03-16 18:34 - 2017-03-04 08:43 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-16 18:34 - 2017-03-04 08:34 - 01824272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-03-16 18:34 - 2017-03-04 08:33 - 02942536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 04075184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-16 18:34 - 2017-03-04 08:29 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-16 18:34 - 2017-03-04 08:25 - 00268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-16 18:34 - 2017-03-04 07:57 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-16 18:34 - 2017-03-04 07:55 - 01370224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-03-16 18:34 - 2017-03-04 07:41 - 02448752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-16 18:34 - 2017-03-04 07:41 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2017-03-16 18:34 - 2017-03-04 07:40 - 00473616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-03-16 18:34 - 2017-03-04 07:40 - 00467440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-03-16 18:34 - 2017-03-04 07:27 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-16 18:34 - 2017-03-04 07:15 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2017-03-16 18:34 - 2017-03-04 07:06 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2017-03-16 18:34 - 2017-03-04 07:06 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.dll
2017-03-16 18:34 - 2017-03-04 07:00 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-03-16 18:34 - 2017-03-04 06:57 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-16 18:34 - 2017-03-04 06:57 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-16 18:34 - 2017-03-04 06:57 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\feclient.dll
2017-03-16 18:34 - 2017-03-04 06:56 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-03-16 18:34 - 2017-03-04 06:55 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-03-16 18:34 - 2017-03-04 06:49 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-16 18:34 - 2017-03-04 06:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-03-16 18:34 - 2017-03-04 06:48 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apds.dll
2017-03-16 18:34 - 2017-03-04 06:46 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-03-16 18:34 - 2017-03-04 06:45 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-03-16 18:34 - 2017-03-04 06:45 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-16 18:34 - 2017-03-04 06:37 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-03-16 18:34 - 2017-03-04 06:33 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-16 18:34 - 2017-03-04 06:33 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-03-16 18:34 - 2017-03-04 06:32 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-16 18:34 - 2017-03-04 06:32 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-03-16 18:34 - 2017-03-04 06:29 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-16 18:34 - 2017-03-04 06:26 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-16 18:34 - 2017-03-04 06:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-16 18:34 - 2017-03-04 06:26 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-16 18:34 - 2017-03-04 06:25 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-16 18:34 - 2017-03-04 06:22 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-16 18:34 - 2017-03-04 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-16 18:34 - 2017-03-04 06:19 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-16 18:34 - 2017-03-04 06:15 - 01986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-16 18:34 - 2017-03-04 06:14 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-16 18:34 - 2017-03-04 06:13 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2017-03-16 18:34 - 2017-03-04 06:05 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2017-03-16 18:34 - 2017-03-04 06:03 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2017-03-16 18:34 - 2017-03-04 06:01 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2017-03-16 18:34 - 2017-03-04 06:00 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-16 18:34 - 2017-03-04 05:58 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2017-03-16 18:34 - 2017-03-04 05:57 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-16 18:34 - 2017-03-04 05:57 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-16 18:34 - 2017-03-04 05:57 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-16 18:34 - 2017-03-04 05:52 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-16 18:34 - 2017-03-04 05:52 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-16 18:34 - 2017-03-04 05:51 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-16 18:34 - 2017-03-04 05:51 - 09921024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-16 18:34 - 2017-03-04 05:41 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-16 18:34 - 2017-03-04 05:36 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-16 18:34 - 2017-03-04 05:31 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-16 18:33 - 2017-03-04 10:01 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-03-16 18:33 - 2017-03-04 09:54 - 00989528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-16 18:33 - 2017-03-04 09:18 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-16 18:33 - 2017-03-04 09:18 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-16 18:33 - 2017-03-04 09:12 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-16 18:33 - 2017-03-04 09:07 - 01040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-16 18:33 - 2017-03-04 09:06 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-03-16 18:33 - 2017-03-04 08:00 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-16 18:33 - 2017-03-04 07:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-16 18:33 - 2017-03-04 07:37 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-03-16 18:33 - 2017-03-04 07:35 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-16 18:33 - 2017-03-04 07:19 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-03-16 18:33 - 2017-03-04 07:11 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-03-16 18:33 - 2017-03-04 07:10 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-16 18:33 - 2017-03-04 07:04 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-03-16 18:33 - 2017-03-04 06:57 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-16 18:33 - 2017-03-04 06:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-03-16 18:33 - 2017-03-04 06:53 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-16 18:33 - 2017-03-04 06:41 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-16 18:33 - 2017-03-04 06:23 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-16 18:33 - 2017-03-04 05:31 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-16 18:33 - 2017-03-04 05:20 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-03-16 18:33 - 2017-03-04 05:19 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-16 18:32 - 2017-03-04 09:48 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-16 18:32 - 2017-03-04 09:19 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-16 18:32 - 2017-03-04 09:19 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-16 18:32 - 2017-03-04 08:09 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2017-03-16 18:32 - 2017-03-04 08:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2017-03-16 18:32 - 2017-03-04 08:01 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-16 18:32 - 2017-03-04 07:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2017-03-16 18:32 - 2017-03-04 07:49 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-03-16 18:32 - 2017-03-04 07:41 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-16 18:32 - 2017-03-04 07:27 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-16 18:32 - 2017-03-04 07:20 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-16 18:32 - 2017-03-04 07:19 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-16 18:32 - 2017-03-04 07:19 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-16 18:32 - 2017-03-04 07:17 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-16 18:32 - 2017-03-04 07:17 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-03-16 18:32 - 2017-03-04 07:16 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-16 18:32 - 2017-03-04 07:13 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-16 18:32 - 2017-03-04 07:08 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-16 18:32 - 2017-03-04 07:03 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-03-16 18:32 - 2017-03-04 07:02 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-03-16 18:32 - 2017-03-04 06:35 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-03-16 18:32 - 2017-03-04 06:24 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2017-03-16 18:32 - 2017-03-04 05:26 - 12590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-16 18:31 - 2017-03-04 07:08 - 00852992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-16 18:30 - 2017-03-04 10:13 - 01997832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-16 18:30 - 2017-03-04 10:13 - 00800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-03-16 18:30 - 2017-03-04 09:19 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-16 18:30 - 2017-03-04 09:18 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-16 18:30 - 2017-03-04 09:08 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-16 18:30 - 2017-03-04 09:08 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-16 18:30 - 2017-03-04 08:16 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-16 18:30 - 2017-03-04 08:09 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-16 18:30 - 2017-03-04 07:47 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-03-16 18:30 - 2017-03-04 07:44 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2017-03-16 18:30 - 2017-03-04 07:34 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-03-16 18:30 - 2017-03-04 07:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2017-03-16 18:30 - 2017-03-04 07:31 - 00185856 _____ C:\WINDOWS\system32\ism32k.dll
2017-03-16 18:30 - 2017-03-04 07:29 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-16 18:30 - 2017-03-04 07:29 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-03-16 18:30 - 2017-03-04 07:23 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-16 18:30 - 2017-03-04 07:15 - 00695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-16 18:30 - 2017-03-04 07:11 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-03-16 18:30 - 2017-03-04 07:09 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2017-03-16 18:30 - 2017-03-04 07:08 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-03-16 18:30 - 2017-03-04 07:04 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-16 18:30 - 2017-03-04 07:03 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-03-16 18:30 - 2017-03-04 07:02 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-16 18:30 - 2017-03-04 07:00 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-16 18:30 - 2017-03-04 06:53 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-16 18:30 - 2017-03-04 06:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2017-03-16 18:30 - 2017-03-04 06:32 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-03-16 18:30 - 2017-03-04 06:25 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanpref.dll
2017-03-16 18:30 - 2017-03-04 06:18 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-16 18:30 - 2017-03-04 06:00 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-16 18:30 - 2017-03-04 05:59 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-16 18:30 - 2017-03-04 05:52 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-03-16 18:30 - 2017-03-04 05:36 - 03428352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-16 18:30 - 2017-03-04 05:36 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-16 18:30 - 2017-03-04 05:34 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-16 18:30 - 2017-03-04 05:28 - 14258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-16 18:29 - 2017-03-04 09:56 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-16 18:29 - 2017-03-04 09:49 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-03-16 18:29 - 2017-03-04 09:12 - 03695152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-16 18:29 - 2017-03-04 08:29 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-16 18:29 - 2017-03-04 08:27 - 00431456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-16 18:29 - 2017-03-04 08:24 - 00420704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-16 18:29 - 2017-03-04 08:17 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-16 18:29 - 2017-03-04 08:17 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-16 18:29 - 2017-03-04 07:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-16 18:29 - 2017-03-04 07:59 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2017-03-16 18:29 - 2017-03-04 07:58 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-03-16 18:29 - 2017-03-04 07:57 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2017-03-16 18:29 - 2017-03-04 07:27 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-03-16 18:29 - 2017-03-04 07:23 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-03-16 18:29 - 2017-03-04 07:22 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-03-16 18:29 - 2017-03-04 07:19 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-03-16 18:29 - 2017-03-04 07:16 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-16 18:29 - 2017-03-04 07:09 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-03-16 18:29 - 2017-03-04 07:05 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-03-16 18:29 - 2017-03-04 07:05 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-16 18:29 - 2017-03-04 07:03 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-16 18:29 - 2017-03-04 07:03 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-16 18:29 - 2017-03-04 06:59 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-16 18:29 - 2017-03-04 06:58 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2017-03-16 18:29 - 2017-03-04 06:56 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-03-16 18:29 - 2017-03-04 06:54 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-16 18:29 - 2017-03-04 06:54 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-16 18:29 - 2017-03-04 06:49 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-03-16 18:29 - 2017-03-04 06:48 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-16 18:29 - 2017-03-04 06:41 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwave.dll
2017-03-16 18:29 - 2017-03-04 06:33 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-03-16 18:29 - 2017-03-04 06:31 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-16 18:29 - 2017-03-04 06:30 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-03-16 18:29 - 2017-03-04 06:29 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-16 18:29 - 2017-03-04 06:25 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-03-16 18:29 - 2017-03-04 06:19 - 03404800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-16 18:29 - 2017-03-04 06:13 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-16 18:29 - 2017-03-04 06:11 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-16 18:29 - 2017-03-04 05:50 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-16 18:29 - 2017-03-04 05:48 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-16 18:29 - 2017-03-04 05:39 - 18672128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-16 18:29 - 2017-03-04 05:37 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-16 18:29 - 2017-03-04 05:36 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-16 18:29 - 2017-03-04 05:36 - 12134912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-16 18:29 - 2017-03-04 05:21 - 05671424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-16 18:29 - 2017-01-24 04:22 - 00447095 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-16 18:28 - 2017-03-04 10:13 - 07467872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-16 18:28 - 2017-03-04 10:13 - 01098648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-03-16 18:28 - 2017-03-04 10:12 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-16 18:28 - 2017-03-04 10:04 - 00687496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-16 18:28 - 2017-03-04 09:12 - 02607336 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-16 18:28 - 2017-03-04 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-03-16 18:28 - 2017-03-04 07:45 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-03-16 18:28 - 2017-03-04 07:39 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-16 18:28 - 2017-03-04 07:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-03-16 18:28 - 2017-03-04 07:26 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-16 18:28 - 2017-03-04 07:08 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2017-03-16 18:28 - 2017-03-04 07:05 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-16 18:28 - 2017-03-04 06:59 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-16 18:28 - 2017-03-04 06:59 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-16 18:28 - 2017-03-04 06:58 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-03-16 18:28 - 2017-03-04 06:57 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-16 18:28 - 2017-03-04 06:56 - 01648128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-16 18:28 - 2017-03-04 06:55 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-16 18:28 - 2017-03-04 06:50 - 02054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-03-16 18:28 - 2017-03-04 06:42 - 02436096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-16 18:28 - 2017-03-04 06:22 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-16 18:28 - 2017-03-04 06:04 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-03-16 18:28 - 2017-03-04 05:58 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-16 18:28 - 2017-03-04 05:55 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-03-16 18:28 - 2017-03-04 05:43 - 22375424 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-16 18:28 - 2017-03-04 05:34 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-16 18:28 - 2017-03-04 05:33 - 24603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-16 18:28 - 2017-03-04 05:31 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-16 18:28 - 2017-03-04 05:19 - 07855616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-16 17:37 - 2017-03-04 08:16 - 02831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-16 17:27 - 2017-03-04 08:15 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-03-16 17:11 - 2017-03-04 08:15 - 00521192 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-03-16 17:07 - 2017-03-04 10:09 - 00610632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-16 17:06 - 2017-03-04 08:16 - 01062992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2017-03-16 17:03 - 2017-03-04 07:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2017-03-16 17:02 - 2017-03-04 09:20 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-16 17:00 - 2017-03-04 07:28 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\apds.dll
2017-03-16 16:58 - 2017-03-04 07:39 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabbtnEx.dll
2017-03-16 16:58 - 2017-03-04 06:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-03-16 16:57 - 2017-03-04 07:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-03-16 16:56 - 2017-03-04 06:03 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-16 16:54 - 2017-03-04 07:26 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-03-16 16:52 - 2017-03-04 06:10 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-03-16 16:51 - 2017-03-04 06:46 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinFax.dll
2017-03-16 16:23 - 2017-03-04 07:25 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2017-03-16 16:22 - 2017-03-04 07:21 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2017-03-16 16:22 - 2017-03-04 07:07 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2017-03-16 16:21 - 2017-03-04 10:10 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-16 16:21 - 2017-03-04 07:28 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-16 16:21 - 2017-03-04 07:20 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-16 16:20 - 2017-03-04 08:32 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-16 16:13 - 2017-03-04 07:40 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-03-16 16:13 - 2017-03-04 07:24 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-03-16 16:12 - 2017-03-04 06:34 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-03-16 16:11 - 2017-03-04 06:08 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-16 16:10 - 2017-03-04 07:11 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-16 16:10 - 2017-03-04 06:39 - 01297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-16 16:09 - 2017-03-04 07:26 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-03-16 16:08 - 2017-03-04 07:06 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-03-16 16:06 - 2017-03-04 07:38 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-03-16 16:05 - 2017-03-04 07:21 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2017-03-16 16:05 - 2017-03-04 07:14 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-16 16:04 - 2017-03-04 06:58 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-16 16:03 - 2017-03-04 09:06 - 00742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-03-16 16:03 - 2017-03-04 09:04 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-03-16 16:02 - 2017-03-04 07:28 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-16 16:02 - 2017-03-04 06:53 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-16 16:00 - 2017-03-04 07:31 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-03-16 15:59 - 2017-03-04 09:06 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-03-16 15:59 - 2017-03-04 09:04 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-03-16 15:59 - 2017-03-04 07:24 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-16 15:58 - 2017-03-04 08:31 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-03-16 15:58 - 2017-03-04 07:02 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-16 15:57 - 2017-03-04 09:09 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-16 15:57 - 2017-03-04 06:12 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-16 15:56 - 2017-03-04 07:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-16 15:54 - 2017-03-04 07:05 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-16 15:53 - 2017-03-04 09:07 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-16 15:53 - 2017-03-04 07:26 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-16 15:51 - 2017-03-04 06:55 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-16 15:49 - 2017-03-04 06:53 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-16 15:48 - 2017-03-04 06:03 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-16 15:48 - 2017-03-04 05:42 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-16 15:47 - 2017-03-04 06:47 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-03-16 15:46 - 2017-03-04 06:27 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-03-16 15:45 - 2017-03-04 05:31 - 06976512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-16 15:44 - 2017-03-04 07:07 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-16 15:43 - 2017-03-04 07:07 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-16 15:43 - 2017-03-04 05:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-03-16 15:42 - 2017-03-04 05:34 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-16 15:41 - 2017-03-04 07:03 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-16 15:41 - 2017-03-04 07:02 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-03-16 15:40 - 2017-03-04 06:52 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-03-16 15:39 - 2017-03-04 05:56 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-16 15:38 - 2017-03-04 07:22 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2017-03-16 15:38 - 2017-03-04 07:07 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-16 15:37 - 2017-03-04 08:32 - 01987424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-16 15:37 - 2017-03-04 07:15 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-03-16 15:37 - 2017-03-04 06:20 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-16 15:36 - 2017-03-04 09:08 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-16 15:36 - 2017-03-04 07:02 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-16 15:35 - 2017-03-04 07:02 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-03-16 15:35 - 2017-03-04 06:31 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-16 15:34 - 2017-03-04 05:31 - 03994112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-16 15:33 - 2017-03-04 06:57 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-16 15:31 - 2017-03-04 09:08 - 04516800 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-16 15:31 - 2017-03-04 09:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-16 15:31 - 2017-03-04 07:08 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-16 15:31 - 2017-03-04 07:02 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-16 15:30 - 2017-03-04 05:35 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-16 15:29 - 2017-03-04 06:41 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-16 15:29 - 2017-03-04 05:52 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-16 15:28 - 2017-03-04 07:13 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-03-16 15:27 - 2017-03-04 06:19 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-16 15:26 - 2017-03-04 06:24 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-03-16 15:24 - 2017-03-04 07:09 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-16 15:24 - 2017-03-04 06:35 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-16 15:24 - 2017-03-04 06:08 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-16 15:23 - 2017-03-04 07:02 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-16 15:21 - 2017-03-04 05:41 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-16 15:14 - 2017-03-04 10:15 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-16 15:14 - 2017-03-04 10:15 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-16 15:14 - 2017-03-04 09:55 - 01038176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-16 15:14 - 2017-03-04 09:09 - 00230752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-16 15:14 - 2017-03-04 09:03 - 00341944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-16 15:14 - 2017-03-04 07:49 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-03-16 15:14 - 2017-03-04 07:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-03-16 15:14 - 2017-03-04 07:38 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\feclient.dll
2017-03-16 15:14 - 2017-03-04 07:36 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-03-16 15:14 - 2017-03-04 07:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-03-16 15:14 - 2017-03-04 07:16 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-03-16 15:14 - 2017-03-04 06:58 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-16 15:14 - 2017-03-04 06:47 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-03-16 15:14 - 2017-03-04 06:31 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-16 15:14 - 2017-03-04 06:30 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2017-03-16 15:14 - 2017-03-04 06:27 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-03-16 15:14 - 2017-03-04 06:27 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2017-03-16 15:14 - 2017-03-04 06:18 - 04826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-16 15:14 - 2017-03-04 06:08 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-03-16 15:14 - 2017-03-04 05:13 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-06 16:47 - 2017-03-06 16:47 - 00000000 ____D C:\Users\Frantisek\Tracing

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-04 21:33 - 2015-07-11 09:30 - 00000000 __SHD C:\Users\Frantisek\IntelGraphicsProfiles
2017-04-04 21:32 - 2015-08-12 18:11 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-04-04 20:07 - 2016-07-11 18:35 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2017-04-04 20:02 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2017-04-04 19:59 - 2016-01-29 09:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-04 19:59 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-04-04 07:44 - 2015-07-19 14:41 - 00000000 ____D C:\ProgramData\Ashampoo
2017-04-04 00:26 - 2016-01-29 08:56 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-03 23:52 - 2015-10-30 20:31 - 01081498 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-03 23:52 - 2015-10-30 20:31 - 00249432 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-03 23:52 - 2015-07-31 09:44 - 00005430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-03 03:34 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Registration
2017-04-03 03:32 - 2015-07-31 08:24 - 00036198 _____ C:\WINDOWS\diagwrn.xml
2017-04-03 03:32 - 2015-07-31 08:24 - 00036198 _____ C:\WINDOWS\diagerr.xml
2017-04-03 03:30 - 2016-01-29 09:07 - 00000000 ____D C:\Users\Frantisek
2017-04-01 14:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-01 14:14 - 2016-06-21 17:22 - 00000000 ____D C:\WINDOWS\Minidump
2017-03-29 16:42 - 2015-07-13 09:38 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-03-29 11:39 - 2015-07-11 11:46 - 00000000 ____D C:\Users\Frantisek\AppData\Local\CrashDumps
2017-03-28 22:15 - 2015-08-30 11:22 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-28 21:45 - 2015-07-11 15:50 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Seznam.cz
2017-03-27 16:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-27 15:55 - 2015-07-12 00:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-27 15:36 - 2016-01-29 08:57 - 00353680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-27 15:32 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-03-27 15:32 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-27 12:04 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-22 17:25 - 2015-07-11 09:40 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{10F925A2-5A5C-4231-B555-0696BCCE3A96}
2017-03-22 11:00 - 2016-10-15 15:23 - 00000000 ____D C:\Users\Frantisek\Documents\Cestopisy
2017-03-22 10:56 - 2016-10-15 15:20 - 00000000 ____D C:\Users\Frantisek\Documents\Zdraví
2017-03-22 10:34 - 2016-10-15 15:27 - 00000000 ____D C:\Users\Frantisek\Documents\0_Různé
2017-03-20 17:16 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-20 15:46 - 2016-12-17 11:48 - 00000992 _____ C:\Users\Frantisek\Desktop\Seznam.cz.lnk
2017-03-20 15:46 - 2016-03-01 15:02 - 00000972 _____ C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-03-20 13:03 - 2015-07-16 19:17 - 00000000 ___RD C:\Users\Frantisek\OneDrive
2017-03-19 16:20 - 2015-07-11 14:48 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Skype
2017-03-15 12:13 - 2015-07-13 21:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-15 12:06 - 2015-07-13 21:06 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-13 11:49 - 2015-08-12 18:11 - 01000160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2017-03-13 11:49 - 2015-08-12 18:11 - 00185112 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2017-03-13 11:49 - 2015-07-03 02:20 - 00116448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2017-03-13 11:48 - 2015-08-12 18:11 - 00244448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2017-03-10 10:59 - 2017-01-19 18:40 - 00003274 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-10 10:59 - 2015-07-17 16:08 - 00002436 _____ C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-10 06:42 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 06:42 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-09 18:27 - 2015-08-12 16:24 - 00000000 ____D C:\Users\Frantisek\AppData\Local\Microsoft Help
2017-03-05 09:05 - 2015-10-14 09:46 - 00003778 _____ C:\WINDOWS\System32\Tasks\ACC
2017-03-05 09:05 - 2015-10-14 09:46 - 00003060 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2017-03-05 09:05 - 2014-08-29 14:40 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2017-03-05 03:57 - 2016-01-29 09:01 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

==================== Files in the root of some directories =======

2017-01-26 12:20 - 2015-07-11 15:17 - 0001121 _____ () C:\Program Files\FastStone Image Viewer.lnk
2015-07-11 09:30 - 2015-07-31 08:23 - 0050514 _____ () C:\Users\Frantisek\AppData\Local\BTServer.log
2016-01-29 09:03 - 2016-01-29 09:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================

ShortcutWithArgument: C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Imperia Online\Imperia Online.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://www.imperiaonline.org/?ref_ad=src123 --app-window-size=1600,900

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Kaspersky Anti-Virus (Enabled - Out of date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Frantisek\Desktop" je 104 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Re: Zaížení HDD 100%

Napsal: 05 dub 2017 08:08
od Márty84
:arrow: Jako antivir pouzivate Kasperkeho? Bezi vam tam totiz i Norton. Jeden z nich je potreba kompletne odinstalovat, jinak dochazi ke kolizim.


:arrow: Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [714992 2016-05-13] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [352648 2016-12-26] (RealNetworks, Inc.)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [BingSvc] => C:\Users\Frantisek\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe [2412952 2015-09-30] ()
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify Web Helper] => C:\Users\Frantisek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify] => C:\Users\Frantisek\AppData\Roaming\Spotify\Spotify.exe [8387696 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\RunOnce: [Application Restart #0] => C:\Users\Frantisek\AppData\Roaming\Seznam Browser\Seznam.cz.exe [828600 2017-03-15] (Seznam.cz)
HKU\S-1-5-18\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-19] (Skype Technologies S.A.)
IFEO\bsdiff_patch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\bstgamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\comscore.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\convert.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\crashsender1402.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\dbclean.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffmpeg.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffprobe.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\fixrjb.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole-wt.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelicensing.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\glcheck.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\hd-installchecker.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\msgtest.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\nativeuserproxy.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\park.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\patchhelper.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\proclaunch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\r1puninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realcleaner.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realconverter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realjbox.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realonemessagecenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realplay.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realsched.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realtrimmer.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rndevicedbbuilder.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rnxproc.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rphelperapp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rpsystray.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rtcreator.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\screenorientationx64.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\segmenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\setup.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninstall.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\upgrdhlp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\wtapp_protocolhandler.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File

Toolbar: HKLM-x32 - No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
Toolbar: HKU\.DEFAULT -> No Name - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - No File
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found

S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)

C:\WINDOWS\System32\DRIVERS\mfencbdc.sys
C:\WINDOWS\System32\DRIVERS\mfencrk.sys

2017-03-30 21:24 - 2017-03-29 21:10 - 59272008 _____ (Malwarebytes ) C:\Users\Frantisek\Desktop\mb3-setup-consumer-3.0.6.1469-1096.exe

Hosts:
EmptyTemp:
Reboot:
End
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

Re: Zaížení HDD 100%

Napsal: 05 dub 2017 18:22
od mildahk
Norton jsem nenasel mezi nainstalovanýma programama..........


Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Frantisek (05-04-2017 19:00:13) Run:1
Running from C:\Users\Frantisek\Desktop
Loaded Profiles: Frantisek (Available Profiles: Frantisek)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [RealDownloader] => C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [714992 2016-05-13] ()
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [352648 2016-12-26] (RealNetworks, Inc.)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [BingSvc] => C:\Users\Frantisek\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [AudialsNotifier] => C:\Program Files (x86)\Audials\Audials 2016\AudialsNotifier.exe [2412952 2015-09-30] ()
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify Web Helper] => C:\Users\Frantisek\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2346096 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [Spotify] => C:\Users\Frantisek\AppData\Roaming\Spotify\Spotify.exe [8387696 2016-01-03] (Spotify Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\RunOnce: [Application Restart #0] => C:\Users\Frantisek\AppData\Roaming\Seznam Browser\Seznam.cz.exe [828600 2017-03-15] (Seznam.cz)
HKU\S-1-5-18\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50615936 2016-01-19] (Skype Technologies S.A.)
IFEO\bsdiff_patch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\bstgamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\comscore.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\convert.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\crashsender1402.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\dbclean.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffmpeg.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\ffprobe.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\fixrjb.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole-wt.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gameconsole.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelauncher.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\gamelicensing.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\glcheck.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\hd-installchecker.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\msgtest.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\nativeuserproxy.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\park.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\patchhelper.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\proclaunch.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\r1puninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realcleaner.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realconverter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realjbox.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realonemessagecenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realplay.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realsched.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\realtrimmer.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rndevicedbbuilder.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rnxproc.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rphelperapp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rpsystray.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\rtcreator.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\screenorientationx64.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\segmenter.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\setup.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninst.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\uninstall.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\upgrdhlp.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
IFEO\wtapp_protocolhandler.exe: [Debugger] "C:\Program Files (x86)\Zrychleni Pocitace\PCSUSD.exe" /debugexe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File

Toolbar: HKLM-x32 - No Name - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No File
Toolbar: HKU\.DEFAULT -> No Name - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - No File
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor => not found

S3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)

C:\WINDOWS\System32\DRIVERS\mfencbdc.sys
C:\WINDOWS\System32\DRIVERS\mfencrk.sys

2017-03-30 21:24 - 2017-03-29 21:10 - 59272008 _____ (Malwarebytes ) C:\Users\Frantisek\Desktop\mb3-setup-consumer-3.0.6.1469-1096.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Malwarebytes TrayApp => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\RealDownloader => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\TkBellExe => value removed successfully
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run\\BingSvc => value removed successfully
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AudialsNotifier => value removed successfully
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Spotify Web Helper => value removed successfully
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Spotify => value removed successfully
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Application Restart #0 => value removed successfully
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bsdiff_patch.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bstgamelauncher.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\comscore.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\convert.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\crashsender1402.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dbclean.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ffmpeg.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\ffprobe.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\fixrjb.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\gameconsole-wt.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\gameconsole.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\gamelauncher.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\gamelicensing.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\glcheck.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\hd-installchecker.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\msgtest.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\nativeuserproxy.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\park.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\patchhelper.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\proclaunch.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\r1puninst.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realcleaner.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realconverter.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realjbox.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realonemessagecenter.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realplay.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realsched.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\realtrimmer.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rndevicedbbuilder.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rnxproc.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rphelperapp.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rpsystray.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rtcreator.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\screenorientationx64.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\segmenter.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\setup.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\uninst.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\uninstall.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\upgrdhlp.exe => key removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\wtapp_protocolhandler.exe => key removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{91397D20-1446-11D4-8AF4-0040CA1127B6} => value removed successfully
HKCR\Wow6432Node\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6} => key not found.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3507FA00-ADA2-4A02-99B9-51AD26CA9120} => value removed successfully
HKCR\CLSID\{3507FA00-ADA2-4A02-99B9-51AD26CA9120} => key not found.
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKLM\Software\Mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} => value removed successfully
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} => value removed successfully
HKLM\System\CurrentControlSet\Services\mfencbdc => key removed successfully
mfencbdc => service removed successfully
HKLM\System\CurrentControlSet\Services\mfencrk => key removed successfully
mfencrk => service removed successfully
C:\WINDOWS\System32\DRIVERS\mfencbdc.sys => moved successfully
C:\WINDOWS\System32\DRIVERS\mfencrk.sys => moved successfully
C:\Users\Frantisek\Desktop\mb3-setup-consumer-3.0.6.1469-1096.exe => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 52023 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 19284048 B
Java, Flash, Steam htmlcache => 831 B
Windows/system/drivers => 20408237 B
Edge => 24087441 B
Chrome => 27164672 B
Firefox => 8404425 B
Opera => 10638048 B

Temp, IE cache, history, cookies, recent:
Default => 6980 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 4511298 B
NetworkService => 58466304 B
Frantisek => 74257374 B

RecycleBin => 0 B
EmptyTemp: => 235.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:14:31 ====

Re: Zaížení HDD 100%

Napsal: 05 dub 2017 18:49
od Márty84
mildahk píše:Norton jsem nenasel mezi nainstalovanýma programama..........
Pouzijte jejich odinstalator ftp://ftp.symantec.com/public/english_u ... l_Tool.exe

Pote vlozte novy log z FRST. Pokud tam neco zustane, budu to muset odpalit silou.

Re: Zaížení HDD 100%

Napsal: 05 dub 2017 22:25
od mildahk
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by Frantisek (administrator) on PC2 (05-04-2017 23:12:57)
Running from C:\Users\Frantisek\Desktop
Loaded Profiles: Frantisek (Available Profiles: Frantisek)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealDownloader\realupgrade.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avpui.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\wmi64.exe
() C:\WINDOWS\SysWOW64\UMonit64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(forum.viry.cz) C:\Users\Frantisek\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16405744 2015-09-06] (Realtek Semiconductor)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\...\Run: [RemoteFilesTrayIcon] => C:\Program Files (x86)\Acer\abFiles\abFilesTrayIcon.exe [2290016 2015-09-01] (acer)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => -> No File
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => -> No File
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => -> No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2016-12-26]
ShortcutTarget: RealTimes.lnk -> C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-12-21]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 62.240.163.170
Tcpip\..\Interfaces\{1b5e622a-9a51-4248-b9dd-b42314b65ed3}: [DhcpNameServer] 8.8.8.8 62.240.163.170
Tcpip\..\Interfaces\{c4d88938-920d-4723-afc2-18d7dd58dc29}: [DhcpNameServer] 8.8.8.8 62.240.163.170

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-624710310-1573440917-3902535481-1001\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 0606296DDCD01D5672AEEB208418151E URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 376E4C472E903713EE23F0C884E88710 URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> 9718EE986FE10BFEFDD205D7CCE5EDCE URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> C19BE935622B379A35226BC19F929B46 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_6826&q={searchTerms}
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll [2016-11-11] (RealDownloader)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\Real\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2016-11-11] (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\IEExt\ie_plugin.dll [2016-12-01] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (CANON INC.)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-624710310-1573440917-3902535481-1001 -> hxxp://www.seznam.cz/?clid=6826

FireFox:
========
FF ProfilePath: C:\Users\Frantisek\AppData\Roaming\Mozilla\Firefox\Profiles\ru03g6f6.default-1490031142948 [2017-04-05]
FF Homepage: Mozilla\Firefox\Profiles\ru03g6f6.default-1490031142948 -> hxxps://www.seznam.cz/
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-05-14] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=18.1.6.161 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2016-12-26] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=18.1.6.161 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2016-12-26] (RealPlayer)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Profile: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default [2017-04-05]
CHR Extension: (Prezentace Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-16]
CHR Extension: (Dokumenty Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-16]
CHR Extension: (Disk Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (Volání přes Skype) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2015-12-31]
CHR Extension: (YouTube) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-04]
CHR Extension: (Vyhledávání Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (YOU.DJ app) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\defekohaofmambflfpfoojkmfdpcbgko [2016-10-29]
CHR Extension: (Tabulky Google) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Tlačítko Uložit) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-02-27]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2017-02-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-14]
CHR Extension: (Gmail) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-16]
CHR Extension: (Chrome Media Router) - C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-09]
CHR Profile: C:\Users\Frantisek\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-05]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi

Opera:
=======
OPR StartupUrls: "hxxp://www.seznam.cz/?clid=6826"

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [328624 2015-10-28] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-02] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-02] (Intel(R) Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [455912 2014-12-30] (Acer Incorporate)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [35104 2016-11-11] ()
R2 RealTimes Desktop Service; C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [987408 2016-12-26] (RealNetworks, Inc.)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2016-10-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24856 2017-03-04] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [389816 2015-07-06] (Kaspersky Lab ZAO)
R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [173384 2014-04-08] (ELAN Microelectronic Corp.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [111336 2014-04-28] (GenesysLogic)
R3 iaioi2c; C:\WINDOWS\System32\drivers\iaioi2ce.sys [67584 2013-11-11] (Intel Corporation)
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [79752 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78200 2015-12-02] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [30328 2015-06-24] (Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [185112 2017-03-13] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [244448 2017-03-13] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1000160 2017-03-13] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [51288 2016-05-05] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [87984 2016-08-16] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [116448 2017-03-13] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [194440 2015-12-03] (AO Kaspersky Lab)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-18] (Acer Incorporated)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251832 2017-04-05] (Malwarebytes)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [29464 2013-12-10] (Intel Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-18] (Acer Incorporated)
S3 RRNetCap; C:\WINDOWS\system32\DRIVERS\rrnetcap.sys [37480 2013-07-15] (RapidSolution Software AG)
R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [615728 2016-01-16] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [3445248 2015-10-30] (Realtek Semiconductor Corporation )
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [88592 2014-01-16] (Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 cpuz134; \??\C:\Users\FRANTI~1\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-03-25 03:48 - 2022-03-25 03:48 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC1.dat
2022-03-25 03:48 - 2022-03-25 03:48 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC0.dat
2022-03-25 02:22 - 2022-03-25 02:22 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTEQEX1.dat
2022-03-25 02:22 - 2022-03-25 02:22 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTEQEX0.dat
2017-04-05 23:11 - 2017-04-05 23:11 - 00007083 _____ C:\WINDOWS\SysWOW64\rsslogs.20170405231018
2017-04-05 23:02 - 2017-04-05 22:33 - 00900296 _____ C:\Users\Frantisek\Desktop\Norton_Removal_Tool.exe
2017-04-05 22:46 - 2017-04-05 22:46 - 00028320 _____ C:\WINDOWS\SysWOW64\rsslogs.20170405224536
2017-04-05 19:18 - 2017-04-05 19:18 - 00246015 _____ C:\WINDOWS\SysWOW64\rsslogs.20170405191741
2017-04-05 19:00 - 2017-04-05 19:14 - 00015932 _____ C:\Users\Frantisek\Desktop\Fixlog.txt
2017-04-05 18:56 - 2017-04-05 19:00 - 00004720 _____ C:\WINDOWS\SysWOW64\rsslogs.20170405185558
2017-04-05 18:48 - 2017-04-05 18:48 - 00004720 _____ C:\WINDOWS\SysWOW64\rsslogs.20170405184718
2017-04-04 21:45 - 2017-04-05 23:12 - 00019581 _____ C:\Users\Frantisek\Desktop\FRST.txt
2017-04-04 20:01 - 2017-04-04 20:01 - 00464783 _____ C:\WINDOWS\SysWOW64\rsslogs.20170404200013
2017-04-04 03:42 - 2017-04-04 03:42 - 01154213 _____ C:\WINDOWS\SysWOW64\rsslogs.20170404034217
2017-04-03 10:28 - 2017-04-03 10:28 - 00000000 ___HD C:\$WINDOWS.~BT
2017-04-03 05:29 - 2017-04-03 05:29 - 08388608 ___SH C:\tmpgfile.sys
2017-04-03 04:43 - 2017-04-04 03:42 - 00697281 _____ C:\WINDOWS\SysWOW64\rsslogs.20170403044228
2017-04-02 22:32 - 2017-04-02 22:32 - 00001696 _____ C:\Users\Frantisek\Desktop\bbbbb.txt
2017-04-02 22:18 - 2017-04-02 22:18 - 00397602 _____ C:\WINDOWS\SysWOW64\rsslogs.20170402221700
2017-04-01 14:16 - 2017-04-01 14:16 - 00602698 _____ C:\WINDOWS\SysWOW64\rsslogs.20170401141504
2017-04-01 14:14 - 2017-04-01 14:15 - 00218556 _____ C:\WINDOWS\Minidump\040117-17906-01.dmp
2017-04-01 12:37 - 2017-04-01 12:37 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\31625D30.sys
2017-03-31 23:44 - 2017-04-05 23:10 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-03-31 23:44 - 2017-03-31 23:44 - 00001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-03-31 23:44 - 2017-03-31 23:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-03-31 23:44 - 2017-03-31 23:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-31 23:44 - 2017-03-31 23:44 - 00000000 ____D C:\Program Files\Malwarebytes
2017-03-31 23:44 - 2017-03-24 04:10 - 00077440 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-03-31 23:28 - 2017-03-31 23:28 - 01042704 _____ C:\WINDOWS\SysWOW64\rsslogs.20170331232745
2017-03-31 06:17 - 2017-03-31 06:17 - 01181386 _____ C:\WINDOWS\SysWOW64\rsslogs.20170331061609
2017-03-31 06:15 - 2017-04-01 14:14 - 4171227094 _____ C:\WINDOWS\MEMORY.DMP
2017-03-31 04:28 - 2017-03-31 04:28 - 00251832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\38AA1844.sys
2017-03-30 21:25 - 2017-03-30 21:25 - 00627933 _____ C:\WINDOWS\SysWOW64\rsslogs.20170330212421
2017-03-29 21:28 - 2017-03-29 21:28 - 00000959 _____ C:\Users\Frantisek\Desktop\HD Tune.lnk
2017-03-29 21:28 - 2017-03-29 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2017-03-29 21:28 - 2017-03-29 21:28 - 00000000 ____D C:\Program Files (x86)\HD Tune
2017-03-29 21:27 - 2017-03-29 21:07 - 08101056 _____ C:\Users\Frantisek\Desktop\hdtune_255.exe
2017-03-29 21:25 - 2017-03-30 21:25 - 01699806 _____ C:\WINDOWS\SysWOW64\rsslogs.20170329212435
2017-03-28 22:26 - 2017-03-29 21:25 - 01627312 _____ C:\WINDOWS\SysWOW64\rsslogs.20170328222504
2017-03-28 22:05 - 2017-03-28 22:05 - 00023615 _____ C:\WINDOWS\SysWOW64\rsslogs.20170328220404
2017-03-28 21:54 - 2017-03-28 22:19 - 00000000 ____D C:\AdwCleaner
2017-03-28 21:45 - 2017-03-28 21:45 - 00001233 _____ C:\Users\Frantisek\Desktop\CrystalDiskInfo.lnk
2017-03-28 21:45 - 2017-03-28 21:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-03-28 21:45 - 2017-03-28 21:45 - 00000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2017-03-28 21:44 - 2017-03-28 21:28 - 04089296 _____ C:\Users\Frantisek\Desktop\adwcleaner_6.045.exe
2017-03-28 21:40 - 2017-03-28 21:27 - 11418272 _____ C:\Users\Frantisek\Desktop\CrystalDiskInfo7_0_5.exe
2017-03-28 16:19 - 2017-03-28 22:03 - 00378705 _____ C:\WINDOWS\SysWOW64\rsslogs.20170328161832
2017-03-27 23:46 - 2017-04-05 23:12 - 00000000 ____D C:\FRST
2017-03-27 23:45 - 2017-03-27 23:43 - 02424832 _____ (Farbar) C:\Users\Frantisek\Desktop\FRST64.exe
2017-03-27 23:45 - 2017-01-25 20:12 - 00112640 _____ (forum.viry.cz) C:\Users\Frantisek\Desktop\FRSTLauncher.exe
2017-03-27 16:22 - 2017-03-27 16:22 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-03-27 15:38 - 2017-03-27 15:38 - 00043643 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327153719
2017-03-27 15:35 - 2017-03-27 15:35 - 00000000 ____D C:\WINDOWS\SysWOW64\%Data%
2017-03-27 14:50 - 2017-03-27 14:50 - 00031853 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327144942
2017-03-27 11:55 - 2017-03-27 11:55 - 00204041 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327115412
2017-03-27 11:05 - 2017-03-27 11:05 - 00057805 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327110410
2017-03-27 11:02 - 2017-03-27 23:56 - 00435880 _____ C:\WINDOWS\ntbtlog.txt
2017-03-27 10:15 - 2017-03-27 10:15 - 00054270 _____ C:\WINDOWS\SysWOW64\rsslogs.20170327101442
2017-03-22 19:22 - 2017-03-22 19:22 - 00031872 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322182113
2017-03-22 18:33 - 2017-03-22 19:20 - 00055481 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322173242
2017-03-22 18:11 - 2017-03-22 18:13 - 09274608 _____ (Piriform Ltd) C:\Users\Frantisek\Downloads\ccsetup528.exe
2017-03-22 17:42 - 2017-03-22 17:42 - 00059066 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322164119
2017-03-22 17:10 - 2017-03-22 17:10 - 00035422 _____ C:\WINDOWS\SysWOW64\rsslogs.20170322160916
2017-03-20 19:32 - 2017-03-20 19:32 - 00000000 ____D C:\Users\Frantisek\Desktop\Původní data aplikace Firefox
2017-03-20 19:31 - 2017-03-22 17:36 - 00000000 ____D C:\Users\Frantisek\AppData\LocalLow\Mozilla
2017-03-20 19:29 - 2017-03-20 19:29 - 00001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-20 19:29 - 2017-03-20 19:29 - 00000997 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-03-20 19:29 - 2017-03-20 19:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-03-20 19:29 - 2017-03-20 19:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-20 19:26 - 2017-03-20 19:28 - 47508936 _____ C:\Users\Frantisek\Downloads\Firefox Setup 52.0.1.exe
2017-03-20 18:20 - 2017-03-20 18:20 - 01222441 _____ (FTweak, Inc. ) C:\Users\Frantisek\Documents\fcleaner.exe
2017-03-20 18:17 - 2017-03-20 18:17 - 08813488 _____ (Piriform Ltd) C:\Users\Frantisek\Documents\ccsetup526 (1).exe
2017-03-20 17:18 - 2017-03-20 17:18 - 01129376 _____ (Google Inc.) C:\Users\Frantisek\Downloads\ChromeSetup.exe
2017-03-20 15:44 - 2017-03-22 18:21 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Seznam Browser
2017-03-16 18:35 - 2017-03-04 09:12 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:41 - 00701384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-03-16 18:35 - 2017-03-04 08:40 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2017-03-16 18:35 - 2017-03-04 08:33 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-03-16 18:35 - 2017-03-04 08:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-03-16 18:35 - 2017-03-04 07:58 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2017-03-16 18:35 - 2017-03-04 07:19 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2017-03-16 18:35 - 2017-03-04 07:16 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-03-16 18:35 - 2017-03-04 07:16 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-03-16 18:35 - 2017-03-04 07:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2017-03-16 18:35 - 2017-03-04 07:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2017-03-16 18:35 - 2017-03-04 07:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2017-03-16 18:35 - 2017-03-04 07:03 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-03-16 18:35 - 2017-03-04 06:51 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2017-03-16 18:35 - 2017-03-04 06:47 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2017-03-16 18:35 - 2017-03-04 06:45 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2017-03-16 18:35 - 2017-03-04 06:42 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2017-03-16 18:35 - 2017-03-04 06:42 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2017-03-16 18:35 - 2017-03-04 06:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2017-03-16 18:35 - 2017-03-04 06:33 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2017-03-16 18:35 - 2017-03-04 06:31 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-03-16 18:35 - 2017-03-04 06:31 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2017-03-16 18:35 - 2017-03-04 06:30 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-03-16 18:35 - 2017-03-04 06:29 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2017-03-16 18:35 - 2017-03-04 06:28 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2017-03-16 18:35 - 2017-03-04 06:27 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2017-03-16 18:35 - 2017-03-04 06:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2017-03-16 18:35 - 2017-03-04 06:23 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-03-16 18:35 - 2017-03-04 06:21 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-03-16 18:35 - 2017-03-04 06:21 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2017-03-16 18:35 - 2017-03-04 06:18 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2017-03-16 18:35 - 2017-03-04 06:08 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 01542656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-03-16 18:35 - 2017-03-04 06:07 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2017-03-16 18:35 - 2017-03-04 05:59 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-03-16 18:35 - 2017-03-04 05:55 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2017-03-16 18:35 - 2017-03-04 05:54 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2017-03-16 18:35 - 2017-03-04 05:54 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2017-03-16 18:35 - 2017-03-04 05:44 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-03-16 18:35 - 2017-03-04 05:38 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2017-03-16 18:35 - 2017-03-04 05:35 - 05326336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-03-16 18:35 - 2017-03-04 05:35 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-03-16 18:35 - 2017-03-04 05:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2017-03-16 18:35 - 2017-03-04 05:31 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-03-16 18:35 - 2017-03-04 05:31 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-03-16 18:35 - 2017-03-04 05:30 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2017-03-16 18:35 - 2017-03-04 05:29 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2017-03-16 18:35 - 2017-03-04 05:03 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-03-16 18:34 - 2017-03-04 09:39 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-03-16 18:34 - 2017-03-04 09:39 - 00602256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-03-16 18:34 - 2017-03-04 09:29 - 00535088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-03-16 18:34 - 2017-03-04 09:27 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-03-16 18:34 - 2017-03-04 08:43 - 00306832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-03-16 18:34 - 2017-03-04 08:34 - 01824272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-03-16 18:34 - 2017-03-04 08:33 - 02942536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 04075184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-03-16 18:34 - 2017-03-04 08:29 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-03-16 18:34 - 2017-03-04 08:29 - 00569752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-03-16 18:34 - 2017-03-04 08:25 - 00268040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2017-03-16 18:34 - 2017-03-04 07:57 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-03-16 18:34 - 2017-03-04 07:55 - 01370224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-03-16 18:34 - 2017-03-04 07:41 - 02448752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2017-03-16 18:34 - 2017-03-04 07:41 - 00882208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2017-03-16 18:34 - 2017-03-04 07:40 - 00473616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2017-03-16 18:34 - 2017-03-04 07:40 - 00467440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2017-03-16 18:34 - 2017-03-04 07:27 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-03-16 18:34 - 2017-03-04 07:15 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stdole2.tlb
2017-03-16 18:34 - 2017-03-04 07:06 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2017-03-16 18:34 - 2017-03-04 07:06 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallButtons.dll
2017-03-16 18:34 - 2017-03-04 07:00 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2017-03-16 18:34 - 2017-03-04 06:57 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-03-16 18:34 - 2017-03-04 06:57 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unimdm.tsp
2017-03-16 18:34 - 2017-03-04 06:57 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\feclient.dll
2017-03-16 18:34 - 2017-03-04 06:56 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2017-03-16 18:34 - 2017-03-04 06:55 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2017-03-16 18:34 - 2017-03-04 06:49 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\icm32.dll
2017-03-16 18:34 - 2017-03-04 06:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2017-03-16 18:34 - 2017-03-04 06:48 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apds.dll
2017-03-16 18:34 - 2017-03-04 06:46 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2017-03-16 18:34 - 2017-03-04 06:45 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-03-16 18:34 - 2017-03-04 06:45 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2017-03-16 18:34 - 2017-03-04 06:37 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2017-03-16 18:34 - 2017-03-04 06:33 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-03-16 18:34 - 2017-03-04 06:33 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2017-03-16 18:34 - 2017-03-04 06:32 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2017-03-16 18:34 - 2017-03-04 06:32 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2017-03-16 18:34 - 2017-03-04 06:29 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2017-03-16 18:34 - 2017-03-04 06:26 - 01586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2017-03-16 18:34 - 2017-03-04 06:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2017-03-16 18:34 - 2017-03-04 06:26 - 01467904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-03-16 18:34 - 2017-03-04 06:25 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00885248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2017-03-16 18:34 - 2017-03-04 06:24 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-03-16 18:34 - 2017-03-04 06:22 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-03-16 18:34 - 2017-03-04 06:22 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2017-03-16 18:34 - 2017-03-04 06:19 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-03-16 18:34 - 2017-03-04 06:15 - 01986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-03-16 18:34 - 2017-03-04 06:14 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2017-03-16 18:34 - 2017-03-04 06:13 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qwave.dll
2017-03-16 18:34 - 2017-03-04 06:05 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Proximity.dll
2017-03-16 18:34 - 2017-03-04 06:03 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rshx32.dll
2017-03-16 18:34 - 2017-03-04 06:01 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanpref.dll
2017-03-16 18:34 - 2017-03-04 06:00 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-03-16 18:34 - 2017-03-04 05:58 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2017-03-16 18:34 - 2017-03-04 05:57 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-03-16 18:34 - 2017-03-04 05:57 - 02878976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-03-16 18:34 - 2017-03-04 05:57 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2017-03-16 18:34 - 2017-03-04 05:52 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-03-16 18:34 - 2017-03-04 05:52 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-03-16 18:34 - 2017-03-04 05:51 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-03-16 18:34 - 2017-03-04 05:51 - 09921024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-03-16 18:34 - 2017-03-04 05:41 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2017-03-16 18:34 - 2017-03-04 05:36 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-03-16 18:34 - 2017-03-04 05:31 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-03-16 18:33 - 2017-03-04 10:01 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-03-16 18:33 - 2017-03-04 09:54 - 00989528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2017-03-16 18:33 - 2017-03-04 09:18 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2017-03-16 18:33 - 2017-03-04 09:18 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-03-16 18:33 - 2017-03-04 09:12 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-03-16 18:33 - 2017-03-04 09:07 - 01040792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-03-16 18:33 - 2017-03-04 09:06 - 06536248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-03-16 18:33 - 2017-03-04 08:00 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-03-16 18:33 - 2017-03-04 07:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-03-16 18:33 - 2017-03-04 07:37 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-03-16 18:33 - 2017-03-04 07:35 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-03-16 18:33 - 2017-03-04 07:19 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2017-03-16 18:33 - 2017-03-04 07:11 - 00556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2017-03-16 18:33 - 2017-03-04 07:10 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-03-16 18:33 - 2017-03-04 07:04 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-03-16 18:33 - 2017-03-04 06:57 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-03-16 18:33 - 2017-03-04 06:55 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-03-16 18:33 - 2017-03-04 06:53 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-03-16 18:33 - 2017-03-04 06:41 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2017-03-16 18:33 - 2017-03-04 06:23 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-03-16 18:33 - 2017-03-04 05:31 - 02911744 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-03-16 18:33 - 2017-03-04 05:20 - 00381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2017-03-16 18:33 - 2017-03-04 05:19 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-03-16 18:32 - 2017-03-04 09:48 - 01297760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-03-16 18:32 - 2017-03-04 09:19 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2017-03-16 18:32 - 2017-03-04 09:19 - 00498952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01152328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01062480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 01017032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 00858952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-03-16 18:32 - 2017-03-04 09:18 - 00819648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2017-03-16 18:32 - 2017-03-04 08:09 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2017-03-16 18:32 - 2017-03-04 08:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2017-03-16 18:32 - 2017-03-04 08:01 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-03-16 18:32 - 2017-03-04 07:52 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2017-03-16 18:32 - 2017-03-04 07:49 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2017-03-16 18:32 - 2017-03-04 07:41 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2017-03-16 18:32 - 2017-03-04 07:27 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-03-16 18:32 - 2017-03-04 07:20 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2017-03-16 18:32 - 2017-03-04 07:19 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2017-03-16 18:32 - 2017-03-04 07:19 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2017-03-16 18:32 - 2017-03-04 07:17 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-03-16 18:32 - 2017-03-04 07:17 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2017-03-16 18:32 - 2017-03-04 07:16 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2017-03-16 18:32 - 2017-03-04 07:13 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2017-03-16 18:32 - 2017-03-04 07:08 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2017-03-16 18:32 - 2017-03-04 07:03 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2017-03-16 18:32 - 2017-03-04 07:02 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2017-03-16 18:32 - 2017-03-04 06:35 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2017-03-16 18:32 - 2017-03-04 06:24 - 00931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2017-03-16 18:32 - 2017-03-04 05:26 - 12590080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2017-03-16 18:31 - 2017-03-04 07:08 - 00852992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-03-16 18:30 - 2017-03-04 10:13 - 01997832 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-03-16 18:30 - 2017-03-04 10:13 - 00800080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-03-16 18:30 - 2017-03-04 09:19 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2017-03-16 18:30 - 2017-03-04 09:18 - 02544264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-03-16 18:30 - 2017-03-04 09:08 - 22560744 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-03-16 18:30 - 2017-03-04 09:08 - 06605544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-03-16 18:30 - 2017-03-04 08:16 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-03-16 18:30 - 2017-03-04 08:09 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-03-16 18:30 - 2017-03-04 07:47 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2017-03-16 18:30 - 2017-03-04 07:44 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2017-03-16 18:30 - 2017-03-04 07:34 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2017-03-16 18:30 - 2017-03-04 07:33 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LegacyNetUXHost.exe
2017-03-16 18:30 - 2017-03-04 07:31 - 00185856 _____ C:\WINDOWS\system32\ism32k.dll
2017-03-16 18:30 - 2017-03-04 07:29 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\icm32.dll
2017-03-16 18:30 - 2017-03-04 07:29 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-03-16 18:30 - 2017-03-04 07:25 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-03-16 18:30 - 2017-03-04 07:23 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-03-16 18:30 - 2017-03-04 07:15 - 00695296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-03-16 18:30 - 2017-03-04 07:11 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2017-03-16 18:30 - 2017-03-04 07:09 - 00351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2017-03-16 18:30 - 2017-03-04 07:08 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2017-03-16 18:30 - 2017-03-04 07:04 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2017-03-16 18:30 - 2017-03-04 07:03 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2017-03-16 18:30 - 2017-03-04 07:02 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2017-03-16 18:30 - 2017-03-04 07:00 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-03-16 18:30 - 2017-03-04 06:53 - 02624512 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-03-16 18:30 - 2017-03-04 06:49 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2017-03-16 18:30 - 2017-03-04 06:32 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-03-16 18:30 - 2017-03-04 06:25 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanpref.dll
2017-03-16 18:30 - 2017-03-04 06:18 - 07977984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2017-03-16 18:30 - 2017-03-04 06:00 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-03-16 18:30 - 2017-03-04 05:59 - 00882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2017-03-16 18:30 - 2017-03-04 05:52 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-03-16 18:30 - 2017-03-04 05:36 - 03428352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-03-16 18:30 - 2017-03-04 05:36 - 01385472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2017-03-16 18:30 - 2017-03-04 05:34 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-03-16 18:30 - 2017-03-04 05:28 - 14258688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-03-16 18:29 - 2017-03-04 09:56 - 01637216 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-03-16 18:29 - 2017-03-04 09:49 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2017-03-16 18:29 - 2017-03-04 09:12 - 03695152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-03-16 18:29 - 2017-03-04 08:29 - 00216416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-03-16 18:29 - 2017-03-04 08:27 - 00431456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-03-16 18:29 - 2017-03-04 08:24 - 00420704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-03-16 18:29 - 2017-03-04 08:17 - 00315232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-03-16 18:29 - 2017-03-04 08:17 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-03-16 18:29 - 2017-03-04 07:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-03-16 18:29 - 2017-03-04 07:59 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2017-03-16 18:29 - 2017-03-04 07:58 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2017-03-16 18:29 - 2017-03-04 07:57 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2017-03-16 18:29 - 2017-03-04 07:27 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2017-03-16 18:29 - 2017-03-04 07:23 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-03-16 18:29 - 2017-03-04 07:22 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2017-03-16 18:29 - 2017-03-04 07:19 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-03-16 18:29 - 2017-03-04 07:16 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2017-03-16 18:29 - 2017-03-04 07:09 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00472064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2017-03-16 18:29 - 2017-03-04 07:08 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2017-03-16 18:29 - 2017-03-04 07:05 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-03-16 18:29 - 2017-03-04 07:05 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2017-03-16 18:29 - 2017-03-04 07:03 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-03-16 18:29 - 2017-03-04 07:03 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 01239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-03-16 18:29 - 2017-03-04 07:00 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-03-16 18:29 - 2017-03-04 06:59 - 01847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2017-03-16 18:29 - 2017-03-04 06:58 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2017-03-16 18:29 - 2017-03-04 06:56 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2017-03-16 18:29 - 2017-03-04 06:54 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2017-03-16 18:29 - 2017-03-04 06:54 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-03-16 18:29 - 2017-03-04 06:49 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-03-16 18:29 - 2017-03-04 06:48 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-03-16 18:29 - 2017-03-04 06:41 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwave.dll
2017-03-16 18:29 - 2017-03-04 06:33 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-03-16 18:29 - 2017-03-04 06:31 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2017-03-16 18:29 - 2017-03-04 06:30 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-03-16 18:29 - 2017-03-04 06:29 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-03-16 18:29 - 2017-03-04 06:25 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-03-16 18:29 - 2017-03-04 06:24 - 01097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-03-16 18:29 - 2017-03-04 06:19 - 03404800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-03-16 18:29 - 2017-03-04 06:13 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2017-03-16 18:29 - 2017-03-04 06:11 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-03-16 18:29 - 2017-03-04 05:50 - 16984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-03-16 18:29 - 2017-03-04 05:48 - 04895744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-03-16 18:29 - 2017-03-04 05:39 - 18672128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-03-16 18:29 - 2017-03-04 05:37 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-03-16 18:29 - 2017-03-04 05:36 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-03-16 18:29 - 2017-03-04 05:36 - 12134912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-03-16 18:29 - 2017-03-04 05:21 - 05671424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-03-16 18:29 - 2017-01-24 04:22 - 00447095 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-03-16 18:28 - 2017-03-04 10:13 - 07467872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-03-16 18:28 - 2017-03-04 10:13 - 01098648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-03-16 18:28 - 2017-03-04 10:12 - 02656952 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-16 18:28 - 2017-03-04 10:04 - 00687496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-03-16 18:28 - 2017-03-04 09:12 - 02607336 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-03-16 18:28 - 2017-03-04 07:49 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-03-16 18:28 - 2017-03-04 07:45 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-03-16 18:28 - 2017-03-04 07:39 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2017-03-16 18:28 - 2017-03-04 07:29 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-03-16 18:28 - 2017-03-04 07:26 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-03-16 18:28 - 2017-03-04 07:08 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2017-03-16 18:28 - 2017-03-04 07:05 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-03-16 18:28 - 2017-03-04 06:59 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-03-16 18:28 - 2017-03-04 06:59 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-03-16 18:28 - 2017-03-04 06:58 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-03-16 18:28 - 2017-03-04 06:57 - 01040896 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-03-16 18:28 - 2017-03-04 06:56 - 01648128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-03-16 18:28 - 2017-03-04 06:55 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2017-03-16 18:28 - 2017-03-04 06:50 - 02054144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-03-16 18:28 - 2017-03-04 06:42 - 02436096 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-03-16 18:28 - 2017-03-04 06:22 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-03-16 18:28 - 2017-03-04 06:04 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-03-16 18:28 - 2017-03-04 05:58 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-03-16 18:28 - 2017-03-04 05:55 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-03-16 18:28 - 2017-03-04 05:43 - 22375424 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-03-16 18:28 - 2017-03-04 05:34 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-03-16 18:28 - 2017-03-04 05:33 - 24603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-03-16 18:28 - 2017-03-04 05:31 - 13392384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-03-16 18:28 - 2017-03-04 05:19 - 07855616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-03-16 17:37 - 2017-03-04 08:16 - 02831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2017-03-16 17:27 - 2017-03-04 08:15 - 00549088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2017-03-16 17:11 - 2017-03-04 08:15 - 00521192 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2017-03-16 17:07 - 2017-03-04 10:09 - 00610632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-03-16 17:06 - 2017-03-04 08:16 - 01062992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2017-03-16 17:03 - 2017-03-04 07:10 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2017-03-16 17:02 - 2017-03-04 09:20 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2017-03-16 17:00 - 2017-03-04 07:28 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\apds.dll
2017-03-16 16:58 - 2017-03-04 07:39 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabbtnEx.dll
2017-03-16 16:58 - 2017-03-04 06:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-03-16 16:57 - 2017-03-04 07:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-03-16 16:56 - 2017-03-04 06:03 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Tabbtn.dll
2017-03-16 16:54 - 2017-03-04 07:26 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2017-03-16 16:52 - 2017-03-04 06:10 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2017-03-16 16:51 - 2017-03-04 06:46 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinFax.dll
2017-03-16 16:23 - 2017-03-04 07:25 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinFax.dll
2017-03-16 16:22 - 2017-03-04 07:21 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2017-03-16 16:22 - 2017-03-04 07:07 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2017-03-16 16:21 - 2017-03-04 10:10 - 00754664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-03-16 16:21 - 2017-03-04 07:28 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-03-16 16:21 - 2017-03-04 07:20 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-03-16 16:20 - 2017-03-04 08:32 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2017-03-16 16:13 - 2017-03-04 07:40 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2017-03-16 16:13 - 2017-03-04 07:24 - 00431104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2017-03-16 16:12 - 2017-03-04 06:34 - 02610176 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-03-16 16:11 - 2017-03-04 06:08 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-03-16 16:10 - 2017-03-04 07:11 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2017-03-16 16:10 - 2017-03-04 06:39 - 01297408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2017-03-16 16:09 - 2017-03-04 07:26 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-03-16 16:08 - 2017-03-04 07:06 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2017-03-16 16:06 - 2017-03-04 07:38 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2017-03-16 16:05 - 2017-03-04 07:21 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2017-03-16 16:05 - 2017-03-04 07:14 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-03-16 16:04 - 2017-03-04 06:58 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2017-03-16 16:03 - 2017-03-04 09:06 - 00742192 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2017-03-16 16:03 - 2017-03-04 09:04 - 00625000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-03-16 16:02 - 2017-03-04 07:28 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-03-16 16:02 - 2017-03-04 06:53 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-03-16 16:00 - 2017-03-04 07:31 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2017-03-16 15:59 - 2017-03-04 09:06 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-03-16 15:59 - 2017-03-04 09:04 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2017-03-16 15:59 - 2017-03-04 07:24 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2017-03-16 15:58 - 2017-03-04 08:31 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-03-16 15:58 - 2017-03-04 07:02 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-03-16 15:57 - 2017-03-04 09:09 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-03-16 15:57 - 2017-03-04 06:12 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-03-16 15:56 - 2017-03-04 07:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-03-16 15:54 - 2017-03-04 07:05 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-03-16 15:53 - 2017-03-04 09:07 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-03-16 15:53 - 2017-03-04 07:26 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2017-03-16 15:51 - 2017-03-04 06:55 - 01661952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-03-16 15:49 - 2017-03-04 06:53 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-03-16 15:48 - 2017-03-04 06:03 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2017-03-16 15:48 - 2017-03-04 05:42 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2017-03-16 15:47 - 2017-03-04 06:47 - 01052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2017-03-16 15:46 - 2017-03-04 06:27 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2017-03-16 15:45 - 2017-03-04 05:31 - 06976512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-03-16 15:44 - 2017-03-04 07:07 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-03-16 15:43 - 2017-03-04 07:07 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-03-16 15:43 - 2017-03-04 05:43 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-03-16 15:42 - 2017-03-04 05:34 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2017-03-16 15:41 - 2017-03-04 07:03 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2017-03-16 15:41 - 2017-03-04 07:02 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-03-16 15:40 - 2017-03-04 06:52 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2017-03-16 15:39 - 2017-03-04 05:56 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2017-03-16 15:38 - 2017-03-04 07:22 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2017-03-16 15:38 - 2017-03-04 07:07 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-03-16 15:37 - 2017-03-04 08:32 - 01987424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-03-16 15:37 - 2017-03-04 07:15 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-03-16 15:37 - 2017-03-04 06:20 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-03-16 15:36 - 2017-03-04 09:08 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-03-16 15:36 - 2017-03-04 07:02 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-03-16 15:35 - 2017-03-04 07:02 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-03-16 15:35 - 2017-03-04 06:31 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-03-16 15:34 - 2017-03-04 05:31 - 03994112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-03-16 15:33 - 2017-03-04 06:57 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2017-03-16 15:31 - 2017-03-04 09:08 - 04516800 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-03-16 15:31 - 2017-03-04 09:08 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-03-16 15:31 - 2017-03-04 07:08 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2017-03-16 15:31 - 2017-03-04 07:02 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2017-03-16 15:30 - 2017-03-04 05:35 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-03-16 15:29 - 2017-03-04 06:41 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2017-03-16 15:29 - 2017-03-04 05:52 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-03-16 15:28 - 2017-03-04 07:13 - 00602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2017-03-16 15:27 - 2017-03-04 06:19 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2017-03-16 15:26 - 2017-03-04 06:24 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2017-03-16 15:24 - 2017-03-04 07:09 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-03-16 15:24 - 2017-03-04 06:35 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-03-16 15:24 - 2017-03-04 06:08 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-03-16 15:23 - 2017-03-04 07:02 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-03-16 15:21 - 2017-03-04 05:41 - 11545600 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-03-16 15:14 - 2017-03-04 10:15 - 01030416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-03-16 15:14 - 2017-03-04 10:15 - 00875480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-03-16 15:14 - 2017-03-04 09:55 - 01038176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-03-16 15:14 - 2017-03-04 09:09 - 00230752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-03-16 15:14 - 2017-03-04 09:03 - 00341944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 01617760 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 01294688 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00655200 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00343904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00142176 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-03-16 15:14 - 2017-03-04 08:17 - 00086368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-03-16 15:14 - 2017-03-04 07:49 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcdAutoSetup.dll
2017-03-16 15:14 - 2017-03-04 07:48 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-03-16 15:14 - 2017-03-04 07:38 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\feclient.dll
2017-03-16 15:14 - 2017-03-04 07:36 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2017-03-16 15:14 - 2017-03-04 07:29 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-03-16 15:14 - 2017-03-04 07:16 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2017-03-16 15:14 - 2017-03-04 06:58 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-03-16 15:14 - 2017-03-04 06:47 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-03-16 15:14 - 2017-03-04 06:31 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2017-03-16 15:14 - 2017-03-04 06:30 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Proximity.dll
2017-03-16 15:14 - 2017-03-04 06:27 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2017-03-16 15:14 - 2017-03-04 06:27 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rshx32.dll
2017-03-16 15:14 - 2017-03-04 06:18 - 04826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-03-16 15:14 - 2017-03-04 06:08 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-03-16 15:14 - 2017-03-04 05:13 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-03-06 16:47 - 2017-03-06 16:47 - 00000000 ____D C:\Users\Frantisek\Tracing

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-04-05 23:12 - 2015-07-11 09:40 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{10F925A2-5A5C-4231-B555-0696BCCE3A96}
2017-04-05 23:11 - 2015-08-12 18:11 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-04-05 23:11 - 2015-07-11 09:30 - 00000000 __SHD C:\Users\Frantisek\IntelGraphicsProfiles
2017-04-05 23:10 - 2016-01-29 09:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-05 23:09 - 2016-01-29 09:07 - 00000000 ____D C:\Users\Frantisek
2017-04-05 23:09 - 2015-10-30 08:28 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2017-04-05 23:09 - 2015-09-19 09:02 - 00000000 ____D C:\ProgramData\Norton
2017-04-05 23:06 - 2016-07-11 18:33 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2017-04-05 22:54 - 2016-07-11 18:35 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2017-04-05 22:44 - 2015-07-11 11:46 - 00000000 ____D C:\Users\Frantisek\AppData\Local\CrashDumps
2017-04-05 22:40 - 2015-10-30 20:31 - 01139746 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-05 22:40 - 2015-10-30 20:31 - 00267032 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-05 22:40 - 2015-07-31 09:44 - 00005430 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-05 19:02 - 2015-09-13 08:29 - 00000000 ____D C:\Users\Frantisek\AppData\LocalLow\Temp
2017-04-04 21:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2017-04-04 20:02 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2017-04-04 07:44 - 2015-07-19 14:41 - 00000000 ____D C:\ProgramData\Ashampoo
2017-04-04 00:26 - 2016-01-29 08:56 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-03 03:34 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Registration
2017-04-03 03:32 - 2015-07-31 08:24 - 00036198 _____ C:\WINDOWS\diagwrn.xml
2017-04-03 03:32 - 2015-07-31 08:24 - 00036198 _____ C:\WINDOWS\diagerr.xml
2017-04-01 14:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-01 14:14 - 2016-06-21 17:22 - 00000000 ____D C:\WINDOWS\Minidump
2017-03-29 16:42 - 2015-07-13 09:38 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-03-28 22:15 - 2015-08-30 11:22 - 00000000 ____D C:\Program Files (x86)\Opera
2017-03-28 21:45 - 2015-07-11 15:50 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Seznam.cz
2017-03-27 16:01 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-27 15:55 - 2015-07-12 00:54 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-03-27 15:36 - 2016-01-29 08:57 - 00353680 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows Defender
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-03-27 15:32 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2017-03-27 15:32 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2017-03-27 15:32 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-03-27 12:04 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-03-22 11:00 - 2016-10-15 15:23 - 00000000 ____D C:\Users\Frantisek\Documents\Cestopisy
2017-03-22 10:56 - 2016-10-15 15:20 - 00000000 ____D C:\Users\Frantisek\Documents\Zdraví
2017-03-22 10:34 - 2016-10-15 15:27 - 00000000 ____D C:\Users\Frantisek\Documents\0_Různé
2017-03-20 17:16 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-20 15:46 - 2016-12-17 11:48 - 00000992 _____ C:\Users\Frantisek\Desktop\Seznam.cz.lnk
2017-03-20 15:46 - 2016-03-01 15:02 - 00000972 _____ C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Seznam.cz.lnk
2017-03-20 13:03 - 2015-07-16 19:17 - 00000000 ___RD C:\Users\Frantisek\OneDrive
2017-03-19 16:20 - 2015-07-11 14:48 - 00000000 ____D C:\Users\Frantisek\AppData\Roaming\Skype
2017-03-15 12:13 - 2015-07-13 21:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-03-15 12:06 - 2015-07-13 21:06 - 138634176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-03-13 11:49 - 2015-08-12 18:11 - 01000160 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2017-03-13 11:49 - 2015-08-12 18:11 - 00185112 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2017-03-13 11:49 - 2015-07-03 02:20 - 00116448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2017-03-13 11:48 - 2015-08-12 18:11 - 00244448 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2017-03-10 10:59 - 2017-01-19 18:40 - 00003274 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-03-10 10:59 - 2015-07-17 16:08 - 00002436 _____ C:\Users\Frantisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-03-10 06:42 - 2015-10-30 09:26 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-03-10 06:42 - 2015-10-30 09:26 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-09 18:27 - 2015-08-12 16:24 - 00000000 ____D C:\Users\Frantisek\AppData\Local\Microsoft Help

==================== Files in the root of some directories =======

2017-01-26 12:20 - 2015-07-11 15:17 - 0001121 _____ () C:\Program Files\FastStone Image Viewer.lnk
2015-07-11 09:30 - 2015-07-31 08:23 - 0050514 _____ () C:\Users\Frantisek\AppData\Local\BTServer.log
2016-01-29 09:03 - 2016-01-29 09:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Kaspersky Anti-Virus (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Frantisek\Desktop" je 48 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz