Preventivní kontrola Vyřešeno

[KedarCZE]

Ale to zamrzání Windowsu se mi nelíbí když dojde k tomu zamrznutí tak SSD je prý 100% aktivní ale celkově se nic náročného neděje. Před tím jsem to neměl :( .

[Reklama]

[jaro3]

Tak zkus ty aktualizace (všechny označené) odinstalovat.

Pokud to nepomůže:
Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
http://www.majorgeeks.com/mg/get/sophos ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[KedarCZE]

Sophos Virus Removal nic nenašel.

[KedarCZE]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
Ran by Kedar (administrator) on KEDAR-PC (07-09-2016 19:53:52)
Running from C:\Users\Kedar\Desktop
Loaded Profiles: Kedar (Available Profiles: Kedar & Pepa)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Internet Security\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.31.5\GoogleCrashHandler64.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ESET) C:\Program Files\ESET\ESET Internet Security\egui.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1608.2213.0_x64__8wekyb3d8bbwe\Calculator.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-05-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
Winlogon\Notify\DfLogon: LogonDll.dll [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\Run: [Clownfish] => 0
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\Policies\Explorer: []
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{70336c94-2dfe-4c87-aaac-36947502e5b5}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-4277202032-399617156-2875458357-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-07-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-08-15] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-15] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-15] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-15] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-15] (Oracle Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-01-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
FF HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - E:\idman625build11\idmmzcc2.xpi => not found

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-11]
CHR Extension: (BetterTTV) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2016-06-25]
CHR Extension: (Disk Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-11]
CHR Extension: (MEGA) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-11]
CHR Extension: (Vyhledávání Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-11]
CHR Extension: (PasswordBox - Free Password Manager) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dljbcjbfojhlfhgenhepllagfecdpchb [2016-07-22]
CHR Extension: (Google+) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2016-01-11]
CHR Extension: (Dark Reader) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2016-08-07]
CHR Extension: (Tabulky Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-11]
CHR Extension: (Radiant Community Extension) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfffnbhinkdleedlodeeodpaipoeonoa [2016-07-12]
CHR Extension: (AdBlock) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-08-24]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2016-09-04]
CHR Extension: (Speed Test) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlhbmnfdcklajeaeikfinieljfegamko [2016-01-29]
CHR Extension: (Mapy Google) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-01-11]
CHR Extension: (My Music Play List) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcpldeidflnblidgnlmdiiedgpjemlac [2016-01-11]
CHR Extension: (Black Black Chrome Theme Dark Blue Highlight) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\njpbabhpbnilgchdjbajcbgnnclkaida [2016-03-07]
CHR Extension: (Twitch Now) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2016-07-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (piZap Photo Editor) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\occpjibghkbopohbefbejkklnfdkdmok [2016-01-11]
CHR Extension: (Gmail) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-11]
CHR Extension: (Chrome Media Router) - C:\Users\Kedar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\idman625build11\IDMGCExt.crx <not found>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2159320 2016-08-22] (Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3189488 2016-07-05] (Microsoft Corporation)
R3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Pro\DiscSoftBusService.exe [2216208 2014-11-10] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Internet Security\ekrn.exe [2822840 2016-06-30] (ESET)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
S3 Origin Client Service; E:\Hry\Origin\OriginClientService.exe [2104840 2016-02-03] (Electronic Arts)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 anvsnddrv; C:\Windows\system32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.)
R0 DeepFrz; C:\Windows\System32\Drivers\DeepFrz.sys [218088 2015-10-30] (Faronics Corporation)
R0 DfDiskLo; C:\Windows\System32\Drivers\DfDiskLo.sys [38632 2015-10-30] (Faronics Corporation)
R1 DFFilter; C:\Windows\System32\Drivers\DFFilter.sys [43240 2015-10-30] (Faronics Corporation)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-02-17] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-02-17] (Disc Soft Ltd)
S3 dtscsibus; C:\Windows\system32\DRIVERS\dtscsibus.sys [29864 2016-01-24] (Disc Soft Ltd)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2016-01-24] (Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47160 2016-01-24] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [227496 2016-06-30] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [209576 2016-06-30] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15488 2016-05-30] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [175784 2016-06-30] (ESET)
S4 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [150688 2016-04-04] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [76456 2016-06-30] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [91816 2016-06-30] (ESET)
S3 ESETCleanersDriver; C:\Windows\system32\Drivers\ESETCleanersDriver.sys [181160 2016-04-20] (ESET)
R0 FarDisk; C:\Windows\System32\Drivers\FarDisk.sys [31464 2015-10-30] (Faronics Corporation)
R0 FarSpace; C:\Windows\System32\Drivers\FarSpace.sys [117992 2015-10-30] (Faronics Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [345872 2016-05-26] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-09-07] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3520264 2016-05-03] (Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvlddmkm.sys [14216760 2016-08-27] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [888064 2000-01-01] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [408280 2015-10-15] (Realsil Semiconductor Corporation)
S3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2016-03-09] ()
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2000-01-01] (Synaptics Incorporated)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-09-01] ()
S1 UimBus; C:\Windows\System32\drivers\UimBus.sys [102576 2015-11-10] ()
S1 Uim_DEVIM; C:\Windows\System32\drivers\uim_devim.sys [25904 2015-11-10] ()
S1 Uim_IM; C:\Windows\System32\drivers\uim_im.sys [701360 2015-11-10] ()
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [119712 2016-04-28] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [202144 2016-03-12] (Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-07 19:53 - 2016-09-07 19:54 - 00018870 _____ C:\Users\Kedar\Desktop\FRST.txt
2016-09-07 19:53 - 2016-09-07 19:53 - 00000000 ____D C:\FRST
2016-09-06 17:45 - 2016-09-06 17:45 - 00000000 ____D C:\ProgramData\Sophos
2016-09-06 17:44 - 2016-09-06 17:44 - 00002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2016-09-06 17:44 - 2016-09-06 17:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2016-09-06 17:44 - 2016-09-06 17:44 - 00000000 ____D C:\Program Files (x86)\Sophos
2016-09-05 21:29 - 2016-09-05 21:29 - 00019511 _____ C:\Users\Kedar\AppData\Local\recently-used.xbel
2016-09-04 16:31 - 2016-09-04 16:31 - 00000045 _____ C:\Users\Kedar\.gtk-bookmarks
2016-09-03 19:28 - 2016-09-04 16:38 - 00000000 ____D C:\Users\Kedar\Desktop\3-9
2016-09-03 14:38 - 2016-09-03 14:38 - 00022200 _____ (Phoenix Technologies) C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS
2016-09-03 14:38 - 2016-09-03 14:38 - 00000000 ____D C:\Users\Kedar\AppData\Local\eSupport.com
2016-09-03 14:38 - 2016-09-03 14:38 - 00000000 ____D C:\Program Files (x86)\eSupport.com
2016-09-03 13:33 - 2016-09-03 13:39 - 00000000 ____D C:\Wooxy
2016-09-03 13:33 - 2016-09-03 13:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wooxy
2016-09-03 11:59 - 2016-09-03 11:59 - 00001361 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp.lnk
2016-09-03 10:02 - 2016-09-03 10:02 - 00165376 _____ C:\Users\Kedar\Desktop\SystemLook_x64.exe
2016-09-03 09:58 - 2016-09-03 09:58 - 00001068 _____ C:\DelFix.txt
2016-09-03 09:27 - 2016-09-03 09:27 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Toshiba Corporation
2016-09-03 09:27 - 2016-09-03 09:27 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Toshiba Corporation
2016-09-03 09:27 - 2016-09-03 09:27 - 00000000 ____D C:\ProgramData\Toshiba Corporation
2016-09-03 09:27 - 2016-09-03 09:27 - 00000000 ____D C:\Program Files (x86)\Toshiba Corporation
2016-09-02 21:14 - 2016-09-03 09:31 - 00000000 ____D C:\ProgramData\Package Cache
2016-09-02 15:29 - 2016-09-02 15:29 - 00000000 ____D C:\Users\Kedar\AppData\Local\NetworkTiles
2016-09-02 12:29 - 2016-09-02 12:29 - 00000000 ____D C:\Users\Kedar\Desktop\backups
2016-09-02 06:45 - 2016-09-02 06:45 - 00000000 ____D C:\Users\Pepa\AppData\Local\VirtualStore
2016-09-01 21:41 - 2016-09-01 21:17 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-09-01 21:05 - 2016-09-01 21:05 - 00004368 _____ C:\Users\Kedar\Desktop\rk_247E.txt
2016-08-31 21:56 - 2016-08-31 21:56 - 00001125 _____ C:\Users\Kedar\Desktop\M.txt
2016-08-31 20:55 - 2016-08-27 07:12 - 04130944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-08-31 20:55 - 2016-08-27 07:12 - 00244816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2016-08-31 20:55 - 2016-08-27 06:58 - 03893376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2016-08-31 20:55 - 2016-08-27 06:58 - 00121368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2016-08-31 20:55 - 2016-08-27 06:39 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-08-31 20:55 - 2016-08-27 06:38 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-08-31 20:55 - 2016-08-27 06:38 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsensorgroup.dll
2016-08-31 20:55 - 2016-08-27 06:37 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2016-08-31 20:55 - 2016-08-27 06:25 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-08-31 20:55 - 2016-08-20 07:52 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-31 20:55 - 2016-08-20 07:52 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-08-31 20:55 - 2016-08-20 07:50 - 02913104 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-08-31 20:55 - 2016-08-20 07:50 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2016-08-31 20:55 - 2016-08-20 07:47 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-08-31 20:55 - 2016-08-20 07:47 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-08-31 20:55 - 2016-08-20 07:34 - 01430200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-08-31 20:55 - 2016-08-20 07:32 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-08-31 20:55 - 2016-08-20 07:29 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2016-08-31 20:55 - 2016-08-20 07:29 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2016-08-31 20:55 - 2016-08-20 07:22 - 22571008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-31 20:55 - 2016-08-20 07:22 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-08-31 20:55 - 2016-08-20 07:21 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_G18030.DLL
2016-08-31 20:55 - 2016-08-20 07:21 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2016-08-31 20:55 - 2016-08-20 07:21 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-08-31 20:55 - 2016-08-20 07:20 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2016-08-31 20:55 - 2016-08-20 07:20 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\C_IS2022.DLL
2016-08-31 20:55 - 2016-08-20 07:15 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-08-31 20:55 - 2016-08-20 07:15 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-08-31 20:55 - 2016-08-20 07:14 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_G18030.DLL
2016-08-31 20:55 - 2016-08-20 07:14 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2016-08-31 20:55 - 2016-08-20 07:14 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\C_IS2022.DLL
2016-08-31 20:55 - 2016-08-20 07:13 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-31 20:55 - 2016-08-20 07:13 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-08-31 20:55 - 2016-08-20 07:13 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-08-31 20:55 - 2016-08-20 07:12 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-08-31 20:55 - 2016-08-20 07:12 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-08-31 20:55 - 2016-08-20 07:12 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-08-31 20:55 - 2016-08-20 07:11 - 00965120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-08-31 20:55 - 2016-08-20 07:11 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-31 20:55 - 2016-08-20 07:09 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-08-31 20:55 - 2016-08-20 07:08 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2016-08-31 20:55 - 2016-08-20 07:08 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-08-31 20:55 - 2016-08-20 07:07 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-08-31 20:55 - 2016-08-20 07:07 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-08-31 20:55 - 2016-08-20 07:07 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-08-31 20:55 - 2016-08-20 07:07 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-08-31 20:55 - 2016-08-20 07:06 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-08-31 20:55 - 2016-08-20 07:06 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2016-08-31 20:55 - 2016-08-20 07:04 - 23682560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-31 20:55 - 2016-08-20 07:04 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-08-31 20:55 - 2016-08-20 07:04 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
2016-08-31 20:55 - 2016-08-20 07:01 - 04612096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-08-31 20:55 - 2016-08-20 07:01 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-08-31 20:55 - 2016-08-20 07:01 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.InkControls.dll
2016-08-31 20:55 - 2016-08-20 07:00 - 19423232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-31 20:55 - 2016-08-20 07:00 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-31 20:55 - 2016-08-20 06:59 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll
2016-08-31 20:55 - 2016-08-20 06:57 - 01282048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-31 20:55 - 2016-08-20 06:56 - 02289664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-08-31 20:55 - 2016-08-20 06:55 - 19418624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-31 20:55 - 2016-08-20 06:52 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2016-08-31 20:55 - 2016-08-20 06:51 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-31 20:55 - 2016-08-20 06:51 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-08-31 20:54 - 2016-08-27 14:45 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-08-31 20:54 - 2016-08-27 11:37 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfksproxy.dll
2016-08-31 20:54 - 2016-08-27 06:44 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\encapi.dll
2016-08-31 20:54 - 2016-08-27 06:43 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\encapi.dll
2016-08-31 20:54 - 2016-08-20 08:26 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2016-08-31 20:54 - 2016-08-20 08:13 - 00590952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-08-31 20:54 - 2016-08-20 08:06 - 01046976 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-08-31 20:54 - 2016-08-20 08:06 - 00885832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-08-31 20:54 - 2016-08-20 08:06 - 00108384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-31 20:54 - 2016-08-20 08:05 - 01377008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-08-31 20:54 - 2016-08-20 08:04 - 07814488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-31 20:54 - 2016-08-20 08:04 - 01349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-08-31 20:54 - 2016-08-20 08:04 - 01163696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-08-31 20:54 - 2016-08-20 08:03 - 02257248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-08-31 20:54 - 2016-08-20 08:03 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-08-31 20:54 - 2016-08-20 07:52 - 07219672 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-08-31 20:54 - 2016-08-20 07:52 - 01279328 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-08-31 20:54 - 2016-08-20 07:52 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-31 20:54 - 2016-08-20 07:52 - 00658776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-31 20:54 - 2016-08-20 07:52 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-31 20:54 - 2016-08-20 07:52 - 00178528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2016-08-31 20:54 - 2016-08-20 07:51 - 00681312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-08-31 20:54 - 2016-08-20 07:50 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-08-31 20:54 - 2016-08-20 07:50 - 01099608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2016-08-31 20:54 - 2016-08-20 07:50 - 00987992 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2016-08-31 20:54 - 2016-08-20 07:50 - 00942424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
2016-08-31 20:54 - 2016-08-20 07:50 - 00807776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2016-08-31 20:54 - 2016-08-20 07:50 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-31 20:54 - 2016-08-20 07:50 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2016-08-31 20:54 - 2016-08-20 07:47 - 22218808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-31 20:54 - 2016-08-20 07:46 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-08-31 20:54 - 2016-08-20 07:43 - 01418312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-08-31 20:54 - 2016-08-20 07:42 - 02537824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-08-31 20:54 - 2016-08-20 07:34 - 00782176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-31 20:54 - 2016-08-20 07:34 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
2016-08-31 20:54 - 2016-08-20 07:33 - 05722312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-08-31 20:54 - 2016-08-20 07:33 - 00852824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-08-31 20:54 - 2016-08-20 07:32 - 00846552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-08-31 20:54 - 2016-08-20 07:29 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-31 20:54 - 2016-08-20 07:25 - 01264912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-08-31 20:54 - 2016-08-20 07:21 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-08-31 20:54 - 2016-08-20 07:21 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2016-08-31 20:54 - 2016-08-20 07:21 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2016-08-31 20:54 - 2016-08-20 07:21 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\c_GSM7.DLL
2016-08-31 20:54 - 2016-08-20 07:20 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2016-08-31 20:54 - 2016-08-20 07:20 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2016-08-31 20:54 - 2016-08-20 07:20 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-08-31 20:54 - 2016-08-20 07:19 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-08-31 20:54 - 2016-08-20 07:19 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2016-08-31 20:54 - 2016-08-20 07:18 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-08-31 20:54 - 2016-08-20 07:18 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-31 20:54 - 2016-08-20 07:18 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2016-08-31 20:54 - 2016-08-20 07:17 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2016-08-31 20:54 - 2016-08-20 07:17 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-31 20:54 - 2016-08-20 07:17 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerSvc.dll
2016-08-31 20:54 - 2016-08-20 07:16 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2016-08-31 20:54 - 2016-08-20 07:16 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-08-31 20:54 - 2016-08-20 07:16 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2016-08-31 20:54 - 2016-08-20 07:15 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-08-31 20:54 - 2016-08-20 07:15 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-08-31 20:54 - 2016-08-20 07:15 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-08-31 20:54 - 2016-08-20 07:14 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-08-31 20:54 - 2016-08-20 07:14 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2016-08-31 20:54 - 2016-08-20 07:14 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2016-08-31 20:54 - 2016-08-20 07:14 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\c_GSM7.DLL
2016-08-31 20:54 - 2016-08-20 07:13 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll
2016-08-31 20:54 - 2016-08-20 07:12 - 01014784 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-08-31 20:54 - 2016-08-20 07:12 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-08-31 20:54 - 2016-08-20 07:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-31 20:54 - 2016-08-20 07:12 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-08-31 20:54 - 2016-08-20 07:11 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-08-31 20:54 - 2016-08-20 07:11 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BcastDVRHelper.dll
2016-08-31 20:54 - 2016-08-20 07:11 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-08-31 20:54 - 2016-08-20 07:10 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-08-31 20:54 - 2016-08-20 07:10 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-08-31 20:54 - 2016-08-20 07:10 - 00539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-31 20:54 - 2016-08-20 07:09 - 09128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-08-31 20:54 - 2016-08-20 07:09 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.InkControls.dll
2016-08-31 20:54 - 2016-08-20 07:09 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-08-31 20:54 - 2016-08-20 07:08 - 01906176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-08-31 20:54 - 2016-08-20 07:08 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-08-31 20:54 - 2016-08-20 07:08 - 00204288 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DscCoreConfProv.dll
2016-08-31 20:54 - 2016-08-20 07:08 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
2016-08-31 20:54 - 2016-08-20 07:07 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2016-08-31 20:54 - 2016-08-20 07:07 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll
2016-08-31 20:54 - 2016-08-20 07:07 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll
2016-08-31 20:54 - 2016-08-20 07:06 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi_passthru.dll
2016-08-31 20:54 - 2016-08-20 07:05 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2016-08-31 20:54 - 2016-08-20 07:05 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-08-31 20:54 - 2016-08-20 07:04 - 03245056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-08-31 20:54 - 2016-08-20 07:04 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-08-31 20:54 - 2016-08-20 07:04 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-08-31 20:54 - 2016-08-20 07:04 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\delegatorprovider.dll
2016-08-31 20:54 - 2016-08-20 07:03 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2016-08-31 20:54 - 2016-08-20 07:03 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-08-31 20:54 - 2016-08-20 07:03 - 02846208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-08-31 20:54 - 2016-08-20 07:03 - 00944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-08-31 20:54 - 2016-08-20 07:02 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-08-31 20:54 - 2016-08-20 07:00 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2016-08-31 20:54 - 2016-08-20 07:00 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DscCoreConfProv.dll
2016-08-31 20:54 - 2016-08-20 06:59 - 07624192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-08-31 20:54 - 2016-08-20 06:59 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2016-08-31 20:54 - 2016-08-20 06:59 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-08-31 20:54 - 2016-08-20 06:59 - 01690112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-08-31 20:54 - 2016-08-20 06:59 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2016-08-31 20:54 - 2016-08-20 06:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll
2016-08-31 20:54 - 2016-08-20 06:58 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-08-31 20:54 - 2016-08-20 06:58 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi_passthru.dll
2016-08-31 20:54 - 2016-08-20 06:57 - 02680832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-31 20:54 - 2016-08-20 06:57 - 02264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-31 20:54 - 2016-08-20 06:57 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 02711040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 02315264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 02143232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 01006080 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\delegatorprovider.dll
2016-08-31 20:54 - 2016-08-20 06:55 - 00726016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-31 20:54 - 2016-08-20 06:54 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2016-08-31 20:54 - 2016-08-20 06:53 - 03617792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-31 20:54 - 2016-08-20 06:53 - 03299328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-08-31 20:54 - 2016-08-20 06:53 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2016-08-31 20:54 - 2016-08-20 06:51 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-08-31 20:54 - 2016-08-20 06:50 - 01875456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-31 20:54 - 2016-08-20 06:49 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2016-08-31 20:54 - 2016-08-20 06:46 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2016-08-31 20:54 - 2016-08-19 03:33 - 00162850 _____ C:\WINDOWS\system32\C_932.NLS
2016-08-31 20:23 - 2016-08-31 20:23 - 02397696 _____ (Farbar) C:\Users\Kedar\Desktop\FRST64.exe
2016-08-31 17:14 - 2016-08-31 17:14 - 00000000 ____D C:\WINDOWS\SysWOW64\DownloadsPath
2016-08-31 16:34 - 2016-08-31 16:02 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-31 16:29 - 2016-08-31 16:29 - 00000000 ____D C:\Windows.old
2016-08-31 16:27 - 2016-08-31 16:27 - 17187328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 13433856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 13080576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 12345344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 12174336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2016-08-31 16:27 - 2016-08-31 16:27 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-08-31 16:27 - 2016-08-31 16:27 - 05622600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 03116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 02422784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 02251432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-31 16:27 - 2016-08-31 16:27 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-31 16:27 - 2016-08-31 16:27 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01780736 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01694200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01066096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 01052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00955008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll

[KedarCZE]

2016-08-31 16:27 - 2016-08-31 16:27 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00509784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00381760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00361096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00321280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00224096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-31 16:27 - 2016-08-31 16:27 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2016-08-31 16:27 - 2016-08-31 16:27 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2016-08-31 16:27 - 2016-08-31 16:27 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2016-08-31 16:27 - 2016-08-31 16:27 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx
2016-08-31 16:27 - 2016-08-31 16:27 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2016-08-31 16:24 - 2016-08-31 16:24 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-08-31 16:16 - 2016-08-31 16:16 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-08-31 16:13 - 2016-09-03 16:27 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-08-31 16:13 - 2016-08-31 16:13 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-08-31 16:13 - 2016-08-31 16:13 - 00000000 ____D C:\Program Files\MSBuild
2016-08-31 16:13 - 2016-08-31 16:13 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-08-31 16:13 - 2016-08-31 16:13 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-08-31 16:12 - 2016-08-31 16:12 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2016-08-31 16:12 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-08-31 16:12 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-08-31 16:12 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-08-31 16:12 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-08-31 16:12 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-08-31 16:12 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-08-31 16:10 - 2016-08-31 16:10 - 00000020 ___SH C:\Users\Pepa\ntuser.ini
2016-08-31 16:10 - 2016-08-31 16:10 - 00000000 ____D C:\Users\Pepa\AppData\Local\ConnectedDevicesPlatform
2016-08-31 16:05 - 2016-08-31 16:05 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-08-31 16:03 - 2016-08-31 16:17 - 00000000 ____D C:\Users\Kedar\AppData\Local\ConnectedDevicesPlatform
2016-08-31 16:03 - 2016-08-31 16:03 - 00000020 ___SH C:\Users\Kedar\ntuser.ini
2016-08-31 16:02 - 2016-08-31 16:02 - 00000000 ____D C:\ProgramData\USOShared
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Šablony
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Poslední
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-31 16:01 - 2016-08-31 16:01 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-08-31 16:00 - 2016-08-31 16:01 - 00011433 _____ C:\WINDOWS\diagwrn.xml
2016-08-31 16:00 - 2016-08-31 16:01 - 00011433 _____ C:\WINDOWS\diagerr.xml
2016-08-31 15:56 - 2016-08-31 15:56 - 00022924 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-08-31 15:54 - 2016-09-07 13:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-31 15:54 - 2016-08-31 15:56 - 00003490 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-31 15:54 - 2016-08-31 15:56 - 00003352 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5BA516E4-DB3E-48ED-B9D8-F101739161BA}
2016-08-31 15:54 - 2016-08-31 15:56 - 00003338 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C2CDC9ED-445F-4D4B-BD37-D8409076345C}
2016-08-31 15:54 - 2016-08-31 15:56 - 00003336 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A0392849-7E90-4A37-BD28-5C933B5EE10D}
2016-08-31 15:54 - 2016-08-31 15:56 - 00002784 _____ C:\WINDOWS\System32\Tasks\klcp_update
2016-08-31 15:54 - 2016-08-31 15:56 - 00002540 _____ C:\WINDOWS\System32\Tasks\{3932CDD9-1F04-479E-8FBB-C5CC915DF3AF}
2016-08-31 15:54 - 2016-08-31 15:56 - 00002524 _____ C:\WINDOWS\System32\Tasks\{6680CC6F-E6A0-4D71-B8F3-12D38A2BBAF6}
2016-08-31 15:54 - 2016-08-31 15:56 - 00002218 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-31 15:54 - 2016-08-31 15:54 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-08-31 15:54 - 2016-08-31 15:54 - 00003266 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-31 15:54 - 2016-08-31 15:54 - 00002476 _____ C:\WINDOWS\System32\Tasks\iolo Process Governor
2016-08-31 15:54 - 2016-08-31 15:54 - 00002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2016-08-31 15:54 - 2016-08-31 15:54 - 00002280 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2016-08-31 15:54 - 2016-08-31 15:54 - 00000000 ____D C:\WINDOWS\System32\Tasks\Nero
2016-08-31 15:49 - 2016-08-31 15:49 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-08-31 15:45 - 2016-08-31 15:50 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-08-31 15:41 - 2016-09-07 17:08 - 00000000 ____D C:\Users\Kedar
2016-08-31 15:41 - 2016-09-02 08:19 - 00000000 ____D C:\Users\Pepa
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Šablony
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Soubory cookie
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Poslední
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Okolní tiskárny
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Okolní síť
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Nabídka Start
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Dokumenty
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Documents\Obrázky
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Documents\Hudba
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Documents\Filmy
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\Data aplikací
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Pepa\AppData\Local\Data aplikací
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Šablony
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Soubory cookie
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Poslední
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Okolní tiskárny
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Okolní síť
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Nabídka Start
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Dokumenty
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Documents\Obrázky
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Documents\Hudba
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Documents\Filmy
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\Data aplikací
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-08-31 15:41 - 2016-08-31 15:41 - 00000000 _SHDL C:\Users\Kedar\AppData\Local\Data aplikací
2016-08-31 15:38 - 2016-08-31 15:38 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-08-31 15:37 - 2016-08-31 15:46 - 00000000 ____D C:\Program Files\Realtek
2016-08-31 15:37 - 2016-08-31 15:37 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-08-31 15:37 - 2016-08-31 15:37 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-08-31 15:37 - 2016-08-31 15:37 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-08-31 15:37 - 2016-08-31 15:37 - 00000000 ____D C:\ProgramData\SonicFocus
2016-08-31 15:37 - 2016-08-31 15:37 - 00000000 ____D C:\Program Files\Elantech
2016-08-31 15:37 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-08-31 15:36 - 2016-08-31 15:50 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2016-08-31 15:36 - 2016-08-31 15:50 - 00000000 ____D C:\WINDOWS\system32\NV
2016-08-31 15:36 - 2016-08-31 15:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-08-31 15:36 - 2016-08-31 15:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-08-31 15:36 - 2016-08-31 15:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-08-31 15:36 - 2016-08-31 15:36 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-08-31 15:36 - 2016-08-31 15:36 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-31 15:36 - 2016-08-31 15:36 - 00000000 ____D C:\Program Files\Synaptics
2016-08-31 15:36 - 2016-08-25 23:12 - 06384064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 02475064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 01362368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-08-31 15:36 - 2016-08-25 23:12 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 00392128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-08-31 15:36 - 2016-08-22 17:17 - 07320235 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-08-31 15:35 - 2016-09-07 18:30 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-08-31 15:35 - 2016-08-31 21:03 - 05014344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-31 15:35 - 2016-08-31 15:35 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-08-31 14:10 - 2016-08-31 14:10 - 00001474 _____ C:\Users\Kedar\Desktop\TR.txt
2016-08-31 14:08 - 2016-08-31 14:23 - 00000000 ____D C:\Users\Kedar\Desktop\TR
2016-08-31 10:02 - 2016-08-31 10:02 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-08-31 10:02 - 2016-05-04 04:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-08-31 10:02 - 2016-05-04 04:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-08-31 10:02 - 2016-05-04 04:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-08-31 10:02 - 2016-05-04 04:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-08-31 09:59 - 2016-08-27 21:52 - 00047040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2016-08-31 09:59 - 2016-08-26 01:27 - 40070200 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 35180992 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 34842680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 28238904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 10865888 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 10746896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 10288040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 09094048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 08875408 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 08687888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 03906992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 03448808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 02912192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 02549184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 01922616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437270.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 01586560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437270.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 01020472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 00958008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 00941504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 00894520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 00686712 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 00576168 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-08-31 09:59 - 2016-08-26 01:27 - 00040827 _____ C:\WINDOWS\system32\nvinfo.pb
2016-08-31 09:59 - 2016-08-26 01:27 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-08-31 09:59 - 2016-08-26 01:27 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2016-08-30 00:20 - 2016-08-30 00:20 - 00046005 _____ C:\Users\Pepa\Desktop\Prodloužený víkend v luxusní neobarokní Ville Regenhart v srdci Jeseníků - Villa Regenhart____ _ Lázně a wellness hotely _ Spa.cz.html
2016-08-30 00:20 - 2016-08-30 00:20 - 00000000 ____D C:\Users\Pepa\Desktop\Prodloužený víkend v luxusní neobarokní Ville Regenhart v srdci Jeseníků - Villa Regenhart____ _ Lázně a wellness hotely _ Spa.cz_files
2016-08-29 10:25 - 2016-08-29 10:25 - 00000000 ____D C:\Users\Kedar\AppData\Local\Chromium
2016-08-25 22:09 - 2016-08-25 22:50 - 00000000 ____D C:\Users\Kedar\Desktop\S
2016-08-23 16:21 - 2016-08-31 11:12 - 00000000 ____D C:\Users\Kedar\Documents\My Games
2016-08-23 13:26 - 2016-08-23 13:26 - 00000000 ____D C:\Users\Kedar\Documents\League of Legends
2016-08-23 09:09 - 2016-08-23 09:09 - 00073770 _____ C:\Users\Pepa\Desktop\Mesit-pohoda.pdf
2016-08-22 15:52 - 2016-08-31 12:45 - 00000000 ____D C:\Users\Kedar\Desktop\Plocha 2015
2016-08-22 15:51 - 2016-08-22 15:51 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\.mono
2016-08-22 15:51 - 2016-08-22 15:51 - 00000000 ____D C:\Users\Kedar\AppData\Local\Colossal Order
2016-08-22 15:51 - 2016-08-22 15:51 - 00000000 ____D C:\ProgramData\.mono
2016-08-20 10:39 - 2016-08-28 21:35 - 00000126 _____ C:\Users\Kedar\Desktop\Kača.txt
2016-08-18 17:52 - 2016-08-18 18:57 - 00000000 ____D C:\Users\Kedar\AppData\Local\pokemon
2016-08-18 17:31 - 2016-08-18 17:31 - 00000165 _____ C:\Users\Kedar\Desktop\PGOMap.txt
2016-08-18 16:52 - 2016-08-18 17:02 - 00010763 _____ C:\Users\Kedar\Desktop\map.html
2016-08-18 16:03 - 2016-08-18 16:10 - 00010212 _____ C:\Users\Kedar\Desktop\main.html
2016-08-18 15:46 - 2016-08-18 19:59 - 00022834 _____ C:\Users\Kedar\Desktop\login.html
2016-08-18 15:46 - 2016-08-18 17:21 - 00000000 ____D C:\Users\Kedar\Desktop\Z
2016-08-18 12:10 - 2016-08-31 15:50 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BZ2 - Forgotten Enemies
2016-08-18 11:00 - 2016-08-31 15:50 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2016-08-18 11:00 - 2016-08-31 10:41 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\pokemon-go-map
2016-08-18 11:00 - 2016-08-18 11:00 - 00002347 _____ C:\Users\Kedar\Desktop\Pokemon GO Live Map.lnk
2016-08-18 10:59 - 2016-08-18 17:53 - 00000000 ____D C:\Users\Kedar\AppData\Local\SquirrelTemp
2016-08-17 18:34 - 2016-08-17 18:34 - 00379128 _____ C:\Users\Kedar\Documents\cc_20160817_183435.reg
2016-08-17 18:24 - 2016-08-31 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-17 18:24 - 2016-08-17 18:24 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-17 18:23 - 2016-08-17 18:24 - 00000000 ____D C:\Program Files\CCleaner
2016-08-17 12:15 - 2016-08-31 11:13 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\FiraxisLive
2016-08-17 12:15 - 2016-08-17 12:15 - 00466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2016-08-17 12:15 - 2016-08-17 12:15 - 00444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2016-08-17 12:15 - 2016-08-17 12:15 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2016-08-17 12:15 - 2016-08-17 12:15 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2016-08-17 12:15 - 2016-08-17 12:15 - 00000000 ____D C:\ProgramData\Steam
2016-08-17 12:15 - 2016-08-17 12:15 - 00000000 ____D C:\Program Files (x86)\OpenAL
2016-08-16 11:19 - 2016-08-11 16:33 - 01922616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437254.dll
2016-08-16 11:19 - 2016-08-11 16:33 - 01585088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437254.dll
2016-08-15 14:03 - 2016-08-15 14:03 - 00000000 ____D C:\ProgramData\Codemasters
2016-08-15 14:02 - 2016-08-15 14:02 - 00000000 ___HD C:\WINDOWS\PIF
2016-08-14 21:14 - 2016-08-14 21:14 - 00354477 _____ C:\Users\Pepa\Downloads\prilohy_12569.zip
2016-08-14 17:56 - 2016-08-31 15:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
2016-08-09 17:59 - 2016-08-09 17:59 - 00000264 _____ C:\Users\Kedar\.bash_history
2016-08-09 17:28 - 2016-08-09 17:28 - 00000000 ____D C:\ProgramData\Git
2016-08-08 12:56 - 2016-08-08 12:56 - 00000000 ____D C:\ProgramData\boost_interprocess

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-07 19:01 - 2016-01-10 21:51 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-07 17:35 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-07 14:13 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-07 13:43 - 2016-07-17 00:25 - 00760620 _____ C:\WINDOWS\system32\perfh005.dat
2016-09-07 13:43 - 2016-07-17 00:25 - 00166934 _____ C:\WINDOWS\system32\perfc005.dat
2016-09-07 13:43 - 2016-01-10 21:11 - 02009584 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-07 13:41 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-07 13:36 - 2016-05-20 13:45 - 00000119 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2016-09-06 22:31 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2016-09-06 18:44 - 2016-06-14 14:49 - 00000000 ____D C:\temp
2016-09-05 21:35 - 2016-01-12 20:39 - 00000000 ____D C:\Users\Kedar\.gimp-2.8
2016-09-05 20:37 - 2016-02-13 16:08 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Mp3tag
2016-09-05 13:58 - 2016-03-24 16:16 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Audacity
2016-09-04 17:44 - 2016-01-11 15:11 - 00000000 ____D C:\Users\Kedar\AppData\Local\Packages
2016-09-04 16:41 - 2016-01-12 20:41 - 00000000 ____D C:\Users\Kedar\AppData\Local\gtk-2.0
2016-09-03 19:34 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-09-03 16:27 - 2016-07-17 00:25 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ___RD C:\Program Files\Windows Defender
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Com
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\IME
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\System
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-09-03 16:27 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-09-03 16:27 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-09-03 16:27 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-09-03 16:27 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-09-03 16:27 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2016-09-03 13:33 - 2016-02-24 12:23 - 00000000 ____D C:\Program Files (x86)\Wooxy
2016-09-03 09:20 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-09-02 21:15 - 2016-03-09 18:26 - 00000000 ____D C:\ProgramData\Intel
2016-09-02 21:15 - 2016-01-10 21:14 - 00000000 ____D C:\Program Files (x86)\Intel
2016-09-01 21:05 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-01 15:43 - 2016-02-18 17:41 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-09-01 15:19 - 2016-01-10 21:56 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-01 15:19 - 2016-01-10 21:56 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-01 14:55 - 2016-01-29 20:05 - 00013208 _____ C:\Users\Kedar\Desktop\Co koupit na kterou linku.xlsx
2016-09-01 03:18 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-08-31 21:35 - 2016-01-11 15:21 - 00000000 ____D C:\Users\Pepa\AppData\Local\Packages
2016-08-31 21:33 - 2016-01-10 21:06 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-08-31 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-08-31 20:08 - 2016-06-17 13:55 - 00000000 ____D C:\Program Files (x86)\Garena Plus
2016-08-31 16:34 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-08-31 16:28 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-31 16:19 - 2016-01-11 16:38 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Skype
2016-08-31 16:13 - 2016-07-16 13:43 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2016-08-31 16:13 - 2016-07-16 13:43 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2016-08-31 16:13 - 2016-07-16 13:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2016-08-31 16:13 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2016-08-31 16:13 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2016-08-31 16:12 - 2016-01-11 15:39 - 00002384 _____ C:\Users\Pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-31 16:12 - 2016-01-11 15:39 - 00000000 ___RD C:\Users\Pepa\OneDrive
2016-08-31 16:05 - 2016-01-11 15:12 - 00002387 _____ C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-31 16:05 - 2016-01-11 15:12 - 00000000 ___RD C:\Users\Kedar\OneDrive
2016-08-31 16:02 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-08-31 16:01 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-08-31 16:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-08-31 16:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration
2016-08-31 16:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-08-31 15:53 - 2016-07-16 13:47 - 00000000 __RSD C:\WINDOWS\Media
2016-08-31 15:53 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-08-31 15:53 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-08-31 15:50 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-31 15:50 - 2016-06-11 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire AE
2016-08-31 15:50 - 2016-06-07 20:01 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League client alpha
2016-08-31 15:50 - 2016-05-14 08:07 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MAXON
2016-08-31 15:50 - 2016-05-13 16:13 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-31 15:50 - 2016-05-11 16:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Giant
2016-08-31 15:50 - 2016-05-05 18:21 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\League client alpha PBE
2016-08-31 15:50 - 2016-02-13 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-08-31 15:50 - 2016-02-13 13:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2016-08-31 15:50 - 2016-02-12 18:08 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2016-08-31 15:50 - 2016-02-06 13:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2016-08-31 15:50 - 2016-01-30 19:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulož.to File Manager
2016-08-31 15:50 - 2016-01-27 19:24 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2016-08-31 15:50 - 2016-01-24 16:42 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2016-08-31 15:50 - 2016-01-15 21:42 - 00000000 ____D C:\WINDOWS\cs
2016-08-31 15:50 - 2016-01-13 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-08-31 15:50 - 2016-01-11 15:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG4100 series
2016-08-31 15:50 - 2016-01-11 15:50 - 00000000 ____D C:\WINDOWS\system32\STRING
2016-08-31 15:50 - 2016-01-10 23:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-08-31 15:50 - 2016-01-10 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-08-31 15:50 - 2016-01-10 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2016-08-31 15:50 - 2016-01-10 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-08-31 15:50 - 2016-01-10 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-08-31 15:50 - 2016-01-10 22:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker
2016-08-31 15:50 - 2016-01-10 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-08-31 15:50 - 2016-01-10 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-08-31 15:50 - 2016-01-10 22:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2016-08-31 15:50 - 2016-01-10 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-08-31 15:50 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-08-31 15:46 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-08-31 15:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-08-31 15:46 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-31 15:46 - 2016-06-24 15:47 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2016-08-31 15:46 - 2016-06-12 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2016-08-31 15:46 - 2016-01-11 15:50 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2016-08-31 15:46 - 2016-01-10 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2016-08-31 15:46 - 2016-01-10 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-08-31 15:46 - 2016-01-10 22:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2016-08-31 15:44 - 2016-06-14 19:32 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-08-31 15:38 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-08-31 14:33 - 2016-07-17 01:00 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-31 14:17 - 2016-01-10 21:54 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-31 13:59 - 2016-03-23 14:44 - 00000000 ____D C:\Program Files\Intel
2016-08-31 11:22 - 2016-01-27 19:29 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\OBS
2016-08-31 11:20 - 2016-01-27 19:23 - 00000000 ____D C:\Program Files\OBS
2016-08-31 11:18 - 2016-01-10 21:54 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-31 11:16 - 2016-02-06 13:37 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\obs-studio
2016-08-30 11:07 - 2016-01-20 17:02 - 00000000 ____D C:\Users\Kedar\AppData\Local\ElevatedDiagnostics
2016-08-29 18:59 - 2016-01-10 22:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-29 18:59 - 2016-01-10 22:41 - 00000000 ____D C:\ProgramData\Skype
2016-08-26 07:43 - 2016-07-16 13:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-08-26 07:43 - 2016-07-16 13:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-08-25 11:07 - 2016-06-14 19:32 - 00000000 ____D C:\Users\Kedar\AppData\Local\Ubisoft Game Launcher
2016-08-23 13:29 - 2016-02-17 20:57 - 00000000 ____D C:\Users\Kedar\AppData\Local\CrashDumps
2016-08-23 13:00 - 2016-07-23 17:18 - 00000000 ____D C:\Users\Kedar\Desktop\NEW
2016-08-23 11:44 - 2016-07-12 23:32 - 02611147 _____ C:\Users\Kedar\Desktop\6N7svVu.xcf
2016-08-20 17:28 - 2016-01-09 21:31 - 00000000 ____D C:\Users\Kedar\Desktop\PC
2016-08-19 19:45 - 2016-06-28 11:22 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\.minecraft
2016-08-17 09:09 - 2016-04-18 18:03 - 00001094 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulož.to FileManager.lnk
2016-08-17 09:09 - 2016-01-30 19:56 - 00000000 ____D C:\Program Files (x86)\Ulozto File Manager
2016-08-17 00:19 - 2016-01-10 22:24 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-08-15 20:11 - 2016-01-21 16:05 - 00000000 ____D C:\Program Files (x86)\Java
2016-08-15 20:00 - 2016-04-02 09:32 - 00000000 ____D C:\Program Files\Java
2016-08-15 19:59 - 2016-04-02 09:32 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2016-08-15 19:59 - 2016-01-16 15:52 - 00000000 ____D C:\Users\Kedar\.oracle_jre_usage
2016-08-15 19:55 - 2016-01-10 22:35 - 00000000 ____D C:\ProgramData\Oracle
2016-08-15 19:51 - 2016-01-21 16:06 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-08-15 14:56 - 2016-05-13 15:11 - 00000000 ____D C:\Users\Kedar\Documents\Sony
2016-08-14 17:55 - 2016-07-02 11:44 - 00000000 ____D C:\Program Files (x86)\Bloody6
2016-08-14 10:27 - 2016-03-24 10:28 - 00000761 _____ C:\Users\Kedar\Desktop\Boty za peníze co jsem ukradnul vládě.txt
2016-08-10 12:23 - 2016-01-10 21:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-10 12:16 - 2016-01-10 21:28 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-09 18:07 - 2016-08-06 14:10 - 00000000 ____D C:\Users\Kedar\Desktop\F
2016-08-09 17:14 - 2016-01-11 15:11 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Adobe
2016-08-09 17:14 - 2016-01-10 22:37 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-08-09 17:11 - 2016-02-12 18:04 - 00000000 ____D C:\Program Files\Adobe
2016-08-08 20:28 - 2016-07-02 20:25 - 00000737 _____ C:\Users\Kedar\Documents\CIII_LogFile.txt
2016-08-08 20:26 - 2016-05-14 10:56 - 00000000 ____D C:\Users\Kedar\Documents\Adobe
2016-08-08 15:51 - 2016-01-10 22:47 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2016-08-08 15:32 - 2016-02-04 21:56 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2016-08-08 15:32 - 2016-02-04 21:56 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2016-08-08 15:30 - 2016-02-29 16:33 - 00000000 ____D C:\Users\Kedar\AppData\Roaming\Autodesk

==================== Files in the root of some directories =======

2016-09-05 21:29 - 2016-09-05 21:29 - 0019511 _____ () C:\Users\Kedar\AppData\Local\recently-used.xbel
2016-03-16 16:27 - 2016-07-04 22:03 - 0007606 _____ () C:\Users\Kedar\AppData\Local\Resmon.ResmonCfg
2016-08-31 15:37 - 2016-08-31 15:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-02-04 21:58 - 2016-02-04 21:58 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\Kedar\AppData\Local\Temp\kernel32.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-08-31 15:34

==================== End of FRST.txt ============================

[KedarCZE]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
Ran by Kedar (07-09-2016 19:54:40)
Running from C:\Users\Kedar\Desktop
Windows 10 Home Version 1607 (X64) (2016-08-31 14:02:12)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4277202032-399617156-2875458357-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4277202032-399617156-2875458357-503 - Limited - Disabled)
Guest (S-1-5-21-4277202032-399617156-2875458357-501 - Limited - Disabled)
Kedar (S-1-5-21-4277202032-399617156-2875458357-1004 - Administrator - Enabled) => C:\Users\Kedar
Pepa (S-1-5-21-4277202032-399617156-2875458357-1006 - Limited - Enabled) => C:\Users\Pepa

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Internet Security 10.0.169.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Internet Security 10.0.169.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Ansel (Version: 372.70 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{afe60883-1215-45d9-a7f6-ecda5e7fc13c}) (Version: 19.2.0 - Intel Corporation)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.07.0013 - Bloody)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG4100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4100_series) (Version: - Canon Inc.)
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.21 - Piriform)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Pro (HKLM-x32\...\DAEMON Tools Pro) (Version: 6.0.0.0444 - Disc Soft Ltd)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
ESET Internet Security (HKLM\...\{C4C930DF-2EA0-4BF3-A576-FD68351168A2}) (Version: 10.0.169.0 - ESET, spol. s r.o.)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.89 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{97F4CEAE-8F2B-4012-93CC-75428373214D}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.1.1.14 - Intel(R) Corporation) Hidden
Item Set Creator 6.10 (HKLM-x32\...\Item Set Creator 6.10) (Version: 6.10 - League of Legends Math)
Item Set Creator 6.16 (HKLM-x32\...\Item Set Creator 6.16) (Version: 6.16 - League of Legends Math)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
K-Lite Mega Codec Pack 12.3.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.3.5 - KLCP)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
League client alpha (HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\League client alpha 1.0) (Version: 1.0 - Riot Games, Inc)
League client alpha PBE (HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\League client alpha PBE 1.0) (Version: 1.0 - Riot Games, Inc)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2013 pro domácnosti - cs-cz (HKLM\...\HomeStudentRetail - cs-cz) (Version: 15.0.4849.1003 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mp3tag v2.78 (HKLM-x32\...\Mp3tag) (Version: v2.78 - Florian Heidenreich)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
Nero WaveEditor (HKLM-x32\...\{8EBCCD6B-CDE8-4070-80BC-8A3109C6944B}) (Version: 14.0.00300 - Nero AG)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OBS Multiplatform (HKLM-x32\...\OBS Multiplatform) (Version: 0.12.3 - OBS Project)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.4 - OBS Project)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4849.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4849.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4849.1003 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 372.70 (Version: 372.70 - NVIDIA Corporation) Hidden
paint.net (HKLM\...\{DD393E4D-76FA-4CCD-84F3-CD9D75C14862}) (Version: 4.0.10 - dotPDN LLC)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Pokemon GO Live Map (HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\pokemon) (Version: 0.2.1 - Mike Christopher)
Prerequisite installer (x32 Version: 12.0.0010 - Nero AG) Hidden
Prerequisite installer (x32 Version: 17.0.0002 - Nero AG) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.)
Red Giant Link (HKLM-x32\...\{10F82E5B-B611-4C65-8F29-666A9EC5680A}_is1) (Version: 1.9.8.1 - Red Giant, LLC)
Resource Hacker Version 4.2.5 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
Sony Mobile Emma (HKLM-x32\...\Emma) (Version: 2.15.14.201510090937 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
SSD Utility (HKLM-x32\...\{3449D0CA-9D99-472B-B36C-A32A58AF18F5}) (Version: 2.1.2542 - Toshiba Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Uplay (HKLM-x32\...\Uplay) (Version: 20.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{1EEE0BEE-0BC8-11E5-A19E-F04DA23A5C58}) (Version: 13.0.453 - Sony)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wooxy version 1.5.0.6 (HKLM-x32\...\{C183CD14-47D8-4F98-AF06-4744CB834C8E}_is1) (Version: 1.5.0.6 - Chewy)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4277202032-399617156-2875458357-1004_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Kedar\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0494D9E6-FE22-45F0-8382-521DAEA303DB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-07-05] (Microsoft Corporation)
Task: {2921A9EA-049D-4D97-AEB5-4307C139AF65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-10] (Google Inc.)
Task: {376C96D2-B41B-485D-AF4A-965304DE7788} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-08-10] (Microsoft Corporation)
Task: {3B825D72-0570-48BF-9FD1-D03EA9B59617} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-07-05] (Microsoft Corporation)
Task: {3E28732E-A3A4-40D0-AE86-5343F4AA1EA2} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-08-01] ()
Task: {450AAFCC-F5F9-48B2-A28E-D09775C50F54} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)
Task: {5683BA00-9DC3-4B28-99D5-7B41086D2065} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {7ECDB9B7-8A75-4E97-8222-E93D1F854C17} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2000-01-01] (Realtek Semiconductor)
Task: {83C5A52E-9FA9-47E0-A6A1-286786875C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-10] (Google Inc.)
Task: {A0C0F202-1286-4449-93CD-15F20234E7A0} - System32\Tasks\iolo Process Governor => C:\Program Files (x86)\iolo\System Mechanic\iologovernor64.exe
Task: {B7BE4AF3-29E4-4122-B797-8E80C3E68DA4} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2000-01-01] (Realtek Semiconductor)
Task: {C4E56552-E5E8-490C-A091-7EC1D77611A1} - System32\Tasks\{6680CC6F-E6A0-4D71-B8F3-12D38A2BBAF6} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe" -c --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{414988E5-19B5-4382-A017-1CA01AE0DAF3}"
Task: {E0D67190-EB0E-42F9-87EA-90A07933A8C7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-05] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-03-02 15:59 - 2016-06-14 22:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-02-13 14:03 - 2016-06-14 22:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-03-29 15:25 - 2016-06-14 22:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-03-02 15:59 - 2016-06-14 22:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-01-10 22:24 - 2016-05-24 09:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-03-29 15:25 - 2016-06-14 22:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-03-29 15:25 - 2016-06-14 22:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-03-29 15:25 - 2016-06-14 22:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-02-13 14:03 - 2016-06-14 22:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-31 15:36 - 2016-08-25 23:12 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-31 16:05 - 2016-08-31 16:05 - 00959176 _____ () C:\Users\Kedar\AppData\Local\Microsoft\OneDrive\17.3.6386.0412_1\amd64\ClientTelemetry.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-07-16 13:43 - 2016-07-16 13:43 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-03-29 15:25 - 2016-06-14 22:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-03-29 15:25 - 2016-06-14 22:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-07-16 13:43 - 2016-07-17 00:29 - 09761280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-08-31 20:54 - 2016-08-20 06:54 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-16 13:43 - 2016-07-17 00:29 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-08-31 20:54 - 2016-08-20 06:54 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-08-31 20:54 - 2016-08-20 06:56 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-08-31 16:39 - 2016-08-31 16:41 - 00071168 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-08-31 16:39 - 2016-08-31 16:41 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-08-31 16:39 - 2016-08-31 16:41 - 35288064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.113.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-06-01 22:00 - 2015-06-01 22:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-08-25 04:49 - 2016-08-25 04:49 - 03763712 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1608.2213.0_x64__8wekyb3d8bbwe\Calculator.exe
2016-02-13 14:03 - 2016-06-14 22:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-01-24 16:58 - 2016-01-24 16:44 - 00002048 _____ () C:\Program Files (x86)\DAEMON Tools Pro\MSIMG32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`bfqfh [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2016-09-01 21:20 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4277202032-399617156-2875458357-1004\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "PlaysTV"
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\StartupApproved\Run: => "HotFolder.FR12"
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\StartupApproved\Run: => "Clownfish"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{BB4CA417-B91A-4A8F-A599-91E6A3742B9B}] => (Allow) E:\Hry\Riot Games\GarenaLoLTW\GameData\Apps\LoLTW\Game\League of Legends.exe
FirewallRules: [{DE0DF15A-729D-4FB6-9852-42168BDC5F19}] => (Allow) E:\Hry\Riot Games\GarenaLoLTW\GameData\Apps\LoLTW\Game\League of Legends.exe
FirewallRules: [{AFA44B54-B2CC-412A-9565-86CF108B9A2E}] => (Allow) E:\Hry\Riot Games\GarenaLoLTW\GameData\Apps\LoLTW\Air\LolClient.exe
FirewallRules: [{6C1387F9-7E95-4E92-842C-4823AB5D407A}] => (Allow) E:\Hry\Riot Games\GarenaLoLTW\GameData\Apps\LoLTW\Air\LolClient.exe
FirewallRules: [{2D32033E-DCDC-4A3A-ABB7-DA7CF7B3E541}] => (Allow) LPort=8370
FirewallRules: [{A55DF89D-BD90-49DE-B9B5-855C1A93111D}] => (Allow) LPort=8370
FirewallRules: [{152F9DA4-849A-43D2-B2C7-654CD9BAFC93}] => (Allow) E:\Stažené soubory\Kedar\LoLTWInstaller.exe
FirewallRules: [{FF596751-AA1F-4C40-8EAF-B687051D8E79}] => (Allow) E:\Stažené soubory\Kedar\LoLTWInstaller.exe
FirewallRules: [{C845B1EA-7C36-40C2-A96B-3EAD0513A5FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1402BE75-48EB-4A69-823F-F463918EFBCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{92FD3C9A-2287-41D5-A3E7-C128CF442490}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DE0FCC92-BEAB-4206-A8CF-C635ED854F16}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BAE8BB74-9ADE-4FDF-ABCF-9AD8100A7512}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3648DD74-0DF2-449C-9301-F0848FCAF762}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{18B9AC1B-C00C-4B65-8028-28E49B4BDDEA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FE83DBEA-670B-48DA-A507-AD0D7BB14092}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{DE47D927-E9D2-4515-B641-02828ACF57F7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{C5B2D6D5-9B5B-4175-A364-CDE7D5B94723}] => (Allow) LPort=1900
FirewallRules: [{349779C5-F7BD-481E-9675-7761ED1CC4D7}] => (Allow) LPort=2869
FirewallRules: [{A13DED0C-92C7-423E-AF74-376405901404}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{33749431-FB1D-4AAF-B317-461DB3F98F4F}] => (Allow) E:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{38C02671-D13B-497A-8982-EC0E0342B401}] => (Allow) E:\Hry\Steam\bin\steamwebhelper.exe
FirewallRules: [{54EF55D8-993B-42E9-BF12-F5F33E0853D7}] => (Allow) E:\Hry\Steam\Steam.exe
FirewallRules: [{0CD0B76F-14B4-4FB8-9907-7A26D5426CD8}] => (Allow) E:\Hry\Steam\Steam.exe
FirewallRules: [{F1595E1F-FC95-40E7-A256-F066A4CF6111}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe
FirewallRules: [{B39AE68B-B67E-4B2F-B48A-768F325645A2}] => (Allow) C:\Program Files (x86)\Sony Mobile\Emma\Emma.exe
FirewallRules: [{816792A1-FA6A-4BE1-BE3E-05C87A134BF7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{22460A2A-A0B5-495D-90D5-09DF2CB04A2B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/07/2016 02:05:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KEDAR-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (09/06/2016 05:45:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KEDAR-PC)
Description: Aplikaci ShazamEntertainmentLtd.Shazam_pqbynwjfrbcg4!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (09/06/2016 05:43:10 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (09/04/2016 05:49:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KEDAR-PC)
Description: Aplikaci ShazamEntertainmentLtd.Shazam_pqbynwjfrbcg4!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (09/04/2016 05:41:30 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KEDAR-PC)
Description: Aplikaci ShazamEntertainmentLtd.Shazam_pqbynwjfrbcg4!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (09/04/2016 11:26:14 AM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Vytvoření výčtu relací uživatelů pro generování fondů filtrů se nezdařilo.

Podrobnosti:
(HRESULT : 0x80040210) (0x80040210)

Error: (09/04/2016 11:26:14 AM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Vytvoření výčtu relací uživatelů pro generování fondů filtrů se nezdařilo.

Podrobnosti:
(HRESULT : 0x80040210) (0x80040210)

Error: (09/03/2016 04:24:51 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (09/03/2016 04:05:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.14393.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 117c

Čas spuštění: 01d205e34a5b5cd5

Čas ukončení: 0

Cesta k aplikaci: C:\Windows\explorer.exe

ID hlášení: 1ae616dc-71df-11e6-8c68-5404a6034d5e

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (09/03/2016 04:04:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KEDAR-PC)
Description: Aplikaci Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.


System errors:
=============
Error: (09/07/2016 05:42:59 PM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (09/07/2016 03:04:05 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/07/2016 02:04:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).

Error: (09/07/2016 02:04:11 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Schedule bylo dosaženo časového limitu (30000 ms).

Error: (09/07/2016 02:03:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby MBAMService bylo dosaženo časového limitu (30000 ms).

Error: (09/07/2016 02:03:12 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/07/2016 01:37:02 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/06/2016 01:13:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/06/2016 08:06:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (09/05/2016 12:21:49 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================
Date: 2016-09-07 13:36:56.617
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-07 13:36:56.612
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-07 13:36:56.608
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Internet Security\Drivers\eelam\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-07 13:36:56.581
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Internet Security\Drivers\eelam\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-06 08:06:12.822
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-06 08:06:12.818
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-06 08:06:12.814
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Internet Security\Drivers\eelam\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-06 08:06:12.787
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Internet Security\Drivers\eelam\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-05 12:22:07.570
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-09-05 12:22:07.562
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\eelam.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 22%
Total physical RAM: 8102.69 MB
Available physical RAM: 6274.63 MB
Total Virtual: 8614.69 MB
Available Virtual: 6532.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.31 GB) (Free:16.03 GB) NTFS
Drive e: () (Fixed) (Total:125 GB) (Free:76.25 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 223.6 GB) (Disk ID: 16170DB5)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=785 MB) - (Type=27)
Partition 4: (Not Active) - (Size=125 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\Policies\Explorer: []
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
SearchScopes: HKU\S-1-5-21-4277202032-399617156-2875458357-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
FF HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - E:\idman625build11\idmmzcc2.xpi => not found
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\idman625build11\IDMGCExt.crx <not found>
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [202144 2016-03-12] (Zemana Ltd.)
C:\WINDOWS\system32\C_932.NLS
C:\WINDOWS\System32\Tasks\klcp_update
C:\WINDOWS\System32\Tasks\{3932CDD9-1F04-479E-8FBB-C5CC915DF3AF}
C:\WINDOWS\System32\Tasks\{6680CC6F-E6A0-4D71-B8F3-12D38A2BBAF6}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\iolo Process Governor
C:\ProgramData\DP45977C.lfl
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Kedar\AppData\Local\Temp\kernel32.dll
Task: {2921A9EA-049D-4D97-AEB5-4307C139AF65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-10] (Google Inc.)
Task: {83C5A52E-9FA9-47E0-A6A1-286786875C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-10] (Google Inc.)
Task: {A0C0F202-1286-4449-93CD-15F20234E7A0} - System32\Tasks\iolo Process Governor => C:\Program Files (x86)\iolo\System Mechanic\iologovernor64.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`bfqfh [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[KedarCZE]

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-08-2016
Ran by Kedar (08-09-2016 14:36:57) Run:1
Running from C:\Users\Kedar\Desktop
Loaded Profiles: Kedar (Available Profiles: Kedar & Pepa)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\Policies\Explorer: []
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
SearchScopes: HKU\S-1-5-21-4277202032-399617156-2875458357-1004 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [No File]
FF HKU\S-1-5-21-4277202032-399617156-2875458357-1004\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - E:\idman625build11\idmmzcc2.xpi => not found
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\idman625build11\IDMGCExt.crx <not found>
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [202144 2016-03-12] (Zemana Ltd.)
C:\WINDOWS\system32\C_932.NLS
C:\WINDOWS\System32\Tasks\klcp_update
C:\WINDOWS\System32\Tasks\{3932CDD9-1F04-479E-8FBB-C5CC915DF3AF}
C:\WINDOWS\System32\Tasks\{6680CC6F-E6A0-4D71-B8F3-12D38A2BBAF6}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\iolo Process Governor
C:\ProgramData\DP45977C.lfl
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Users\Kedar\AppData\Local\Temp\kernel32.dll
Task: {2921A9EA-049D-4D97-AEB5-4307C139AF65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-10] (Google Inc.)
Task: {83C5A52E-9FA9-47E0-A6A1-286786875C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-10] (Google Inc.)
Task: {A0C0F202-1286-4449-93CD-15F20234E7A0} - System32\Tasks\iolo Process Governor => C:\Program Files (x86)\iolo\System Mechanic\iologovernor64.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
AlternateDataStreams: C:\ProgramData\Reprise:jhqduwvxlctbqqijsf`usjbm`bfqfh [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value removed successfully
"C:\Windows\system32\nvinitx.dll" => Value data removed successfully.
"HKU\S-1-5-21-4277202032-399617156-2875458357-1004\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKLM\Software\Wow6432Node\MozillaPlugins\@t.garena.com/garenatalk" => key removed successfully
HKU\S-1-5-21-4277202032-399617156-2875458357-1004\Software\Mozilla\SeaMonkey\Extensions\\mozilla_cc2@internetdownloadmanager.com => value removed successfully
"HKLM\SOFTWARE\Google\Chrome\Extensions\ngpampappnmepgilojfohadhhmbhlaek" => key removed successfully
ZAM_Guard => Unable to stop service.
ZAM_Guard => service removed successfully
C:\WINDOWS\system32\C_932.NLS => moved successfully
C:\WINDOWS\System32\Tasks\klcp_update => moved successfully
C:\WINDOWS\System32\Tasks\{3932CDD9-1F04-479E-8FBB-C5CC915DF3AF} => moved successfully
C:\WINDOWS\System32\Tasks\{6680CC6F-E6A0-4D71-B8F3-12D38A2BBAF6} => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\iolo Process Governor => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Users\Kedar\AppData\Local\Temp\kernel32.dll => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2921A9EA-049D-4D97-AEB5-4307C139AF65}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2921A9EA-049D-4D97-AEB5-4307C139AF65}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{83C5A52E-9FA9-47E0-A6A1-286786875C3D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{83C5A52E-9FA9-47E0-A6A1-286786875C3D}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A0C0F202-1286-4449-93CD-15F20234E7A0}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A0C0F202-1286-4449-93CD-15F20234E7A0}" => key removed successfully
C:\WINDOWS\System32\Tasks\iolo Process Governor => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iolo Process Governor" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => not found.
C:\ProgramData\Reprise => ":jhqduwvxlctbqqijsf`usjbm`bfqfh" ADS removed successfully.
C:\ProgramData\Reprise => ":wupeogjxldtlfudivq`qsp`27hfm" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 39593 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 26522237 B
Java, Flash, Steam htmlcache => 103182184 B
Windows/system/drivers => 16139553 B
Edge => 574 B
Chrome => 619067759 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 37470 B
NetworkService => 0 B
Kedar => 310628966 B
Pepa => 856231 B

RecycleBin => 5182435 B
EmptyTemp: => 1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:38:21 ====

[jaro3]

Už by mělo být čisto. Co problémy?

[KedarCZE]

Nope. Pořád mám ty freezy systému. Nevím čím to může být a dost mě to štve :(

[KedarCZE]

Právě že během freezu jede na 100% Disk ale nic nedělá a potom co se to odsekne tak na 1s to napíše odezva 78XXX ms.

[jaro3]

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Hm tak to možná bude něco s tím diskem SSD.
Můžeš zkusit nějaké programy na zrychlení a opravu SSD disku.
https://www.google.cz/search?client=ope ... gws_rd=ssl