FRST
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgcsrvx.exe
() C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
() C:\Program Files\AVG Web TuneUp\vprot.exe
(AVG Secure Search) C:\Program Files\AVG Web TuneUp\avgcefrend.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7745792 2015-11-03] (Realtek Semiconductor)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3862440 2016-03-02] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [3177360 2015-11-03] ()
HKU\S-1-5-21-1684796492-860333601-2249642120-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6628056 2016-01-15] (Piriform Ltd)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3787c4a8-bafa-460e-8c9c-f6b325b5de6c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{bd0ab91b-649f-497b-bfc0-65c540b10b3c}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\qc7oo66l.default
FF Plugin: @Adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_21_0_0_197.dll [2016-03-24] ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.1.8\\npsitesafety.dll [No File]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-22] [not signed]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [604144 2016-03-02] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3934184 2016-03-02] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [865704 2016-02-18] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [561104 2016-03-02] (AVG Technologies CZ, s.r.o.)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [1205136 2015-11-03] ()
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdide; C:\WINDOWS\System32\drivers\amdide.sys [11944 2015-11-03] (Advanced Micro Devices Inc.)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19584 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [256432 2016-01-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [207792 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [297904 2016-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [205744 2016-03-02] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [37296 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 Avgunivx; C:\WINDOWS\System32\DRIVERS\avgunivx.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [246720 2015-12-16] (AVG Technologies CZ, s.r.o.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-11-03] (REALiX(tm))
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-30 07:55 - 2016-03-30 07:55 - 00007411 _____ C:\Users\Admin\Desktop\FRST.txt
2016-03-25 15:55 - 2016-03-25 15:55 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-03-22 01:52 - 2016-03-23 00:32 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-19 12:09 - 2016-03-19 12:09 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-03-14 21:48 - 2016-03-14 21:48 - 00000000 ____D C:\Users\Admin\AppData\Roaming\.mono
2016-03-14 21:48 - 2016-03-14 21:48 - 00000000 ____D C:\ProgramData\.mono
2016-03-11 11:04 - 2016-03-11 11:05 - 00000000 ____D C:\ProgramData\Avg_Update_0316av
2016-03-09 12:02 - 2016-03-01 07:22 - 00709688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-03-09 12:02 - 2016-02-24 11:15 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-09 12:02 - 2016-02-24 11:15 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-03-09 12:02 - 2016-02-24 11:11 - 00599904 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-03-09 12:02 - 2016-02-24 11:10 - 00959840 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-09 12:02 - 2016-02-24 11:03 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-03-09 12:02 - 2016-02-24 10:57 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-09 12:02 - 2016-02-24 10:50 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-03-09 12:02 - 2016-02-24 10:19 - 00670928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-09 12:02 - 2016-02-24 10:15 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2016-03-09 12:02 - 2016-02-24 10:11 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-09 12:02 - 2016-02-24 10:11 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-03-09 12:02 - 2016-02-24 10:06 - 05242496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-03-09 12:02 - 2016-02-24 10:03 - 00510880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-03-09 12:02 - 2016-02-24 09:59 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-03-09 12:02 - 2016-02-24 09:59 - 00118304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-03-09 12:02 - 2016-02-24 09:38 - 00187744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-03-09 12:02 - 2016-02-24 09:35 - 01714016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-03-09 12:02 - 2016-02-24 09:35 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-09 12:02 - 2016-02-24 09:35 - 00523752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-03-09 12:02 - 2016-02-24 09:35 - 00482656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-03-09 12:02 - 2016-02-24 09:35 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-03-09 12:02 - 2016-02-24 09:35 - 00220064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-09 12:02 - 2016-02-24 09:33 - 00538736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-09 12:02 - 2016-02-24 09:33 - 00141664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-09 12:02 - 2016-02-24 09:03 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-03-09 12:02 - 2016-02-24 08:55 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-03-09 12:02 - 2016-02-24 08:54 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-03-09 12:02 - 2016-02-24 08:53 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-03-09 12:02 - 2016-02-24 08:53 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-03-09 12:02 - 2016-02-24 08:52 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-03-09 12:02 - 2016-02-24 08:51 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-09 12:02 - 2016-02-24 08:47 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-03-09 12:02 - 2016-02-24 08:46 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-03-09 12:02 - 2016-02-24 08:44 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-03-09 12:02 - 2016-02-24 08:40 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-09 12:02 - 2016-02-24 08:40 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-03-09 12:02 - 2016-02-24 08:39 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-03-09 12:02 - 2016-02-24 08:38 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-03-09 12:02 - 2016-02-24 08:38 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-03-09 12:02 - 2016-02-24 08:37 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-03-09 12:02 - 2016-02-24 08:37 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-09 12:02 - 2016-02-24 08:37 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-09 12:02 - 2016-02-24 08:34 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-09 12:02 - 2016-02-24 08:32 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-03-09 12:02 - 2016-02-24 08:32 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2016-03-09 12:02 - 2016-02-24 08:31 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-03-09 12:02 - 2016-02-24 08:31 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-03-09 12:02 - 2016-02-24 08:29 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-03-09 12:02 - 2016-02-24 08:28 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-03-09 12:02 - 2016-02-24 08:28 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-03-09 12:02 - 2016-02-24 08:27 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-03-09 12:02 - 2016-02-24 08:25 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-03-09 12:02 - 2016-02-24 08:23 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-03-09 12:02 - 2016-02-24 08:23 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-03-09 12:02 - 2016-02-24 08:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2016-03-09 12:02 - 2016-02-24 08:21 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-03-09 12:02 - 2016-02-24 08:21 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-03-09 12:02 - 2016-02-24 08:21 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-03-09 12:02 - 2016-02-24 08:21 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-03-09 12:02 - 2016-02-24 08:20 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-09 12:02 - 2016-02-24 08:18 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-03-09 12:02 - 2016-02-24 08:18 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-03-09 12:02 - 2016-02-24 08:18 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-09 12:02 - 2016-02-24 08:18 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-03-09 12:02 - 2016-02-24 08:17 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-03-09 12:02 - 2016-02-24 08:16 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-09 12:02 - 2016-02-24 08:13 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-03-09 12:02 - 2016-02-24 08:09 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-03-09 12:02 - 2016-02-24 08:09 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-03-09 12:02 - 2016-02-24 08:09 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-03-09 12:02 - 2016-02-24 08:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-09 12:02 - 2016-02-24 08:09 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-03-09 12:02 - 2016-02-24 08:07 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-03-09 12:02 - 2016-02-24 08:07 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-03-09 12:02 - 2016-02-24 08:07 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-03-09 12:02 - 2016-02-24 08:06 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-03-09 12:02 - 2016-02-24 08:04 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-09 12:02 - 2016-02-24 08:03 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-03-09 12:02 - 2016-02-24 07:59 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-03-09 12:02 - 2016-02-24 07:55 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-09 12:02 - 2016-02-24 07:51 - 01184256 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-03-09 12:02 - 2016-02-24 07:46 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-09 12:02 - 2016-02-24 07:38 - 01524224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-03-09 12:02 - 2016-02-24 07:37 - 01895936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-09 12:02 - 2016-02-24 07:37 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-03-09 12:02 - 2016-02-24 07:34 - 01887744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-03-09 12:02 - 2016-02-24 07:34 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-03-09 12:02 - 2016-02-24 07:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-03-09 12:02 - 2016-02-24 07:18 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-09 12:02 - 2016-02-24 07:12 - 19339776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-09 12:02 - 2016-02-24 07:12 - 05321728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-09 12:02 - 2016-02-24 07:05 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-09 12:02 - 2016-02-24 06:59 - 05661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-08 11:45 - 2016-03-25 17:19 - 00000000 ____D C:\Users\Admin\Desktop\FRST-OlderVersion
2016-03-02 12:17 - 2016-02-23 12:33 - 01541792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-03-02 12:17 - 2016-02-23 11:30 - 02919320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-02 12:17 - 2016-02-23 10:06 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-03-02 12:17 - 2016-02-23 08:55 - 02229760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-03-02 12:17 - 2016-02-23 08:36 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-03-02 12:17 - 2016-02-09 05:07 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-03-02 12:16 - 2016-02-23 12:37 - 00875992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-03-02 12:16 - 2016-02-23 12:37 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-02 12:16 - 2016-02-23 12:34 - 01859960 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-02 12:16 - 2016-02-23 12:34 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-02 12:16 - 2016-02-23 12:34 - 00926568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-02 12:16 - 2016-02-23 12:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-03-02 12:16 - 2016-02-23 12:33 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-03-02 12:16 - 2016-02-23 12:32 - 01820512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-03-02 12:16 - 2016-02-23 12:32 - 00462688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-03-02 12:16 - 2016-02-23 12:22 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-03-02 12:16 - 2016-02-23 12:16 - 00856928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-03-02 12:16 - 2016-02-23 11:40 - 00306840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2016-03-02 12:16 - 2016-02-23 11:39 - 00502112 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-02 12:16 - 2016-02-23 11:39 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-03-02 12:16 - 2016-02-23 11:38 - 06952088 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-03-02 12:16 - 2016-02-23 11:38 - 02180136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-03-02 12:16 - 2016-02-23 11:38 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-03-02 12:16 - 2016-02-23 11:38 - 00895080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2016-03-02 12:16 - 2016-02-23 11:38 - 00882720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-03-02 12:16 - 2016-02-23 11:38 - 00450912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-03-02 12:16 - 2016-02-23 11:38 - 00420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-03-02 12:16 - 2016-02-23 11:37 - 00713824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2016-03-02 12:16 - 2016-02-23 11:37 - 00405568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-03-02 12:16 - 2016-02-23 11:37 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-03-02 12:16 - 2016-02-23 11:27 - 21124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-02 12:16 - 2016-02-23 11:23 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2016-03-02 12:16 - 2016-02-23 10:56 - 02186864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-03-02 12:16 - 2016-02-23 10:51 - 00381280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-03-02 12:16 - 2016-02-23 10:43 - 00639168 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-03-02 12:16 - 2016-02-23 10:38 - 00287712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-03-02 12:16 - 2016-02-23 10:36 - 00429920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2016-03-02 12:16 - 2016-02-23 10:25 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSave.dll
2016-03-02 12:16 - 2016-02-23 10:25 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-03-02 12:16 - 2016-02-23 10:22 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-03-02 12:16 - 2016-02-23 10:21 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-03-02 12:16 - 2016-02-23 10:18 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2016-03-02 12:16 - 2016-02-23 10:16 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2016-03-02 12:16 - 2016-02-23 10:14 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-03-02 12:16 - 2016-02-23 10:14 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2016-03-02 12:16 - 2016-02-23 10:13 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\flvprophandler.dll
2016-03-02 12:16 - 2016-02-23 10:08 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-02 12:16 - 2016-02-23 10:07 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2016-03-02 12:16 - 2016-02-23 10:07 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2016-03-02 12:16 - 2016-02-23 10:06 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-03-02 12:16 - 2016-02-23 10:05 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-03-02 12:16 - 2016-02-23 10:05 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2016-03-02 12:16 - 2016-02-23 10:03 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2016-03-02 12:16 - 2016-02-23 10:01 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2016-03-02 12:16 - 2016-02-23 10:01 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-03-02 12:16 - 2016-02-23 10:01 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-03-02 12:16 - 2016-02-23 09:59 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-03-02 12:16 - 2016-02-23 09:57 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-03-02 12:16 - 2016-02-23 09:57 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerClient.dll
2016-03-02 12:16 - 2016-02-23 09:51 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2016-03-02 12:16 - 2016-02-23 09:50 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2016-03-02 12:16 - 2016-02-23 09:50 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-03-02 12:16 - 2016-02-23 09:49 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-03-02 12:16 - 2016-02-23 09:49 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-02 12:16 - 2016-02-23 09:48 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-03-02 12:16 - 2016-02-23 09:48 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2016-03-02 12:16 - 2016-02-23 09:47 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2016-03-02 12:16 - 2016-02-23 09:46 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll
2016-03-02 12:16 - 2016-02-23 09:45 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-03-02 12:16 - 2016-02-23 09:45 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-03-02 12:16 - 2016-02-23 09:44 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2016-03-02 12:16 - 2016-02-23 09:43 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmsRouterSvc.dll
2016-03-02 12:16 - 2016-02-23 09:42 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2016-03-02 12:16 - 2016-02-23 09:41 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2016-03-02 12:16 - 2016-02-23 09:40 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2016-03-02 12:16 - 2016-02-23 09:38 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2016-03-02 12:16 - 2016-02-23 09:38 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2016-03-02 12:16 - 2016-02-23 09:36 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-03-02 12:16 - 2016-02-23 09:36 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2016-03-02 12:16 - 2016-02-23 09:36 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-03-02 12:16 - 2016-02-23 09:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-03-02 12:16 - 2016-02-23 09:35 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-03-02 12:16 - 2016-02-23 09:35 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-03-02 12:16 - 2016-02-23 09:34 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-03-02 12:16 - 2016-02-23 09:31 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-03-02 12:16 - 2016-02-23 09:30 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-03-02 12:16 - 2016-02-23 09:29 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-03-02 12:16 - 2016-02-23 09:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-02 12:16 - 2016-02-23 09:28 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-03-02 12:16 - 2016-02-23 09:28 - 00810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2016-03-02 12:16 - 2016-02-23 09:28 - 00739328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-03-02 12:16 - 2016-02-23 09:28 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-03-02 12:16 - 2016-02-23 09:25 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-03-02 12:16 - 2016-02-23 09:24 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-03-02 12:16 - 2016-02-23 09:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-03-02 12:16 - 2016-02-23 09:24 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-03-02 12:16 - 2016-02-23 09:24 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-03-02 12:16 - 2016-02-23 09:23 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-03-02 12:16 - 2016-02-23 09:23 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-03-02 12:16 - 2016-02-23 09:22 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-03-02 12:16 - 2016-02-23 09:21 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-03-02 12:16 - 2016-02-23 09:21 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-03-02 12:16 - 2016-02-23 09:20 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2016-03-02 12:16 - 2016-02-23 09:20 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-03-02 12:16 - 2016-02-23 09:16 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-03-02 12:16 - 2016-02-23 09:14 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-03-02 12:16 - 2016-02-23 09:05 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-03-02 12:16 - 2016-02-23 09:05 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-03-02 12:16 - 2016-02-23 08:59 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-03-02 12:16 - 2016-02-23 08:58 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-03-02 12:16 - 2016-02-23 08:58 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-03-02 12:16 - 2016-02-23 08:56 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-03-02 12:16 - 2016-02-23 08:53 - 01799168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-02 12:16 - 2016-02-23 08:51 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-03-02 12:16 - 2016-02-23 08:50 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-03-02 12:16 - 2016-02-23 08:47 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-03-02 12:16 - 2016-02-23 08:36 - 12125696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-02 12:16 - 2016-02-23 08:36 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-03-02 12:16 - 2016-02-23 08:33 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-03-02 12:16 - 2016-02-23 08:32 - 02793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-03-02 12:16 - 2016-02-23 08:30 - 02061312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-03-02 12:16 - 2016-02-23 08:28 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-03-02 12:16 - 2016-02-09 06:32 - 00228704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-03-02 12:16 - 2016-02-09 06:14 - 00153952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-03-02 12:16 - 2016-02-09 05:23 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-03-02 12:16 - 2016-02-09 05:18 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2016-03-02 12:16 - 2016-02-09 05:09 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-03-02 11:26 - 2016-03-02 11:26 - 00205744 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgmfx86.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-03-30 07:55 - 2016-01-11 19:53 - 00000000 ____D C:\FRST
2016-03-30 07:53 - 2015-12-07 16:22 - 02067418 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-30 07:53 - 2015-10-30 16:58 - 00901356 _____ C:\WINDOWS\system32\perfh010.dat
2016-03-30 07:53 - 2015-10-30 16:58 - 00186064 _____ C:\WINDOWS\system32\perfc010.dat
2016-03-30 07:53 - 2015-10-30 07:47 - 00000000 ____D C:\WINDOWS\INF
2016-03-30 07:52 - 2015-10-30 07:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-30 07:52 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-30 07:51 - 2015-11-03 18:39 - 00000000 ____D C:\ProgramData\MFAData
2016-03-30 07:51 - 2015-10-30 07:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-03-30 07:47 - 2015-12-07 16:33 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-29 21:57 - 2015-10-30 07:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-29 21:29 - 2015-11-03 19:20 - 00000978 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-03-29 13:38 - 2015-12-07 20:35 - 00000000 ____D C:\Users\Admin\AppData\Local\Battle.net
2016-03-29 12:58 - 2015-12-07 20:33 - 00000000 ____D C:\Program Files\Battle.net
2016-03-24 12:18 - 2015-10-30 07:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-23 00:32 - 2015-11-03 18:50 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-03-19 12:27 - 2016-01-12 18:56 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-03-16 10:08 - 2015-11-03 18:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-03-14 21:47 - 2015-12-07 20:36 - 00000000 ____D C:\Program Files\Hearthstone
2016-03-12 13:10 - 2015-11-14 15:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-12 13:08 - 2015-11-14 15:41 - 141270216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-11 19:30 - 2015-12-07 16:15 - 00224000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-11 16:27 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-11 16:27 - 2015-10-30 07:48 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-11 14:16 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\rescache
2016-03-09 12:05 - 2015-11-04 21:31 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-03-09 11:53 - 2015-12-07 16:44 - 00002447 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-09 11:53 - 2015-12-07 16:44 - 00000000 ___RD C:\Users\Admin\OneDrive
2016-03-08 11:45 - 2016-01-11 13:17 - 01725440 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2016-03-08 09:12 - 2015-10-30 07:49 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-03-08 09:12 - 2015-10-30 07:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-03-06 16:04 - 2015-12-07 16:23 - 00000000 ____D C:\Users\Admin
2016-03-05 23:34 - 2015-12-07 16:39 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-05 16:11 - 2015-10-30 17:00 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-05 16:11 - 2015-10-30 07:48 - 00000000 __RSD C:\WINDOWS\Media
2016-03-05 16:11 - 2015-10-30 07:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-03-05 16:11 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-03-05 16:11 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-03-05 16:11 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-03-05 16:11 - 2015-10-30 07:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-03-05 16:11 - 2015-10-30 07:13 - 00000000 ____D C:\WINDOWS\system32\Dism
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
Addition:
==================== Accounts: =============================
Admin (S-1-5-21-1684796492-860333601-2249642120-1000 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-1684796492-860333601-2249642120-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1684796492-860333601-2249642120-503 - Limited - Disabled)
Guest (S-1-5-21-1684796492-860333601-2249642120-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1684796492-860333601-2249642120-1002 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Italiano (HKLM\...\{AC76BA86-7AD7-1040-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.197 - Adobe Systems Incorporated)
AVG (Version: 16.51.7497 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4545 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.51.7497 - AVG Technologies)
AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 4.1.8.599 - AVG Technologies)
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Canon MX370 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX370_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Epic Games Launcher Prerequisites (x86) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FMW 1 (Version: 1.62.2 - AVG Technologies) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
Malwarebytes Anti-Malware versione 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 45.0.1 (x86 it) (HKLM\...\Mozilla Firefox 45.0.1 (x86 it)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla)
OpenOffice 4.1.2 (HKLM\...\{DD985E2D-C2D5-4ECB-A3DF-3FC1A20F6830}) (Version: 4.12.9782 - Apache Software Foundation)
Pannello di controllo NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7628 - Realtek Semiconductor Corp.)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {04AA34CA-1FA3-493D-81A7-C2B366CF8CF5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2A5B62A6-E18C-4015-9E0E-FAEB87DE56C8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {3791FC34-950B-453E-9DAF-E778B092DA16} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3DB8807A-1F7D-4FE4-B4B4-731A04030EAC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {404DADAF-91B4-407B-B864-E28D7B5CE592} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {42CF1B5D-6F47-48F0-A2FD-C217FEA83BAE} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {4DA875D3-5917-48C1-90F0-95774EFBB4D4} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {61956055-65D3-4AD9-9B22-67C341DE9C8A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {63C3E308-DCEB-458A-B850-BFAA554E2EAB} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FE7B5FC-0158-436B-91FF-11F9521FBC64} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {72606A59-E696-41E4-86F9-0B055F1880A3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {79DBE4E8-0868-4AD4-A6F7-D778FD4EC6BC} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7A28E340-FA17-472C-9E24-AC130D52E482} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7AE4F645-515C-464E-94BD-E6B65E471E7E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {835FE4F4-D870-481A-AAD8-F75320887400} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {929A76BB-D170-4D33-B352-FBA2FA64CC4A} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {983F6B09-3EAB-4A30-90D6-4FF62EF9FC82} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A32DD793-96DA-4ED6-8078-7C914B87548E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-03-12] (Microsoft Corporation)
Task: {ABBDB709-6CEF-4034-B70A-6D648964BE72} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0914ED2-663E-4C5D-B672-840D23F4B068} - System32\Tasks\1215tbUpdateInfo => C:\ProgramData\Avg_Update_1215tb\1215tb_{D607BC06-88B7-4AFB-AC58-DF7FC882583C}.exe
Task: {C0716DD3-9924-4CEF-808A-868A1BDC25AA} - System32\Tasks\AVG_SYS_TASK_0316av_DELETE => C:\ProgramData\Avg_Update_0316av\AVG-Secure-Search-Update_0316av.exe [2016-03-06] ()
Task: {CBD47A0D-C86B-4188-9E53-6EE11BE2705E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D07783D7-7181-40DC-886D-57FE8C420528} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-24] (Adobe Systems Incorporated)
Task: {DDE921FA-997C-4EE9-91C3-491F1946B1AB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DF6E71C3-A447-487C-A481-357079D862F4} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EED10476-544F-4C46-A8A1-8F6F349561A4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {FE7DAC8B-4C3D-4D5D-B4C3-9E697DA6DD6D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FE8CD318-A872-4F8D-996D-3632EF099D3F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\1215tbUpdateInfo.job => C:\ProgramData\Avg_Update_1215tb\1215tb_{D607BC06-88B7-4AFB-AC58-DF7FC882583C}.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2015-10-30 07:44 - 2015-10-30 07:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-11-03 19:30 - 2015-11-03 19:29 - 01205136 ____N () C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
2015-12-07 16:18 - 2015-08-07 02:13 - 00106104 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2016-03-02 12:16 - 2016-02-23 12:34 - 01859960 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-03-02 12:16 - 2016-02-23 12:34 - 01859960 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-18 19:01 - 2015-12-07 06:11 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-03-02 12:16 - 2016-02-23 09:48 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-14 13:07 - 2016-01-05 03:23 - 05340672 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-14 13:07 - 2016-01-05 03:19 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-29 10:10 - 2016-01-16 07:06 - 02366464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-29 10:10 - 2016-01-16 07:09 - 02656768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-15 22:45 - 2016-01-15 22:45 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1040.dll
2015-11-03 18:40 - 2015-11-03 18:40 - 40500224 _____ () C:\Program Files\AVG\UiDll\2171\libcef.dll
2015-11-03 19:30 - 2015-11-03 19:29 - 03177360 _____ () C:\Program Files\AVG Web TuneUp\vprot.exe
2015-11-03 19:30 - 2015-11-03 19:29 - 00528272 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\log4cplusU.dll
2015-11-03 19:30 - 2015-11-03 19:29 - 40638864 _____ () C:\Program Files\AVG Web TuneUp\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1684796492-860333601-2249642120-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\AppData\Local\Microsoft\Windows\Themes\img8.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{C97CE928-C433-4909-B2CD-9B0622161060}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{EB6D3C77-55CB-41B4-9B78-5EC139D2B278}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{FBC6B6A6-13E6-4D9C-AC36-A9CB8E4A6411}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A51B1A73-A264-4F8D-AF03-B7B6A28154EA}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{7E85F6E5-37B3-4A98-93F4-E272804D4B13}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [TCP Query User{2019B8C9-44F9-480B-83D6-FB46067AC918}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{F9F7E293-8EA7-437A-B246-AC6A6A933B51}C:\program files\hearthstone\hearthstone.exe] => (Allow) C:\program files\hearthstone\hearthstone.exe
FirewallRules: [{BA706C66-39FA-4AA2-940F-F62E4F8958DD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{748CF555-50E3-4F56-AB80-F054D2085D8A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{14789659-0249-4E47-9BF5-40B94D5FF6CD}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{C3189FC1-A536-4B45-BAAF-9123C286AC53}] => (Allow) C:\Program Files\AVG\Av\avgnsx.exe
FirewallRules: [{BCC6381E-C631-4B1F-B524-1958789C7F62}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{F6F8DD20-F78F-4FF4-BD31-6AB2D883684B}] => (Allow) C:\Program Files\AVG\Av\avgdiagex.exe
FirewallRules: [{64ACF544-4369-452D-A84A-422E661DE701}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
FirewallRules: [{B4CDCD30-CB01-4017-91DB-B8C7350EAED6}] => (Allow) C:\Program Files\AVG\Av\avgemcx.exe
==================== Restore Points =========================
11-03-2016 13:55:10 Windows Update
24-03-2016 12:16:06 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/30/2016 07:52:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Admin-PC)
Description: Attivazione dell'app Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 non riuscita con errore: -2147009280 Per ulteriori informazioni, consulta il registro Microsoft-Windows-TWinUI/Operativo.
Error: (03/29/2016 12:42:13 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Error: (03/24/2016 12:18:09 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Error: (03/24/2016 12:16:51 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Servizi di crittografia: impossibile elaborare la chiamata OnIdentity() nell'oggetto writer del sistema.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
System Error:
Accesso negato.
.
Error: (03/19/2016 12:33:35 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Error: (03/17/2016 10:01:37 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Error: (03/16/2016 07:11:37 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhostw (5896) WebCacheLocal: Si è verificato l'errore -1811 (0xfffff8ed) durante l'apertura del file di log C:\Users\Admin\AppData\Local\Microsoft\Windows\WebCache\V0100086.log.
Error: (03/15/2016 08:58:48 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Error: (03/13/2016 10:18:55 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
Error: (03/11/2016 01:56:01 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
System errors:
=============
Error: (03/30/2016 07:52:38 AM) (Source: DCOM) (EventID: 10001) (User: Admin-PC)
Description: "C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer15616App.AppXck5aaxyarfx8gxrgfk6pvakmmxeqvepc.mcaNon disponibileNon disponibile
Error: (03/30/2016 07:48:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Il servizio NetTcpActivator dipende dal servizio NetTcpPortSharing che non è stato avviato per il seguente errore:
%%1058
Error: (03/29/2016 09:57:25 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Sincronizza host_45676 è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 10000 millisecondi: Riavvia il servizio.
Error: (03/29/2016 09:10:36 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Il servizio NetTcpActivator dipende dal servizio NetTcpPortSharing che non è stato avviato per il seguente errore:
%%1058
Error: (03/29/2016 01:46:34 PM) (Source: DCOM) (EventID: 10010) (User: Admin-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (03/29/2016 01:46:34 PM) (Source: DCOM) (EventID: 10010) (User: Admin-PC)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (03/29/2016 01:46:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Accesso dati utente_40b38 è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 10000 millisecondi: Riavvia il servizio.
Error: (03/29/2016 01:46:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Archiviazione dati utente_40b38 è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 10000 millisecondi: Riavvia il servizio.
Error: (03/29/2016 01:46:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Dati contatti_40b38 è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 10000 millisecondi: Riavvia il servizio.
Error: (03/29/2016 01:46:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Il servizio Sincronizza host_40b38 è stato arrestato in modo imprevisto. Questo problema si è verificato 1 volta/e. Le seguenti azioni di correzione saranno eseguite tra 10000 millisecondi: Riavvia il servizio.
CodeIntegrity:
===================================
Date: 2016-03-25 08:43:15.485
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-03-12 10:10:35.164
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-03-11 18:30:58.803
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-03-05 22:32:43.409
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-02-11 11:23:03.785
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-02-10 19:28:15.590
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-30 15:16:45.163
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-17 22:11:42.801
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-09 11:12:14.195
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-07 00:24:42.978
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: AMD Athlon(tm) II X3 460 Processor
Percentage of memory in use: 33%
Total physical RAM: 3582.18 MB
Available physical RAM: 2393.63 MB
Total Virtual: 7166.18 MB
Available Virtual: 5993.49 MB