API tools faq
paste
Guest User

Untitled

a guest
Jan 14th, 2017
56
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 61.69 KB | None | 0 0
raw download clone embed print report
  1. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-01-2017
  2. Ran by Petr (administrator) on KAPPA (14-01-2017 21:22:14)
  3. Running from C:\Users\Petr\Desktop
  4. Loaded Profiles: Petr (Available Profiles: Petr & Administrator)
  5. Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
  6. Internet Explorer Version 11 (Default browser: Chrome)
  7. Boot Mode: Normal
  8. Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
  9.  
  10. ==================== Processes (Whitelisted) =================
  11.  
  12. (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
  13.  
  14. (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
  15. (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
  16. () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
  17. (BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe
  18. (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
  19. () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
  20. (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe
  21. (Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\55.0.2883.17\remoting_host.exe
  22. (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
  23. (Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
  24. () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
  25. (Scarlet.Crush Productions) C:\Users\Petr\Desktop\Programy\ScpServer\bin\ScpService.exe
  26. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
  27. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
  28. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
  29. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
  30. () C:\Windows\SysWOW64\PnkBstrA.exe
  31. (Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
  32. () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
  33. (Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
  34. (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
  35. (TeamViewer GmbH) C:\INSTALOVANY\PROGRAMY\Teamviewer\TeamViewer_Service.exe
  36. (Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\55.0.2883.17\remoting_host.exe
  37. (Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe
  38. (Safer-Networking Ltd.) D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe
  39. (Electronic Arts) D:\Programy\Origin\OriginWebHelperService.exe
  40. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
  41. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
  42. (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
  43. () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
  44. () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
  45. (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
  46. (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
  47. () D:\Programy\RivaTuner Statistics Server\RTSS.exe
  48. (TeamViewer GmbH) C:\INSTALOVANY\PROGRAMY\Teamviewer\TeamViewer.exe
  49. (TeamViewer GmbH) C:\INSTALOVANY\PROGRAMY\Teamviewer\tv_w32.exe
  50. (TeamViewer GmbH) C:\INSTALOVANY\PROGRAMY\Teamviewer\tv_x64.exe
  51. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
  52. (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
  53. (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
  54. () D:\Programy\RivaTuner Statistics Server\EncoderServer.exe
  55. () D:\Programy\RivaTuner Statistics Server\RTSSHooksLoader64.exe
  56. () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
  57. () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
  58. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
  59. (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  60. (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
  61. (SoftPerfect Research) C:\Program Files\SoftPerfect RAM Disk\ramdiskws.exe
  62. (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
  63. (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
  64. (Flux Software LLC) C:\Users\Petr\AppData\Local\FluxSoftware\Flux\flux.exe
  65. (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
  66. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
  67. (Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
  68. (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
  69. (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
  70. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  71. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  72. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  73. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  74. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  75. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  76. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  77. (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  78. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  79. (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  80. (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
  81. (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
  82. (Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
  83. (Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
  84.  
  85. ==================== Registry (Whitelisted) ====================
  86.  
  87. (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
  88.  
  89. HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
  90. HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
  91. HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
  92. HKLM\...\Run: [RAMDiskForWorkstations] => C:\Program Files\SoftPerfect RAM Disk\RAMDiskWS.exe [3488464 2013-10-10] (SoftPerfect Research)
  93. HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2015-05-01] (Adobe Systems Incorporated)
  94. HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
  95. HKLM-x32\...\Run: [] => [X]
  96. HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
  97. HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [112424 2013-06-18] ()
  98. HKLM-x32\...\Run: [DT BEN] => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe [122384 2013-11-12] (Portrait Displays, Inc.)
  99. HKLM-x32\...\Run: [RaidCall] => D:\Programy\RaidCall\raidcall.exe [5127592 2016-05-06] (RAIDCALL.COM)
  100. HKLM-x32\...\Run: [SDTray] => D:\Programy\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
  101. HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
  102. Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
  103. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files\DAEMON Tools Pro\DTAgent.exe [4809048 2015-07-08] (Disc Soft Ltd)
  104. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [Spotify Web Helper] => C:\Users\Petr\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1444976 2016-12-21] (Spotify Ltd)
  105. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [Spotify] => C:\Users\Petr\AppData\Roaming\Spotify\Spotify.exe [7153264 2016-12-21] (Spotify Ltd)
  106. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
  107. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [f.lux] => C:\Users\Petr\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
  108. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [FileZilla Server Interface] => C:\INSTALOVANY\PROGRAMY\FileZilla Server\FileZilla Server Interface.exe [2554544 2016-03-01] (FileZilla Project)
  109. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [MyComGames] => C:\Users\Petr\AppData\Local\MyComGames\MyComGames.exe [4978064 2016-11-27] (MY.COM B.V.)
  110. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [Discord] => C:\Users\Petr\AppData\Local\Discord\app-0.0.296\Discord.exe [62471352 2016-08-24] (Hammer & Chisel, Inc.)
  111. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
  112. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [GoogleChromeAutoLaunch_795A6C1EC44E0A41F3030B5EF87A210A] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [935768 2016-12-08] (Google Inc.)
  113. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
  114. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
  115. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Petr\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [1798664 2016-12-29] ()
  116. HKU\S-1-5-21-1342017476-176686534-2564918354-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe [1694344 2016-12-13] (BlueStack Systems, Inc.)
  117. AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
  118. ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
  119. ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
  120. ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
  121. Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-03-14]
  122. ShortcutTarget: GIGABYTE OC_GURU.lnk -> D:\Programy\OC guru II\Launcher.exe (GIGABYTE Technology Co.,Ltd.)
  123. BootExecute: autocheck autochk * sdnclean64.exe
  124. GroupPolicy: Restriction <======= ATTENTION
  125.  
  126. ==================== Internet (Whitelisted) ====================
  127.  
  128. (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
  129.  
  130. Tcpip\..\Interfaces\{a58dbca8-ef12-4cd6-b466-cbf5de5134af}: [DhcpNameServer] 192.168.88.1
  131. Tcpip\..\Interfaces\{a854f0b2-6225-47ba-aac8-771f715e243c}: [NameServer] 192.168.88.1,8.8.8.8
  132.  
  133. Internet Explorer:
  134. ==================
  135. BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-20] (Oracle Corporation)
  136. BHO-x32: Microsoft Web Test Recorder 14.0 Helper -> {b924f0b4-0b3c-49c0-bab2-213fb9ebd1d3} -> C:\INSTALOVANY\PROGRAMY\Visual Studio 2015\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2015-07-06] (Microsoft Corporation)
  137. BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-20] (Oracle Corporation)
  138.  
  139. FireFox:
  140. ========
  141. FF DefaultProfile: u6m162qn.default
  142. FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\u6m162qn.default [2017-01-14]
  143. FF Extension: (Firefox Hotfix) - C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\u6m162qn.default\Extensions\[email protected] [2016-09-14]
  144. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-06-17] ()
  145. FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
  146. FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-06-17] ()
  147. FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
  148. FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
  149. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
  150. FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
  151. FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-20] (Oracle Corporation)
  152. FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-20] (Oracle Corporation)
  153. FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
  154. FF Plugin-x32: @raidcall.tw/RCplugin -> C:\Users\Petr\AppData\Roaming\RCTW\plugins\nprcplugin.dll [2013-06-25] (Raidcall)
  155. FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
  156. FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
  157. FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
  158. FF Plugin HKU\S-1-5-21-1342017476-176686534-2564918354-1001: @my.com/Games -> C:\Users\Petr\AppData\Local\MyComGames\NPMyComDetector.dll [2016-11-27] (MY.COM B.V.)
  159. FF Plugin HKU\S-1-5-21-1342017476-176686534-2564918354-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-01-06] ()
  160.  
  161. Chrome:
  162. =======
  163. CHR DefaultProfile: Default
  164. CHR StartupUrls: Default -> "hxxps://www.google.cz/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8"
  165. CHR Session Restore: Default -> is enabled.
  166. CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\WidevineCdm\1.4.8.903\_platform_specific\win_x86\widevinecdmadapter.dll => No File
  167. CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_23_0_0_173.dll => No File
  168. CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2017-01-14]
  169. CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-26]
  170. CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-26]
  171. CHR Extension: (AutoJoin for SteamGifts) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\bchhlccjhoedhhegglilngpbnldfcidc [2017-01-10]
  172. CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-26]
  173. CHR Extension: (Slither.io Mods) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnlenmmkifnhllnjfoangnjokeadhbbk [2016-05-11]
  174. CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-26]
  175. CHR Extension: (Tampermonkey) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2016-12-09]
  176. CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2016-07-13]
  177. CHR Extension: (HTTPS Everywhere) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2016-12-20]
  178. CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
  179. CHR Extension: (AdBlock) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-12-29]
  180. CHR Extension: (Blue/Green Cubes) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\iipbjjaibkibpabddphfcgbngfhhfkml [2016-05-13]
  181. CHR Extension: (Better Battlelog (BBLog)) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlfnjepjdmlppapoikepbaabbghofma [2016-11-25]
  182. CHR Extension: (Ghostery) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2017-01-11]
  183. CHR Extension: (Twitch Now) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2016-07-23]
  184. CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
  185. CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-26]
  186. CHR Extension: (Chrome Media Router) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
  187. CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\System Profile [2016-03-28]
  188. CHR HKU\S-1-5-21-1342017476-176686534-2564918354-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
  189.  
  190. ==================== Services (Whitelisted) ====================
  191.  
  192. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  193.  
  194. R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-07-23] ()
  195. R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2015-05-08] (ASUSTeK Computer Inc.)
  196. R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-07-23] () [File not signed]
  197. R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.26\AsusFanControlService.exe [397592 2015-07-02] (ASUSTeK Computer Inc.)
  198. S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1404936 2016-08-09] ()
  199. S3 BstHdAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Service.exe [486936 2016-12-13] (BlueStack Systems, Inc.)
  200. R2 BstHdLogRotatorSvc; C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [470552 2016-12-13] (BlueStack Systems, Inc.)
  201. S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe [511512 2016-12-13] (BlueStack Systems, Inc.)
  202. R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\55.0.2883.17\remoting_host.exe [76392 2016-10-16] (Google Inc.)
  203. R3 Disc Soft Pro Bus Service; C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe [1281368 2015-07-08] (Disc Soft Ltd)
  204. R2 Ds3Service; C:\Users\Petr\Desktop\Programy\ScpServer\bin\ScpService.exe [381952 2014-03-13] (Scarlet.Crush Productions) [File not signed]
  205. R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138768 2013-11-12] (Portrait Displays, Inc.)
  206. S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2016-04-29] (EasyAntiCheat Ltd)
  207. R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2771848 2016-11-14] (ESET)
  208. S3 FileZilla Server; C:\INSTALOVANY\PROGRAMY\FileZilla Server\FileZilla Server.exe [816816 2016-03-01] (FileZilla Project)
  209. S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
  210. S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
  211. S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
  212. R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
  213. R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-10-16] (Intel Corporation)
  214. S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
  215. R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
  216. S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-13] (NVIDIA Corporation)
  217. R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-22] (NVIDIA Corporation)
  218. R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
  219. R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2016-12-13] (NVIDIA Corporation)
  220. S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [37888 2011-05-22] () [File not signed]
  221. S3 Origin Client Service; D:\Programy\Origin\OriginClientService.exe [2119688 2016-12-18] (Electronic Arts)
  222. R2 Origin Web Helper Service; D:\Programy\Origin\OriginWebHelperService.exe [2180624 2016-12-18] (Electronic Arts)
  223. S3 OverwolfUpdater; D:\Programy\Overwolf\OverwolfUpdater.exe [1317104 2017-01-04] (Overwolf LTD)
  224. R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-07-03] ()
  225. R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2016-08-06] ()
  226. S3 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [69744 2016-10-18] (Razer Inc.)
  227. R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
  228. R2 SDScannerService; D:\Programy\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
  229. R2 SDUpdateService; D:\Programy\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
  230. S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
  231. S3 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
  232. R2 TeamViewer; C:\INSTALOVANY\PROGRAMY\Teamviewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
  233. S3 VSStandardCollectorService140; C:\INSTALOVANY\PROGRAMY\Visual Studio 2015\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56040 2015-11-19] (Microsoft Corporation)
  234. S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
  235. S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
  236.  
  237. ===================== Drivers (Whitelisted) ======================
  238.  
  239. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  240.  
  241. R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
  242. R3 AndroidAFD; C:\Windows\SysWow64\drivers\AndroidAFDx64.sys [28472 2015-07-06] (ASUSTek Computer Inc.)
  243. R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] ()
  244. R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
  245. S3 BstHdDrv; C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [152672 2016-12-13] (BlueStack Systems)
  246. S3 BstkDrv; C:\Program Files (x86)\Bluestacks\BstkDrv.sys [270904 2016-11-08] (Bluestack System Inc. )
  247. R3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30352 2015-12-26] (Disc Soft Ltd)
  248. R3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [559080 2016-04-19] (Intel Corporation)
  249. R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [262792 2016-11-14] (ESET)
  250. S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-08-20] (ESET)
  251. R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [197248 2016-11-14] (ESET)
  252. S4 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [153216 2016-11-14] (ESET)
  253. R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [208520 2016-11-14] (ESET)
  254. R1 EpfwLWF; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [61568 2016-11-14] (ESET)
  255. R0 epfwwfp; C:\WINDOWS\System32\DRIVERS\epfwwfp.sys [84616 2016-11-14] (ESET)
  256. S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2016-03-26] (Sony Mobile Communications)
  257. R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-09-08] (ASUSTeK Computer Inc.)
  258. S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
  259. R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_49b226e6441043f1\nvlddmkm.sys [14145592 2016-10-23] (NVIDIA Corporation)
  260. S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-13] (NVIDIA Corporation)
  261. R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-12-13] (NVIDIA Corporation)
  262. R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [51736 2016-06-23] (Razer Inc)
  263. R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.)
  264. R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
  265. R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
  266. S3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
  267. R1 SPVDPort; C:\WINDOWS\System32\drivers\spvdbus.sys [91640 2013-10-04] ()
  268. R1 SPVVEngine; C:\WINDOWS\system32\Drivers\spvve.sys [340984 2013-10-04] ()
  269. U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [39936 2016-07-16] (Microsoft Corporation)
  270. S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
  271. S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
  272. S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
  273. S3 WsAudioDevice_383; C:\WINDOWS\system32\drivers\VirtualAudio.sys [31080 2016-10-10] (Wondershare)
  274.  
  275. ==================== NetSvcs (Whitelisted) ===================
  276.  
  277. (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
  278.  
  279.  
  280. ==================== One Month Created files and folders ========
  281.  
  282. (If an entry is included in the fixlist, the file/folder will be moved.)
  283.  
  284. 2017-01-14 21:13 - 2017-01-14 21:13 - 00001738 _____ C:\Users\Petr\Desktop\AdwCleaner[C0].txt
  285. 2017-01-14 20:51 - 2017-01-14 21:06 - 00000000 ____D C:\AdwCleaner
  286. 2017-01-14 19:41 - 2017-01-14 19:41 - 00001031 _____ C:\Users\Petr\Desktop\loool.txt
  287. 2017-01-14 19:05 - 2017-01-14 21:22 - 00027992 _____ C:\Users\Petr\Desktop\FRST.txt
  288. 2017-01-14 19:05 - 2017-01-14 19:06 - 00077639 _____ C:\Users\Petr\Desktop\Addition.txt
  289. 2017-01-14 19:02 - 2017-01-14 21:22 - 00000000 ____D C:\FRST
  290. 2017-01-14 19:02 - 2017-01-14 19:02 - 00015327 _____ C:\Users\Petr\Desktop\LM.bat
  291. 2017-01-14 19:00 - 2017-01-14 19:00 - 00112640 _____ (forum.viry.cz) C:\Users\Petr\Desktop\FRSTLauncher.exe
  292. 2017-01-14 19:00 - 2017-01-14 18:53 - 02419200 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
  293. 2017-01-14 17:57 - 2017-01-14 17:57 - 00002838 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
  294. 2017-01-14 17:24 - 2017-01-14 17:24 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
  295. 2017-01-14 17:22 - 2017-01-14 17:22 - 00000000 ____D C:\WINDOWS\Panther
  296. 2017-01-14 17:13 - 2017-01-14 17:13 - 00000000 ____D C:\Users\Petr\AppData\Local\Troubleshooter
  297. 2017-01-14 15:27 - 2016-11-23 14:37 - 00000570 _____ C:\Users\Petr\AppData\Local\TroubleshooterConfig.json
  298. 2017-01-14 15:26 - 2017-01-14 15:27 - 00000000 ____D C:\ProgramData\BlueStacksSetup
  299. 2017-01-14 15:26 - 2017-01-14 15:26 - 00001644 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BlueStacks.lnk
  300. 2017-01-14 15:25 - 2017-01-14 15:26 - 00000000 ____D C:\Program Files (x86)\Bluestacks
  301. 2017-01-14 15:25 - 2017-01-14 15:25 - 00000000 ____D C:\Users\Petr\AppData\Local\Bluestacks
  302. 2017-01-11 18:27 - 2016-12-21 09:08 - 00245600 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
  303. 2017-01-11 18:27 - 2016-12-21 09:08 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
  304. 2017-01-11 18:27 - 2016-12-21 08:46 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
  305. 2017-01-11 18:27 - 2016-12-21 08:43 - 04130440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
  306. 2017-01-11 18:27 - 2016-12-21 08:43 - 01454504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
  307. 2017-01-11 18:27 - 2016-12-21 08:43 - 01071736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
  308. 2017-01-11 18:27 - 2016-12-21 08:42 - 22224480 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
  309. 2017-01-11 18:27 - 2016-12-21 08:42 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
  310. 2017-01-11 18:27 - 2016-12-21 08:42 - 01702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
  311. 2017-01-11 18:27 - 2016-12-21 08:42 - 01300600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
  312. 2017-01-11 18:27 - 2016-12-21 08:41 - 01600632 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
  313. 2017-01-11 18:27 - 2016-12-21 08:08 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
  314. 2017-01-11 18:27 - 2016-12-21 08:06 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
  315. 2017-01-11 18:27 - 2016-12-21 08:05 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
  316. 2017-01-11 18:27 - 2016-12-21 07:59 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
  317. 2017-01-11 18:27 - 2016-12-21 07:59 - 00883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
  318. 2017-01-11 18:27 - 2016-12-21 07:58 - 23678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
  319. 2017-01-11 18:27 - 2016-12-21 07:56 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
  320. 2017-01-11 18:27 - 2016-12-21 07:55 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
  321. 2017-01-11 18:27 - 2016-12-21 07:55 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
  322. 2017-01-11 18:27 - 2016-12-21 07:53 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
  323. 2017-01-11 18:27 - 2016-12-21 07:53 - 04474368 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
  324. 2017-01-11 18:27 - 2016-12-21 07:51 - 08075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
  325. 2017-01-11 18:27 - 2016-12-21 07:51 - 05611008 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
  326. 2017-01-11 18:27 - 2016-12-21 07:50 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
  327. 2017-01-11 18:27 - 2016-12-21 06:59 - 00218976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll
  328. 2017-01-11 18:27 - 2016-12-21 06:09 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
  329. 2017-01-11 18:27 - 2016-12-21 06:01 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
  330. 2017-01-11 18:27 - 2016-12-21 05:43 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
  331. 2017-01-11 18:27 - 2016-12-21 05:41 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
  332. 2017-01-11 18:27 - 2016-12-21 05:40 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
  333. 2017-01-11 18:27 - 2016-12-21 05:40 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
  334. 2017-01-11 18:27 - 2016-12-21 05:39 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
  335. 2017-01-11 18:27 - 2016-12-21 05:38 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
  336. 2017-01-11 18:27 - 2016-12-21 05:35 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll
  337. 2017-01-11 18:27 - 2016-12-21 05:34 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
  338. 2017-01-11 18:27 - 2016-12-21 05:33 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
  339. 2017-01-11 18:27 - 2016-12-21 05:32 - 19417600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
  340. 2017-01-11 18:27 - 2016-12-21 05:30 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
  341. 2017-01-11 18:27 - 2016-12-21 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
  342. 2017-01-11 18:27 - 2016-12-21 05:26 - 01155072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
  343. 2017-01-11 18:27 - 2016-12-21 05:25 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
  344. 2017-01-11 18:27 - 2016-12-21 05:24 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
  345. 2017-01-11 18:27 - 2016-12-21 05:22 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
  346. 2017-01-11 18:27 - 2016-12-14 06:41 - 01235296 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
  347. 2017-01-11 18:27 - 2016-12-14 06:34 - 02482280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
  348. 2017-01-11 18:27 - 2016-12-14 06:23 - 00404832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
  349. 2017-01-11 18:27 - 2016-12-14 06:21 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
  350. 2017-01-11 18:27 - 2016-12-14 06:17 - 00319288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
  351. 2017-01-11 18:27 - 2016-12-14 06:01 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
  352. 2017-01-11 18:27 - 2016-12-14 06:01 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
  353. 2017-01-11 18:27 - 2016-12-14 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
  354. 2017-01-11 18:27 - 2016-12-14 05:46 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
  355. 2017-01-11 18:27 - 2016-12-14 05:43 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
  356. 2017-01-11 18:27 - 2016-12-14 05:42 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
  357. 2017-01-11 18:27 - 2016-12-14 05:42 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
  358. 2017-01-11 18:27 - 2016-12-14 05:40 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
  359. 2017-01-11 18:27 - 2016-12-14 05:38 - 17188864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
  360. 2017-01-11 18:27 - 2016-12-14 05:38 - 13869056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
  361. 2017-01-11 18:27 - 2016-12-14 05:38 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
  362. 2017-01-11 18:27 - 2016-12-14 05:37 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
  363. 2017-01-11 18:27 - 2016-12-14 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
  364. 2017-01-11 18:27 - 2016-12-14 05:35 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
  365. 2017-01-11 18:27 - 2016-12-14 05:35 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
  366. 2017-01-11 18:27 - 2016-12-14 05:35 - 00553984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
  367. 2017-01-11 18:27 - 2016-12-14 05:26 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
  368. 2017-01-11 18:27 - 2016-12-14 05:26 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
  369. 2017-01-11 18:27 - 2016-12-14 05:24 - 01005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
  370. 2017-01-11 18:27 - 2016-12-14 05:24 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
  371. 2017-01-11 18:27 - 2016-12-14 05:23 - 03134976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
  372. 2017-01-11 18:27 - 2016-12-14 05:22 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
  373. 2017-01-11 18:27 - 2016-12-14 05:22 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
  374. 2017-01-11 18:27 - 2016-12-14 05:22 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
  375. 2017-01-11 18:27 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
  376. 2017-01-11 18:27 - 2016-11-02 11:28 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
  377. 2017-01-11 18:27 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
  378. 2017-01-11 18:26 - 2016-12-21 09:04 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
  379. 2017-01-11 18:26 - 2016-12-21 08:49 - 00328008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
  380. 2017-01-11 18:26 - 2016-12-21 08:43 - 00092512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
  381. 2017-01-11 18:26 - 2016-12-21 08:42 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
  382. 2017-01-11 18:26 - 2016-12-21 08:37 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
  383. 2017-01-11 18:26 - 2016-12-21 08:15 - 22563840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
  384. 2017-01-11 18:26 - 2016-12-21 08:14 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
  385. 2017-01-11 18:26 - 2016-12-21 08:13 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
  386. 2017-01-11 18:26 - 2016-12-21 08:12 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
  387. 2017-01-11 18:26 - 2016-12-21 08:10 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
  388. 2017-01-11 18:26 - 2016-12-21 08:09 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
  389. 2017-01-11 18:26 - 2016-12-21 08:09 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
  390. 2017-01-11 18:26 - 2016-12-21 08:08 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
  391. 2017-01-11 18:26 - 2016-12-21 08:08 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
  392. 2017-01-11 18:26 - 2016-12-21 08:08 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
  393. 2017-01-11 18:26 - 2016-12-21 08:08 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
  394. 2017-01-11 18:26 - 2016-12-21 08:08 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
  395. 2017-01-11 18:26 - 2016-12-21 08:07 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
  396. 2017-01-11 18:26 - 2016-12-21 08:06 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
  397. 2017-01-11 18:26 - 2016-12-21 08:06 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
  398. 2017-01-11 18:26 - 2016-12-21 08:06 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
  399. 2017-01-11 18:26 - 2016-12-21 08:05 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
  400. 2017-01-11 18:26 - 2016-12-21 08:05 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
  401. 2017-01-11 18:26 - 2016-12-21 08:01 - 09131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
  402. 2017-01-11 18:26 - 2016-12-21 08:00 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
  403. 2017-01-11 18:26 - 2016-12-21 07:57 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
  404. 2017-01-11 18:26 - 2016-12-21 07:56 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
  405. 2017-01-11 18:26 - 2016-12-21 07:54 - 05511680 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
  406. 2017-01-11 18:26 - 2016-12-21 07:53 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
  407. 2017-01-11 18:26 - 2016-12-21 07:51 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
  408. 2017-01-11 18:26 - 2016-12-21 07:49 - 04149248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
  409. 2017-01-11 18:26 - 2016-12-21 07:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
  410. 2017-01-11 18:26 - 2016-12-21 07:49 - 01062912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
  411. 2017-01-11 18:26 - 2016-12-21 07:47 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
  412. 2017-01-11 18:26 - 2016-12-21 06:02 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
  413. 2017-01-11 18:26 - 2016-12-21 06:02 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
  414. 2017-01-11 18:26 - 2016-12-21 06:02 - 01360464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
  415. 2017-01-11 18:26 - 2016-12-21 06:02 - 01277344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
  416. 2017-01-11 18:26 - 2016-12-21 06:02 - 01201872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
  417. 2017-01-11 18:26 - 2016-12-21 06:02 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
  418. 2017-01-11 18:26 - 2016-12-21 05:46 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
  419. 2017-01-11 18:26 - 2016-12-21 05:41 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
  420. 2017-01-11 18:26 - 2016-12-21 05:40 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
  421. 2017-01-11 18:26 - 2016-12-21 05:40 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
  422. 2017-01-11 18:26 - 2016-12-21 05:39 - 01300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
  423. 2017-01-11 18:26 - 2016-12-21 05:35 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
  424. 2017-01-11 18:26 - 2016-12-21 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
  425. 2017-01-11 18:26 - 2016-12-21 05:25 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
  426. 2017-01-11 18:26 - 2016-12-21 05:24 - 05061120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
  427. 2017-01-11 18:26 - 2016-12-21 05:24 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
  428. 2017-01-11 18:26 - 2016-12-21 05:24 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
  429. 2017-01-11 18:26 - 2016-12-21 05:22 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
  430. 2017-01-11 18:26 - 2016-12-14 06:41 - 00590960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
  431. 2017-01-11 18:26 - 2016-12-14 06:33 - 02169184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
  432. 2017-01-11 18:26 - 2016-12-14 06:33 - 01669984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
  433. 2017-01-11 18:26 - 2016-12-14 06:33 - 01400160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
  434. 2017-01-11 18:26 - 2016-12-14 06:33 - 01356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
  435. 2017-01-11 18:26 - 2016-12-14 06:33 - 01054048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
  436. 2017-01-11 18:26 - 2016-12-14 06:33 - 00992096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
  437. 2017-01-11 18:26 - 2016-12-14 06:33 - 00822624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
  438. 2017-01-11 18:26 - 2016-12-14 06:33 - 00813408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
  439. 2017-01-11 18:26 - 2016-12-14 06:33 - 00779616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
  440. 2017-01-11 18:26 - 2016-12-14 06:33 - 00752992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
  441. 2017-01-11 18:26 - 2016-12-14 06:33 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
  442. 2017-01-11 18:26 - 2016-12-14 06:33 - 00696160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
  443. 2017-01-11 18:26 - 2016-12-14 06:33 - 00571744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
  444. 2017-01-11 18:26 - 2016-12-14 06:33 - 00513376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
  445. 2017-01-11 18:26 - 2016-12-14 06:33 - 00406368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
  446. 2017-01-11 18:26 - 2016-12-14 06:33 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
  447. 2017-01-11 18:26 - 2016-12-14 06:33 - 00190816 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
  448. 2017-01-11 18:26 - 2016-12-14 06:26 - 01469792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
  449. 2017-01-11 18:26 - 2016-12-14 06:19 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
  450. 2017-01-11 18:26 - 2016-12-14 06:18 - 00715104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
  451. 2017-01-11 18:26 - 2016-12-14 06:18 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
  452. 2017-01-11 18:26 - 2016-12-14 06:14 - 01694712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
  453. 2017-01-11 18:26 - 2016-12-14 06:14 - 00418952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
  454. 2017-01-11 18:26 - 2016-12-14 06:14 - 00089416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
  455. 2017-01-11 18:26 - 2016-12-14 06:08 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
  456. 2017-01-11 18:26 - 2016-12-14 06:06 - 00509792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
  457. 2017-01-11 18:26 - 2016-12-14 06:01 - 00076984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
  458. 2017-01-11 18:26 - 2016-12-14 05:46 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
  459. 2017-01-11 18:26 - 2016-12-14 05:45 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
  460. 2017-01-11 18:26 - 2016-12-14 05:42 - 00384000 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
  461. 2017-01-11 18:26 - 2016-12-14 05:42 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
  462. 2017-01-11 18:26 - 2016-12-14 05:42 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.UI.Logon.ProxyStub.dll
  463. 2017-01-11 18:26 - 2016-12-14 05:41 - 00362496 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
  464. 2017-01-11 18:26 - 2016-12-14 05:41 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
  465. 2017-01-11 18:26 - 2016-12-14 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
  466. 2017-01-11 18:26 - 2016-12-14 05:40 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
  467. 2017-01-11 18:26 - 2016-12-14 05:40 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
  468. 2017-01-11 18:26 - 2016-12-14 05:40 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.UI.Logon.ProxyStub.dll
  469. 2017-01-11 18:26 - 2016-12-14 05:39 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
  470. 2017-01-11 18:26 - 2016-12-14 05:39 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
  471. 2017-01-11 18:26 - 2016-12-14 05:39 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
  472. 2017-01-11 18:26 - 2016-12-14 05:38 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
  473. 2017-01-11 18:26 - 2016-12-14 05:36 - 01002496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
  474. 2017-01-11 18:26 - 2016-12-14 05:36 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
  475. 2017-01-11 18:26 - 2016-12-14 05:35 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
  476. 2017-01-11 18:26 - 2016-12-14 05:35 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
  477. 2017-01-11 18:26 - 2016-12-14 05:32 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
  478. 2017-01-11 18:26 - 2016-12-14 05:32 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
  479. 2017-01-11 18:26 - 2016-12-14 05:25 - 02795520 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
  480. 2017-01-11 18:26 - 2016-12-14 05:25 - 02009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
  481. 2017-01-11 18:26 - 2016-12-14 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
  482. 2017-01-11 18:26 - 2016-12-14 05:22 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
  483. 2017-01-11 18:26 - 2016-12-14 05:22 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
  484. 2017-01-11 18:26 - 2016-12-14 05:22 - 00707584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
  485. 2017-01-11 18:26 - 2016-12-14 05:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
  486. 2017-01-11 18:26 - 2016-11-02 12:00 - 00534096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
  487. 2017-01-11 18:26 - 2016-11-02 11:22 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
  488. 2017-01-11 18:26 - 2016-11-02 11:21 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
  489. 2017-01-09 17:17 - 2017-01-09 17:17 - 00000000 ____D C:\Users\Petr\AppData\Local\Gaijin
  490. 2017-01-08 16:35 - 2017-01-08 16:35 - 00004338 _____ C:\WINDOWS\System32\Tasks\Overwolf Updater Task
  491. 2017-01-08 16:35 - 2017-01-08 16:35 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
  492. 2017-01-08 16:34 - 2017-01-08 19:01 - 00000000 ____D C:\ProgramData\Overwolf
  493. 2017-01-08 16:33 - 2017-01-14 12:20 - 00000000 ____D C:\Users\Petr\AppData\Local\Overwolf
  494. 2017-01-03 19:51 - 2017-01-03 19:51 - 00000000 ____D C:\Users\Petr\AppData\Local\MicrosoftEdge
  495. 2016-12-21 17:09 - 2016-12-21 17:09 - 00000000 ____D C:\GvTemp
  496. 2016-12-18 10:54 - 2017-01-14 21:07 - 00002938 _____ C:\ProgramData\NvTelemetryContainer.log
  497. 2016-12-18 10:54 - 2017-01-14 21:06 - 00005110 _____ C:\ProgramData\NvTelemetryContainer.log_backup1
  498. 2016-12-18 10:54 - 2016-12-18 10:54 - 00004394 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  499. 2016-12-18 10:54 - 2016-12-13 00:36 - 00156096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
  500. 2016-12-18 10:54 - 2016-12-13 00:36 - 00123840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
  501. 2016-12-18 10:54 - 2016-12-12 15:36 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
  502. 2016-12-18 10:53 - 2016-12-18 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftPerfect RAM Disk
  503. 2016-12-18 10:53 - 2016-12-18 10:53 - 00000000 ____D C:\Program Files\SoftPerfect RAM Disk
  504. 2016-12-18 10:53 - 2013-10-04 22:33 - 00340984 _____ C:\WINDOWS\system32\Drivers\spvve.sys
  505. 2016-12-18 10:53 - 2013-10-04 22:33 - 00091640 _____ C:\WINDOWS\system32\Drivers\spvdbus.sys
  506. 2016-12-16 21:57 - 2016-12-16 21:57 - 00000000 ____D C:\Síť
  507. 2016-12-15 16:40 - 2016-12-15 18:47 - 00000600 _____ C:\Users\Petr\AppData\Local\PUTTY.RND
  508. 2016-12-15 15:33 - 2016-12-15 15:33 - 00000000 ____D C:\Users\Petr\AppData\Roaming\iterate_GmbH
  509. 2016-12-15 15:33 - 2016-12-15 15:33 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Cyberduck
  510. 2016-12-15 15:32 - 2016-12-15 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberduck
  511. 2016-12-15 15:32 - 2016-12-15 15:32 - 00000000 ____D C:\ProgramData\Apple
  512. 2016-12-15 15:32 - 2016-12-15 15:32 - 00000000 ____D C:\Program Files\Bonjour
  513. 2016-12-15 15:32 - 2016-12-15 15:32 - 00000000 ____D C:\Program Files (x86)\Cyberduck
  514. 2016-12-15 15:32 - 2016-12-15 15:32 - 00000000 ____D C:\Program Files (x86)\Bonjour
  515. 2016-12-15 00:24 - 2016-12-15 00:24 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenVPN
  516. 2016-12-15 00:22 - 2016-12-15 00:24 - 00000000 ____D C:\Program Files (x86)\OpenVPN
  517.  
  518. ==================== One Month Modified files and folders ========
  519.  
  520. (If an entry is included in the fixlist, the file/folder will be moved.)
  521.  
  522. 2017-01-14 21:15 - 2015-12-27 16:19 - 00000000 ____D C:\Users\Petr\AppData\Local\CrashDumps
  523. 2017-01-14 21:13 - 2016-09-23 17:07 - 05658586 _____ C:\WINDOWS\system32\PerfStringBackup.INI
  524. 2017-01-14 21:13 - 2016-07-16 23:25 - 02547712 _____ C:\WINDOWS\system32\perfh005.dat
  525. 2017-01-14 21:13 - 2016-07-16 23:25 - 00745832 _____ C:\WINDOWS\system32\perfc005.dat
  526. 2017-01-14 21:13 - 2015-12-26 21:26 - 00000000 ____D C:\Users\Petr\Desktop\Programy
  527. 2017-01-14 21:09 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
  528. 2017-01-14 21:07 - 2016-09-23 17:11 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
  529. 2017-01-14 21:07 - 2016-09-23 17:07 - 00000000 ____D C:\ProgramData\NVIDIA
  530. 2017-01-14 21:06 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
  531. 2017-01-14 18:26 - 2016-06-26 11:26 - 00000000 ____D C:\Users\Petr\AppData\Local\SKIDROW
  532. 2017-01-14 18:02 - 2016-03-28 19:21 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
  533. 2017-01-14 17:23 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
  534. 2017-01-14 16:50 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
  535. 2017-01-14 16:44 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
  536. 2017-01-14 15:26 - 2016-07-16 12:47 - 00000000 __RHD C:\Users\Public\Libraries
  537. 2017-01-14 15:13 - 2016-09-23 17:06 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
  538. 2017-01-14 11:29 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
  539. 2017-01-14 00:39 - 2015-12-26 23:10 - 00000000 ____D C:\Users\Petr\AppData\Local\Spotify
  540. 2017-01-13 20:23 - 2015-12-26 23:10 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Spotify
  541. 2017-01-12 14:42 - 2015-12-26 23:39 - 00000000 __RHD C:\Users\Public\AccountPictures
  542. 2017-01-12 10:43 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
  543. 2017-01-12 10:42 - 2016-09-23 17:06 - 00350688 _____ C:\WINDOWS\system32\FNTCACHE.DAT
  544. 2017-01-12 00:01 - 2016-07-16 12:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
  545. 2017-01-12 00:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
  546. 2017-01-12 00:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\oobe
  547. 2017-01-12 00:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
  548. 2017-01-12 00:01 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\Provisioning
  549. 2017-01-11 20:35 - 2015-12-26 22:37 - 00000000 ____D C:\WINDOWS\system32\MRT
  550. 2017-01-11 20:34 - 2015-12-26 22:37 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
  551. 2017-01-10 22:53 - 2015-12-26 21:32 - 00000000 ____D C:\Users\Petr\Desktop\Ostatní
  552. 2017-01-09 20:02 - 2016-06-25 16:43 - 00000000 ____D C:\Users\Petr\AppData\Roaming\vlc
  553. 2017-01-08 17:13 - 2016-02-26 15:33 - 00000000 ____D C:\Users\Petr\AppData\Local\ElevatedDiagnostics
  554. 2017-01-07 20:56 - 2015-12-26 17:37 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Origin
  555. 2017-01-07 16:14 - 2015-12-26 18:34 - 00226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
  556. 2017-01-07 16:14 - 2015-12-26 18:34 - 00214392 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
  557. 2017-01-07 16:09 - 2015-12-26 23:26 - 00000000 ____D C:\Users\Petr\AppData\Roaming\TS3Client
  558. 2017-01-07 16:09 - 2015-12-26 17:26 - 00000000 ____D C:\ProgramData\Origin
  559. 2017-01-06 19:14 - 2016-02-10 21:24 - 00000000 ____D C:\Users\Petr\AppData\Local\Ubisoft Game Launcher
  560. 2017-01-01 20:55 - 2016-02-25 15:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\TeamViewer
  561. 2016-12-25 14:18 - 2016-12-01 00:03 - 00000000 ____D C:\Users\Petr\AppData\Roaming\uTorrent
  562. 2016-12-23 00:13 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
  563. 2016-12-23 00:13 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
  564. 2016-12-22 23:17 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Drivers\etc
  565. 2016-12-22 23:17 - 2016-01-06 18:44 - 00000000 ____D C:\Users\Petr\AppData\LocalLow\Adobe
  566. 2016-12-22 23:17 - 2016-01-01 19:26 - 00000000 ____D C:\Users\Petr\AppData\Local\Adobe
  567. 2016-12-22 23:17 - 2015-12-26 12:04 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Adobe
  568. 2016-12-19 00:21 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\CatRoot
  569. 2016-12-18 10:54 - 2016-10-02 14:34 - 00003980 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  570. 2016-12-18 10:54 - 2016-10-02 14:34 - 00003970 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  571. 2016-12-18 10:54 - 2016-10-02 14:34 - 00003952 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  572. 2016-12-18 10:54 - 2016-10-02 14:34 - 00003944 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  573. 2016-12-18 10:54 - 2016-10-02 14:34 - 00003782 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  574. 2016-12-18 10:54 - 2016-10-02 14:34 - 00003740 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
  575. 2016-12-18 10:54 - 2016-09-23 17:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
  576. 2016-12-18 10:54 - 2016-09-23 17:06 - 00000000 ____D C:\Program Files\NVIDIA Corporation
  577. 2016-12-18 10:54 - 2016-09-23 17:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
  578. 2016-12-18 10:54 - 2015-12-26 12:24 - 00000000 ____D C:\Users\Petr\AppData\Local\NVIDIA Corporation
  579. 2016-12-18 10:53 - 2016-11-17 00:24 - 00000000 ____D C:\ProgramData\SoftPerfect
  580. 2016-12-18 10:53 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files
  581. 2016-12-18 00:05 - 2016-07-16 12:47 - 00000000 __SHD C:\WINDOWS\Installer
  582. 2016-12-18 00:00 - 2016-09-23 17:11 - 00003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
  583. 2016-12-18 00:00 - 2016-09-23 17:11 - 00003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
  584. 2016-12-16 18:57 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\assembly
  585. 2016-12-15 23:23 - 2016-05-03 11:29 - 00007596 _____ C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
  586. 2016-12-15 19:56 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
  587. 2016-12-15 15:32 - 2015-12-26 12:22 - 00000000 ____D C:\ProgramData\Package Cache
  588. 2016-12-15 00:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-US
  589. 2016-12-15 00:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\en-US
  590. 2016-12-15 00:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Boot
  591. 2016-12-15 00:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppPatch
  592. 2016-12-15 00:00 - 2015-12-26 12:29 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  593. 2016-12-15 00:00 - 2015-12-26 12:29 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
  594.  
  595. ==================== Files in the root of some directories =======
  596.  
  597. 2016-05-02 16:17 - 2016-05-04 14:25 - 0000418 _____ () C:\Users\Petr\AppData\Roaming\winlogs.txt
  598. 2015-12-29 15:17 - 2016-04-22 17:07 - 2128896 _____ () C:\Users\Petr\AppData\Local\file__0.localstorage
  599. 2016-01-20 21:28 - 2016-01-20 21:28 - 0000000 ___SH () C:\Users\Petr\AppData\Local\LumaEmu
  600. 2016-12-15 16:40 - 2016-12-15 18:47 - 0000600 _____ () C:\Users\Petr\AppData\Local\PUTTY.RND
  601. 2016-05-03 11:29 - 2016-12-15 23:23 - 0007596 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
  602. 2017-01-14 15:27 - 2016-11-23 14:37 - 0000570 _____ () C:\Users\Petr\AppData\Local\TroubleshooterConfig.json
  603. 2016-08-27 14:01 - 2016-08-27 14:01 - 0000057 _____ () C:\ProgramData\Ament.ini
  604. 2016-12-18 10:54 - 2017-01-14 21:07 - 0002938 _____ () C:\ProgramData\NvTelemetryContainer.log
  605. 2016-12-18 10:54 - 2017-01-14 21:06 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
  606.  
  607. Some files in TEMP:
  608. ====================
  609. C:\Users\Petr\AppData\Local\Temp\NvTelemetry.dll
  610. C:\Users\Petr\AppData\Local\Temp\NvTelemetryAPI32.dll
  611. C:\Users\Petr\AppData\Local\Temp\NvTelemetryAPI64.dll
  612.  
  613.  
  614. ==================== Bamital & volsnap ======================
  615.  
  616. (There is no automatic fix for files that do not pass verification.)
  617.  
  618. C:\WINDOWS\system32\winlogon.exe => File is digitally signed
  619. C:\WINDOWS\system32\wininit.exe => File is digitally signed
  620. C:\WINDOWS\explorer.exe => File is digitally signed
  621. C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
  622. C:\WINDOWS\system32\svchost.exe => File is digitally signed
  623. C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
  624. C:\WINDOWS\system32\services.exe => File is digitally signed
  625. C:\WINDOWS\system32\User32.dll => File is digitally signed
  626. C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
  627. C:\WINDOWS\system32\userinit.exe => File is digitally signed
  628. C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
  629. C:\WINDOWS\system32\rpcss.dll => File is digitally signed
  630. C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
  631. C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
  632. C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
  633.  
  634. LastRegBack: 2017-01-12 17:28
  635.  
  636. ==================== End of FRST.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!