Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 30.11.2015
Čas skenování: 13:44
Protokol: Malwarebytes Log.txt
Správce: Ano
Verze: 2.2.0.1024
Databáze malwaru: v2015.11.30.02
Databáze rootkitů: v2015.11.26.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Miloš Hodek
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 323858
Uplynulý čas: 7 min, 5 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Chybějící soubor skriptu
Moderátoři: Mods_senior, Security team
Pravidla fóra
Návod na použití programu HijackThis || Návod na vyčištění počítače CCleanerem || FAQ: Antiviry
Návod na použití programu HijackThis || Návod na vyčištění počítače CCleanerem || FAQ: Antiviry
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
RogueKiller V11.0.0.0 (x64) [Nov 27 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Milo? Hodek [Práva správce]
Started from : C:\Users\milos\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 11/30/2015 14:06:21
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 19 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Nalezeno
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 1 ¤¤¤
[PUP][Složka] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C} -> Nalezeno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] 9wfhlana.default : user_pref("browser.startup.homepage", "www.seznam.cz"); -> Nalezeno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] edc078bc054994c5f6bbd3c582cd7578
[BSP] 5ba304cbcf4b70b2652275a5b51459b2 : Empty|VT.Unknown MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 260 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 534528 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 796672 | Size: 938311 MB
3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1922457600 | Size: 747 MB
4 - [SYSTEM] Basic data partition | Offset (sectors): 1923987456 | Size: 14419 MB
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Milo? Hodek [Práva správce]
Started from : C:\Users\milos\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 11/30/2015 14:06:21
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 19 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Nalezeno
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nalezeno
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 1 ¤¤¤
[PUP][Složka] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C} -> Nalezeno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] 9wfhlana.default : user_pref("browser.startup.homepage", "www.seznam.cz"); -> Nalezeno
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] edc078bc054994c5f6bbd3c582cd7578
[BSP] 5ba304cbcf4b70b2652275a5b51459b2 : Empty|VT.Unknown MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 260 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 534528 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 796672 | Size: 938311 MB
3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1922457600 | Size: 747 MB
4 - [SYSTEM] Basic data partition | Offset (sectors): 1923987456 | Size: 14419 MB
User = LL1 ... OK
User = LL2 ... OK
Re: Chybějící soubor skriptu
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Vypni antivir
Stáhni
Zoek.exe
a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:
Kód: Vybrat vše
autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts; Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
RogueKiller V11.0.0.0 (x64) [Nov 27 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Milo? Hodek [Práva správce]
Started from : C:\Users\milos\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 11/30/2015 18:19:30
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 19 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Smazáno
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 1 ¤¤¤
[PUP][Složka] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C} -> Smazáno
[PUP][Soubor] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C}\0x0409.ini -> Smazáno
[PUP][Soubor] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C}\HP Support Assistant.msi -> Smazáno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] 9wfhlana.default : user_pref("browser.startup.homepage", "www.seznam.cz"); -> Nahrazeno (about:home)
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] edc078bc054994c5f6bbd3c582cd7578
[BSP] 5ba304cbcf4b70b2652275a5b51459b2 : Empty|VT.Unknown MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 260 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 534528 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 796672 | Size: 938311 MB
3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1922457600 | Size: 747 MB
4 - [SYSTEM] Basic data partition | Offset (sectors): 1923987456 | Size: 14419 MB
User = LL1 ... OK
User = LL2 ... OK
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operační systém : Windows 10 (10.0.10240) 64 bits version
Spuštěno : Normální režim
Uživatel : Milo? Hodek [Práva správce]
Started from : C:\Users\milos\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 11/30/2015 18:19:30
¤¤¤ Procesy : 0 ¤¤¤
¤¤¤ Registry : 19 ¤¤¤
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Smazáno
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://www.bing.com?pc=CMNTDFJS -> Nahrazeno (http://www.microsoft.com/isapi/redir.dl ... ar=msnhome)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34} | DhcpNameServer : 10.0.0.138 ([(Private Address) (XX)]) -> Nahrazeno ()
¤¤¤ Úlohy : 0 ¤¤¤
¤¤¤ Soubory : 1 ¤¤¤
[PUP][Složka] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C} -> Smazáno
[PUP][Soubor] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C}\0x0409.ini -> Smazáno
[PUP][Soubor] C:\ProgramData\{C6FA530F-BB98-4D9F-BA00-45FD0698077C}\HP Support Assistant.msi -> Smazáno
¤¤¤ Soubor HOSTS : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤
¤¤¤ Webové prohlížeče : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] 9wfhlana.default : user_pref("browser.startup.homepage", "www.seznam.cz"); -> Nahrazeno (about:home)
¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: ST1000LM024 HN-M101MBB +++++
--- User ---
[MBR] edc078bc054994c5f6bbd3c582cd7578
[BSP] 5ba304cbcf4b70b2652275a5b51459b2 : Empty|VT.Unknown MBR Code
Partition table:
0 - [MAN-MOUNT] EFI system partition | Offset (sectors): 2048 | Size: 260 MB
1 - [MAN-MOUNT] Microsoft reserved partition | Offset (sectors): 534528 | Size: 128 MB
2 - Basic data partition | Offset (sectors): 796672 | Size: 938311 MB
3 - [SYSTEM][MAN-MOUNT] Basic data partition | Offset (sectors): 1922457600 | Size: 747 MB
4 - [SYSTEM] Basic data partition | Offset (sectors): 1923987456 | Size: 14419 MB
User = LL1 ... OK
User = LL2 ... OK
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
Zoek.exe v5.0.0.1 Updated 28-November-2015
Tool run by Miloç Hodek on 30.11.2015 at 18:22:29,02.
Microsoft Windows 10 Home 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\milos\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
30.11.2015 18:23:11 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\milos\AppData\Local\NetworkTiles deleted successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default\prefs.js:
Added to C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~3\Package Cache deleted
C:\Users\milos\AppData\Local\BTServer.log deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default\Invalidprefs.js deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default
B5CFBB8AC7C0069D80DBEAA72F3CE9E2 - C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll - Shockwave for Director / Shockwave for Director
F114FBA6246530B89DD1E04351E0EAC5 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll - Shockwave Flash
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... TR&pc=HRTS
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... TR&pc=HRTS
==== Reset Google Chrome ======================
Nothing found to reset
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\milos\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\milos\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\milos\AppData\Local\Mozilla\Firefox\Profiles\9wfhlana.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=21 folders=18 17412914 bytes)
==== Empty Temp Folders ======================
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\milos\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 30.11.2015 at 18:43:20,19 ======================
Tool run by Miloç Hodek on 30.11.2015 at 18:22:29,02.
Microsoft Windows 10 Home 10.0.10240 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\milos\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
30.11.2015 18:23:11 Zoek.exe System Restore Point Created Successfully.
==== Reset Hosts File ======================
# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
==== Empty Folders Check ======================
C:\PROGRA~3\Comms deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\Users\milos\AppData\Local\NetworkTiles deleted successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\NetworkTiles deleted successfully
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Services ======================
==== FireFox Fix ======================
Deleted from C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default\prefs.js:
Added to C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Deleting Files \ Folders ======================
C:\PROGRA~3\Package Cache deleted
C:\Users\milos\AppData\Local\BTServer.log deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default\Invalidprefs.js deleted
==== Firefox Start and Search pages ======================
ProfilePath: C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");
==== Firefox Extensions ======================
AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
==== Firefox Plugins ======================
Profilepath: C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default
B5CFBB8AC7C0069D80DBEAA72F3CE9E2 - C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll - Shockwave for Director / Shockwave for Director
F114FBA6246530B89DD1E04351E0EAC5 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll - Shockwave Flash
==== Set IE to Default ======================
Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
==== All HKLM and HKCU SearchScopes ======================
HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... TR&pc=HRTS
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... TR&pc=HRTS
==== Reset Google Chrome ======================
Nothing found to reset
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\milos\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\milos\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
==== Empty FireFox Cache ======================
C:\Users\milos\AppData\Local\Mozilla\Firefox\Profiles\9wfhlana.default\cache2 emptied successfully
==== Empty Chrome Cache ======================
No Chrome User Data found
==== Empty All Flash Cache ======================
No Flash Cache Found
==== Empty All Java Cache ======================
No Java Cache Found
==== C:\zoek_backup content ======================
C:\zoek_backup (files=21 folders=18 17412914 bytes)
==== Empty Temp Folders ======================
C:\Windows\Temp will be emptied at reboot
==== After Reboot ======================
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\milos\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== EOF on 30.11.2015 at 18:43:20,19 ======================
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
FRST log musím rozdělít kvuli délce.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-11-2015
Ran by Miloš Hodek (administrator) on DESKTOP-KTRB8CN (30-11-2015 18:47:40)
Running from C:\Users\milos\Desktop
Loaded Profiles: Miloš Hodek (Available Profiles: Miloš Hodek)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
() C:\Windows\SysWOW64\spdsvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SmarThru Office\BackUpSvr.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SmarThru Office\x64\LegacyLauncher.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16565_none_1162030161f5c19b\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8510680 2015-07-24] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229592 2015-07-09] (Realtek Semiconductor Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945656 2015-11-19] (Synaptics Incorporated)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-06-22] (CyberLink Corp.)
HKLM-x32\...\Run: [STO Backup Service] => C:\Program Files (x86)\SmarThru Office\BackUpSvr.exe [199800 2012-09-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [STO Launcher Service] => C:\Program Files (x86)\SmarThru Office\x64\LegacyLauncher.exe [405624 2012-09-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2015-09-03] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2015-11-19]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (Samsung Electronics Co., Ltd.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2127903286-2658567943-1044287583-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2127903286-2658567943-1044287583-1001 -> hxxp://www.seznam.cz/
FireFox:
========
FF ProfilePath: C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-25] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-25] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] ()
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-07-13] (Intel Corporation)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2015-09-03] (Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [350312 2015-07-27] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-07-06] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [298200 2015-07-24] (Realtek Semiconductor)
R2 Samsung Network Fax Server; C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [801472 2015-03-10] (Samsung Electronics Co., Ltd.)
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [491328 2015-12-05] ()
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2015-11-19] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [43512 2015-07-13] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [41976 2015-07-13] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [251384 2015-07-13] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-30] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184096 2015-06-29] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [600832 2015-07-16] (Realtek Semiconductor Corporation)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [411712 2015-05-21] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [4738672 2015-11-19] (Realtek Semiconductor Corporation )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-07-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-11-19] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (HP Inc.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-30 18:47 - 2015-11-30 18:48 - 00012662 _____ C:\Users\milos\Desktop\FRST.txt
2015-11-30 18:45 - 2015-11-30 18:47 - 02350080 _____ (Farbar) C:\Users\milos\Desktop\FRST64.exe
2015-11-30 18:42 - 2015-11-30 18:42 - 00016148 _____ C:\Windows\system32\DESKTOP-KTRB8CN_Miloš Hodek_HistoryPrediction.bin
2015-11-30 18:38 - 2015-11-30 18:22 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-11-30 18:22 - 2015-11-30 18:35 - 00000000 ____D C:\zoek_backup
2015-11-30 18:21 - 2015-11-30 18:22 - 01309184 _____ C:\Users\milos\Desktop\zoek.exe
2015-11-30 18:19 - 2015-11-30 18:19 - 00011174 _____ C:\Users\milos\Desktop\rk_42D9.tmp.txt
2015-11-30 14:12 - 2015-11-30 14:12 - 00009050 _____ C:\Users\milos\Desktop\RogueKiller Log.txt
2015-11-30 13:57 - 2015-11-30 18:07 - 00036608 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-11-30 13:57 - 2015-11-30 18:06 - 00000000 ____D C:\ProgramData\RogueKiller
2015-11-30 13:54 - 2015-11-30 13:57 - 25023048 _____ C:\Users\milos\Desktop\RogueKillerX64.exe
2015-11-30 13:54 - 2015-11-30 13:54 - 00001151 _____ C:\Users\milos\Desktop\Malwarebytes Log.txt
2015-11-30 13:42 - 2015-11-30 13:42 - 00000817 _____ C:\Users\milos\Desktop\JRT.txt
2015-11-30 13:40 - 2015-11-30 13:41 - 01599336 _____ (Malwarebytes) C:\Users\milos\Desktop\JRT.exe
2015-11-28 08:42 - 2015-11-28 08:42 - 00000000 ____D C:\Users\milos\Documents\CyberLink
2015-11-28 08:42 - 2015-11-28 08:42 - 00000000 ____D C:\Users\milos\AppData\Roaming\CyberLink
2015-11-28 08:35 - 2015-11-29 11:53 - 00000000 ____D C:\Users\milos\Centrální sklad
2015-11-28 06:30 - 2015-11-28 06:30 - 00000000 ____D C:\Program Files (x86)\HP
2015-11-25 19:22 - 2015-11-30 18:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-25 19:21 - 2015-11-25 19:21 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-25 19:21 - 2015-11-25 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-25 19:21 - 2015-11-25 19:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-25 19:21 - 2015-11-25 19:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-25 19:21 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-25 19:21 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-25 19:21 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-25 19:20 - 2015-11-25 19:21 - 22908888 _____ (Malwarebytes ) C:\Users\milos\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-25 19:18 - 2015-11-30 13:35 - 00000000 ____D C:\AdwCleaner
2015-11-25 19:16 - 2015-11-25 19:17 - 01733632 _____ C:\Users\milos\Desktop\adwcleaner_5.022.exe
2015-11-25 19:12 - 2015-11-25 19:13 - 00448512 _____ (OldTimer Tools) C:\Users\milos\Downloads\TFC.exe
2015-11-25 19:09 - 2015-11-25 19:10 - 00050688 _____ (Atribune.org) C:\Users\milos\Downloads\ATF-Cleaner.exe
2015-11-25 19:04 - 2015-11-25 18:51 - 00005947 _____ C:\Users\milos\Desktop\UsbFix_Report.txt
2015-11-25 17:58 - 2015-11-25 17:59 - 00388608 _____ (Trend Micro Inc.) C:\Users\milos\Desktop\HijackThis.exe
2015-11-25 12:42 - 2015-11-25 12:42 - 00000000 ____D C:\Users\milos\AppData\Local\Macromedia
2015-11-25 12:23 - 2015-11-25 12:23 - 00000000 ____D C:\totalcmd
2015-11-25 12:23 - 2015-11-25 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2015-11-25 12:18 - 2015-11-25 12:19 - 04462584 _____ (Ghisler Software GmbH) C:\Users\milos\Downloads\tcmd852ax64.exe
2015-11-24 20:47 - 2015-11-24 20:47 - 00000017 _____ C:\Users\milos\AppData\Local\resmon.resmoncfg
2015-11-24 18:01 - 2015-11-24 18:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-11-24 16:56 - 2015-11-24 16:56 - 00008369 _____ C:\Users\milos\Desktop\Addition.zip
2015-11-24 16:52 - 2015-11-24 16:53 - 00026481 _____ C:\Users\milos\Desktop\Addition starý.txt
2015-11-24 16:51 - 2015-11-24 16:53 - 00092232 _____ C:\Users\milos\Desktop\FRST starý.txt
2015-11-24 16:50 - 2015-11-30 18:47 - 00000000 ____D C:\FRST
2015-11-24 16:49 - 2015-11-24 16:50 - 00112640 _____ (forum.viry.cz) C:\Users\milos\Desktop\FRSTLauncher.exe
2015-11-24 16:30 - 2015-11-25 18:51 - 00003668 _____ C:\Windows\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-24 16:26 - 2015-11-25 19:04 - 00000000 ____D C:\UsbFix
2015-11-24 16:26 - 2015-11-25 18:50 - 00001492 _____ C:\Users\milos\Desktop\UsbFix.lnk
2015-11-22 10:49 - 2015-11-28 10:53 - 00000000 ____D C:\Users\milos\AppData\Local\GHISLER
2015-11-20 19:02 - 2015-11-20 19:02 - 00000000 ____D C:\Windows\system32\SleepStudy
2015-11-19 20:59 - 2015-11-19 20:59 - 00002882 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-11-19 20:57 - 2015-11-19 20:57 - 00016148 _____ C:\Windows\system32\DESKTOP-KTRB8CN_milos_HistoryPrediction.bin
2015-11-19 20:55 - 2015-11-19 20:55 - 00000000 ____D C:\Users\Public\CyberLink
2015-11-19 20:46 - 2015-11-19 20:46 - 00000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-11-19 20:46 - 2015-11-19 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-19 20:46 - 2015-11-19 20:46 - 00000000 ____D C:\Program Files\CCleaner
2015-11-19 20:44 - 2015-11-19 20:44 - 06762072 _____ (Piriform Ltd) C:\Users\milos\Downloads\ccsetup511.exe
2015-11-19 19:43 - 2015-11-19 19:43 - 00000000 ____D C:\Users\milos\Tracing
2015-11-19 19:28 - 2015-11-19 19:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmarThru Office
2015-11-19 19:28 - 2015-11-19 19:29 - 00000000 ____D C:\Program Files (x86)\SmarThru Office
2015-11-19 19:28 - 2012-05-23 16:55 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4.dll
2015-11-19 19:28 - 2012-05-23 16:55 - 00950585 _____ C:\Windows\SysWOW64\libiconv-2.dll
2015-11-19 19:28 - 2012-05-23 16:55 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll
2015-11-19 19:26 - 2015-12-05 12:02 - 00491328 ____N C:\Windows\SysWOW64\spdsvc.exe
2015-11-19 19:26 - 2015-12-04 10:03 - 00017831 ____N C:\Windows\SysWOW64\spddata.xml
2015-11-19 19:26 - 2015-11-19 19:26 - 00000000 ____D C:\Users\milos\AppData\Local\Samsung
2015-11-19 19:26 - 2015-03-10 15:03 - 00452800 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\NetFaxPort64.dll
2015-11-19 19:26 - 2015-03-10 14:58 - 00474112 _____ (Samsung Software Center) C:\Windows\prinst.exe
2015-11-19 19:25 - 2015-11-19 19:25 - 00000000 ____D C:\ProgramData\Samsung
2015-11-19 19:24 - 2015-11-26 13:48 - 02077184 ____N C:\Windows\SysWOW64\DlgSearchEngine.dll
2015-11-19 19:24 - 2015-11-19 19:32 - 00000000 ____D C:\Users\milos\AppData\Roaming\Samsung
2015-11-19 19:24 - 2015-11-19 19:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-11-19 19:24 - 2015-11-19 19:24 - 00143664 ____N C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-11-19 19:24 - 2015-11-19 19:24 - 00143664 ____N C:\Windows\system32\SecUPDUtilSvc.exe
2015-11-19 19:24 - 2015-03-12 03:43 - 00226424 _____ C:\Windows\system32\SBuySupplies.exe
2015-11-19 19:24 - 2015-03-12 03:43 - 00158016 _____ C:\Windows\system32\us003ci.exe
2015-11-19 19:24 - 2015-03-12 03:43 - 00089600 _____ (SS) C:\Windows\system32\us003ci.dll
2015-11-19 19:24 - 2015-03-12 03:43 - 00022528 _____ () C:\Windows\system32\us003lm.dll
2015-11-19 19:24 - 2013-09-02 03:57 - 00155696 _____ C:\Windows\wiainst64.exe
2015-11-19 19:23 - 2015-11-19 19:30 - 00000000 ____D C:\Program Files (x86)\Samsung
2015-11-19 19:23 - 2015-11-19 19:23 - 00000000 ____D C:\Windows\twain_64
2015-11-19 19:23 - 2014-09-18 07:10 - 00094208 ____N C:\Windows\SysWOW64\Ssdevm.dll
2015-11-19 19:23 - 2014-09-18 07:08 - 00087552 ____N C:\Windows\system32\ssdevm64.dll
2015-11-19 19:23 - 2013-10-04 06:31 - 00579072 _____ C:\Windows\system32\SNWIAUI.dll
2015-11-19 19:23 - 2013-10-04 05:53 - 00734720 _____ C:\Windows\system32\SnMinDrv.dll
2015-11-19 19:23 - 2013-10-04 05:53 - 00155136 _____ C:\Windows\system32\SnImgFlt.dll
2015-11-19 19:23 - 2013-10-04 05:52 - 00068096 _____ C:\Windows\system32\SnErHdlr.dll
2015-11-19 19:23 - 2013-06-01 06:13 - 01571160 ____N C:\Windows\TotalUninstaller.exe
2015-11-19 19:23 - 2013-01-09 16:58 - 00053248 _____ C:\Windows\SysWOW64\Ssusbpn.dll
2015-11-19 19:23 - 2013-01-09 16:58 - 00049152 _____ C:\Windows\system32\Ssusbp64.dll
2015-11-19 19:23 - 2012-12-10 03:09 - 00120846 _____ C:\Windows\system32\WIAEXSTR.loc
2015-11-19 19:23 - 2012-03-14 00:58 - 00166640 _____ (TWAIN Working Group) C:\Windows\system32\TWAINDSM.dll
2015-11-19 19:23 - 2012-03-14 00:58 - 00148728 _____ (TWAIN Working Group) C:\Windows\SysWOW64\TWAINDSM.dll
2015-11-19 19:23 - 2012-02-09 08:20 - 00355840 _____ (Samsung Electronics) C:\Windows\system32\snWIAMUI.dll
2015-11-19 19:23 - 2009-08-06 09:35 - 00011576 _____ (Samsung Electronics) C:\Windows\system32\Drivers\SSPORT.sys
2015-11-19 18:58 - 2015-11-19 19:52 - 00000364 _____ C:\Windows\Tasks\HPCeeScheduleFormilos.job
2015-11-19 18:58 - 2015-11-19 18:58 - 00003252 _____ C:\Windows\System32\Tasks\HPCeeScheduleFormilos
2015-11-19 18:44 - 2015-11-19 18:44 - 00001396 _____ C:\Users\milos\Desktop\Kniha_jízd_ 2015 MH.lnk
2015-11-19 18:44 - 2015-11-19 18:44 - 00001229 _____ C:\Users\milos\Desktop\Jepro prosba.lnk
2015-11-19 18:43 - 2015-11-19 18:43 - 00001396 _____ C:\Users\milos\Desktop\Návštěvní list DM 2.lnk
2015-11-19 18:16 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-11-19 18:05 - 2015-11-30 15:59 - 00000000 ____D C:\Users\milos\Documents\Reiwag
2015-11-19 17:27 - 2015-11-19 18:13 - 00000000 ____D C:\Windows\System32\Tasks\McAfee
2015-11-19 17:24 - 2015-11-19 17:24 - 00000000 ____D C:\Users\milos\AppData\Local\Skype
2015-11-19 17:23 - 2015-11-19 20:03 - 00000000 ____D C:\Users\milos\AppData\Roaming\Skype
2015-11-19 17:23 - 2015-11-19 17:23 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2015-11-19 17:23 - 2015-11-19 17:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-11-19 17:23 - 2015-11-19 17:23 - 00000000 ____D C:\ProgramData\Skype
2015-11-19 17:23 - 2015-11-19 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-19 17:18 - 2015-11-22 12:34 - 00000000 ____D C:\Users\milos\AppData\Roaming\vlc
2015-11-19 17:07 - 2015-11-19 17:07 - 00002240 _____ C:\Users\milos\Desktop\Google Earth.lnk
2015-11-19 17:05 - 2015-11-19 17:05 - 00002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2015-11-19 17:05 - 2015-11-19 17:05 - 00000000 ____D C:\Users\milos\AppData\LocalLow\Google
2015-11-19 17:04 - 2015-11-30 18:42 - 00000978 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-19 17:04 - 2015-11-30 18:09 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-19 17:04 - 2015-11-19 17:05 - 00000000 ____D C:\Program Files (x86)\Google
2015-11-19 17:04 - 2015-11-19 17:04 - 00004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-19 17:04 - 2015-11-19 17:04 - 00003808 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-19 17:04 - 2015-11-19 17:04 - 00000000 ____D C:\Users\milos\AppData\Local\Google
2015-11-19 17:03 - 2015-11-19 17:03 - 00001150 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-19 17:03 - 2015-11-19 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-19 17:03 - 2015-11-19 17:03 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2015-11-19 16:32 - 2015-11-19 16:32 - 00001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-11-19 16:32 - 2015-11-19 16:32 - 00000000 ____D C:\Users\milos\AppData\Roaming\WinRAR
2015-11-19 16:32 - 2015-11-19 16:32 - 00000000 ____D C:\Users\milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-19 16:32 - 2015-11-19 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-19 16:31 - 2015-11-19 16:32 - 00000000 ____D C:\Program Files\WinRAR
2015-11-19 16:31 - 2015-11-19 16:31 - 00000000 ____D C:\$WINDOWS.~BT
2015-11-19 16:27 - 2015-11-19 16:29 - 00000000 ____D C:\Windows\system32\MRT
2015-11-19 16:27 - 2015-10-27 18:43 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-19 16:25 - 2015-11-19 16:25 - 00419528 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2015-11-19 16:25 - 2015-11-19 16:25 - 00044216 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-19 16:25 - 2015-11-19 16:25 - 00042184 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-19 16:24 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-19 16:24 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-11-19 16:24 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-19 16:24 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2015-11-19 16:24 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-19 16:24 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2015-11-19 16:24 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-19 16:24 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2015-11-19 16:24 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-19 16:24 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-11-19 16:24 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-11-19 16:24 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-19 16:24 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-11-19 16:24 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2015-11-19 16:24 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-11-19 16:24 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2015-11-19 16:24 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-19 16:24 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-11-19 16:24 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-11-19 16:24 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-19 16:24 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-11-19 16:24 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-19 16:24 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2015-11-19 16:24 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-11-19 16:24 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2015-11-19 16:24 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-11-19 16:24 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-11-19 16:24 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-11-19 16:24 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2015-11-19 16:24 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2015-11-19 16:24 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-19 16:24 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-11-19 16:24 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-11-19 16:24 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-11-19 16:24 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-11-19 16:24 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-19 16:24 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-19 16:24 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2015-11-19 16:24 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2015-11-19 16:24 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2015-11-19 16:24 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-11-19 16:24 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-11-19 16:24 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-11-19 16:24 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-11-19 16:24 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2015-11-19 16:24 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-19 16:24 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2015-11-19 16:24 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2015-11-19 16:24 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2015-11-19 16:24 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2015-11-19 16:24 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-11-19 16:24 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2015-11-19 16:24 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-11-19 16:24 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-11-19 16:24 - 2015-09-17 07:50 - 02464216 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-11-19 16:24 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-11-19 16:24 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-11-19 16:24 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2015-11-19 16:24 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-11-19 16:24 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-11-19 16:24 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-11-19 16:24 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-11-19 16:24 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-11-19 16:24 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-11-19 16:24 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-11-19 16:24 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-11-19 16:24 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-11-19 16:24 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2015-11-19 16:24 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2015-11-19 16:24 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-11-19 16:24 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-11-19 16:24 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2015-11-19 16:24 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-11-19 16:24 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-11-19 16:24 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-11-19 16:24 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2015-11-19 16:24 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2015-11-19 16:24 - 2015-09-17 06:55 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-19 16:24 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-11-19 16:24 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-11-19 16:24 - 2015-09-17 06:50 - 00929280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-11-19 16:24 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-11-19 16:24 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2015-11-19 16:24 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-11-19 16:24 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2015-11-19 16:24 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2015-11-19 16:24 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2015-11-19 16:24 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-11-19 16:24 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2015-11-19 16:24 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-11-19 16:24 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-11-19 16:24 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-11-19 16:24 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2015-11-19 16:24 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2015-11-19 16:24 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-11-19 16:24 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2015-11-19 16:24 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2015-11-19 16:24 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-11-19 16:24 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-11-19 16:24 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-11-19 16:24 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-11-19 16:24 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-11-19 16:24 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-11-19 16:24 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-11-19 16:24 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-11-19 16:24 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-11-19 16:24 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-11-19 16:24 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-11-19 16:24 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-11-19 16:24 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2015-11-19 16:24 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2015-11-19 16:24 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-11-19 16:24 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-11-19 16:24 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-11-19 16:24 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2015-11-19 16:24 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-11-19 16:24 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2015-11-19 16:24 - 2015-08-11 10:18 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2015-11-19 16:24 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2015-11-19 16:24 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-11-19 16:24 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-11-19 16:24 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2015-11-19 16:24 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2015-11-19 16:24 - 2015-08-11 09:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2015-11-19 16:24 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2015-11-19 16:24 - 2015-08-06 04:17 - 00237392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2015-11-19 16:24 - 2015-08-06 03:22 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2015-11-19 16:24 - 2015-08-03 03:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NotificationObjFactory.dll
2015-11-19 16:24 - 2015-08-03 03:18 - 08613200 _____ (Microsoft Corp.) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2015-11-19 16:24 - 2015-08-03 03:18 - 00046432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2015-11-19 16:24 - 2015-08-03 02:56 - 06878256 _____ (Microsoft Corp.) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:29-11-2015
Ran by Miloš Hodek (administrator) on DESKTOP-KTRB8CN (30-11-2015 18:47:40)
Running from C:\Users\milos\Desktop
Loaded Profiles: Miloš Hodek (Available Profiles: Miloš Hodek)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
() C:\Windows\SysWOW64\spdsvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SmarThru Office\BackUpSvr.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SmarThru Office\x64\LegacyLauncher.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16565_none_1162030161f5c19b\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8510680 2015-07-24] (Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229592 2015-07-09] (Realtek Semiconductor Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3945656 2015-11-19] (Synaptics Incorporated)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-06-22] (CyberLink Corp.)
HKLM-x32\...\Run: [STO Backup Service] => C:\Program Files (x86)\SmarThru Office\BackUpSvr.exe [199800 2012-09-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [STO Launcher Service] => C:\Program Files (x86)\SmarThru Office\x64\LegacyLauncher.exe [405624 2012-09-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2015-09-03] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Samsung Network PC Fax.lnk [2015-11-19]
ShortcutTarget: Samsung Network PC Fax.lnk -> C:\Windows\System32\spool\drivers\x64\3\NetFaxTray64.exe (Samsung Electronics Co., Ltd.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{7e792baa-0317-46b4-b124-efcae0536d34}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2127903286-2658567943-1044287583-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-2127903286-2658567943-1044287583-1001 -> hxxp://www.seznam.cz/
FireFox:
========
FF ProfilePath: C:\Users\milos\AppData\Roaming\Mozilla\Firefox\Profiles\9wfhlana.default
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-25] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-25] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [121560 2015-07-20] ()
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-07-13] (Intel Corporation)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2015-09-03] (Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [350312 2015-07-27] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-07-06] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [298200 2015-07-24] (Realtek Semiconductor)
R2 Samsung Network Fax Server; C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [801472 2015-03-10] (Samsung Electronics Co., Ltd.)
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [491328 2015-12-05] ()
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2015-11-19] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [43512 2015-07-13] (Intel Corporation)
R3 dptf_pch; C:\Windows\System32\drivers\dptf_pch.sys [41976 2015-07-13] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [251384 2015-07-13] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-11-30] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184096 2015-06-29] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek )
R3 RtkBtFilter; C:\Windows\system32\DRIVERS\RtkBtfilter.sys [600832 2015-07-16] (Realtek Semiconductor Corporation)
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [411712 2015-05-21] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [4738672 2015-11-19] (Realtek Semiconductor Corporation )
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-07-13] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44216 2015-11-19] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (HP Inc.)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-30 18:47 - 2015-11-30 18:48 - 00012662 _____ C:\Users\milos\Desktop\FRST.txt
2015-11-30 18:45 - 2015-11-30 18:47 - 02350080 _____ (Farbar) C:\Users\milos\Desktop\FRST64.exe
2015-11-30 18:42 - 2015-11-30 18:42 - 00016148 _____ C:\Windows\system32\DESKTOP-KTRB8CN_Miloš Hodek_HistoryPrediction.bin
2015-11-30 18:38 - 2015-11-30 18:22 - 00024064 _____ C:\Windows\zoek-delete.exe
2015-11-30 18:22 - 2015-11-30 18:35 - 00000000 ____D C:\zoek_backup
2015-11-30 18:21 - 2015-11-30 18:22 - 01309184 _____ C:\Users\milos\Desktop\zoek.exe
2015-11-30 18:19 - 2015-11-30 18:19 - 00011174 _____ C:\Users\milos\Desktop\rk_42D9.tmp.txt
2015-11-30 14:12 - 2015-11-30 14:12 - 00009050 _____ C:\Users\milos\Desktop\RogueKiller Log.txt
2015-11-30 13:57 - 2015-11-30 18:07 - 00036608 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-11-30 13:57 - 2015-11-30 18:06 - 00000000 ____D C:\ProgramData\RogueKiller
2015-11-30 13:54 - 2015-11-30 13:57 - 25023048 _____ C:\Users\milos\Desktop\RogueKillerX64.exe
2015-11-30 13:54 - 2015-11-30 13:54 - 00001151 _____ C:\Users\milos\Desktop\Malwarebytes Log.txt
2015-11-30 13:42 - 2015-11-30 13:42 - 00000817 _____ C:\Users\milos\Desktop\JRT.txt
2015-11-30 13:40 - 2015-11-30 13:41 - 01599336 _____ (Malwarebytes) C:\Users\milos\Desktop\JRT.exe
2015-11-28 08:42 - 2015-11-28 08:42 - 00000000 ____D C:\Users\milos\Documents\CyberLink
2015-11-28 08:42 - 2015-11-28 08:42 - 00000000 ____D C:\Users\milos\AppData\Roaming\CyberLink
2015-11-28 08:35 - 2015-11-29 11:53 - 00000000 ____D C:\Users\milos\Centrální sklad
2015-11-28 06:30 - 2015-11-28 06:30 - 00000000 ____D C:\Program Files (x86)\HP
2015-11-25 19:22 - 2015-11-30 18:43 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-11-25 19:21 - 2015-11-25 19:21 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-25 19:21 - 2015-11-25 19:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-25 19:21 - 2015-11-25 19:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-25 19:21 - 2015-11-25 19:21 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-11-25 19:21 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-11-25 19:21 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-11-25 19:21 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-11-25 19:20 - 2015-11-25 19:21 - 22908888 _____ (Malwarebytes ) C:\Users\milos\Downloads\mbam-setup-2.2.0.1024.exe
2015-11-25 19:18 - 2015-11-30 13:35 - 00000000 ____D C:\AdwCleaner
2015-11-25 19:16 - 2015-11-25 19:17 - 01733632 _____ C:\Users\milos\Desktop\adwcleaner_5.022.exe
2015-11-25 19:12 - 2015-11-25 19:13 - 00448512 _____ (OldTimer Tools) C:\Users\milos\Downloads\TFC.exe
2015-11-25 19:09 - 2015-11-25 19:10 - 00050688 _____ (Atribune.org) C:\Users\milos\Downloads\ATF-Cleaner.exe
2015-11-25 19:04 - 2015-11-25 18:51 - 00005947 _____ C:\Users\milos\Desktop\UsbFix_Report.txt
2015-11-25 17:58 - 2015-11-25 17:59 - 00388608 _____ (Trend Micro Inc.) C:\Users\milos\Desktop\HijackThis.exe
2015-11-25 12:42 - 2015-11-25 12:42 - 00000000 ____D C:\Users\milos\AppData\Local\Macromedia
2015-11-25 12:23 - 2015-11-25 12:23 - 00000000 ____D C:\totalcmd
2015-11-25 12:23 - 2015-11-25 12:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2015-11-25 12:18 - 2015-11-25 12:19 - 04462584 _____ (Ghisler Software GmbH) C:\Users\milos\Downloads\tcmd852ax64.exe
2015-11-24 20:47 - 2015-11-24 20:47 - 00000017 _____ C:\Users\milos\AppData\Local\resmon.resmoncfg
2015-11-24 18:01 - 2015-11-24 18:01 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-11-24 16:56 - 2015-11-24 16:56 - 00008369 _____ C:\Users\milos\Desktop\Addition.zip
2015-11-24 16:52 - 2015-11-24 16:53 - 00026481 _____ C:\Users\milos\Desktop\Addition starý.txt
2015-11-24 16:51 - 2015-11-24 16:53 - 00092232 _____ C:\Users\milos\Desktop\FRST starý.txt
2015-11-24 16:50 - 2015-11-30 18:47 - 00000000 ____D C:\FRST
2015-11-24 16:49 - 2015-11-24 16:50 - 00112640 _____ (forum.viry.cz) C:\Users\milos\Desktop\FRSTLauncher.exe
2015-11-24 16:30 - 2015-11-25 18:51 - 00003668 _____ C:\Windows\System32\Tasks\CreateExplorerShellUnelevatedTask
2015-11-24 16:26 - 2015-11-25 19:04 - 00000000 ____D C:\UsbFix
2015-11-24 16:26 - 2015-11-25 18:50 - 00001492 _____ C:\Users\milos\Desktop\UsbFix.lnk
2015-11-22 10:49 - 2015-11-28 10:53 - 00000000 ____D C:\Users\milos\AppData\Local\GHISLER
2015-11-20 19:02 - 2015-11-20 19:02 - 00000000 ____D C:\Windows\system32\SleepStudy
2015-11-19 20:59 - 2015-11-19 20:59 - 00002882 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-11-19 20:57 - 2015-11-19 20:57 - 00016148 _____ C:\Windows\system32\DESKTOP-KTRB8CN_milos_HistoryPrediction.bin
2015-11-19 20:55 - 2015-11-19 20:55 - 00000000 ____D C:\Users\Public\CyberLink
2015-11-19 20:46 - 2015-11-19 20:46 - 00000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-11-19 20:46 - 2015-11-19 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-19 20:46 - 2015-11-19 20:46 - 00000000 ____D C:\Program Files\CCleaner
2015-11-19 20:44 - 2015-11-19 20:44 - 06762072 _____ (Piriform Ltd) C:\Users\milos\Downloads\ccsetup511.exe
2015-11-19 19:43 - 2015-11-19 19:43 - 00000000 ____D C:\Users\milos\Tracing
2015-11-19 19:28 - 2015-11-19 19:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmarThru Office
2015-11-19 19:28 - 2015-11-19 19:29 - 00000000 ____D C:\Program Files (x86)\SmarThru Office
2015-11-19 19:28 - 2012-05-23 16:55 - 01233920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4.dll
2015-11-19 19:28 - 2012-05-23 16:55 - 00950585 _____ C:\Windows\SysWOW64\libiconv-2.dll
2015-11-19 19:28 - 2012-05-23 16:55 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4r.dll
2015-11-19 19:26 - 2015-12-05 12:02 - 00491328 ____N C:\Windows\SysWOW64\spdsvc.exe
2015-11-19 19:26 - 2015-12-04 10:03 - 00017831 ____N C:\Windows\SysWOW64\spddata.xml
2015-11-19 19:26 - 2015-11-19 19:26 - 00000000 ____D C:\Users\milos\AppData\Local\Samsung
2015-11-19 19:26 - 2015-03-10 15:03 - 00452800 _____ (Samsung Electronics Co., Ltd.) C:\Windows\system32\NetFaxPort64.dll
2015-11-19 19:26 - 2015-03-10 14:58 - 00474112 _____ (Samsung Software Center) C:\Windows\prinst.exe
2015-11-19 19:25 - 2015-11-19 19:25 - 00000000 ____D C:\ProgramData\Samsung
2015-11-19 19:24 - 2015-11-26 13:48 - 02077184 ____N C:\Windows\SysWOW64\DlgSearchEngine.dll
2015-11-19 19:24 - 2015-11-19 19:32 - 00000000 ____D C:\Users\milos\AppData\Roaming\Samsung
2015-11-19 19:24 - 2015-11-19 19:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2015-11-19 19:24 - 2015-11-19 19:24 - 00143664 ____N C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-11-19 19:24 - 2015-11-19 19:24 - 00143664 ____N C:\Windows\system32\SecUPDUtilSvc.exe
2015-11-19 19:24 - 2015-03-12 03:43 - 00226424 _____ C:\Windows\system32\SBuySupplies.exe
2015-11-19 19:24 - 2015-03-12 03:43 - 00158016 _____ C:\Windows\system32\us003ci.exe
2015-11-19 19:24 - 2015-03-12 03:43 - 00089600 _____ (SS) C:\Windows\system32\us003ci.dll
2015-11-19 19:24 - 2015-03-12 03:43 - 00022528 _____ () C:\Windows\system32\us003lm.dll
2015-11-19 19:24 - 2013-09-02 03:57 - 00155696 _____ C:\Windows\wiainst64.exe
2015-11-19 19:23 - 2015-11-19 19:30 - 00000000 ____D C:\Program Files (x86)\Samsung
2015-11-19 19:23 - 2015-11-19 19:23 - 00000000 ____D C:\Windows\twain_64
2015-11-19 19:23 - 2014-09-18 07:10 - 00094208 ____N C:\Windows\SysWOW64\Ssdevm.dll
2015-11-19 19:23 - 2014-09-18 07:08 - 00087552 ____N C:\Windows\system32\ssdevm64.dll
2015-11-19 19:23 - 2013-10-04 06:31 - 00579072 _____ C:\Windows\system32\SNWIAUI.dll
2015-11-19 19:23 - 2013-10-04 05:53 - 00734720 _____ C:\Windows\system32\SnMinDrv.dll
2015-11-19 19:23 - 2013-10-04 05:53 - 00155136 _____ C:\Windows\system32\SnImgFlt.dll
2015-11-19 19:23 - 2013-10-04 05:52 - 00068096 _____ C:\Windows\system32\SnErHdlr.dll
2015-11-19 19:23 - 2013-06-01 06:13 - 01571160 ____N C:\Windows\TotalUninstaller.exe
2015-11-19 19:23 - 2013-01-09 16:58 - 00053248 _____ C:\Windows\SysWOW64\Ssusbpn.dll
2015-11-19 19:23 - 2013-01-09 16:58 - 00049152 _____ C:\Windows\system32\Ssusbp64.dll
2015-11-19 19:23 - 2012-12-10 03:09 - 00120846 _____ C:\Windows\system32\WIAEXSTR.loc
2015-11-19 19:23 - 2012-03-14 00:58 - 00166640 _____ (TWAIN Working Group) C:\Windows\system32\TWAINDSM.dll
2015-11-19 19:23 - 2012-03-14 00:58 - 00148728 _____ (TWAIN Working Group) C:\Windows\SysWOW64\TWAINDSM.dll
2015-11-19 19:23 - 2012-02-09 08:20 - 00355840 _____ (Samsung Electronics) C:\Windows\system32\snWIAMUI.dll
2015-11-19 19:23 - 2009-08-06 09:35 - 00011576 _____ (Samsung Electronics) C:\Windows\system32\Drivers\SSPORT.sys
2015-11-19 18:58 - 2015-11-19 19:52 - 00000364 _____ C:\Windows\Tasks\HPCeeScheduleFormilos.job
2015-11-19 18:58 - 2015-11-19 18:58 - 00003252 _____ C:\Windows\System32\Tasks\HPCeeScheduleFormilos
2015-11-19 18:44 - 2015-11-19 18:44 - 00001396 _____ C:\Users\milos\Desktop\Kniha_jízd_ 2015 MH.lnk
2015-11-19 18:44 - 2015-11-19 18:44 - 00001229 _____ C:\Users\milos\Desktop\Jepro prosba.lnk
2015-11-19 18:43 - 2015-11-19 18:43 - 00001396 _____ C:\Users\milos\Desktop\Návštěvní list DM 2.lnk
2015-11-19 18:16 - 2015-07-05 11:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-11-19 18:05 - 2015-11-30 15:59 - 00000000 ____D C:\Users\milos\Documents\Reiwag
2015-11-19 17:27 - 2015-11-19 18:13 - 00000000 ____D C:\Windows\System32\Tasks\McAfee
2015-11-19 17:24 - 2015-11-19 17:24 - 00000000 ____D C:\Users\milos\AppData\Local\Skype
2015-11-19 17:23 - 2015-11-19 20:03 - 00000000 ____D C:\Users\milos\AppData\Roaming\Skype
2015-11-19 17:23 - 2015-11-19 17:23 - 00002658 _____ C:\Users\Public\Desktop\Skype.lnk
2015-11-19 17:23 - 2015-11-19 17:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-11-19 17:23 - 2015-11-19 17:23 - 00000000 ____D C:\ProgramData\Skype
2015-11-19 17:23 - 2015-11-19 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-19 17:18 - 2015-11-22 12:34 - 00000000 ____D C:\Users\milos\AppData\Roaming\vlc
2015-11-19 17:07 - 2015-11-19 17:07 - 00002240 _____ C:\Users\milos\Desktop\Google Earth.lnk
2015-11-19 17:05 - 2015-11-19 17:05 - 00002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth.lnk
2015-11-19 17:05 - 2015-11-19 17:05 - 00000000 ____D C:\Users\milos\AppData\LocalLow\Google
2015-11-19 17:04 - 2015-11-30 18:42 - 00000978 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-19 17:04 - 2015-11-30 18:09 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-19 17:04 - 2015-11-19 17:05 - 00000000 ____D C:\Program Files (x86)\Google
2015-11-19 17:04 - 2015-11-19 17:04 - 00004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-19 17:04 - 2015-11-19 17:04 - 00003808 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-19 17:04 - 2015-11-19 17:04 - 00000000 ____D C:\Users\milos\AppData\Local\Google
2015-11-19 17:03 - 2015-11-19 17:03 - 00001150 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-19 17:03 - 2015-11-19 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-19 17:03 - 2015-11-19 17:03 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2015-11-19 16:32 - 2015-11-19 16:32 - 00001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2015-11-19 16:32 - 2015-11-19 16:32 - 00000000 ____D C:\Users\milos\AppData\Roaming\WinRAR
2015-11-19 16:32 - 2015-11-19 16:32 - 00000000 ____D C:\Users\milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-19 16:32 - 2015-11-19 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-19 16:31 - 2015-11-19 16:32 - 00000000 ____D C:\Program Files\WinRAR
2015-11-19 16:31 - 2015-11-19 16:31 - 00000000 ____D C:\$WINDOWS.~BT
2015-11-19 16:27 - 2015-11-19 16:29 - 00000000 ____D C:\Windows\system32\MRT
2015-11-19 16:27 - 2015-10-27 18:43 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-19 16:25 - 2015-11-19 16:25 - 00419528 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2015-11-19 16:25 - 2015-11-19 16:25 - 00044216 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2015-11-19 16:25 - 2015-11-19 16:25 - 00042184 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2015-11-19 16:24 - 2015-11-05 06:15 - 08020832 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-19 16:24 - 2015-11-05 06:14 - 00459104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-11-19 16:24 - 2015-11-05 06:13 - 00577888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-19 16:24 - 2015-11-05 06:11 - 01392480 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2015-11-19 16:24 - 2015-11-05 06:06 - 03621248 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-19 16:24 - 2015-11-05 06:01 - 00607408 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2015-11-19 16:24 - 2015-11-05 05:56 - 00116064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-19 16:24 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2015-11-19 16:24 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-19 16:24 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-11-19 16:24 - 2015-11-05 05:20 - 21873664 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2015-11-19 16:24 - 2015-11-05 05:18 - 24597504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-19 16:24 - 2015-11-05 05:18 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-11-19 16:24 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2015-11-19 16:24 - 2015-11-05 05:17 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-11-19 16:24 - 2015-11-05 05:12 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll
2015-11-19 16:24 - 2015-11-05 05:10 - 12504064 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-19 16:24 - 2015-11-05 05:10 - 02987520 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-11-19 16:24 - 2015-11-05 05:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-11-19 16:24 - 2015-11-05 05:05 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-19 16:24 - 2015-11-05 05:03 - 02180608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-11-19 16:24 - 2015-11-05 05:01 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-19 16:24 - 2015-11-05 05:01 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2015-11-19 16:24 - 2015-11-05 04:59 - 03587072 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2015-11-19 16:24 - 2015-11-05 04:59 - 02675200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2015-11-19 16:24 - 2015-11-05 04:58 - 01383936 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2015-11-19 16:24 - 2015-11-05 04:58 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2015-11-19 16:24 - 2015-11-05 04:56 - 01795072 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-11-19 16:24 - 2015-11-05 04:55 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2015-11-19 16:24 - 2015-11-05 04:54 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2015-11-19 16:24 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-19 16:24 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-11-19 16:24 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-11-19 16:24 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2015-11-19 16:24 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-11-19 16:24 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-19 16:24 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-19 16:24 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2015-11-19 16:24 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2015-11-19 16:24 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dlnashext.dll
2015-11-19 16:24 - 2015-10-06 04:03 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-11-19 16:24 - 2015-10-06 03:46 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-11-19 16:24 - 2015-09-25 05:01 - 02573768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-11-19 16:24 - 2015-09-25 04:33 - 01997336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-11-19 16:24 - 2015-09-25 04:03 - 00796160 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2015-11-19 16:24 - 2015-09-25 04:03 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-19 16:24 - 2015-09-25 04:02 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2015-11-19 16:24 - 2015-09-25 04:00 - 01423872 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2015-11-19 16:24 - 2015-09-25 03:59 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\PimIndexMaintenance.dll
2015-11-19 16:24 - 2015-09-25 03:59 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\CallHistoryClient.dll
2015-11-19 16:24 - 2015-09-25 03:58 - 01871360 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-11-19 16:24 - 2015-09-25 03:37 - 00613376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2015-11-19 16:24 - 2015-09-25 03:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-11-19 16:24 - 2015-09-25 03:32 - 01594368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-11-19 16:24 - 2015-09-17 07:50 - 02464216 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-11-19 16:24 - 2015-09-17 07:50 - 01563392 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-11-19 16:24 - 2015-09-17 07:50 - 00099664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-11-19 16:24 - 2015-09-17 07:50 - 00088384 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2015-11-19 16:24 - 2015-09-17 07:49 - 01563472 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-11-19 16:24 - 2015-09-17 07:49 - 00553808 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2015-11-19 16:24 - 2015-09-17 07:49 - 00501008 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02494712 _____ C:\Windows\system32\CoreUIComponents.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02432336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 01983824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00584656 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00555768 _____ (Microsoft Corporation) C:\Windows\system32\directmanipulation.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00516448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-11-19 16:24 - 2015-09-17 07:48 - 00505696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00476760 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 00406864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-11-19 16:24 - 2015-09-17 07:48 - 00395088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00332624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2015-11-19 16:24 - 2015-09-17 07:48 - 00278352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-11-19 16:24 - 2015-09-17 07:28 - 02154808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-11-19 16:24 - 2015-09-17 07:28 - 01357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-11-19 16:24 - 2015-09-17 07:28 - 00441168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2015-11-19 16:24 - 2015-09-17 07:28 - 00407608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-11-19 16:24 - 2015-09-17 07:28 - 00074880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2015-11-19 16:24 - 2015-09-17 07:27 - 01766952 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2015-11-19 16:24 - 2015-09-17 07:27 - 00454512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\directmanipulation.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 02446648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 01895568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 00646672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2015-11-19 16:24 - 2015-09-17 07:26 - 00434376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-11-19 16:24 - 2015-09-17 07:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-11-19 16:24 - 2015-09-17 07:06 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2015-11-19 16:24 - 2015-09-17 07:05 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2015-11-19 16:24 - 2015-09-17 07:00 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\KeywordDetectorMsftSidAdapter.dll
2015-11-19 16:24 - 2015-09-17 06:57 - 02228736 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-11-19 16:24 - 2015-09-17 06:56 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2015-11-19 16:24 - 2015-09-17 06:56 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\configmanager2.dll
2015-11-19 16:24 - 2015-09-17 06:55 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-19 16:24 - 2015-09-17 06:55 - 00671232 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-11-19 16:24 - 2015-09-17 06:55 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 00591360 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2015-11-19 16:24 - 2015-09-17 06:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-11-19 16:24 - 2015-09-17 06:50 - 00929280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-11-19 16:24 - 2015-09-17 06:50 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-11-19 16:24 - 2015-09-17 06:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\buttonconverter.sys
2015-11-19 16:24 - 2015-09-17 06:48 - 02093056 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-11-19 16:24 - 2015-09-17 06:48 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2015-11-19 16:24 - 2015-09-17 06:48 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2015-11-19 16:24 - 2015-09-17 06:47 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2015-11-19 16:24 - 2015-09-17 06:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2015-11-19 16:24 - 2015-09-17 06:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\syncmlhook.dll
2015-11-19 16:24 - 2015-09-17 06:45 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-11-19 16:24 - 2015-09-17 06:44 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-11-19 16:24 - 2015-09-17 06:44 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-11-19 16:24 - 2015-09-17 06:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\syncutil.dll
2015-11-19 16:24 - 2015-09-17 06:41 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2015-11-19 16:24 - 2015-09-17 06:37 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2015-11-19 16:24 - 2015-09-17 06:35 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2015-11-19 16:24 - 2015-09-17 06:32 - 00336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2015-11-19 16:24 - 2015-09-17 06:30 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2015-11-19 16:24 - 2015-09-17 06:29 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-11-19 16:24 - 2015-09-17 06:28 - 00473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-11-19 16:24 - 2015-08-27 06:54 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-11-19 16:24 - 2015-08-27 06:49 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-11-19 16:24 - 2015-08-27 06:39 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-11-19 16:24 - 2015-08-27 06:23 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-11-19 16:24 - 2015-08-27 06:11 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-11-19 16:24 - 2015-08-27 06:08 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-11-19 16:24 - 2015-08-18 08:55 - 00373072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-11-19 16:24 - 2015-08-18 07:54 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2015-11-19 16:24 - 2015-08-18 07:52 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-11-19 16:24 - 2015-08-18 07:49 - 00274432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2015-11-19 16:24 - 2015-08-18 07:49 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\PackageStateRoaming.dll
2015-11-19 16:24 - 2015-08-18 07:34 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-11-19 16:24 - 2015-08-18 07:29 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-11-19 16:24 - 2015-08-11 11:03 - 00442208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-11-19 16:24 - 2015-08-11 11:02 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys
2015-11-19 16:24 - 2015-08-11 10:50 - 01643872 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-11-19 16:24 - 2015-08-11 10:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2015-11-19 16:24 - 2015-08-11 10:18 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2015-11-19 16:24 - 2015-08-11 10:08 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2015-11-19 16:24 - 2015-08-11 10:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-11-19 16:24 - 2015-08-11 09:59 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-11-19 16:24 - 2015-08-11 09:59 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rdbui.dll
2015-11-19 16:24 - 2015-08-11 09:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2015-11-19 16:24 - 2015-08-11 09:57 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2015-11-19 16:24 - 2015-08-11 09:48 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2015-11-19 16:24 - 2015-08-06 04:17 - 00237392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2015-11-19 16:24 - 2015-08-06 03:22 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2015-11-19 16:24 - 2015-08-03 03:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NotificationObjFactory.dll
2015-11-19 16:24 - 2015-08-03 03:18 - 08613200 _____ (Microsoft Corp.) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2015-11-19 16:24 - 2015-08-03 03:18 - 00046432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2015-11-19 16:24 - 2015-08-03 02:56 - 06878256 _____ (Microsoft Corp.) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
FRST 2/2
2015-11-19 16:24 - 2015-07-30 07:23 - 00527952 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-11-19 16:24 - 2015-07-30 07:21 - 00816576 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-11-19 16:24 - 2015-07-30 07:17 - 01200400 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-19 16:24 - 2015-07-30 07:17 - 01025840 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 07:16 - 02147080 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-11-19 16:24 - 2015-07-30 07:15 - 00632168 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-11-19 16:24 - 2015-07-30 07:14 - 00333168 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-11-19 16:24 - 2015-07-30 07:06 - 01043872 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-11-19 16:24 - 2015-07-30 07:03 - 02116448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-11-19 16:24 - 2015-07-30 05:29 - 00705520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-19 16:24 - 2015-07-30 05:26 - 01867160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-11-19 16:24 - 2015-07-30 05:26 - 00877016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-11-19 16:24 - 2015-07-30 05:25 - 00713312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-11-19 16:24 - 2015-07-30 05:24 - 00445240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-11-19 16:24 - 2015-07-30 05:24 - 00285632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2015-11-19 16:24 - 2015-07-30 05:22 - 00896144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 05:22 - 00507696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-11-19 16:24 - 2015-07-30 04:52 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2015-11-19 16:24 - 2015-07-30 04:49 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-11-19 16:24 - 2015-07-30 04:46 - 00487424 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 04:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-11-19 16:24 - 2015-07-30 04:44 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-11-19 16:24 - 2015-07-30 04:44 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll
2015-11-19 16:24 - 2015-07-30 04:44 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-11-19 16:24 - 2015-07-30 04:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\VoiceActivationManager.dll
2015-11-19 16:24 - 2015-07-30 04:38 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2015-11-19 16:24 - 2015-07-30 04:29 - 00654848 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2015-11-19 16:24 - 2015-07-30 04:15 - 09889792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-11-19 16:24 - 2015-07-30 04:06 - 00373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 04:06 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2015-11-19 16:24 - 2015-07-30 03:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2015-11-19 16:23 - 2015-11-25 12:23 - 00000000 ____D C:\Users\milos\AppData\Roaming\GHISLER
2015-11-19 16:23 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-11-19 16:23 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-11-19 16:23 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-11-19 16:23 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-11-19 16:23 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2015-11-19 16:23 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2015-11-19 16:23 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2015-11-19 16:23 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-19 16:23 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2015-11-19 16:23 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-11-19 16:23 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2015-11-19 16:23 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-19 16:23 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-19 16:23 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-11-19 16:23 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-11-19 16:23 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-11-19 16:23 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-11-19 16:23 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-11-19 16:23 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-11-19 16:23 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-11-19 16:23 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-11-19 16:23 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2015-11-19 16:23 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-11-19 16:23 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2015-11-19 16:23 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-11-19 16:23 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-19 16:23 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2015-11-19 16:23 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2015-11-19 16:23 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2015-11-19 16:23 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2015-11-19 16:23 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-19 16:23 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-19 16:23 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2015-11-19 16:23 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2015-11-19 16:23 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2015-11-19 16:23 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2015-11-19 16:23 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2015-11-19 16:23 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-11-19 16:23 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2015-11-19 16:23 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-11-19 16:23 - 2015-09-17 07:48 - 00243760 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-11-19 16:23 - 2015-09-17 07:44 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-11-19 16:23 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2015-11-19 16:23 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2015-11-19 16:23 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-11-19 16:23 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-11-19 16:23 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2015-11-19 16:23 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2015-11-19 16:23 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2015-11-19 16:23 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2015-11-19 16:23 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2015-11-19 16:23 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2015-11-19 16:23 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2015-11-19 16:23 - 2015-09-17 07:06 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2015-11-19 16:23 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2015-11-19 16:23 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2015-11-19 16:23 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2015-11-19 16:23 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2015-11-19 16:23 - 2015-09-17 07:03 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2015-11-19 16:23 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2015-11-19 16:23 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-11-19 16:23 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2015-11-19 16:23 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2015-11-19 16:23 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2015-11-19 16:23 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2015-11-19 16:23 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2015-11-19 16:23 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-11-19 16:23 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-19 16:23 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2015-11-19 16:23 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 02740224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-11-19 16:23 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2015-11-19 16:23 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2015-11-19 16:23 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2015-11-19 16:23 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2015-11-19 16:23 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2015-11-19 16:23 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-11-19 16:23 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2015-11-19 16:23 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2015-11-19 16:23 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-11-19 16:23 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-19 16:23 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2015-11-19 16:23 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2015-11-19 16:23 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2015-11-19 16:23 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-19 16:23 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-11-19 16:23 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-11-19 16:23 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2015-11-19 16:23 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-11-19 16:23 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2015-11-19 16:23 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2015-11-19 16:23 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2015-11-19 16:23 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2015-11-19 16:23 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2015-11-19 16:23 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-11-19 16:23 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-11-19 16:23 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-11-19 16:23 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2015-11-19 16:23 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-11-19 16:23 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-11-19 16:23 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-11-19 16:23 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-11-19 16:23 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-11-19 16:23 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2015-11-19 16:23 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2015-11-19 16:23 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2015-11-19 16:23 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-11-19 16:23 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2015-11-19 16:23 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2015-11-19 16:23 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-11-19 16:23 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2015-11-19 16:23 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2015-11-19 16:23 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-11-19 16:23 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2015-11-19 16:23 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-11-19 16:23 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-11-19 16:23 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2015-11-19 16:23 - 2015-08-11 11:04 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-11-19 16:23 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2015-11-19 16:23 - 2015-08-11 10:40 - 04048808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-11-19 16:23 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-11-19 16:23 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2015-11-19 16:23 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2015-11-19 16:23 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2015-11-19 16:23 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2015-11-19 16:23 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2015-11-19 16:23 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2015-11-19 16:23 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2015-11-19 16:23 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-11-19 16:23 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2015-11-19 16:23 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2015-11-19 16:23 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-11-19 16:23 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-11-19 16:23 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2015-11-19 16:23 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-11-19 16:23 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-11-19 16:23 - 2015-08-08 07:24 - 02415104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-11-19 16:23 - 2015-08-08 07:24 - 01679360 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-11-19 16:23 - 2015-08-08 07:00 - 01985024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-11-19 16:23 - 2015-08-06 04:17 - 00200528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2015-11-19 16:23 - 2015-08-05 05:00 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-11-19 16:23 - 2015-08-05 04:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2015-11-19 16:23 - 2015-08-04 05:07 - 00102752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-11-19 16:23 - 2015-08-04 04:23 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2015-11-19 16:23 - 2015-08-03 03:32 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\NotificationObjFactory.dll
2015-11-19 16:23 - 2015-08-03 03:17 - 00052264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-11-19 16:23 - 2015-08-03 03:12 - 00801632 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-11-19 16:23 - 2015-08-03 02:49 - 00700256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-11-19 16:23 - 2015-08-03 02:30 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_UserAccount.dll
2015-11-19 16:23 - 2015-08-03 02:23 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2015-11-19 16:23 - 2015-08-03 02:21 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\coredpus.dll
2015-11-19 16:23 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-11-19 16:23 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-11-19 16:23 - 2015-08-03 02:18 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2015-11-19 16:23 - 2015-08-03 02:15 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2015-11-19 16:23 - 2015-08-03 02:15 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2015-11-19 16:23 - 2015-08-03 02:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2015-11-19 16:23 - 2015-08-03 02:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2015-11-19 16:23 - 2015-08-03 02:06 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-11-19 16:23 - 2015-08-03 02:03 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2015-11-19 16:23 - 2015-08-03 01:59 - 00752640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2015-11-19 16:23 - 2015-07-30 06:24 - 00252768 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2015-11-19 16:23 - 2015-07-30 05:12 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2015-11-19 16:23 - 2015-07-30 05:08 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2015-11-19 16:23 - 2015-07-30 04:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-11-19 16:23 - 2015-07-30 04:45 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2015-11-19 16:23 - 2015-07-30 04:44 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2015-11-19 16:23 - 2015-07-30 04:40 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-11-19 16:23 - 2015-07-30 04:07 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2015-11-19 16:23 - 2015-07-30 04:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoiceActivationManager.dll
2015-11-19 16:23 - 2015-07-30 04:04 - 01714176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-11-19 16:22 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2015-11-19 16:22 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2015-11-19 16:22 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2015-11-19 16:22 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2015-11-19 16:22 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2015-11-19 16:22 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2015-11-19 16:22 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2015-11-19 16:22 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2015-11-19 16:22 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-19 16:22 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2015-11-19 16:22 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2015-11-19 16:22 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2015-11-19 16:22 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2015-11-19 16:22 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-11-19 16:22 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-11-19 16:22 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-11-19 16:22 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2015-11-19 16:22 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2015-11-19 16:22 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2015-11-19 16:22 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2015-11-19 16:22 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2015-11-19 16:22 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2015-11-19 16:22 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-11-19 16:22 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-11-19 16:22 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-11-19 16:22 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2015-11-19 16:22 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-11-19 16:22 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2015-11-19 16:22 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2015-11-19 16:22 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2015-11-19 16:22 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-11-19 16:22 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-11-19 16:22 - 2015-08-08 08:29 - 01822280 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-19 16:22 - 2015-08-08 08:01 - 01533496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-19 16:22 - 2015-08-03 03:18 - 00594472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2015-11-19 16:22 - 2015-08-03 02:24 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModelShim.dll
2015-11-19 16:22 - 2015-08-03 02:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2015-11-19 16:22 - 2015-07-30 04:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2015-11-19 16:14 - 2015-11-19 16:23 - 00000000 ____D C:\Users\milos\AppData\Local\Mozilla
2015-11-19 16:14 - 2015-11-19 16:14 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-19 16:14 - 2015-11-19 16:14 - 00000000 ____D C:\Users\milos\AppData\Roaming\Mozilla
2015-11-19 16:13 - 2015-11-19 16:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-19 16:13 - 2015-11-19 16:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-19 16:07 - 2015-11-25 19:18 - 00000000 ____D C:\Users\milos\AppData\Local\Comms
2015-11-19 15:55 - 2015-11-19 15:55 - 00000000 ____D C:\Users\milos\AppData\Roaming\LibreOffice
2015-11-19 15:52 - 2015-11-19 15:52 - 00001219 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
2015-11-19 15:52 - 2015-11-19 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2015-11-19 15:50 - 2015-11-19 15:52 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2015-11-19 15:15 - 2015-11-19 15:15 - 00000000 ____D C:\Users\milos\AppData\Roaming\Macromedia
2015-11-19 15:14 - 2015-11-19 15:18 - 00000000 ____D C:\Users\milos\AppData\Local\MicrosoftEdge
2015-11-19 15:13 - 2015-11-19 15:14 - 00002369 _____ C:\Users\milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-19 15:13 - 2015-11-19 15:14 - 00000000 ___RD C:\Users\milos\OneDrive
2015-11-19 15:13 - 2015-11-19 15:14 - 00000000 ____D C:\Users\milos\AppData\Roaming\Hewlett-Packard
2015-11-19 15:12 - 2015-11-19 18:58 - 00000000 ____D C:\Users\milos\AppData\Local\Hewlett-Packard
2015-11-19 15:12 - 2015-11-19 15:12 - 00000000 ____D C:\Users\milos\AppData\Local\HP_Inc
2015-11-19 15:11 - 2015-11-30 11:13 - 00000000 ____D C:\Users\milos\Documents\YouCam
2015-11-19 15:11 - 2015-11-19 15:13 - 00000000 ____D C:\Users\milos\AppData\Local\CyberLink
2015-11-19 15:11 - 2015-11-19 15:11 - 00000000 ____D C:\Users\milos\AppData\Local\Publishers
2015-11-19 15:10 - 2015-11-24 17:12 - 00000000 ____D C:\Users\milos\AppData\Local\Packages
2015-11-19 15:10 - 2015-11-21 07:37 - 00000000 ____D C:\Users\milos\AppData\Local\VirtualStore
2015-11-19 15:10 - 2015-11-19 20:30 - 00000000 __SHD C:\Users\milos\IntelGraphicsProfiles
2015-11-19 15:10 - 2015-11-19 15:10 - 00000199 _____ C:\Windows\insFileSpec
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\Documents\My Bluetooth
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\AppData\Roaming\Synaptics
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\AppData\Roaming\Adobe
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\AppData\Local\TileDataLayer
2015-11-19 15:09 - 2015-11-19 15:09 - 00016148 _____ C:\Windows\system32\DESKTOP-KTRB8CN_defaultuser0_HistoryPrediction.bin
2015-11-19 15:08 - 2015-11-28 08:43 - 00000000 ____D C:\Users\milos
2015-11-19 15:08 - 2015-11-19 15:08 - 00000020 ___SH C:\Users\milos\ntuser.ini
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Šablony
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Soubory cookie
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Poslední
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Okolní tiskárny
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Okolní síť
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Nabídka Start
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Dokumenty
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Documents\Obrázky
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Documents\Hudba
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Documents\Filmy
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Data aplikací
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\AppData\Local\Data aplikací
2015-11-19 15:08 - 2015-08-11 17:59 - 00000000 ___HD C:\Users\milos\Documents\hp.system.package.metadata
2015-11-19 15:08 - 2015-08-11 17:59 - 00000000 ___HD C:\Users\milos\Documents\hp.applications.package.appdata
2015-11-19 15:02 - 2015-11-30 18:42 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Šablony
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Poslední
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Šablony
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Plocha
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Dokumenty
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Data aplikací
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-30 18:42 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-30 18:41 - 2015-07-10 10:05 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-11-30 18:41 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-11-30 13:29 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2015-11-29 08:09 - 2015-07-10 13:20 - 00271768 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-29 08:09 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2015-11-28 08:42 - 2015-08-26 16:46 - 00000000 ____D C:\ProgramData\CyberLink
2015-11-28 06:29 - 2015-07-13 17:28 - 00000000 ____D C:\SWSetup
2015-11-28 06:19 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2015-11-26 16:22 - 2015-07-10 14:14 - 00000000 ____D C:\Windows\OCR
2015-11-26 16:22 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2015-11-26 16:15 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-26 07:06 - 2015-08-12 03:17 - 00776552 _____ C:\Windows\system32\perfh005.dat
2015-11-26 07:06 - 2015-08-12 03:17 - 00164850 _____ C:\Windows\system32\perfc005.dat
2015-11-26 07:06 - 2015-07-16 07:09 - 01899346 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-24 12:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2015-11-24 12:10 - 2015-07-10 14:16 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\winrm
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\WCN
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\slmgr
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-11-24 12:10 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2015-11-24 12:10 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2015-11-24 12:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2015-11-24 12:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2015-11-21 07:19 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat
2015-11-19 20:58 - 2015-08-26 16:23 - 00000000 ____D C:\Intel
2015-11-19 20:50 - 2015-07-16 07:50 - 00000000 ____D C:\Windows\Panther
2015-11-19 19:27 - 2015-08-26 16:17 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-11-19 18:45 - 2015-08-26 16:26 - 01148160 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll
2015-11-19 18:45 - 2015-07-10 11:59 - 04738672 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtwlane.sys
2015-11-19 18:40 - 2015-08-26 16:22 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-11-19 18:39 - 2015-08-26 16:27 - 00000000 ____D C:\ProgramData\Realtek
2015-11-19 18:30 - 2015-08-11 17:59 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-11-19 18:18 - 2015-08-26 16:38 - 00000000 ____D C:\ProgramData\mcafee
2015-11-19 18:14 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-11-19 18:14 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2015-11-19 17:14 - 2015-07-16 07:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-19 17:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2015-11-19 16:25 - 2015-07-13 10:36 - 01806216 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00766136 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00615608 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2015-11-19 16:25 - 2015-07-13 10:36 - 00269000 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00255688 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo31.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00044216 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2015-11-19 15:12 - 2015-08-11 18:23 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-11-19 15:10 - 2015-07-13 17:28 - 00000000 ____D C:\SYSTEM.SAV
2015-11-19 15:06 - 2015-08-26 16:15 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2015-11-19 12:54 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows NT
2015-11-03 19:20 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2015-11-30 18:41 - 2015-11-30 18:43 - 0001578 _____ () C:\Users\milos\AppData\Local\BTServer.log
2015-11-24 20:47 - 2015-11-24 20:47 - 0000017 _____ () C:\Users\milos\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-30 06:36
==================== End of FRST.txt ============================
2015-11-19 16:24 - 2015-07-30 07:23 - 00527952 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-11-19 16:24 - 2015-07-30 07:21 - 00816576 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-11-19 16:24 - 2015-07-30 07:17 - 01200400 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-19 16:24 - 2015-07-30 07:17 - 01025840 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 07:16 - 02147080 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-11-19 16:24 - 2015-07-30 07:15 - 00632168 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-11-19 16:24 - 2015-07-30 07:14 - 00333168 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2015-11-19 16:24 - 2015-07-30 07:06 - 01043872 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-11-19 16:24 - 2015-07-30 07:03 - 02116448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-11-19 16:24 - 2015-07-30 05:29 - 00705520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-19 16:24 - 2015-07-30 05:26 - 01867160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-11-19 16:24 - 2015-07-30 05:26 - 00877016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-11-19 16:24 - 2015-07-30 05:25 - 00713312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-11-19 16:24 - 2015-07-30 05:24 - 00445240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-11-19 16:24 - 2015-07-30 05:24 - 00285632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2015-11-19 16:24 - 2015-07-30 05:22 - 00896144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 05:22 - 00507696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-11-19 16:24 - 2015-07-30 04:52 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2015-11-19 16:24 - 2015-07-30 04:49 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-11-19 16:24 - 2015-07-30 04:46 - 00487424 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 04:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2015-11-19 16:24 - 2015-07-30 04:44 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-11-19 16:24 - 2015-07-30 04:44 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll
2015-11-19 16:24 - 2015-07-30 04:44 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-11-19 16:24 - 2015-07-30 04:44 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\VoiceActivationManager.dll
2015-11-19 16:24 - 2015-07-30 04:38 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2015-11-19 16:24 - 2015-07-30 04:29 - 00654848 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2015-11-19 16:24 - 2015-07-30 04:15 - 09889792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-11-19 16:24 - 2015-07-30 04:06 - 00373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2015-11-19 16:24 - 2015-07-30 04:06 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.V2.dll
2015-11-19 16:24 - 2015-07-30 03:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2015-11-19 16:23 - 2015-11-25 12:23 - 00000000 ____D C:\Users\milos\AppData\Roaming\GHISLER
2015-11-19 16:23 - 2015-11-05 06:15 - 00541024 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-11-19 16:23 - 2015-11-05 06:06 - 00966416 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-11-19 16:23 - 2015-11-05 05:56 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-11-19 16:23 - 2015-11-05 05:56 - 00025280 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-11-19 16:23 - 2015-11-05 05:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2015-11-19 16:23 - 2015-11-05 05:11 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2015-11-19 16:23 - 2015-11-05 05:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2015-11-19 16:23 - 2015-11-05 05:05 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-19 16:23 - 2015-11-05 05:03 - 01015808 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2015-11-19 16:23 - 2015-11-05 05:01 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-11-19 16:23 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Usb.dll
2015-11-19 16:23 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-19 16:23 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-19 16:23 - 2015-10-10 08:12 - 00078528 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-11-19 16:23 - 2015-10-01 05:01 - 01294352 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-11-19 16:23 - 2015-10-01 05:01 - 01123400 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-11-19 16:23 - 2015-10-01 05:01 - 01018568 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-11-19 16:23 - 2015-10-01 05:01 - 00858408 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-11-19 16:23 - 2015-10-01 04:03 - 00757760 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-11-19 16:23 - 2015-09-25 05:01 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-11-19 16:23 - 2015-09-25 04:56 - 22322624 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-11-19 16:23 - 2015-09-25 04:52 - 00980832 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2015-11-19 16:23 - 2015-09-25 04:26 - 20858360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-11-19 16:23 - 2015-09-25 04:07 - 01276416 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2015-11-19 16:23 - 2015-09-25 04:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2015-11-19 16:23 - 2015-09-25 04:01 - 04792320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-19 16:23 - 2015-09-25 04:00 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2015-11-19 16:23 - 2015-09-25 04:00 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2015-11-19 16:23 - 2015-09-25 03:59 - 01205248 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2015-11-19 16:23 - 2015-09-25 03:59 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2015-11-19 16:23 - 2015-09-25 03:38 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-19 16:23 - 2015-09-25 03:38 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-19 16:23 - 2015-09-25 03:36 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00928256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00625152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactApis.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00579584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppointmentApis.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00557568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ChatApis.dll
2015-11-19 16:23 - 2015-09-25 03:34 - 00525312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EmailApis.dll
2015-11-19 16:23 - 2015-09-25 03:33 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CallHistoryClient.dll
2015-11-19 16:23 - 2015-09-25 03:32 - 00466432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2015-11-19 16:23 - 2015-09-19 06:14 - 00102304 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2015-11-19 16:23 - 2015-09-17 07:49 - 06487248 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2015-11-19 16:23 - 2015-09-17 07:49 - 00894256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-11-19 16:23 - 2015-09-17 07:48 - 00809352 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2015-11-19 16:23 - 2015-09-17 07:48 - 00537080 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-11-19 16:23 - 2015-09-17 07:48 - 00243760 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-11-19 16:23 - 2015-09-17 07:44 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-11-19 16:23 - 2015-09-17 07:37 - 01295712 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2015-11-19 16:23 - 2015-09-17 07:28 - 05120056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2015-11-19 16:23 - 2015-09-17 07:26 - 00508248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-11-19 16:23 - 2015-09-17 07:26 - 00428128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-11-19 16:23 - 2015-09-17 07:11 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2015-11-19 16:23 - 2015-09-17 07:10 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2015-11-19 16:23 - 2015-09-17 07:09 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2015-11-19 16:23 - 2015-09-17 07:08 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2015-11-19 16:23 - 2015-09-17 07:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll
2015-11-19 16:23 - 2015-09-17 07:08 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerShellext.exe
2015-11-19 16:23 - 2015-09-17 07:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2015-11-19 16:23 - 2015-09-17 07:06 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2015-11-19 16:23 - 2015-09-17 07:05 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2015-11-19 16:23 - 2015-09-17 07:04 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2015-11-19 16:23 - 2015-09-17 07:04 - 00910848 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2015-11-19 16:23 - 2015-09-17 07:04 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2015-11-19 16:23 - 2015-09-17 07:03 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2015-11-19 16:23 - 2015-09-17 07:03 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2015-11-19 16:23 - 2015-09-17 07:02 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2015-11-19 16:23 - 2015-09-17 07:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-11-19 16:23 - 2015-09-17 06:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2015-11-19 16:23 - 2015-09-17 06:57 - 00403456 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2015-11-19 16:23 - 2015-09-17 06:57 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2015-11-19 16:23 - 2015-09-17 06:56 - 00859136 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 01601536 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\accountaccessor.dll
2015-11-19 16:23 - 2015-09-17 06:55 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll
2015-11-19 16:23 - 2015-09-17 06:54 - 03781120 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2015-11-19 16:23 - 2015-09-17 06:54 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-11-19 16:23 - 2015-09-17 06:54 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-19 16:23 - 2015-09-17 06:53 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-11-19 16:23 - 2015-09-17 06:52 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\SubscriptionMgr.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 02660864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 01812480 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 01203712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-11-19 16:23 - 2015-09-17 06:51 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll
2015-11-19 16:23 - 2015-09-17 06:50 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 02740224 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 01290240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\LocationGeofences.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2015-11-19 16:23 - 2015-09-17 06:49 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Speech.Pal.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\ncryptprov.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2015-11-19 16:23 - 2015-09-17 06:47 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2015-11-19 16:23 - 2015-09-17 06:47 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00621056 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2015-11-19 16:23 - 2015-09-17 06:46 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2015-11-19 16:23 - 2015-09-17 06:46 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2015-11-19 16:23 - 2015-09-17 06:45 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2015-11-19 16:23 - 2015-09-17 06:45 - 00193024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2015-11-19 16:23 - 2015-09-17 06:44 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-11-19 16:23 - 2015-09-17 06:40 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2015-11-19 16:23 - 2015-09-17 06:40 - 01162240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Speech.dll
2015-11-19 16:23 - 2015-09-17 06:39 - 00587264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-11-19 16:23 - 2015-09-17 06:39 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-11-19 16:23 - 2015-09-17 06:38 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2015-11-19 16:23 - 2015-09-17 06:36 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll
2015-11-19 16:23 - 2015-09-17 06:35 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2015-11-19 16:23 - 2015-09-17 06:35 - 02207232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-19 16:23 - 2015-09-17 06:35 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Bluetooth.dll
2015-11-19 16:23 - 2015-09-17 06:34 - 00253440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2015-11-19 16:23 - 2015-09-17 06:32 - 00313856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2015-11-19 16:23 - 2015-09-17 06:32 - 00195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-11-19 16:23 - 2015-09-17 06:31 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptprov.dll
2015-11-19 16:23 - 2015-09-17 06:29 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2015-11-19 16:23 - 2015-09-17 06:29 - 00677888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2015-11-19 16:23 - 2015-09-17 06:26 - 00899584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RemoteNaturalLanguage.dll
2015-11-19 16:23 - 2015-09-17 06:16 - 00512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2015-11-19 16:23 - 2015-08-27 06:51 - 02350592 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-11-19 16:23 - 2015-08-27 06:51 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-11-19 16:23 - 2015-08-27 06:42 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-11-19 16:23 - 2015-08-27 06:42 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.PicturePassword.dll
2015-11-19 16:23 - 2015-08-27 06:42 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2015-11-19 16:23 - 2015-08-27 06:16 - 02153472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-11-19 16:23 - 2015-08-27 06:16 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-11-19 16:23 - 2015-08-27 06:11 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2015-11-19 16:23 - 2015-08-20 07:06 - 00609592 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-11-19 16:23 - 2015-08-20 06:26 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2015-11-19 16:23 - 2015-08-18 08:13 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2015-11-19 16:23 - 2015-08-18 08:13 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2015-11-19 16:23 - 2015-08-18 08:04 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-11-19 16:23 - 2015-08-18 07:59 - 01294336 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2015-11-19 16:23 - 2015-08-18 07:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-11-19 16:23 - 2015-08-18 07:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2015-11-19 16:23 - 2015-08-18 07:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-11-19 16:23 - 2015-08-18 07:56 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2015-11-19 16:23 - 2015-08-18 07:54 - 00247296 _____ C:\Windows\system32\facecredentialprovider.dll
2015-11-19 16:23 - 2015-08-18 07:49 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-11-19 16:23 - 2015-08-18 07:36 - 01226752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcnwiz.dll
2015-11-19 16:23 - 2015-08-18 07:35 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-11-19 16:23 - 2015-08-18 07:35 - 00095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-11-19 16:23 - 2015-08-18 07:26 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PackageStateRoaming.dll
2015-11-19 16:23 - 2015-08-11 11:04 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-11-19 16:23 - 2015-08-11 11:02 - 00292856 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2015-11-19 16:23 - 2015-08-11 10:40 - 04048808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-11-19 16:23 - 2015-08-11 10:40 - 00918320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-11-19 16:23 - 2015-08-11 10:37 - 00243800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2015-11-19 16:23 - 2015-08-11 10:19 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2015-11-19 16:23 - 2015-08-11 10:14 - 00404480 _____ C:\Windows\system32\diagtrack_wininternal.dll
2015-11-19 16:23 - 2015-08-11 10:13 - 00413184 _____ C:\Windows\system32\diagtrack_win.dll
2015-11-19 16:23 - 2015-08-11 10:11 - 02446336 _____ C:\Windows\system32\InputService.dll
2015-11-19 16:23 - 2015-08-11 10:10 - 00293376 _____ C:\Windows\system32\TextInputFramework.dll
2015-11-19 16:23 - 2015-08-11 10:09 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\wuautoappupdate.dll
2015-11-19 16:23 - 2015-08-11 10:05 - 03527168 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-11-19 16:23 - 2015-08-11 10:05 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\LocationPermissions.dll
2015-11-19 16:23 - 2015-08-11 10:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2015-11-19 16:23 - 2015-08-11 10:03 - 02558976 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-11-19 16:23 - 2015-08-11 10:00 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-11-19 16:23 - 2015-08-11 09:51 - 01823232 _____ C:\Windows\SysWOW64\InputService.dll
2015-11-19 16:23 - 2015-08-11 09:43 - 02748416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-11-19 16:23 - 2015-08-11 09:40 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-11-19 16:23 - 2015-08-08 07:24 - 02415104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-11-19 16:23 - 2015-08-08 07:24 - 01679360 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-11-19 16:23 - 2015-08-08 07:00 - 01985024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-11-19 16:23 - 2015-08-06 04:17 - 00200528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2015-11-19 16:23 - 2015-08-05 05:00 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2015-11-19 16:23 - 2015-08-05 04:39 - 00261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2015-11-19 16:23 - 2015-08-04 05:07 - 00102752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-11-19 16:23 - 2015-08-04 04:23 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2015-11-19 16:23 - 2015-08-03 03:32 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\NotificationObjFactory.dll
2015-11-19 16:23 - 2015-08-03 03:17 - 00052264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys
2015-11-19 16:23 - 2015-08-03 03:12 - 00801632 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-11-19 16:23 - 2015-08-03 02:49 - 00700256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2015-11-19 16:23 - 2015-08-03 02:30 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_UserAccount.dll
2015-11-19 16:23 - 2015-08-03 02:23 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2015-11-19 16:23 - 2015-08-03 02:21 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\coredpus.dll
2015-11-19 16:23 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-11-19 16:23 - 2015-08-03 02:19 - 00215040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-11-19 16:23 - 2015-08-03 02:18 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\NetworkStatus.dll
2015-11-19 16:23 - 2015-08-03 02:15 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2015-11-19 16:23 - 2015-08-03 02:15 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2015-11-19 16:23 - 2015-08-03 02:12 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2015-11-19 16:23 - 2015-08-03 02:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\msctfuimanager.dll
2015-11-19 16:23 - 2015-08-03 02:06 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-11-19 16:23 - 2015-08-03 02:03 - 00494592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2015-11-19 16:23 - 2015-08-03 01:59 - 00752640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfuimanager.dll
2015-11-19 16:23 - 2015-07-30 06:24 - 00252768 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2015-11-19 16:23 - 2015-07-30 05:12 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2015-11-19 16:23 - 2015-07-30 05:08 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2015-11-19 16:23 - 2015-07-30 04:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-11-19 16:23 - 2015-07-30 04:45 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\fwpolicyiomgr.dll
2015-11-19 16:23 - 2015-07-30 04:44 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2015-11-19 16:23 - 2015-07-30 04:40 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-11-19 16:23 - 2015-07-30 04:07 - 00163328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fwpolicyiomgr.dll
2015-11-19 16:23 - 2015-07-30 04:06 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VoiceActivationManager.dll
2015-11-19 16:23 - 2015-07-30 04:04 - 01714176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-11-19 16:22 - 2015-09-25 04:11 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2015-11-19 16:22 - 2015-09-25 04:11 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\PhoneCallHistoryApis.dll
2015-11-19 16:22 - 2015-09-25 04:04 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2015-11-19 16:22 - 2015-09-25 03:59 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2015-11-19 16:22 - 2015-09-25 03:59 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2015-11-19 16:22 - 2015-09-25 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataAccountApis.dll
2015-11-19 16:22 - 2015-09-25 03:47 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhoneCallHistoryApis.dll
2015-11-19 16:22 - 2015-09-25 03:38 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2015-11-19 16:22 - 2015-09-17 07:37 - 01168736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-19 16:22 - 2015-09-17 07:09 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2015-11-19 16:22 - 2015-09-17 07:00 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2015-11-19 16:22 - 2015-09-17 06:57 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2015-11-19 16:22 - 2015-09-17 06:55 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2015-11-19 16:22 - 2015-09-17 06:52 - 00856576 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-11-19 16:22 - 2015-09-17 06:52 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-11-19 16:22 - 2015-09-17 06:50 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2015-11-19 16:22 - 2015-09-17 06:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeWiFi.dll
2015-11-19 16:22 - 2015-09-17 06:50 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeCell.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\LocationWebproxy.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\LocationCrowdsource.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\LocationPeIP.dll
2015-11-19 16:22 - 2015-09-17 06:49 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\LocationWiFiAdapter.dll
2015-11-19 16:22 - 2015-09-17 06:45 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2015-11-19 16:22 - 2015-09-17 06:43 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2015-11-19 16:22 - 2015-08-20 06:21 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2015-11-19 16:22 - 2015-08-18 05:44 - 00008847 _____ C:\Windows\system32\ResPriHMImageList
2015-11-19 16:22 - 2015-08-11 11:04 - 01087296 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-11-19 16:22 - 2015-08-11 10:52 - 00993104 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-11-19 16:22 - 2015-08-11 10:26 - 00845664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-11-19 16:22 - 2015-08-11 10:11 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2015-11-19 16:22 - 2015-08-11 09:59 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-11-19 16:22 - 2015-08-11 09:50 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2015-11-19 16:22 - 2015-08-11 09:50 - 00200704 _____ C:\Windows\SysWOW64\TextInputFramework.dll
2015-11-19 16:22 - 2015-08-11 09:50 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2015-11-19 16:22 - 2015-08-11 09:39 - 00280576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-11-19 16:22 - 2015-08-11 09:38 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReInfo.dll
2015-11-19 16:22 - 2015-08-08 08:29 - 01822280 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-19 16:22 - 2015-08-08 08:01 - 01533496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-19 16:22 - 2015-08-03 03:18 - 00594472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2015-11-19 16:22 - 2015-08-03 02:24 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModelShim.dll
2015-11-19 16:22 - 2015-08-03 02:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2015-11-19 16:22 - 2015-07-30 04:41 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2015-11-19 16:14 - 2015-11-19 16:23 - 00000000 ____D C:\Users\milos\AppData\Local\Mozilla
2015-11-19 16:14 - 2015-11-19 16:14 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-19 16:14 - 2015-11-19 16:14 - 00000000 ____D C:\Users\milos\AppData\Roaming\Mozilla
2015-11-19 16:13 - 2015-11-19 16:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-19 16:13 - 2015-11-19 16:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-19 16:07 - 2015-11-25 19:18 - 00000000 ____D C:\Users\milos\AppData\Local\Comms
2015-11-19 15:55 - 2015-11-19 15:55 - 00000000 ____D C:\Users\milos\AppData\Roaming\LibreOffice
2015-11-19 15:52 - 2015-11-19 15:52 - 00001219 _____ C:\Users\Public\Desktop\LibreOffice 5.0.lnk
2015-11-19 15:52 - 2015-11-19 15:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2015-11-19 15:50 - 2015-11-19 15:52 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5
2015-11-19 15:15 - 2015-11-19 15:15 - 00000000 ____D C:\Users\milos\AppData\Roaming\Macromedia
2015-11-19 15:14 - 2015-11-19 15:18 - 00000000 ____D C:\Users\milos\AppData\Local\MicrosoftEdge
2015-11-19 15:13 - 2015-11-19 15:14 - 00002369 _____ C:\Users\milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-19 15:13 - 2015-11-19 15:14 - 00000000 ___RD C:\Users\milos\OneDrive
2015-11-19 15:13 - 2015-11-19 15:14 - 00000000 ____D C:\Users\milos\AppData\Roaming\Hewlett-Packard
2015-11-19 15:12 - 2015-11-19 18:58 - 00000000 ____D C:\Users\milos\AppData\Local\Hewlett-Packard
2015-11-19 15:12 - 2015-11-19 15:12 - 00000000 ____D C:\Users\milos\AppData\Local\HP_Inc
2015-11-19 15:11 - 2015-11-30 11:13 - 00000000 ____D C:\Users\milos\Documents\YouCam
2015-11-19 15:11 - 2015-11-19 15:13 - 00000000 ____D C:\Users\milos\AppData\Local\CyberLink
2015-11-19 15:11 - 2015-11-19 15:11 - 00000000 ____D C:\Users\milos\AppData\Local\Publishers
2015-11-19 15:10 - 2015-11-24 17:12 - 00000000 ____D C:\Users\milos\AppData\Local\Packages
2015-11-19 15:10 - 2015-11-21 07:37 - 00000000 ____D C:\Users\milos\AppData\Local\VirtualStore
2015-11-19 15:10 - 2015-11-19 20:30 - 00000000 __SHD C:\Users\milos\IntelGraphicsProfiles
2015-11-19 15:10 - 2015-11-19 15:10 - 00000199 _____ C:\Windows\insFileSpec
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\Documents\My Bluetooth
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\AppData\Roaming\Synaptics
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\AppData\Roaming\Adobe
2015-11-19 15:10 - 2015-11-19 15:10 - 00000000 ____D C:\Users\milos\AppData\Local\TileDataLayer
2015-11-19 15:09 - 2015-11-19 15:09 - 00016148 _____ C:\Windows\system32\DESKTOP-KTRB8CN_defaultuser0_HistoryPrediction.bin
2015-11-19 15:08 - 2015-11-28 08:43 - 00000000 ____D C:\Users\milos
2015-11-19 15:08 - 2015-11-19 15:08 - 00000020 ___SH C:\Users\milos\ntuser.ini
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Šablony
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Soubory cookie
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Poslední
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Okolní tiskárny
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Okolní síť
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Nabídka Start
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Dokumenty
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Documents\Obrázky
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Documents\Hudba
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Documents\Filmy
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\Data aplikací
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-11-19 15:08 - 2015-11-19 15:08 - 00000000 _SHDL C:\Users\milos\AppData\Local\Data aplikací
2015-11-19 15:08 - 2015-08-11 17:59 - 00000000 ___HD C:\Users\milos\Documents\hp.system.package.metadata
2015-11-19 15:08 - 2015-08-11 17:59 - 00000000 ___HD C:\Users\milos\Documents\hp.applications.package.appdata
2015-11-19 15:02 - 2015-11-30 18:42 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Šablony
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Poslední
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Šablony
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Plocha
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Dokumenty
2015-11-19 12:54 - 2015-11-19 12:54 - 00000000 _SHDL C:\ProgramData\Data aplikací
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-30 18:42 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-30 18:41 - 2015-07-10 10:05 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-11-30 18:41 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2015-11-30 13:29 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF
2015-11-29 08:09 - 2015-07-10 13:20 - 00271768 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-29 08:09 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\PurchaseDialog
2015-11-28 08:42 - 2015-08-26 16:46 - 00000000 ____D C:\ProgramData\CyberLink
2015-11-28 06:29 - 2015-07-13 17:28 - 00000000 ____D C:\SWSetup
2015-11-28 06:19 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\AppReadiness
2015-11-26 16:22 - 2015-07-10 14:14 - 00000000 ____D C:\Windows\OCR
2015-11-26 16:22 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp
2015-11-26 16:15 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-26 07:06 - 2015-08-12 03:17 - 00776552 _____ C:\Windows\system32\perfh005.dat
2015-11-26 07:06 - 2015-08-12 03:17 - 00164850 _____ C:\Windows\system32\perfc005.dat
2015-11-26 07:06 - 2015-07-16 07:09 - 01899346 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-24 12:26 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\rescache
2015-11-24 12:10 - 2015-07-10 14:16 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\winrm
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\WCN
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\slmgr
2015-11-24 12:10 - 2015-07-10 14:13 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\F12
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\F12
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\MiracastView
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\DevicesFlow
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\migwiz
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\IME
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Help
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-11-24 12:10 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-11-24 12:10 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep
2015-11-24 12:10 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\servicing
2015-11-24 12:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2015-11-24 12:08 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\en-GB
2015-11-21 07:19 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\appcompat
2015-11-19 20:58 - 2015-08-26 16:23 - 00000000 ____D C:\Intel
2015-11-19 20:50 - 2015-07-16 07:50 - 00000000 ____D C:\Windows\Panther
2015-11-19 19:27 - 2015-08-26 16:17 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-11-19 18:45 - 2015-08-26 16:26 - 01148160 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll
2015-11-19 18:45 - 2015-07-10 11:59 - 04738672 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtwlane.sys
2015-11-19 18:40 - 2015-08-26 16:22 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-11-19 18:39 - 2015-08-26 16:27 - 00000000 ____D C:\ProgramData\Realtek
2015-11-19 18:30 - 2015-08-11 17:59 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2015-11-19 18:18 - 2015-08-26 16:38 - 00000000 ____D C:\ProgramData\mcafee
2015-11-19 18:14 - 2015-07-10 12:04 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-11-19 18:14 - 2015-07-10 10:05 - 00032768 ___SH C:\Windows\system32\config\ELAM
2015-11-19 17:14 - 2015-07-16 07:05 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-19 17:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\Provisioning
2015-11-19 16:39 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\L2Schemas
2015-11-19 16:25 - 2015-07-13 10:36 - 01806216 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00766136 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00615608 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2015-11-19 16:25 - 2015-07-13 10:36 - 00269000 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00255688 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo31.dll
2015-11-19 16:25 - 2015-07-13 10:36 - 00044216 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2015-11-19 15:12 - 2015-08-11 18:23 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-11-19 15:10 - 2015-07-13 17:28 - 00000000 ____D C:\SYSTEM.SAV
2015-11-19 15:06 - 2015-08-26 16:15 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2015-11-19 12:54 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows NT
2015-11-03 19:20 - 2015-07-10 12:06 - 00810488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-07-10 12:06 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2015-11-30 18:41 - 2015-11-30 18:43 - 0001578 _____ () C:\Users\milos\AppData\Local\BTServer.log
2015-11-24 20:47 - 2015-11-24 20:47 - 0000017 _____ () C:\Users\milos\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-30 06:36
==================== End of FRST.txt ============================
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
Additional scan result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
Ran by Miloš Hodek (2015-11-30 18:49:15)
Running from C:\Users\milos\Desktop
Windows 10 Home (X64) (2015-11-19 14:01:52)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2127903286-2658567943-1044287583-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2127903286-2658567943-1044287583-503 - Limited - Disabled)
Guest (S-1-5-21-2127903286-2658567943-1044287583-501 - Limited - Disabled)
Miloš Hodek (S-1-5-21-2127903286-2658567943-1044287583-1001 - Administrator - Enabled) => C:\Users\milos
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6713 - CyberLink Corp.)
CyberLink PhotoDirector (Version: 5.0.5.6713 - Název společnosti:) Hidden
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.5418 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4.4301 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.4.4301 - Název společnosti:) Hidden
CyberLink YouCam (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.1.4301 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Documentation (HKLM\...\HP_Documentation) (Version: - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8293.5264 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{C9F1F770-9A43-4BC1-9C8F-DEE6C9A91F4A}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{6B1ECC61-B581-400D-BFAF-101B1AAEA5AB}) (Version: 1.4.7 - Hewlett-Packard Company)
HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.150 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1156 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4256 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
LibreOffice 5.0.3.2 (HKLM-x32\...\{D61E7AA0-0380-49B9-8DDD-7685E2306176}) (Version: 5.0.3.2 - The Document Foundation)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 cs)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.42 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7564 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.62 - REALTEK Semiconductor Corp.)
Samsung Diagnostika tiskárny Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.1 - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.60.05 - Samsung Electronics Co., Ltd.)
Samsung Network PC Fax (HKLM-x32\...\Samsung Network PC Fax) (Version: 1.11.28 (10.03.2015) - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.00.05 (10.07.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.)
SmarThru Office (HKLM-x32\...\{9BC1E722-AE07-46A3-B7A6-556DBE18E22A}) (Version: 2.10.000 - Samsung Electronics Co., Ltd.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
UsbFix (HKLM-x32\...\Usbfix) (Version: 7.181 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2127903286-2658567943-1044287583-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\milos\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Restore Points =========================
19-11-2015 15:48:30 Installed LibreOffice 5.0.3.2
24-11-2015 12:06:49 Odebrání jazykové sady
26-11-2015 16:13:12 Instalační služba modulů systému Windows
28-11-2015 06:28:30 HPSF Applying updates
30-11-2015 13:41:27 JRT Pre-Junkware Removal
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 12:04 - 2015-11-30 18:23 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1AF72C05-290B-431E-AD01-79F0C9F8E43F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {335B34E6-8601-4415-827C-3C51E8609339} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-10-27] (Microsoft Corporation)
Task: {537638B5-6A2D-44B2-A2C1-9D5F56A09610} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [2015-08-11] (Microsoft Corporation)
Task: {57614358-8D2D-4F64-8044-69492DF5470F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {75576471-11AD-4AB2-8FFB-E5B16E21EF1B} - System32\Tasks\HPCeeScheduleFormilos => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {78EF2C98-ECA7-4684-B997-C748A9E1CFFC} - \WindowsUpda2ta -> No File <==== ATTENTION
Task: {902FC745-C487-4EDB-B569-89177654F8D9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {90833263-12DD-4AE9-8B16-11D7207AB969} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {95F3E887-20A9-4518-B9EE-D6F5A9D90437} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2015-09-28] (Hewlett-Packard Company)
Task: {AB38E915-6B2C-4B4F-A0C8-C2B345C72D28} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {CB4B9B1B-D9B6-4C96-BFE8-1B581371DC5F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F66CFD37-C66F-4416-A403-1F7076386B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {FA5435F2-6477-48C9-A165-6248AE913287} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFormilos.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://www.booking.com/index.html?aid=398438&label=square <==== ATTENTION
==================== Loaded Modules (Whitelisted) ==============
2015-08-27 01:54 - 2015-08-27 01:54 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-11-19 19:24 - 2015-03-12 03:43 - 00022528 _____ () C:\Windows\System32\us003lm.dll
2015-11-19 16:23 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-08-26 16:27 - 2015-07-20 19:19 - 00121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2015-08-26 16:54 - 2014-04-14 17:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-11-19 19:24 - 2015-11-19 19:24 - 00143664 ____N () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-11-19 19:26 - 2015-12-05 12:02 - 00491328 ____N () C:\Windows\SysWOW64\spdsvc.exe
2015-11-19 16:24 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-11-19 16:23 - 2015-09-17 06:44 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-11-19 16:22 - 2015-09-17 06:42 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-11-19 16:23 - 2015-09-17 06:42 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-19 21:00 - 2015-10-19 21:00 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-11-19 19:23 - 2013-10-04 05:53 - 00734720 _____ () C:\Windows\system32\SnMinDrv.dll
2015-11-19 19:23 - 2014-09-18 07:08 - 00087552 ____N () C:\Windows\system32\SSDEVM64.DLL
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\milos\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{5d77338f-6c35-424a-8158-c56755c1fa51}.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\StartupApproved\StartupFolder: => "Total Commander Crack 2015 .vbs"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DE1C5BB3-E4F7-4C02-906E-C0841DDBB6EC}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPSOCKSVC.exe
FirewallRules: [{83013A69-60C7-4C20-90F5-DBD3ED05B65F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{79779ABA-F159-445D-A0C0-8658432D5E65}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4110307C-6730-41EE-B83B-091B10FD4898}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A7CB1F4E-1A6C-49D7-8D71-CF72D78F41AD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2783C395-AFA4-42B5-8A1E-08F079F9CBD7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{36AC05B4-444E-4B7F-BEB9-7CE8F14D31C2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{3F624F3A-447E-48DA-AE64-CFD84C77593F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{6E48F6D2-C758-4D99-BC1E-B2674CCA256A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{9B6CDFFF-C077-4019-B9B2-D0F503AEF43A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{67BC8491-3ABE-414A-96A9-0E0C9D455FE3}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{971170A9-C425-4001-B9B5-97F946C53012}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CEE49EA4-8F0B-4279-98EF-6EB19469830A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8A8D6BDD-B051-4CF7-B39A-635937D067BF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{3BAAFD6F-93FE-40C5-828D-05F2EFB7CBCC}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{DF7E43DB-B0E0-4BBF-A098-F6A71AA2B21E}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{0CAA69AD-7E2E-45F3-88A6-29A3E6A29EC7}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{680805C2-6CC9-411E-9757-8EDABF43B5BA}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{A114EF45-D303-4DDF-BDCD-83F94F067D99}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe
FirewallRules: [{590E6D71-3726-482D-A094-2D05D6E53F16}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon64.exe
FirewallRules: [{1391CA98-F880-4A7F-89EC-C69C11C8F4E9}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon.exe
FirewallRules: [{E6D3C449-E5F2-4320-B784-96DDFCCECFAD}] => (Allow) C:\Windows\system32\spool\drivers\x64\3\NetFaxMon64.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/30/2015 01:41:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (11/30/2015 01:25:35 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/30/2015 00:11:16 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/30/2015 11:12:00 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/30/2015 07:58:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KTRB8CN)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (11/30/2015 06:23:03 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/29/2015 00:00:34 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/29/2015 11:58:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KTRB8CN)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (11/29/2015 11:41:07 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/29/2015 07:56:19 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
System errors:
=============
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:35:45 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:43 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 01:38:26 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentage of memory in use: 43%
Total physical RAM: 4011.39 MB
Available physical RAM: 2286.21 MB
Total Virtual: 4715.39 MB
Available Virtual: 3017.78 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:916.32 GB) (Free:854.94 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.08 GB) (Free:1.69 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 83143181)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by Miloš Hodek (2015-11-30 18:49:15)
Running from C:\Users\milos\Desktop
Windows 10 Home (X64) (2015-11-19 14:01:52)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2127903286-2658567943-1044287583-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2127903286-2658567943-1044287583-503 - Limited - Disabled)
Guest (S-1-5-21-2127903286-2658567943-1044287583-501 - Limited - Disabled)
Miloš Hodek (S-1-5-21-2127903286-2658567943-1044287583-1001 - Administrator - Enabled) => C:\Users\milos
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6713 - CyberLink Corp.)
CyberLink PhotoDirector (Version: 5.0.5.6713 - Název společnosti:) Hidden
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.5418 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4.4301 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.4.4301 - Název společnosti:) Hidden
CyberLink YouCam (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.1.4301 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
HP Documentation (HKLM\...\HP_Documentation) (Version: - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8293.5264 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{C9F1F770-9A43-4BC1-9C8F-DEE6C9A91F4A}) (Version: 12.0.30.219 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{6B1ECC61-B581-400D-BFAF-101B1AAEA5AB}) (Version: 1.4.7 - Hewlett-Packard Company)
HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.150 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1156 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4256 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
LibreOffice 5.0.3.2 (HKLM-x32\...\{D61E7AA0-0380-49B9-8DDD-7685E2306176}) (Version: 5.0.3.2 - The Document Foundation)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 cs)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0 - Mozilla)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.42 - REALTEK Semiconductor Corp.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7564 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.62 - REALTEK Semiconductor Corp.)
Samsung Diagnostika tiskárny Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.1 - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.60.05 - Samsung Electronics Co., Ltd.)
Samsung Network PC Fax (HKLM-x32\...\Samsung Network PC Fax) (Version: 1.11.28 (10.03.2015) - Samsung Electronics Co., Ltd.)
Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.00.05 (10.07.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.)
SmarThru Office (HKLM-x32\...\{9BC1E722-AE07-46A3-B7A6-556DBE18E22A}) (Version: 2.10.000 - Samsung Electronics Co., Ltd.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
UsbFix (HKLM-x32\...\Usbfix) (Version: 7.181 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.30 beta 6 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.6 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2127903286-2658567943-1044287583-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\milos\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
==================== Restore Points =========================
19-11-2015 15:48:30 Installed LibreOffice 5.0.3.2
24-11-2015 12:06:49 Odebrání jazykové sady
26-11-2015 16:13:12 Instalační služba modulů systému Windows
28-11-2015 06:28:30 HPSF Applying updates
30-11-2015 13:41:27 JRT Pre-Junkware Removal
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 12:04 - 2015-11-30 18:23 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1AF72C05-290B-431E-AD01-79F0C9F8E43F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
Task: {335B34E6-8601-4415-827C-3C51E8609339} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-10-27] (Microsoft Corporation)
Task: {537638B5-6A2D-44B2-A2C1-9D5F56A09610} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [2015-08-11] (Microsoft Corporation)
Task: {57614358-8D2D-4F64-8044-69492DF5470F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {75576471-11AD-4AB2-8FFB-E5B16E21EF1B} - System32\Tasks\HPCeeScheduleFormilos => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {78EF2C98-ECA7-4684-B997-C748A9E1CFFC} - \WindowsUpda2ta -> No File <==== ATTENTION
Task: {902FC745-C487-4EDB-B569-89177654F8D9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {90833263-12DD-4AE9-8B16-11D7207AB969} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {95F3E887-20A9-4518-B9EE-D6F5A9D90437} - System32\Tasks\Hewlett-Packard\HP Support Assistant\First Boot => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2015-09-28] (Hewlett-Packard Company)
Task: {AB38E915-6B2C-4B4F-A0C8-C2B345C72D28} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-28] (Hewlett-Packard)
Task: {CB4B9B1B-D9B6-4C96-BFE8-1B581371DC5F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company)
Task: {F66CFD37-C66F-4416-A403-1F7076386B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {FA5435F2-6477-48C9-A165-6248AE913287} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFormilos.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://www.booking.com/index.html?aid=398438&label=square <==== ATTENTION
==================== Loaded Modules (Whitelisted) ==============
2015-08-27 01:54 - 2015-08-27 01:54 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll
2015-11-19 19:24 - 2015-03-12 03:43 - 00022528 _____ () C:\Windows\System32\us003lm.dll
2015-11-19 16:23 - 2015-08-11 10:14 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll
2015-08-26 16:27 - 2015-07-20 19:19 - 00121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2015-08-26 16:54 - 2014-04-14 17:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-11-19 19:24 - 2015-11-19 19:24 - 00143664 ____N () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2015-11-19 19:26 - 2015-12-05 12:02 - 00491328 ____N () C:\Windows\SysWOW64\spdsvc.exe
2015-11-19 16:24 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-11-19 16:24 - 2015-09-17 07:48 - 02494712 _____ () C:\Windows\System32\CoreUIComponents.dll
2015-11-19 16:23 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-11-19 16:23 - 2015-09-17 06:44 - 06569472 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-11-19 16:22 - 2015-09-17 06:42 - 00471040 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-11-19 16:23 - 2015-09-17 06:42 - 01808384 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-19 16:23 - 2015-09-17 06:43 - 02274816 _____ () C:\windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-10-19 21:00 - 2015-10-19 21:00 - 00047104 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-11-19 19:23 - 2013-10-04 05:53 - 00734720 _____ () C:\Windows\system32\SnMinDrv.dll
2015-11-19 19:23 - 2014-09-18 07:08 - 00087552 ____N () C:\Windows\system32\SSDEVM64.DLL
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\milos\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{5d77338f-6c35-424a-8158-c56755c1fa51}.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\StartupApproved\StartupFolder: => "Total Commander Crack 2015 .vbs"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DE1C5BB3-E4F7-4C02-906E-C0841DDBB6EC}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPSOCKSVC.exe
FirewallRules: [{83013A69-60C7-4C20-90F5-DBD3ED05B65F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{79779ABA-F159-445D-A0C0-8658432D5E65}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4110307C-6730-41EE-B83B-091B10FD4898}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A7CB1F4E-1A6C-49D7-8D71-CF72D78F41AD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2783C395-AFA4-42B5-8A1E-08F079F9CBD7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{36AC05B4-444E-4B7F-BEB9-7CE8F14D31C2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{3F624F3A-447E-48DA-AE64-CFD84C77593F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{6E48F6D2-C758-4D99-BC1E-B2674CCA256A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{9B6CDFFF-C077-4019-B9B2-D0F503AEF43A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{67BC8491-3ABE-414A-96A9-0E0C9D455FE3}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE
FirewallRules: [{971170A9-C425-4001-B9B5-97F946C53012}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CEE49EA4-8F0B-4279-98EF-6EB19469830A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8A8D6BDD-B051-4CF7-B39A-635937D067BF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{3BAAFD6F-93FE-40C5-828D-05F2EFB7CBCC}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{DF7E43DB-B0E0-4BBF-A098-F6A71AA2B21E}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe
FirewallRules: [{0CAA69AD-7E2E-45F3-88A6-29A3E6A29EC7}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{680805C2-6CC9-411E-9757-8EDABF43B5BA}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe
FirewallRules: [{A114EF45-D303-4DDF-BDCD-83F94F067D99}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe
FirewallRules: [{590E6D71-3726-482D-A094-2D05D6E53F16}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon64.exe
FirewallRules: [{1391CA98-F880-4A7F-89EC-C69C11C8F4E9}] => (Allow) C:\Program Files (x86)\Samsung\Network PC Fax\drv\NetFaxMon.exe
FirewallRules: [{E6D3C449-E5F2-4320-B784-96DDFCCECFAD}] => (Allow) C:\Windows\system32\spool\drivers\x64\3\NetFaxMon64.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/30/2015 01:41:33 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (11/30/2015 01:25:35 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/30/2015 00:11:16 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/30/2015 11:12:00 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/30/2015 07:58:48 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KTRB8CN)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (11/30/2015 06:23:03 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/29/2015 00:00:34 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/29/2015 11:58:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-KTRB8CN)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (11/29/2015 11:41:07 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
Error: (11/29/2015 07:56:19 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10600.150) TYPE: ERROR
DPTF Build Version: 8.1.10600.150
DPTF Build Date: Jun 26 2015 11:46:12
Source File: ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function: DptfEvent
Message: Received unexpected event
Framework Event: DptfResume [3]
System errors:
=============
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Přístup k uživatelským datům_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Úložiště uživatelských dat_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Data kontaktů_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:41:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_Session1 byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.
Error: (11/30/2015 06:35:45 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:44 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 06:35:43 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (11/30/2015 01:38:26 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Percentage of memory in use: 43%
Total physical RAM: 4011.39 MB
Available physical RAM: 2286.21 MB
Total Virtual: 4715.39 MB
Available Virtual: 3017.78 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:916.32 GB) (Free:854.94 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.08 GB) (Free:1.69 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 83143181)
Partition: GPT.
==================== End of Addition.txt ============================
Re: Chybějící soubor skriptu
Tuhle zkratku tam máš nastavenou schválně?
V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému.
Toto otestuj na Virustotal
C:\Windows\SysWOW64\SecUPDUtilSvc.exe
C:\Windows\SysWOW64\spdsvc.exe
C:\Windows\Temp\DPTF\esif_assist_64.exe
Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Stáhni si z některého odkazu SystemLook
SystemLook (32-bit)
http://jpshortstuff.247fixes.com/SystemLook.exe
SystemLook (64-bit)
http://jpshortstuff.247fixes.com/SystemLook_x64.exe
a ulož si ho na plochu.
Poklepej na stažený SystemLook , zkopíruj do hlavního text. okna tento následující text:
Klikni na Look ke startu skenu. Když program skončí objeví se v poznámkovém bloku zpráva skenu. Zkopíruj sem celý jeho obsah. Log se také nachází na ploše pod názvem SystemLook.txt.
Kód: Vybrat vše
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://www.booking.com/index.html?aid=3 ... bel=square <==== ATTENTION
Toto otestuj na Virustotal
C:\Windows\SysWOW64\SecUPDUtilSvc.exe
C:\Windows\SysWOW64\spdsvc.exe
C:\Windows\Temp\DPTF\esif_assist_64.exe
Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
C:\Program Files (x86)\Google\Update
C:\Users\milos\Downloads\tcmd852ax64.exe
Task: {57614358-8D2D-4F64-8044-69492DF5470F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {78EF2C98-ECA7-4684-B997-C748A9E1CFFC} - \WindowsUpda2ta -> No File <==== ATTENTION
Task: {F66CFD37-C66F-4416-A403-1F7076386B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFormilos.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
EmptyTemp:
EndUlož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Stáhni si z některého odkazu SystemLook
SystemLook (32-bit)
http://jpshortstuff.247fixes.com/SystemLook.exe
SystemLook (64-bit)
http://jpshortstuff.247fixes.com/SystemLook_x64.exe
a ulož si ho na plochu.
Poklepej na stažený SystemLook , zkopíruj do hlavního text. okna tento následující text:
Kód: Vybrat vše
:filefind
*Total Commander Crack 2015 .vbs*
*Total Commander Crack 2015*
:folderfind
*Total Commander Crack 2015 .vbs*
*Total Commander Crack 2015*
:regfind
*Total Commander Crack 2015 .vbs*
*Total Commander Crack 2015*Když nevíš jak dál, přichází na řadu prostudovat manuál!
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
HJT návod
Pokud neodpovídám do vašich témat v sekci HJT když jsem online, tak je to jen proto, že jsem na mobilu kde je studování logů a psaní skriptů nemožné. Neberte to tedy prosím jako ignoraci.
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
U všech souborů bylo ratio 0/xx.
Fix result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
Ran by Miloš Hodek (2015-11-30 20:49:04) Run:1
Running from C:\Users\milos\Desktop
Loaded Profiles: Miloš Hodek (Available Profiles: Miloš Hodek)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
C:\Program Files (x86)\Google\Update
C:\Users\milos\Downloads\tcmd852ax64.exe
Task: {57614358-8D2D-4F64-8044-69492DF5470F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {78EF2C98-ECA7-4684-B997-C748A9E1CFFC} - \WindowsUpda2ta -> No File <==== ATTENTION
Task: {F66CFD37-C66F-4416-A403-1F7076386B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFormilos.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
Firefox "newtab" removed successfully
Firefox "homepage" removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll => not found.
C:\Program Files (x86)\Google\Update => moved successfully
C:\Users\milos\Downloads\tcmd852ax64.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{57614358-8D2D-4F64-8044-69492DF5470F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57614358-8D2D-4F64-8044-69492DF5470F}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{78EF2C98-ECA7-4684-B997-C748A9E1CFFC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78EF2C98-ECA7-4684-B997-C748A9E1CFFC}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WindowsUpda2ta => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F66CFD37-C66F-4416-A403-1F7076386B2B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F66CFD37-C66F-4416-A403-1F7076386B2B}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\HPCeeScheduleFormilos.job => moved successfully
EmptyTemp: => 40.7 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 20:49:19 ====
Fix result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
Ran by Miloš Hodek (2015-11-30 20:49:04) Run:1
Running from C:\Users\milos\Desktop
Loaded Profiles: Miloš Hodek (Available Profiles: Miloš Hodek)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NewTab: about:newtab
FF Homepage: about:home
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-19] (Google Inc.)
C:\Program Files (x86)\Google\Update
C:\Users\milos\Downloads\tcmd852ax64.exe
Task: {57614358-8D2D-4F64-8044-69492DF5470F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: {78EF2C98-ECA7-4684-B997-C748A9E1CFFC} - \WindowsUpda2ta -> No File <==== ATTENTION
Task: {F66CFD37-C66F-4416-A403-1F7076386B2B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-19] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleFormilos.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-2127903286-2658567943-1044287583-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
Firefox "newtab" removed successfully
Firefox "homepage" removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll => not found.
C:\Program Files (x86)\Google\Update => moved successfully
C:\Users\milos\Downloads\tcmd852ax64.exe => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{57614358-8D2D-4F64-8044-69492DF5470F}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57614358-8D2D-4F64-8044-69492DF5470F}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{78EF2C98-ECA7-4684-B997-C748A9E1CFFC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78EF2C98-ECA7-4684-B997-C748A9E1CFFC}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WindowsUpda2ta => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F66CFD37-C66F-4416-A403-1F7076386B2B}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F66CFD37-C66F-4416-A403-1F7076386B2B}" => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\HPCeeScheduleFormilos.job => moved successfully
EmptyTemp: => 40.7 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 20:49:19 ====
-
Milhouse_CZ
- nováček
- Příspěvky: 27
- Registrován: 25 lis 2015 12:47
Re: Chybějící soubor skriptu
SystemLook 30.07.11 by jpshortstuff
Log created at 20:57 on 30/11/2015 by Miloš Hodek
Administrator - Elevation successful
========== filefind ==========
Searching for "*Total Commander Crack 2015 .vbs*"
No files found.
Searching for "*Total Commander Crack 2015*"
C:\UsbFix\Quarantine\C\Users\milos\AppData\Local\Temp\Total Commander Crack 2015.vbs.vir --a---- 19068 bytes [15:32 19/11/2015] [07:33 21/09/2015] 84A9FC3F67080B0E86C119CB775AB12F
C:\UsbFix\Quarantine\C\Users\milos\AppData\Roaming\Microsoft\Total Commander Crack 2015.vbs.vir --a---- 19068 bytes [15:32 19/11/2015] [07:33 21/09/2015] 84A9FC3F67080B0E86C119CB775AB12F
========== folderfind ==========
Searching for "*Total Commander Crack 2015 .vbs*"
No folders found.
Searching for "*Total Commander Crack 2015*"
No folders found.
========== regfind ==========
Searching for "*Total Commander Crack 2015 .vbs*"
No data found.
Searching for "*Total Commander Crack 2015*"
No data found.
-= EOF =-
Log created at 20:57 on 30/11/2015 by Miloš Hodek
Administrator - Elevation successful
========== filefind ==========
Searching for "*Total Commander Crack 2015 .vbs*"
No files found.
Searching for "*Total Commander Crack 2015*"
C:\UsbFix\Quarantine\C\Users\milos\AppData\Local\Temp\Total Commander Crack 2015.vbs.vir --a---- 19068 bytes [15:32 19/11/2015] [07:33 21/09/2015] 84A9FC3F67080B0E86C119CB775AB12F
C:\UsbFix\Quarantine\C\Users\milos\AppData\Roaming\Microsoft\Total Commander Crack 2015.vbs.vir --a---- 19068 bytes [15:32 19/11/2015] [07:33 21/09/2015] 84A9FC3F67080B0E86C119CB775AB12F
========== folderfind ==========
Searching for "*Total Commander Crack 2015 .vbs*"
No folders found.
Searching for "*Total Commander Crack 2015*"
No folders found.
========== regfind ==========
Searching for "*Total Commander Crack 2015 .vbs*"
No data found.
Searching for "*Total Commander Crack 2015*"
No data found.
-= EOF =-
Re: Chybějící soubor skriptu
Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).
Ulož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.
Kód: Vybrat vše
Start
CloseProcesses:
C:\UsbFix\Quarantine\C\Users\milos\AppData\Local\Temp\Total Commander Crack 2015.vbs.vir
C:\UsbFix\Quarantine\C\Users\milos\AppData\Roaming\Microsoft\Total Commander Crack 2015.vbs.vir
EmptyTemp:
EndUlož jej na na plochu jako fixlist.txt
Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra