Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Brunoxp (administrator) on SEXMACHINE (28-03-2016 22:00:55)
Running from C:\Users\Brunoxp\Desktop
Loaded Profiles: Brunoxp (Available Profiles: Brunoxp)
Platform: Windows 10 Pro N (X64) Language: English (United Kingdom)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\regedit.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.302.8200.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10240.16719_none_11647d1561f368c0\TiWorker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [334304 2016-03-10] (QIHU 360 SOFTWARE CO. LIMITED)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3074128 2016-03-10] (Valve Corporation)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [465920 2015-07-10] (Microsoft Corporation)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [3931192 2016-03-26] (GOG.com)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\Run: [Napisy24.pl] => C:\Program Files (x86)\Napisy24\Napisy24.exe [5509064 2015-07-29] (Napisy24.pl)
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-2859653239-1582936044-2243940205-1001\...\RunOnce: [Uninstall C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Brunoxp\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2015-03-07]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.101.1
Tcpip\..\Interfaces\{4732306f-abc6-4b41-8954-68cbe35cc3c5}: [DhcpNameServer] 192.168.101.1

Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-07] (Oracle Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-07] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Brunoxp\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF Homepage: about:home
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF SearchPlugin: C:\Users\Brunoxp\AppData\Roaming\Mozilla\Firefox\Profiles\podb3ly2.default\searchplugins\yoursearching.xml [2016-03-26]
FF Extension: 360 Internet Protection - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox [2016-03-28]
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-21] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2016-01-02] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [WebProtection@360safe.com] - C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-26] (Disc Soft Ltd)
R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2015-09-01] (Ellora Assets Corp.) [File not signed]
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [227896 2016-03-26] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [5971000 2016-03-26] (GOG.com)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [914400 2016-03-10] (QIHU 360 SOFTWARE CO. LIMITED)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [137808 2016-03-10] (360.cn)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [77904 2016-03-10] (360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [77904 2016-03-10] (360.cn)
R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [319568 2016-03-10] (360.cn)
S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [40520 2016-03-10] (360.cn)
R1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [370768 2016-03-10] (360.cn)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [181328 2016-03-10] (360.cn)
R1 bsdriver; C:\WINDOWS\system32\drivers\bsdriver.sys [34720 2016-03-26] ()
R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-Media Inc)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30352 2015-03-08] (Disc Soft Ltd)
R3 NPF; C:\Windows\System32\drivers\NPF.sys [35344 2011-02-11] (CACE Technologies, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek                                            )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-28 22:00 - 2016-03-28 22:01 - 00013946 _____ C:\Users\Brunoxp\Desktop\FRST.txt
2016-03-28 21:55 - 2016-03-28 21:55 - 00016148 _____ C:\WINDOWS\system32\SEXMACHINE_Brunoxp_HistoryPrediction.bin
2016-03-28 21:26 - 2016-03-28 21:26 - 00000000 ____D C:\Users\Brunoxp\Desktop\Regdelnull
2016-03-28 21:18 - 2016-03-28 21:18 - 00000000 ____H C:\ProgramData\cm-lock
2016-03-28 20:35 - 2016-03-28 22:00 - 00000000 ____D C:\FRST
2016-03-28 20:35 - 2016-03-28 20:35 - 02374144 _____ (Farbar) C:\Users\Brunoxp\Desktop\FRST64.exe
2016-03-28 19:36 - 2016-03-28 21:10 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-03-28 19:11 - 2015-07-10 12:59 - 00534064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-03-28 19:06 - 2016-03-28 19:07 - 03102208 _____ C:\Users\Brunoxp\Desktop\adwcleaner_5.107.exe
2016-03-28 19:03 - 2016-03-28 20:10 - 00000000 ____D C:\AdwCleaner
2016-03-28 19:00 - 2016-03-28 19:01 - 00280520 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-03-28 11:30 - 2016-03-28 18:27 - 00000000 ____D C:\ProgramData\360Quarant
2016-03-28 11:30 - 2016-03-28 12:34 - 00000000 ____D C:\WINDOWS\Tasks\360Disabled
2016-03-28 11:30 - 2016-03-28 12:32 - 00000000 __SHD C:\$360Section
2016-03-28 11:29 - 2016-03-28 21:59 - 00000000 ____D C:\Users\Brunoxp\AppData\LocalLow\360WD
2016-03-28 11:29 - 2016-03-28 12:42 - 00000000 ____D C:\Users\Brunoxp\AppData\Roaming\360safe
2016-03-28 11:29 - 2016-03-28 11:30 - 00000000 ____D C:\ProgramData\360safe
2016-03-28 11:29 - 2016-03-28 11:29 - 00001226 _____ C:\Users\Public\Desktop\360 Total Security.lnk
2016-03-28 11:29 - 2016-03-28 11:29 - 00000000 _RSHD C:\360SANDBOX
2016-03-28 11:29 - 2016-03-28 11:29 - 00000000 ____D C:\Users\Brunoxp\AppData\Roaming\360TotalSecurity
2016-03-28 11:29 - 2016-03-28 11:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2016-03-28 11:29 - 2016-03-28 11:29 - 00000000 ____D C:\ProgramData\360TotalSecurity
2016-03-28 11:29 - 2016-03-28 11:29 - 00000000 ____D C:\Program Files (x86)\360
2016-03-28 11:29 - 2016-03-10 11:57 - 00370768 _____ (360.cn) C:\WINDOWS\system32\Drivers\360fsflt.sys
2016-03-28 11:29 - 2016-03-10 11:57 - 00319568 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Box64.sys
2016-03-28 11:29 - 2016-03-10 11:57 - 00181328 _____ (360.cn) C:\WINDOWS\system32\Drivers\BAPIDRV64.SYS
2016-03-28 11:29 - 2016-03-10 11:57 - 00137808 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AntiHacker64.sys
2016-03-28 11:29 - 2016-03-10 11:57 - 00077904 _____ (360.cn) C:\WINDOWS\SysWOW64\Drivers\360AvFlt.sys
2016-03-28 11:29 - 2016-03-10 11:57 - 00077904 _____ (360.cn) C:\WINDOWS\system32\Drivers\360AvFlt.sys
2016-03-28 11:29 - 2016-03-10 11:57 - 00040520 _____ (360.cn) C:\WINDOWS\system32\Drivers\360Camera64.sys
2016-03-28 11:28 - 2016-03-28 11:28 - 42876848 _____ C:\Users\Brunoxp\Downloads\360TS_Setup.exe
2016-03-28 11:28 - 2016-03-28 11:28 - 01371256 _____ (QIHU 360 SOFTWARE CO. LIMITED) C:\Users\Brunoxp\Downloads\360TS_Setup_Mini.exe
2016-03-28 11:14 - 2016-03-28 11:14 - 00020081 _____ C:\Users\Brunoxp\Documents\bookmarks 27.03.2015.html
2016-03-28 00:27 - 2016-03-28 00:27 - 00000000 ____D C:\WINDOWS\system32\fiu
2016-03-27 20:31 - 2016-03-27 20:31 - 00000000 ____D C:\WINDOWS\system32\vuts
2016-03-27 19:42 - 2016-03-27 19:42 - 00000000 ____D C:\WINDOWS\system32\rop
2016-03-27 19:10 - 2016-03-27 19:10 - 00000000 ____D C:\WINDOWS\system32\rif
2016-03-27 19:09 - 2016-03-27 19:09 - 14572000 _____ (Microsoft Corporation) C:\Users\Brunoxp\Downloads\vc_redist.x64(1).exe
2016-03-27 19:05 - 2016-03-27 19:05 - 14572000 _____ (Microsoft Corporation) C:\Users\Brunoxp\Downloads\vc_redist.x64.exe
2016-03-27 19:03 - 2016-03-27 19:03 - 07194312 _____ (Microsoft Corporation) C:\Users\Brunoxp\Downloads\vcredist_x64(2).exe
2016-03-27 18:59 - 2016-03-27 19:00 - 05718872 _____ (Microsoft Corporation) C:\Users\Brunoxp\Downloads\vcredist_x64(1).exe
2016-03-27 17:31 - 2016-03-27 17:30 - 00001328 _____ C:\Users\Brunoxp\Desktop\Need For Speed The Run.exe - Shortcut.lnk
2016-03-26 21:20 - 2016-03-26 21:20 - 00000000 ____D C:\WINDOWS\system32\kot
2016-03-26 20:33 - 2016-03-26 20:33 - 00000000 ____D C:\WINDOWS\system32\lub
2016-03-26 20:07 - 2016-03-26 20:07 - 00000000 _____ C:\WINDOWS\SysWOW64\Number of results
2016-03-26 19:49 - 2016-03-26 19:50 - 00000000 ____D C:\Users\Brunoxp\Documents\NFSTR
2016-03-26 19:47 - 2016-03-26 19:47 - 00034720 _____ () C:\WINDOWS\system32\Drivers\bsdriver.sys
2016-03-26 19:47 - 2016-03-26 19:47 - 00000000 ____D C:\Users\Brunoxp\AppData\LocalLow\Company
2016-03-26 19:35 - 2016-03-26 19:33 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-03-26 19:31 - 2016-03-28 19:08 - 00000910 __RSH C:\ProgramData\ntuser.pol
2016-03-26 19:31 - 2016-03-26 19:31 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-03-26 16:39 - 2008-10-15 07:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-03-26 16:39 - 2008-10-15 07:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-03-26 16:39 - 2008-10-15 07:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-03-26 16:39 - 2008-10-15 07:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-03-26 16:39 - 2008-10-15 07:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-03-26 16:39 - 2008-10-15 07:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-03-26 10:16 - 2016-03-26 19:47 - 00065856 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\cherimoya.sys
2016-03-21 22:20 - 2016-03-24 20:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-21 21:43 - 2016-03-21 21:43 - 00376118 _____ C:\Users\Brunoxp\Downloads\rys1 (1).pdf
2016-03-20 08:15 - 2016-03-20 08:15 - 00131632 _____ C:\Users\Brunoxp\Downloads\MN-90-019 (2).pdf
2016-03-20 08:15 - 2016-03-20 08:15 - 00131632 _____ C:\Users\Brunoxp\Downloads\MN-90-019 (1).pdf
2016-03-20 08:14 - 2016-03-20 08:14 - 00131632 _____ C:\Users\Brunoxp\Downloads\MN-90-019.pdf
2016-03-20 07:53 - 2016-03-20 07:53 - 00376118 _____ C:\Users\Brunoxp\Downloads\rys1.pdf
2016-03-19 22:11 - 2016-03-19 22:11 - 00077824 _____ C:\Users\Brunoxp\Downloads\Administracja (2).xls
2016-03-19 19:07 - 2016-03-19 19:07 - 00141523 _____ C:\Users\Brunoxp\Downloads\188086-00,KD1001K.pdf
2016-03-19 19:06 - 2016-03-19 19:06 - 00109694 _____ C:\Users\Brunoxp\Downloads\E15072.pdf
2016-03-19 17:34 - 2016-03-19 17:34 - 00127741 _____ C:\Users\Brunoxp\Downloads\Pan Paweł Szulc Passiv Line Plus szklenie dwukomorowe po pomiarze.pdf
2016-03-15 21:50 - 2016-02-23 16:53 - 01314496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-03-15 21:50 - 2016-02-23 16:52 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-03-15 21:50 - 2016-02-23 16:51 - 00633184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-03-15 21:50 - 2016-02-23 16:51 - 00146784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2016-03-15 21:50 - 2016-02-23 16:50 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-03-15 21:50 - 2016-02-23 16:48 - 08022368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-03-15 21:50 - 2016-02-23 16:48 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-03-15 21:50 - 2016-02-23 16:48 - 01123952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-03-15 21:50 - 2016-02-23 16:41 - 01150816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-03-15 21:50 - 2016-02-23 16:41 - 00299600 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL
2016-03-15 21:50 - 2016-02-23 16:41 - 00078040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-03-15 21:50 - 2016-02-23 16:40 - 00110584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-03-15 21:50 - 2016-02-23 16:38 - 00272752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2016-03-15 21:50 - 2016-02-23 16:36 - 00080128 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-03-15 21:50 - 2016-02-23 16:11 - 00781984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2016-03-15 21:50 - 2016-02-23 16:11 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-03-15 21:50 - 2016-02-23 16:11 - 00103776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-03-15 21:50 - 2016-02-23 16:08 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-03-15 21:50 - 2016-02-23 16:07 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-03-15 21:50 - 2016-02-23 15:39 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-03-15 21:50 - 2016-02-23 15:30 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-03-15 21:50 - 2016-02-23 15:25 - 01085632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-03-15 21:50 - 2016-02-23 15:23 - 00952968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-03-15 21:50 - 2016-02-23 15:21 - 00529456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2016-03-15 21:50 - 2016-02-23 15:21 - 00141152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2016-03-15 21:50 - 2016-02-23 15:11 - 00249976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL
2016-03-15 21:50 - 2016-02-23 15:11 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-03-15 21:50 - 2016-02-23 15:11 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-03-15 21:50 - 2016-02-23 15:09 - 00229352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2016-03-15 21:50 - 2016-02-23 15:06 - 00069232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-03-15 21:50 - 2016-02-23 14:58 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-03-15 21:50 - 2016-02-23 14:50 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-03-15 21:50 - 2016-02-23 14:50 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-03-15 21:50 - 2016-02-23 14:42 - 00658536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2016-03-15 21:50 - 2016-02-23 14:42 - 00467296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-03-15 21:50 - 2016-02-23 14:42 - 00078176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-03-15 21:50 - 2016-02-23 14:39 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-03-15 21:50 - 2016-02-23 14:38 - 20858360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-03-15 21:50 - 2016-02-23 14:35 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-03-15 21:50 - 2016-02-23 14:20 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-03-15 21:50 - 2016-02-23 14:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-03-15 21:50 - 2016-02-23 14:16 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-03-15 21:50 - 2016-02-23 14:15 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-03-15 21:50 - 2016-02-23 14:15 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-03-15 21:50 - 2016-02-23 13:59 - 00319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-03-15 21:50 - 2016-02-23 13:59 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2016-03-15 21:50 - 2016-02-23 13:57 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-03-15 21:50 - 2016-02-23 13:55 - 24592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-03-15 21:50 - 2016-02-23 13:45 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-03-15 21:50 - 2016-02-23 13:45 - 06788608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-03-15 21:50 - 2016-02-23 13:42 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-03-15 21:50 - 2016-02-23 13:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-03-15 21:50 - 2016-02-23 13:38 - 02663424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-03-15 21:50 - 2016-02-23 13:37 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetCfgNotifyObjectHost.exe
2016-03-15 21:50 - 2016-02-23 13:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-03-15 21:50 - 2016-02-23 13:25 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-03-15 21:50 - 2016-02-23 13:18 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll
2016-03-15 21:50 - 2016-02-23 13:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-03-15 21:50 - 2016-02-23 13:17 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-03-15 21:50 - 2016-02-23 13:14 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-03-15 21:50 - 2016-02-23 13:08 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-03-15 21:50 - 2016-02-23 13:04 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-03-15 21:50 - 2016-02-23 13:03 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-03-15 21:50 - 2016-02-23 13:03 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-03-15 21:50 - 2016-02-23 13:02 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-03-15 21:50 - 2016-02-23 12:55 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-03-15 21:50 - 2016-02-23 12:55 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-03-15 21:50 - 2016-02-23 12:51 - 00915456 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-03-15 21:50 - 2016-02-23 12:51 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\scapi.dll
2016-03-15 21:50 - 2016-02-23 12:48 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-03-15 21:50 - 2016-02-23 12:48 - 05157376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-03-15 21:50 - 2016-02-23 12:46 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2016-03-15 21:50 - 2016-02-23 12:45 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-03-15 21:50 - 2016-02-23 12:45 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-03-15 21:50 - 2016-02-23 12:45 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-03-15 21:50 - 2016-02-23 12:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-03-15 21:50 - 2016-02-23 12:44 - 01821696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-03-15 21:50 - 2016-02-23 12:38 - 07524864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-03-15 21:50 - 2016-02-23 12:29 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-03-15 21:50 - 2016-02-23 12:17 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2016-03-15 21:50 - 2016-02-23 12:17 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-03-15 21:50 - 2016-02-23 12:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-03-15 21:50 - 2016-02-23 12:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-03-15 21:50 - 2016-02-23 12:00 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-03-15 21:50 - 2016-02-23 11:58 - 18800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-03-11 21:01 - 2016-03-11 21:01 - 00077312 _____ C:\Users\Brunoxp\Downloads\Administracja (1).xls
2016-03-11 20:55 - 2016-03-11 20:55 - 00427008 _____ C:\Users\Brunoxp\Downloads\SESJA ZIMA 2015 2016.xls
2016-03-07 23:58 - 2016-03-07 23:58 - 00073216 _____ C:\Users\Brunoxp\Downloads\Administracja.xls

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-28 21:29 - 2015-03-07 13:10 - 00004162 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D7057877-558D-4F25-A8ED-9BB8FAF93DC4}
2016-03-28 21:28 - 2015-08-07 19:50 - 00875126 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-03-28 21:28 - 2015-07-10 13:01 - 00000000 ____D C:\WINDOWS\INF
2016-03-28 21:18 - 2015-07-10 14:25 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-03-28 21:18 - 2015-03-07 18:42 - 00000000 ____D C:\Program Files (x86)\Steam
2016-03-28 21:17 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-03-28 21:06 - 2015-03-08 12:03 - 00000000 ____D C:\Users\Brunoxp\AppData\LocalLow\Temp
2016-03-28 19:27 - 2015-04-01 23:21 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-03-28 15:58 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-03-28 15:56 - 2015-06-02 20:54 - 00000000 ____D C:\Users\Brunoxp\Documents\The Witcher 3
2016-03-28 15:53 - 2015-07-10 13:02 - 00000000 ___HD C:\Program Files\WindowsApps
2016-03-28 12:36 - 2015-08-07 19:48 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-03-28 12:35 - 2015-03-07 19:51 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-03-28 12:35 - 2015-03-07 19:51 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-03-28 12:35 - 2015-03-07 19:51 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-03-28 12:35 - 2015-03-07 19:51 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-03-28 11:31 - 2015-08-07 21:39 - 00000000 ___DC C:\WINDOWS\Panther
2016-03-28 11:30 - 2015-09-22 21:43 - 00003410 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-03-28 11:30 - 2015-04-05 12:09 - 00000000 ____D C:\Users\Brunoxp\AppData\Roaming\Notepad++
2016-03-28 11:30 - 2015-03-07 14:13 - 00000000 ____D C:\Users\Brunoxp\AppData\Roaming\Azureus
2016-03-28 10:47 - 2015-03-10 23:39 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-03-28 10:44 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-03-28 10:44 - 2015-03-07 18:34 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-03-28 00:12 - 2015-03-14 21:08 - 00000000 ____D C:\Program Files (x86)\Opera
2016-03-27 20:22 - 2015-03-11 20:02 - 00000000 ____D C:\Program Files\Unlocker
2016-03-27 19:05 - 2015-08-07 19:40 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-27 16:28 - 2015-03-07 14:13 - 00000000 ____D C:\Users\Brunoxp\Documents\Vuze Downloads
2016-03-26 21:24 - 2013-08-22 15:25 - 00000194 _____ C:\WINDOWS\win.ini
2016-03-26 20:44 - 2015-03-07 13:43 - 00000000 ____D C:\Users\Brunoxp\AppData\Roaming\DAEMON Tools Lite
2016-03-26 19:31 - 2015-07-10 13:02 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-03-26 19:31 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-03-25 01:08 - 2015-03-07 19:53 - 00000000 ____D C:\Users\Brunoxp\Graphisoft
2016-03-24 20:53 - 2015-03-07 19:53 - 00000321 _____ C:\Users\Brunoxp\Documents\BIMx_Export_Log.txt
2016-03-24 20:53 - 2015-03-07 19:53 - 00000000 ____D C:\Users\Brunoxp\Documents\BIMx
2016-03-24 20:51 - 2015-03-07 13:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-19 22:11 - 2015-03-07 13:07 - 00000000 ____D C:\Users\Brunoxp\AppData\Local\Packages
2016-03-18 20:01 - 2015-03-07 13:44 - 00000000 ____D C:\Users\Brunoxp\AppData\Local\Greenshot
2016-03-13 22:17 - 2015-08-07 19:41 - 00000000 ____D C:\Users\Brunoxp
2016-03-11 21:22 - 2015-08-07 19:50 - 00002413 _____ C:\Users\Brunoxp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-03-11 21:22 - 2015-08-07 19:50 - 00000000 ___RD C:\Users\Brunoxp\OneDrive
2016-03-08 09:10 - 2015-07-10 13:03 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-03-08 09:10 - 2015-07-10 13:03 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2016-03-28 21:18 - 2016-03-28 21:18 - 0000000 ____H () C:\ProgramData\cm-lock

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-03-28 10:41

==================== End of FRST.txt ============================