problem se svchost

[Ketkerosaurus]

zdravim, v prilohach su oba dva poznamkove bloky podla navodu.
Mozete mi pomoct prosim?
Dakujem.

[Ketkerosaurus]

tady je druhy poznamkovy blok

[vyosek]

Zdravim

Kdyz PC krmite crackama a podobnyma nesmyslama, tak neni divu, ze tak nachytate kdejaky bordel

Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/

• Ulozte nejlepe na Plochu a rozbalte
• Spustte kliknutim na mbar
• Nyni postupne kliknete na Next a Update
• Po dokonceni update (aktualizace) databaze kliknete opet na Next
• Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC
• Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko
• Tez zkontrolujte, jetsli je zatrzitko u Create Restore point
• Nyni kliknete na CleanUp cimz nalezenou infekci odstranime
• PC bude restartovan
• Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Po spusteni probehne stazeni databaze
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
• Do okna vlozte skript nize

• Kód: Vybrat vše

  autoclean;
  resethosts;
  emptyclsid;
  IEdefaults;
  FFdefaults;
  CHRdefaults;
  emptyIEcache;
  emptyFFcache;
  emptyCHRcache;
  emptyalltemp;
  emptyflash;
  emptyjava;
  emptyrecycle.bin;
  

• Nasledne kliknete na Run Script
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Ketkerosaurus]

Zdravim,
no jo, vim ze to neni uplne bezpecne ale nikdy jsem tento problem prozatim nemel.
Kazdopadne dekuji za brzkou odpoved a tady je prvni log.

[vyosek]

Logy davejte prosim jako text prispevku, ne jako prilohu...

Nejen, ze to neni bezpecne, ale predevsim je to pachani trestneho cinu....

[Ketkerosaurus]

v poradku, v tehle trestnich cinech nejsem uplne zbehly

ADWclener log



# AdwCleaner v4.105 - Report created 19/12/2014 at 00:02:18
# Updated 08/12/2014 by Xplode
# Database : 2014-12-16.1 [Live]
# Operating System : Windows 8.1 Pro (64 bits)
# Username : Ketkerosaurus - GBOOK-PC
# Running from : C:\Users\Ketkerosaurus\Desktop\adwcleaner_4.105.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : WindowsMangerProtect
Service Deleted : IHProtect Service
[#] Service Deleted : {d8d147c6-9a7e-4967-99b1-99bc4358c405}Gw64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\Users\Ketkerosaurus\AppData\Roaming\Mozilla\Firefox\Profiles\1hgkqqqd.default\Extensions\faststartff@gmail.com
File Deleted : C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk
File Deleted : C:\Users\Ketkerosaurus\AppData\Roaming\Mozilla\Firefox\Profiles\1hgkqqqd.default\user.js

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKCU\Software\Mozilla\Extends
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{2318C2B1-4965-11D4-9B18-009027A5CD4F}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKLM\SOFTWARE\omiga-plusSoftware
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : [x64] HKLM\SOFTWARE\TornTv Downloader
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\omiga-plus.com

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v

[1hgkqqqd.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "omiga-plus");

*************************

AdwCleaner[R0].txt - [4855 octets] - [19/12/2014 00:01:00]
AdwCleaner[S0].txt - [4011 octets] - [19/12/2014 00:02:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4071 octets] ##########

[Ketkerosaurus]

ZOEK

Zoek.exe v5.0.0.0 Updated 17-December-2014
Tool run by Ketkerosaurus on p  19. 12. 2014 at 0:08:24,21.
Microsoft Windows 8.1 Pro 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Ketkerosaurus\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

19. 12. 2014 0:09:17 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AppName deleted successfully
C:\Program Files\ATI Technologies deleted successfully
C:\Program Files\Google deleted successfully
C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\Users\Ketkerosaurus\AppData\Local\Adobe deleted successfully
C:\Users\Ketkerosaurus\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\KETKER~1\AppData\Roaming\Mozilla\Firefox\Profiles\1hgkqqqd.default\prefs.js:

Added to C:\Users\KETKER~1\AppData\Roaming\Mozilla\Firefox\Profiles\1hgkqqqd.default\prefs.js:
user_pref("browser.startup.homepage", "http://www.google.com");
user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "http://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\KETKER~1\AppData\Roaming\Mozilla\Firefox\Profiles\1hgkqqqd.default

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 1);
---- FireFox user.js and prefs.js backups ----

prefs_201419.12._0019_.backup

==== Deleting Files \ Folders ======================

C:\PROGRA~3\Malwarebytes' Anti-Malware (portable) not found
C:\PROGRA~2\BitLord deleted
C:\PROGRA~2\STab deleted
C:\install.exe deleted
C:\Users\Ketkerosaurus\AppData\Roaming\BitLord deleted
C:\PROGRA~3\IHProtectUpDate deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Ketkerosaurus\AppData\Local\BitLord deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\machine deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted
C:\Users\Ketkerosaurus\Documents\BitLord deleted

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com/"
"Default_Page_URL"="http://www.google.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com/"
"Start Page"="http://www.google.com/"
"Search Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://www.google.com"
"Default_Page_URL"="http://www.google.com/"
"Start Page"="http://www.google.com/"
"Search Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://www.google.com/"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchT ... EA_csCZ617"

==== Reset Google Chrome ======================

Nothing found to reset

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Ketkerosaurus\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Ketkerosaurus\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Ketkerosaurus\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Ketkerosaurus\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=215 folders=65 148029980 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Ketkerosaurus\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\KETKER~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on p  19. 12. 2014 at 0:21:57,86 ======================

[vyosek]

Tak asi nebude normalni, ze se hra v obchode kupuje a vy ji "kradete" na iternetu, to asi beztretsne nebude. Jinak je to uvedeno v licencnich\smluvnich podminkach kazde hry, se kterymi mimochodem souhlasite pri instalaci

Dejte novy log z FRST

[Ketkerosaurus]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-12-2014
Ran by Ketkerosaurus (administrator) on GBOOK-PC on 20-12-2014 16:34:16
Running from C:\Users\Ketkerosaurus\Desktop
Loaded Profile: Ketkerosaurus (Available profiles: Ketkerosaurus)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Windows\Temp\lsass.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [BrowserChoice] => C:\Windows\BrowserChoice\browserchoice.exe [86816 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\MountPoints2: {0d7d700a-8181-11e4-be6e-685d43b9d9c5} - "E:\setup.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4274451961-3935020190-366168367-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37

FireFox:
========
FF ProfilePath: C:\Users\Ketkerosaurus\AppData\Roaming\Mozilla\Firefox\Profiles\1hgkqqqd.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: hxxp://www.google.com/search?btnG=Google+Search&q=
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-12-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-12-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-12-14] (Disc Soft Ltd)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-08-31] (Intel Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-12-04] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-20 16:36 - 2014-12-20 16:36 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Local\VirtualStore
2014-12-20 16:34 - 2014-12-20 16:34 - 00006057 _____ () C:\Users\Ketkerosaurus\Desktop\FRST.txt
2014-12-20 16:34 - 2014-12-20 16:34 - 00000000 ____D () C:\Users\Ketkerosaurus\Desktop\FRST-OlderVersion
2014-12-19 00:22 - 2014-12-19 00:22 - 00008406 _____ () C:\Users\Ketkerosaurus\Desktop\zoek-results.txt
2014-12-19 00:20 - 2014-12-19 00:08 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-12-19 00:09 - 2014-12-19 00:21 - 00008406 _____ () C:\zoek-results.log
2014-12-19 00:08 - 2014-12-19 00:19 - 00000000 ____D () C:\zoek_backup
2014-12-19 00:08 - 2014-12-19 00:08 - 01295360 _____ () C:\Users\Ketkerosaurus\Desktop\zoek.exe
2014-12-19 00:04 - 2014-12-19 00:04 - 00004191 _____ () C:\Users\Ketkerosaurus\Desktop\AdwCleaner[S0].txt
2014-12-19 00:00 - 2014-12-19 00:02 - 00000000 ____D () C:\AdwCleaner
2014-12-19 00:00 - 2014-12-19 00:00 - 02166272 _____ () C:\Users\Ketkerosaurus\Desktop\adwcleaner_4.105.exe
2014-12-18 23:55 - 2014-12-19 00:21 - 00001392 _____ () C:\WINDOWS\PFRO.log
2014-12-18 23:41 - 2014-12-18 23:41 - 00135384 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-12-18 23:41 - 2014-12-18 23:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-18 23:39 - 2014-12-18 23:54 - 00000000 ____D () C:\Users\Ketkerosaurus\Desktop\mbar
2014-12-18 23:39 - 2014-12-18 23:39 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Ketkerosaurus\Desktop\mbar-1.08.2.1001.exe
2014-12-18 23:39 - 2014-12-18 23:39 - 00096472 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-12-18 19:14 - 2014-12-20 16:34 - 02122240 _____ (Farbar) C:\Users\Ketkerosaurus\Desktop\FRST64.exe
2014-12-18 19:14 - 2014-12-20 16:34 - 00000000 ____D () C:\FRST
2014-12-17 15:54 - 2014-12-17 15:54 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-12-17 15:54 - 2014-12-17 15:54 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-12-16 17:11 - 2014-12-16 17:11 - 00000000 ____D () C:\Program Files (x86)\Lunascape
2014-12-16 17:10 - 2014-12-16 17:11 - 19117832 _____ () C:\Users\Ketkerosaurus\Downloads\LunaSetup693_ml17_eu.exe
2014-12-14 22:45 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-12-14 22:45 - 2014-06-09 23:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-12-14 22:01 - 2014-12-14 22:01 - 00000436 _____ () C:\Users\Ketkerosaurus\Desktop\Tento počítač.lnk
2014-12-14 21:56 - 2014-12-15 00:29 - 00000000 ____D () C:\Users\Ketkerosaurus\Documents\Lords Of The Fallen-UNLOCKED
2014-12-14 21:51 - 2014-12-14 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppName
2014-12-14 21:50 - 2014-12-14 21:50 - 00758424 _____ (Perion, Inc. ) C:\Users\Ketkerosaurus\Downloads\BitLordSetup.exe
2014-12-14 21:31 - 2014-12-14 21:31 - 00002788 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-12-14 21:31 - 2014-12-14 21:31 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-12-14 21:31 - 2014-12-14 21:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-12-14 21:31 - 2014-12-14 21:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-14 21:30 - 2014-12-14 21:30 - 11580500 _____ () C:\Users\Ketkerosaurus\Downloads\cc-setup.exe
2014-12-14 21:04 - 2014-12-19 00:21 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-12-14 18:06 - 2014-12-14 18:06 - 00001250 _____ () C:\Users\Ketkerosaurus\Desktop\Settings.lnk
2014-12-14 18:06 - 2014-12-14 18:06 - 00000000 ____D () C:\ProgramData\Steam
2014-12-14 18:06 - 2014-12-14 18:06 - 00000000 ____D () C:\ProgramData\KONAMI
2014-12-14 18:05 - 2014-12-14 18:05 - 00001239 _____ () C:\Users\Ketkerosaurus\Desktop\PES2015.lnk
2014-12-14 18:03 - 2014-12-15 17:07 - 00033280 ___SH () C:\Users\Ketkerosaurus\Downloads\Thumbs.db
2014-12-14 18:00 - 2014-12-14 18:00 - 00000000 ____D () C:\Users\Ketkerosaurus\Documents\KONAMI
2014-12-14 17:46 - 2014-12-14 17:46 - 00000675 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2015.lnk
2014-12-14 17:37 - 2014-11-13 00:54 - 00000000 ____D () C:\Users\Ketkerosaurus\Downloads\Pro.Evolution.Soccer.2015-RELOADED
2014-12-14 17:00 - 2014-12-14 17:10 - 2146435072 _____ () C:\Users\Ketkerosaurus\Downloads\Pro.Evolution.Soccer.2015-RELOADED.part2.rar
2014-12-14 16:46 - 2014-12-14 16:59 - 2115736386 _____ () C:\Users\Ketkerosaurus\Downloads\Pro.Evolution.Soccer.2015-RELOADED.part3.rar
2014-12-14 15:46 - 2014-12-14 16:21 - 2146435072 _____ () C:\Users\Ketkerosaurus\Downloads\Pro.Evolution.Soccer.2015-RELOADED.part1.rar
2014-12-14 13:42 - 2014-12-14 13:42 - 00000000 ____D () C:\ProgramData\Electronic Arts
2014-12-14 13:35 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2014-12-14 13:35 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2014-12-14 13:35 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2014-12-14 13:35 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2014-12-14 13:35 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2014-12-14 13:35 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2014-12-14 13:14 - 2014-12-14 13:14 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer
2014-12-14 13:14 - 2014-12-14 13:14 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-12-14 13:14 - 2014-12-14 13:14 - 00000000 ____D () C:\Program Files\MSBuild
2014-12-14 13:14 - 2014-12-14 13:14 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-12-14 13:14 - 2014-12-14 13:14 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-12-14 13:12 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-12-14 13:12 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-14 13:12 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-12-14 13:12 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-14 11:04 - 2014-12-14 11:04 - 00075301 _____ () C:\Users\Ketkerosaurus\Downloads\Crysis 3 INTERNAL-RELOADED.torrent
2014-12-14 09:08 - 2014-12-14 13:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2014-12-14 09:00 - 2014-12-14 14:26 - 00000000 ____D () C:\ProgramData\Origin
2014-12-14 02:12 - 2014-12-14 09:14 - 00000000 ___HD () C:\Users\Ketkerosaurus\AppData\Roaming\Origin
2014-12-14 02:12 - 2014-12-14 02:12 - 00003152 _____ () C:\WINDOWS\System32\Tasks\Origin
2014-12-14 00:13 - 2014-12-14 00:13 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\WinRAR
2014-12-14 00:13 - 2014-12-14 00:13 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-12-14 00:13 - 2014-12-14 00:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-12-14 00:12 - 2014-12-14 00:13 - 00000000 ____D () C:\Program Files\WinRAR
2014-12-14 00:11 - 2014-12-14 00:11 - 08271600 _____ () C:\Users\Ketkerosaurus\Downloads\wrarcz64-setup.exe
2014-12-14 00:01 - 2014-12-14 21:46 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\DAEMON Tools Lite
2014-12-14 00:01 - 2014-12-14 00:01 - 00283064 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtsoftbus01.sys
2014-12-14 00:01 - 2014-12-14 00:01 - 00001962 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-12-14 00:01 - 2014-12-14 00:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-12-14 00:01 - 2014-12-14 00:01 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-12-13 23:59 - 2014-12-14 00:59 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-12-13 23:59 - 2014-12-13 23:59 - 13429504 _____ (Disc Soft Ltd) C:\Users\Ketkerosaurus\Downloads\DTLite4491-0356.exe
2014-12-13 16:01 - 2014-12-14 21:17 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\uTorrent
2014-12-11 18:40 - 2014-12-11 18:40 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2014-12-11 16:04 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2014-12-11 16:04 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-11 16:04 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-12-11 16:04 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-12-11 15:56 - 2014-12-04 00:37 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-12-11 15:56 - 2014-12-04 00:09 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2014-12-11 15:56 - 2014-12-03 00:09 - 01083392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-12-11 15:56 - 2014-12-03 00:09 - 00740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2014-12-11 15:56 - 2014-12-03 00:09 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2014-12-11 15:56 - 2014-12-03 00:09 - 00396288 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-12-11 15:56 - 2014-12-03 00:09 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-12-11 15:56 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-12-11 15:56 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-12-11 15:56 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-12-11 15:56 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-12-11 15:56 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-12-11 15:56 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-12-11 15:56 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-12-11 15:56 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-12-11 15:56 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-12-11 15:56 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-12-11 15:56 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-12-11 15:56 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-12-11 15:56 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-12-11 15:56 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-12-11 15:56 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-12-11 15:56 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-12-11 15:56 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-12-11 15:56 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-12-11 15:56 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-12-11 15:56 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-12-11 15:56 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-12-11 15:56 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-12-11 15:56 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-12-11 15:56 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-12-11 15:56 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-12-11 15:56 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-12-11 15:56 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-12-11 15:56 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-12-11 15:56 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-12-11 15:56 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-12-11 15:56 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-12-11 15:56 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-12-11 15:56 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-12-11 15:56 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-12-11 15:56 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-12-11 15:56 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-12-11 15:56 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-12-11 15:56 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-12-11 15:56 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-12-11 15:56 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-12-11 15:56 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-12-11 15:55 - 2014-11-01 00:57 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-12-11 15:55 - 2014-11-01 00:47 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-12-09 16:14 - 2014-12-09 16:14 - 00053392 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201412091614573742.log
2014-12-09 16:14 - 2014-12-09 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-12-09 16:14 - 2014-12-09 16:14 - 00000000 ____D () C:\ProgramData\ATI
2014-12-09 16:14 - 2014-12-09 16:14 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-09 16:14 - 2014-12-09 16:14 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-09 16:01 - 2014-12-09 16:02 - 302277752 _____ (AMD Inc.) C:\Users\Ketkerosaurus\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit.exe
2014-12-08 22:52 - 2014-12-08 22:59 - 00000000 ____D () C:\Users\Ketkerosaurus\.smplayer
2014-12-08 22:51 - 2014-12-08 22:51 - 23063890 _____ () C:\Users\Ketkerosaurus\Downloads\smplayer-14.9.0.6558-x64.exe
2014-12-08 22:51 - 2014-12-08 22:51 - 00000824 _____ () C:\Users\Public\Desktop\SMPlayer.lnk
2014-12-08 22:51 - 2014-12-08 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMPlayer
2014-12-08 22:51 - 2014-12-08 22:51 - 00000000 ____D () C:\Program Files\SMPlayer
2014-12-06 11:59 - 2014-12-06 11:59 - 33276823 _____ (Aslain ) C:\Users\Ketkerosaurus\Downloads\Aslains_XVM_Mod_Installer_v.4.0.29_94.exe
2014-12-06 11:44 - 2014-12-06 11:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxthon Cloud Browser
2014-12-06 11:43 - 2014-12-06 11:44 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Maxthon3
2014-12-06 11:43 - 2014-12-06 11:43 - 00003616 _____ () C:\WINDOWS\System32\Tasks\Maxthon Update
2014-12-06 11:43 - 2014-12-06 11:43 - 00000000 ____D () C:\Program Files (x86)\Maxthon
2014-12-05 16:39 - 2013-08-22 07:57 - 00002143 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk
2014-12-05 16:35 - 2014-12-05 16:38 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-12-05 16:24 - 2014-12-05 16:24 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\library_dir
2014-12-05 16:23 - 2014-12-05 16:23 - 00056376 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201412051623041100.log
2014-12-05 16:01 - 2014-12-09 16:15 - 00000000 ____D () C:\ProgramData\AMD
2014-12-05 16:01 - 2014-12-05 16:01 - 00056376 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201412051601219225.log
2014-12-05 15:58 - 2014-12-05 15:58 - 00059540 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201412051558443617.log
2014-12-05 15:57 - 2014-12-05 15:57 - 00000000 ____D () C:\Program Files\ATI
2014-12-05 14:43 - 2014-12-05 14:43 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-12-05 12:52 - 2014-12-05 12:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-12-05 12:51 - 2014-12-17 15:53 - 00000000 ____D () C:\Program Files (x86)\Microsoft Works
2014-12-05 12:51 - 2014-12-05 12:51 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-12-05 12:48 - 2014-12-05 12:48 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-12-05 12:47 - 2014-12-18 19:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-05 12:47 - 2014-12-05 12:51 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-12-05 12:47 - 2014-12-05 12:47 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Local\Microsoft Help
2014-12-05 12:46 - 2014-12-05 12:46 - 00000000 __RHD () C:\MSOCache
2014-12-05 12:37 - 2014-12-05 12:37 - 00029696 _____ () C:\Users\Ketkerosaurus\Downloads\nabídka zeleniny Freshbedýnky3.12.2014(1).xls
2014-12-05 12:33 - 2014-12-05 12:33 - 00029696 _____ () C:\Users\Ketkerosaurus\Downloads\nabídka zeleniny Freshbedýnky3.12.2014.xls
2014-12-05 06:53 - 2014-12-05 06:54 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Mozilla
2014-12-05 06:53 - 2014-12-05 06:54 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Local\Mozilla
2014-12-05 06:53 - 2014-12-05 06:53 - 00000000 ____D () C:\ProgramData\Mozilla
2014-12-05 04:51 - 2014-08-23 08:48 - 02374784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-12-05 04:51 - 2014-08-23 08:13 - 02084520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-12-05 04:51 - 2014-08-23 07:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-12-05 04:51 - 2014-08-23 06:32 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-12-05 04:51 - 2014-08-23 05:33 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-12-05 04:51 - 2014-08-16 01:18 - 04758528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-12-05 04:51 - 2014-08-16 01:17 - 08757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-12-05 04:51 - 2014-08-16 01:13 - 06649344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-12-05 04:51 - 2014-08-16 01:13 - 05902848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-12-05 04:51 - 2014-08-16 01:08 - 05777408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-12-05 04:51 - 2014-08-15 01:36 - 00146752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-12-05 04:50 - 2014-08-16 05:08 - 01507648 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-12-05 04:50 - 2014-08-16 05:01 - 01710184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-12-05 04:50 - 2014-08-16 04:58 - 01112512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-12-05 04:50 - 2014-08-16 04:16 - 01205976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-12-05 04:50 - 2014-08-16 04:03 - 01467384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-12-05 04:50 - 2014-08-16 02:31 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-12-05 04:50 - 2014-08-16 02:04 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2014-12-05 04:50 - 2014-08-16 01:58 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-12-05 04:50 - 2014-08-16 01:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2014-12-05 04:50 - 2014-08-16 01:46 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2014-12-05 04:50 - 2014-08-16 01:45 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-12-05 04:50 - 2014-08-16 01:43 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2014-12-05 04:50 - 2014-08-16 01:43 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2014-12-05 04:50 - 2014-08-16 01:31 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-12-05 04:50 - 2014-08-16 01:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2014-12-05 04:50 - 2014-08-16 01:29 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-05 04:50 - 2014-08-16 01:23 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-12-05 04:50 - 2014-08-16 01:22 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-12-05 04:50 - 2014-08-16 01:22 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-12-05 04:50 - 2014-08-16 01:19 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-05 04:50 - 2014-08-16 01:14 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-12-05 04:50 - 2014-08-16 01:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-12-05 04:50 - 2014-08-16 01:11 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-12-05 04:50 - 2014-08-16 01:10 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-12-05 04:50 - 2014-08-16 01:07 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-12-05 04:49 - 2014-08-02 01:18 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-12-05 04:49 - 2014-07-15 19:16 - 03048880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-12-05 04:49 - 2014-07-15 09:29 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-12-05 04:49 - 2014-07-15 09:22 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-12-05 04:49 - 2014-07-15 09:03 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-12-05 04:49 - 2014-05-03 06:36 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-12-05 04:49 - 2014-05-03 06:19 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-12-05 04:49 - 2014-05-03 06:08 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-12-05 04:49 - 2014-05-03 06:07 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-12-05 04:49 - 2014-05-03 05:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2014-12-05 04:49 - 2014-05-03 05:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2014-12-05 04:49 - 2014-05-03 05:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedyn.dll
2014-12-05 04:49 - 2014-05-03 00:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-12-05 04:49 - 2014-04-30 07:43 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-12-05 04:49 - 2014-04-30 07:41 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-12-05 04:49 - 2014-04-30 07:41 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2014-12-05 04:49 - 2014-04-30 07:41 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-12-05 04:49 - 2014-04-30 06:45 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-12-05 04:49 - 2014-04-30 05:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Robocopy.exe
2014-12-05 04:49 - 2014-04-30 05:24 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-12-05 04:49 - 2014-04-30 05:23 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-12-05 04:49 - 2014-04-30 05:23 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-12-05 04:49 - 2014-04-30 05:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-12-05 04:49 - 2014-04-30 05:14 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-12-05 04:49 - 2014-04-30 04:59 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-12-05 04:49 - 2014-04-30 04:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2014-12-05 04:49 - 2014-04-30 04:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2014-12-05 04:49 - 2014-04-30 04:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2014-12-05 04:49 - 2014-04-30 04:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2014-12-05 04:49 - 2014-04-30 04:42 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-12-05 04:49 - 2014-04-28 23:40 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-12-05 04:49 - 2014-04-26 19:41 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2014-12-05 04:49 - 2014-04-26 19:22 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-12-05 04:49 - 2014-04-26 19:04 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2014-12-05 04:49 - 2014-04-26 18:36 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-12-05 04:49 - 2014-04-26 17:39 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-12-05 04:49 - 2014-04-14 10:37 - 02125344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-12-05 04:49 - 2014-04-14 09:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-12-05 04:49 - 2014-04-14 06:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2014-12-05 04:48 - 2014-07-24 04:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-12-05 04:48 - 2014-07-24 04:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-12-05 04:48 - 2014-07-12 05:17 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-12-05 04:48 - 2014-07-10 05:08 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lockscreencn.dll
2014-12-05 04:48 - 2014-06-02 03:10 - 00423768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-12-05 04:48 - 2014-05-31 07:27 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys
2014-12-05 04:48 - 2014-05-31 07:26 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys
2014-12-05 04:48 - 2014-05-31 05:01 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFHost.exe
2014-12-05 04:48 - 2014-05-31 05:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2014-12-05 04:48 - 2014-05-31 05:01 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFSvc.dll
2014-12-05 04:48 - 2014-05-29 07:21 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2014-12-05 04:48 - 2014-05-27 10:56 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-12-05 04:48 - 2014-05-27 10:53 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DaOtpCredentialProvider.dll
2014-12-05 04:48 - 2014-04-30 05:30 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2014-12-05 04:48 - 2014-04-30 04:52 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2014-12-05 00:17 - 2014-12-05 00:17 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Google
2014-12-05 00:15 - 2014-12-18 22:14 - 00004002 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A1C0EFDF-9213-4677-8802-D4C0FD3237D8}
2014-12-05 00:15 - 2014-12-05 00:15 - 00000000 __SHD () C:\Users\Ketkerosaurus\AppData\Local\EmieUserList
2014-12-05 00:15 - 2014-12-05 00:15 - 00000000 __SHD () C:\Users\Ketkerosaurus\AppData\Local\EmieSiteList
2014-12-05 00:15 - 2014-12-05 00:15 - 00000000 __SHD () C:\Users\Ketkerosaurus\AppData\Local\EmieBrowserModeList
2014-12-04 06:50 - 2014-12-05 16:07 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\wargaming.net
2014-12-04 06:50 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2014-12-04 06:50 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-12-04 06:50 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2014-12-04 06:50 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2014-12-04 06:50 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-12-04 06:50 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2014-12-04 06:50 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-12-04 06:50 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2014-12-04 06:50 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2014-12-04 06:50 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2014-12-04 06:50 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-12-04 06:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-12-04 06:49 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-12-04 06:49 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-12-04 06:49 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-12-04 06:49 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2014-12-04 06:49 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2014-12-04 06:49 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2014-12-04 06:49 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2014-12-04 06:49 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2014-12-04 06:49 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2014-12-04 06:49 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2014-12-04 06:49 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2014-12-04 06:49 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2014-12-04 06:49 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2014-12-04 06:49 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2014-12-04 06:49 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2014-12-04 06:49 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2014-12-04 06:49 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2014-12-04 06:49 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2014-12-04 06:49 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2014-12-04 06:49 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2014-12-04 06:49 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2014-12-04 06:49 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2014-12-04 06:49 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2014-12-04 06:49 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2014-12-04 06:49 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2014-12-04 06:49 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2014-12-04 06:49 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2014-12-04 06:49 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2014-12-04 06:49 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2014-12-04 06:49 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2014-12-04 06:49 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2014-12-04 06:49 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2014-12-04 06:49 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2014-12-04 06:49 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2014-12-04 06:49 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2014-12-04 06:49 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2014-12-04 06:49 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2014-12-04 06:49 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2014-12-04 06:49 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2014-12-04 06:49 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2014-12-04 06:49 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2014-12-04 06:49 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2014-12-04 06:49 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2014-12-04 06:49 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2014-12-04 06:49 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2014-12-04 06:49 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2014-12-04 06:49 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2014-12-04 06:49 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2014-12-04 06:49 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2014-12-04 06:49 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2014-12-04 06:49 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2014-12-04 06:49 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2014-12-04 06:49 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2014-12-04 06:49 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2014-12-04 06:49 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2014-12-04 06:49 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2014-12-04 06:49 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2014-12-04 06:49 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2014-12-04 06:49 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2014-12-04 06:49 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2014-12-04 06:49 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2014-12-04 06:49 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2014-12-04 06:49 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2014-12-04 06:49 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2014-12-04 06:49 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2014-12-04 06:49 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2014-12-04 06:49 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2014-12-04 06:49 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2014-12-04 06:49 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2014-12-04 06:49 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2014-12-04 06:49 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2014-12-04 06:49 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2014-12-04 06:49 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2014-12-04 06:49 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2014-12-04 06:49 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2014-12-04 06:49 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2014-12-04 06:49 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2014-12-04 06:49 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2014-12-04 06:49 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2014-12-04 06:49 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2014-12-04 06:49 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2014-12-04 06:49 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2014-12-04 06:49 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2014-12-04 06:49 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2014-12-04 06:49 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2014-12-04 06:49 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2014-12-04 06:49 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2014-12-04 06:49 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2014-12-04 06:49 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2014-12-04 06:49 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2014-12-04 06:49 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2014-12-04 06:49 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2014-12-04 06:49 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2014-12-04 06:49 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2014-12-04 06:49 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2014-12-04 06:49 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2014-12-04 06:49 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2014-12-04 06:49 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2014-12-04 06:49 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2014-12-04 06:49 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2014-12-04 06:49 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2014-12-04 06:49 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2014-12-04 06:49 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2014-12-04 06:49 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2014-12-04 06:49 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2014-12-04 06:49 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2014-12-04 06:49 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2014-12-04 06:49 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2014-12-04 06:49 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2014-12-04 06:49 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2014-12-04 06:49 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2014-12-04 06:49 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2014-12-04 06:49 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2014-12-04 06:49 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2014-12-04 06:49 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2014-12-04 06:49 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2014-12-04 06:49 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2014-12-04 06:49 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2014-12-04 06:49 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2014-12-04 06:49 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2014-12-04 06:49 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2014-12-04 06:49 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2014-12-04 06:49 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2014-12-04 06:49 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2014-12-04 06:49 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2014-12-04 06:49 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2014-12-04 06:49 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2014-12-04 06:49 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2014-12-04 06:49 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2014-12-04 06:49 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2014-12-04 06:49 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2014-12-04 06:49 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2014-12-04 06:49 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2014-12-04 06:49 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2014-12-04 06:49 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2014-12-04 06:49 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2014-12-04 06:49 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2014-12-04 06:49 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2014-12-04 06:49 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2014-12-04 06:49 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2014-12-04 06:49 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2014-12-04 06:47 - 2014-12-14 21:20 - 00000000 ____D () C:\Games
2014-12-04 06:47 - 2014-12-04 06:50 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-12-04 06:47 - 2014-12-04 06:48 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-12-04 06:47 - 2014-12-04 06:47 - 00000781 _____ () C:\Users\Public\Desktop\World of Tanks.lnk
2014-12-04 06:47 - 2014-12-04 06:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2014-12-04 06:46 - 2014-12-04 06:46 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-12-04 06:44 - 2014-12-04 06:44 - 00000144 _____ () C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-12-04 06:44 - 2014-12-04 06:44 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\ATI
2014-12-04 06:44 - 2014-12-04 06:44 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Local\ATI
2014-12-04 06:40 - 2014-12-04 06:40 - 00060385 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201412040640482371.log
2014-12-04 06:37 - 2014-12-05 15:59 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-12-04 06:32 - 2014-12-04 06:32 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD
2014-12-04 06:31 - 2014-12-19 00:02 - 00000997 _____ () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-04 06:31 - 2014-12-04 06:31 - 00000451 _____ () C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-12-04 06:31 - 2014-12-04 06:31 - 00000020 ___SH () C:\Users\Ketkerosaurus\ntuser.ini
2014-12-04 06:31 - 2014-12-04 06:31 - 00000000 _____ () C:\WINDOWS\ativpsrm.bin
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Šablony
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Soubory cookie
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Poslední
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Okolní tiskárny
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Okolní síť
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Nabídka Start
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Dokumenty
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Documents\Obrázky
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Documents\Hudba
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Documents\Filmy
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\Data aplikací
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Data aplikací
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default User\Documents\Obrázky
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default User\Documents\Hudba
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default User\Documents\Filmy
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 02:28 - 2014-12-04 02:28 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Data aplikací
2014-12-04 02:27 - 2014-12-20 16:33 - 02034659 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-04 02:26 - 2014-12-04 02:26 - 00022924 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-12-04 02:19 - 2014-12-04 02:19 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-12-04 02:17 - 2014-12-04 02:17 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate
2014-12-04 02:16 - 2014-12-16 22:03 - 00000000 ____D () C:\Users\Ketkerosaurus
2014-12-04 02:16 - 2014-12-04 02:26 - 00020958 _____ () C:\WINDOWS\diagwrn.xml
2014-12-04 02:16 - 2014-12-04 02:26 - 00020958 _____ () C:\WINDOWS\diagerr.xml
2014-12-04 02:16 - 2014-12-04 02:17 - 00000000 ___RD () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 02:16 - 2014-12-04 02:17 - 00000000 ___RD () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Šablony
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Soubory cookie
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Poslední
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Okolní tiskárny
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Okolní síť
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Nabídka Start
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Dokumenty
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Documents\Obrázky
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Documents\Hudba
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Documents\Filmy
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\Data aplikací
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-04 02:16 - 2014-12-04 02:16 - 00000000 _SHDL () C:\Users\Ketkerosaurus\AppData\Local\Data aplikací
2014-12-04 02:16 - 2014-09-24 17:32 - 00000369 _____ () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-12-04 02:16 - 2014-09-24 17:32 - 00000369 _____ () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-12-04 02:16 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-04 02:16 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-04 02:08 - 2014-12-09 16:05 - 00000000 ____D () C:\AMD
2014-12-04 02:08 - 2014-12-04 02:08 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-04 02:07 - 2014-12-09 16:11 - 00000000 ____D () C:\Program Files\AMD
2014-12-04 02:06 - 2014-12-04 02:06 - 00000000 ____D () C:\Program Files\Intel
2014-12-04 02:02 - 2014-12-14 21:46 - 00000000 ___DC () C:\WINDOWS\Panther
2014-12-04 01:54 - 2014-12-04 01:54 - 02149376 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00500016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00482872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00424544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00394120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00370424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00344536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00272248 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-12-04 01:54 - 2014-12-04 01:54 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00108432 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-12-04 01:54 - 2014-12-04 01:54 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00238912 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-12-04 01:53 - 2014-12-04 01:53 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00153920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-12-04 01:53 - 2014-12-04 01:53 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-12-04 01:53 - 2014-12-04 01:53 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00104336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00088800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-12-04 01:53 - 2014-12-04 01:53 - 00054592 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdusb.dll
2014-12-04 01:53 - 2014-12-04 01:53 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 01519488 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 01346048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00563976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00258368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00035320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 00027456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-12-04 01:52 - 2014-12-04 01:52 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2014-12-04 01:52 - 2014-12-04 01:52 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00478208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\url.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iexpress.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iexpress.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wextract.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wextract.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\IEAdvpack.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IEAdvpack.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inseng.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2014-12-04 01:51 - 2014-12-04 01:51 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2014-12-04 01:51 - 2014-12-04 01:51 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pngfilt.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pngfilt.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\imgutil.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imgutil.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licmgr10.dll
2014-12-04 01:51 - 2014-12-04 01:51 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshta.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshta.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe
2014-12-04 01:51 - 2014-12-04 01:51 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe
2014-12-04 01:48 - 2014-12-04 01:48 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-12-04 01:48 - 2014-12-04 01:48 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-12-04 01:48 - 2014-12-04 01:48 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-12-04 01:48 - 2014-12-04 01:48 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-12-04 01:48 - 2014-12-04 01:48 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-12-04 01:48 - 2014-12-04 01:48 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00148800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-12-04 01:48 - 2014-12-04 01:48 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-12-04 01:48 - 2014-12-04 01:48 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-12-04 01:47 - 2014-12-04 01:47 - 04182016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-12-04 01:47 - 2014-12-04 01:47 - 03557376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00055776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-12-04 01:47 - 2014-12-04 01:47 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-12-04 01:47 - 2014-12-04 01:47 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-12-04 01:47 - 2014-12-04 01:47 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-12-04 01:47 - 2014-12-04 01:47 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-12-04 01:46 - 2014-12-04 01:46 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-12-03 20:00 - 2014-12-05 16:39 - 00003566 _____ () C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2014-12-03 19:03 - 2014-10-30 12:25 - 00275080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-12-03 18:53 - 2014-12-03 18:53 - 00001139 _____ () C:\WINDOWS\system32\netcfg-8565187.txt
2014-12-03 18:53 - 2014-12-03 18:53 - 00000347 _____ () C:\WINDOWS\system32\netcfg-8564250.txt
2014-12-03 18:53 - 2014-12-03 18:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-8565156.txt
2014-12-03 18:53 - 2014-12-03 18:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-8563984.txt
2014-12-03 18:15 - 2014-12-11 16:05 - 112710672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-03 18:15 - 2014-12-11 16:05 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-12-03 17:57 - 2013-05-04 05:51 - 00014848 ____N (Microsoft) C:\WINDOWS\system32\rars.rs
2014-12-03 17:57 - 2013-05-04 05:10 - 00014848 ____N (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2014-12-03 17:56 - 2014-12-14 21:22 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-03 17:56 - 2014-12-14 21:16 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Local\Google
2014-12-03 17:56 - 2014-12-03 18:02 - 00003950 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-03 17:55 - 2014-12-03 20:02 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-03 17:55 - 2014-12-03 20:01 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-03 17:55 - 2014-12-03 17:55 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-12-03 17:47 - 2014-12-03 17:47 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Macromedia
2014-12-03 17:45 - 2014-12-03 17:45 - 00061646 _____ () C:\Users\Ketkerosaurus\Downloads\Document L075
2014-12-03 17:38 - 2014-12-03 17:38 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-12-03 17:38 - 2014-12-03 17:38 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-03 17:29 - 2014-12-19 00:08 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4274451961-3935020190-366168367-1000
2014-12-03 17:23 - 2014-12-03 17:23 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Roaming\Adobe
2014-12-03 17:22 - 2014-12-05 16:38 - 00000000 ____D () C:\Users\Ketkerosaurus\AppData\Local\Packages
2014-12-03 17:22 - 2014-12-04 02:18 - 00000000 ____D () C:\ProgramData\PRICache
2014-12-03 17:21 - 2014-12-03 17:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-3008812.txt
2014-12-03 17:20 - 2014-12-03 17:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-3005343.txt
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Šablony
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Soubory cookie
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Poslední
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Okolní tiskárny
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Okolní síť
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Nabídka Start
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Dokumenty
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Documents\Obrázky
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Documents\Hudba
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Documents\Filmy
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\Data aplikací
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\Users\Default.migrated\AppData\Local\Data aplikací
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Šablony
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Plocha
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Oblíbené položky
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Nabídka Start
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Dokumenty
2014-12-03 16:38 - 2014-12-03 16:38 - 00000000 _SHDL () C:\ProgramData\Data aplikací
2014-12-03 16:34 - 2014-12-03 16:34 - 00000000 ____D () C:\WINDOWS\CSC
2014-12-03 16:28 - 2014-12-03 16:28 - 00001136 _____ () C:\WINDOWS\system32\netcfg-127765.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00001136 _____ () C:\WINDOWS\system32\netcfg-122234.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00001102 _____ () C:\WINDOWS\system32\netcfg-134812.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000197 _____ () C:\WINDOWS\system32\netcfg-122921.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000185 _____ () C:\WINDOWS\system32\netcfg-118937.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000164 _____ () C:\WINDOWS\system32\netcfg-104625.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000163 _____ () C:\WINDOWS\system32\netcfg-135859.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000161 _____ () C:\WINDOWS\system32\netcfg-118640.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-118203.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-117562.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-105203.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000159 _____ () C:\WINDOWS\system32\netcfg-117046.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000157 _____ () C:\WINDOWS\system32\netcfg-117890.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000157 _____ () C:\WINDOWS\system32\netcfg-106750.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000150 _____ () C:\WINDOWS\system32\netcfg-103890.txt
2014-12-03 15:36 - 2014-12-03 15:36 - 00000000 __RHD () C:\ESD
2014-12-02 17:35 - 2014-12-02 17:42 - 00000000 ____D () C:\Intel
2014-12-02 16:16 - 2014-12-02 16:16 - 00302011 _____ () C:\Users\Ketkerosaurus\Documents\WindowsUpdateDiagnostic.diagcab
2014-12-02 15:56 - 2014-12-02 15:56 - 00000000 ____D () C:\Hotfix
2014-12-02 15:40 - 2014-12-02 15:40 - 00000000 ____D () C:\Dell
2014-12-02 15:32 - 2014-12-02 15:32 - 00000000 _SHDL () C:\Users\Public\Documents\Obrázky
2014-12-02 15:32 - 2014-12-02 15:32 - 00000000 _SHDL () C:\Users\Public\Documents\Hudba
2014-12-02 15:32 - 2014-12-02 15:32 - 00000000 _SHDL () C:\Users\Public\Documents\Filmy
2014-11-21 03:44 - 2014-11-21 03:44 - 09401480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00118096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2014-11-21 03:43 - 2014-11-21 03:43 - 08379720 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2014-11-21 03:43 - 2014-11-21 03:43 - 07558816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2014-11-21 03:41 - 2014-11-21 03:41 - 00294600 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2014-11-21 03:40 - 2014-11-21 03:40 - 18959360 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2014-11-21 03:33 - 2014-11-21 03:33 - 47899136 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00235008 _____ () C:\WINDOWS\system32\clinfo.exe
2014-11-21 03:33 - 2014-11-21 03:33 - 00098816 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OpenVideo64.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00086528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OVDecode64.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00083456 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OpenVideo.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00073216 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OVDecode.dll
2014-11-21 03:32 - 2014-11-21 03:32 - 40987136 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2014-11-21 03:31 - 2014-11-21 03:31 - 00442368 _____ () C:\WINDOWS\system32\amdmiracast.dll
2014-11-21 03:31 - 2014-11-21 03:31 - 00065024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2014-11-21 03:31 - 2014-11-21 03:31 - 00058880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2014-11-21 03:25 - 2014-11-21 03:25 - 00134656 _____ () C:\WINDOWS\system32\amdhdl64.dll
2014-11-21 03:25 - 2014-11-21 03:25 - 00123392 _____ () C:\WINDOWS\SysWOW64\amdhdl32.dll
2014-11-21 03:24 - 2014-11-21 03:24 - 28354560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2014-11-21 03:19 - 2014-11-21 03:19 - 23621632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2014-11-21 03:19 - 2014-11-21 03:19 - 00049664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2014-11-21 03:19 - 2014-11-21 03:19 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2014-11-21 03:18 - 2014-11-21 03:18 - 05837312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2014-11-21 03:18 - 2014-11-21 03:18 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2014-11-21 03:18 - 2014-11-21 03:18 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2014-11-21 03:17 - 2014-11-21 03:17 - 03437632 _____ () C:\WINDOWS\system32\atiumd6a.cap
2014-11-21 03:17 - 2014-11-21 03:17 - 00631912 _____ () C:\WINDOWS\SysWOW64\atiapfxx.blb
2014-11-21 03:17 - 2014-11-21 03:17 - 00631912 _____ () C:\WINDOWS\system32\atiapfxx.blb
2014-11-21 03:17 - 2014-11-21 03:17 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2014-11-21 03:17 - 2014-11-21 03:17 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2014-11-21 03:17 - 2014-11-21 03:17 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 15716352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 14302208 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2014-11-21 03:15 - 2014-11-21 03:15 - 04590592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2014-11-21 03:13 - 2014-11-21 03:13 - 03471376 _____ () C:\WINDOWS\SysWOW64\atiumdva.cap
2014-11-21 03:13 - 2014-11-21 03:13 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2014-11-21 03:13 - 2014-11-21 03:13 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2014-11-21 03:12 - 2014-11-21 03:12 - 00774656 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2014-11-21 03:12 - 2014-11-21 03:12 - 00244736 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2014-11-21 03:12 - 2014-11-21 03:12 - 00190976 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2014-11-21 03:12 - 2014-11-21 03:12 - 00031232 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2014-11-21 03:10 - 2014-11-21 03:10 - 00843776 _____ (AMD) C:\WINDOWS\system32\coinst_14.50.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00903168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2014-11-21 03:08 - 2014-11-21 03:08 - 00589312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2014-11-21 03:08 - 2014-11-21 03:08 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2014-11-21 03:08 - 2014-11-21 03:08 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2014-11-21 03:08 - 2014-11-21 03:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2014-11-20 21:36 - 2014-11-20 21:36 - 00051200 _____ () C:\WINDOWS\system32\kdbsdk64.dll
2014-11-20 21:35 - 2014-11-20 21:35 - 00038912 _____ () C:\WINDOWS\SysWOW64\kdbsdk32.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-20 16:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-12-19 00:21 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-19 00:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\GroupPolicy
2014-12-19 00:03 - 2013-08-22 15:44 - 00379792 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-12-19 00:02 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-12-18 19:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-12-18 19:09 - 2014-09-24 17:23 - 01745984 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-18 19:09 - 2014-09-24 16:39 - 00739924 _____ () C:\WINDOWS\system32\perfh005.dat
2014-12-18 19:09 - 2014-09-24 16:39 - 00151610 _____ () C:\WINDOWS\system32\perfc005.dat
2014-12-18 19:01 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-12-16 17:41 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-12-14 21:04 - 2013-08-22 14:25 - 00000194 _____ () C:\WINDOWS\win.ini
2014-12-14 18:04 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-14 13:14 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2014-12-14 13:14 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\MUI
2014-12-11 18:40 - 2014-09-24 20:06 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2014-12-11 18:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-12-11 18:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-12-11 16:05 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-12-07 21:26 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-12-05 16:35 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-12-05 16:35 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-12-05 12:47 - 2014-09-24 17:00 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-12-05 04:48 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-12-04 06:33 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-04 06:33 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-12-04 02:28 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-12-04 02:28 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default
2014-12-04 02:27 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-12-04 02:25 - 2013-08-22 16:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-12-04 02:19 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2014-12-04 02:19 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2014-12-04 02:19 - 2014-09-24 16:39 - 00000000 ____D () C:\WINDOWS\system32\WCN
2014-12-04 02:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2014-12-04 02:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2014-12-04 02:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-12-04 02:19 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-12-04 02:19 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI
2014-12-04 02:19 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated
2014-12-04 02:18 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker
2014-12-04 02:18 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar
2014-12-04 02:18 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar
2014-12-04 02:18 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\IME
2014-12-04 02:18 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help
2014-12-04 02:18 - 2010-11-21 08:16 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-12-04 02:17 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-12-04 02:13 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-12-04 02:01 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-12-04 01:52 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 01:52 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-04 01:52 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-12-04 01:52 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-12-04 01:49 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-12-04 01:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-12-04 01:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-12-04 01:49 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-11-26 22:10 - 2014-09-24 20:12 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-11-26 22:10 - 2014-09-24 20:12 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-21 03:44 - 2014-11-17 21:15 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 01127496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2014-11-21 03:44 - 2014-07-21 22:04 - 11076784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2014-11-21 03:44 - 2014-07-21 22:04 - 01348928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2014-11-21 03:44 - 2014-07-21 22:04 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2014-11-21 03:43 - 2014-11-17 21:15 - 07077776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2014-11-21 03:43 - 2014-09-15 23:31 - 08369408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2014-11-21 03:12 - 2014-09-15 23:03 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2014-11-21 03:09 - 2014-09-15 22:59 - 01214976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll

Files to move or delete:
====================
C:\Users\Ketkerosaurus\AppData\Roaming\Origin\update.vbe


==================== Bamital & volsnap Check =================

[Ketkerosaurus]

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-14 04:44

==================== End Of Log ============================

[Ketkerosaurus]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-12-2014
Ran by Ketkerosaurus at 2014-12-20 16:36:24
Running from C:\Users\Ketkerosaurus\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.09) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Aktualizácia Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}_HOMESTUDENTR_{9A8C39B0-D27F-4F81-BE74-2FECF164707E}) (Version: - Microsoft)
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}_HOMESTUDENTR_{CE23B3DC-18CC-46FC-A309-81D6670F8D3D}) (Version: - Microsoft)
Aktualizácia Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}_HOMESTUDENTR_{D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}) (Version: - Microsoft)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Aslain's XVM Mod version 4.0.29 (HKLM-x32\...\ZRwTINhSZfduKONYrSCTiCiGPggQZdcLRvoAVxyCOXXpkHeC~1DC3968F_is1) (Version: 4.0.29 - Aslain)
BitLord 2.4 (HKLM-x32\...\BitLord) (Version: 2.4.0-272 - House of Life)
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2849 - Intel Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.3.1000 - Maxthon International Limited)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Pro Evolution Soccer 2015 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1) (Version: 1 - )
SMPlayer 14.9.0.6558 (x64) (HKLM\...\SMPlayer) (Version: 14.9.0.6558 - Ricardo Villalba)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-4274451961-3935020190-366168367-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

10-12-2014 17:01:23 Windows Update
14-12-2014 13:10:25 Instalační služba modulů systému Windows
17-12-2014 15:47:57 Windows Update
18-12-2014 23:54:15 Malwarebytes Anti-Rootkit Restore Point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-12-19 00:09 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {3EF127BE-A082-4888-8288-D487368A8388} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-11] (Microsoft Corporation)
Task: {4B9B4FB0-4A73-41E4-9A45-6A0890803D7F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {59880523-2629-48E3-A6FB-92CE00FCB3AB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {B95F920C-CC62-434C-9632-ABB74880DA87} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2014-12-11] (Maxthon International ltd.)
Task: {F407C2E5-D97E-47B6-B1A9-7EA8130DFA31} - System32\Tasks\Origin => C:\Users\Ketkerosaurus\AppData\Roaming\Origin\update.vbe [2014-12-14] () <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2014-12-19 00:24 - 2014-12-19 00:24 - 01659904 _____ () C:\Windows\Temp\lsass.exe
2014-12-06 11:43 - 2014-11-06 09:55 - 00258944 _____ () C:\Program Files (x86)\Maxthon\bin\Maxzlib.dll
2014-12-06 11:43 - 2014-11-06 09:55 - 00247096 _____ () C:\Program Files (x86)\Maxthon\Addons\Mobile\MxMobile.dll
2014-12-06 11:43 - 2014-11-06 09:55 - 00258944 _____ () C:\Program Files (x86)\Maxthon\Bin\maxzlib.dll
2014-12-06 11:43 - 2014-11-06 09:55 - 00887064 _____ () C:\Program Files (x86)\Maxthon\Core\Webkit\libglesv2.dll
2014-12-06 11:43 - 2014-11-06 09:55 - 00109336 _____ () C:\Program Files (x86)\Maxthon\Core\Webkit\libegl.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\StartupApproved\StartupFolder: => "TornTvDownloader.lnk"
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\StartupApproved\Run: => "swg"
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\StartupApproved\Run: => "BrowserChoice"
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\StartupApproved\Run: => "TornTv Downloader"

========================= Accounts: ==========================

Administrator (S-1-5-21-4274451961-3935020190-366168367-500 - Administrator - Disabled)
Guest (S-1-5-21-4274451961-3935020190-366168367-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4274451961-3935020190-366168367-1006 - Limited - Enabled)
Ketkerosaurus (S-1-5-21-4274451961-3935020190-366168367-1000 - Administrator - Enabled) => C:\Users\Ketkerosaurus

==================== Faulty Device Manager Devices =============

Name: USB2.0-CRW
Description: USB2.0-CRW
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/20/2014 04:33:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lsass.exe, verze: 0.0.0.0, časové razítko: 0x5437da30
Název chybujícího modulu: lsass.exe, verze: 0.0.0.0, časové razítko: 0x5437da30
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000011179
ID chybujícího procesu: 0x10bc
Čas spuštění chybující aplikace: 0xlsass.exe0
Cesta k chybující aplikaci: lsass.exe1
Cesta k chybujícímu modulu: lsass.exe2
ID zprávy: lsass.exe3
Úplný název chybujícího balíčku: lsass.exe4
ID aplikace související s chybujícím balíčkem: lsass.exe5

Error: (12/19/2014 00:14:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lsass.exe, verze: 0.0.0.0, časové razítko: 0x5437da30
Název chybujícího modulu: lsass.exe, verze: 0.0.0.0, časové razítko: 0x5437da30
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000011179
ID chybujícího procesu: 0x10e8
Čas spuštění chybující aplikace: 0xlsass.exe0
Cesta k chybující aplikaci: lsass.exe1
Cesta k chybujícímu modulu: lsass.exe2
ID zprávy: lsass.exe3
Úplný název chybujícího balíčku: lsass.exe4
ID aplikace související s chybujícím balíčkem: lsass.exe5

Error: (12/18/2014 11:53:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0x9c8
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 11:49:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0xbb4
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 11:46:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0x6ac
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 10:10:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0xb60
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 10:07:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0xc84
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 10:01:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0x100c
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 09:58:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0x10ac
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5

Error: (12/18/2014 09:52:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Název chybujícího modulu: svchost.exe, verze: 0.0.0.0, časové razítko: 0x543cdb10
Kód výjimky: 0xc0000094
Posun chyby: 0x000000000002814d
ID chybujícího procesu: 0xfe4
Čas spuštění chybující aplikace: 0xsvchost.exe0
Cesta k chybující aplikaci: svchost.exe1
Cesta k chybujícímu modulu: svchost.exe2
ID zprávy: svchost.exe3
Úplný název chybujícího balíčku: svchost.exe4
ID aplikace související s chybujícím balíčkem: svchost.exe5


System errors:
=============
Error: (12/19/2014 00:21:23 AM) (Source: BTHUSB) (EventID: 30) (User: )
Description: Místní adaptér nepodporuje důležitý stav řadiče úspory energie. Minimální požadovaná podporovaná maska stavu je 0x1f7fffff, aktuální hodnota je 0x1f3fffff. Funkce úspory energie bude vypnuta.

Error: (12/19/2014 00:19:01 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/19/2014 00:19:00 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/19/2014 00:19:00 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/19/2014 00:19:00 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/19/2014 00:19:00 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (12/19/2014 00:03:16 AM) (Source: BTHUSB) (EventID: 30) (User: )
Description: Místní adaptér nepodporuje důležitý stav řadiče úspory energie. Minimální požadovaná podporovaná maska stavu je 0x1f7fffff, aktuální hodnota je 0x1f3fffff. Funkce úspory energie bude vypnuta.

Error: (12/19/2014 00:02:50 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba Windows Media Player Network Sharing závisí na službě Windows Search, která neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (12/19/2014 00:02:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (12/19/2014 00:02:50 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WSearch se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2014-12-17 15:50:26.308
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-12-15 17:15:17.506
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-12-14 04:49:06.246
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-12-13 08:20:36.463
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3612QM CPU @ 2.10GHz
Percentage of memory in use: 25%
Total physical RAM: 8067.35 MB
Available physical RAM: 6037.98 MB
Total Pagefile: 9347.35 MB
Available Pagefile: 6607.68 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:919.22 GB) (Free:805.85 GB) NTFS
Drive e: (Pro Evolution Soccer 2015) (CDROM) (Total:5.97 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: BF702C14)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=12.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=919.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================

[vyosek]

Tvorba fixlistu pro FRST

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [BrowserChoice] => C:\Windows\BrowserChoice\browserchoice.exe [86816 2013-08-22] (Microsoft Corporation)
  HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
  HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
  HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\MountPoints2: {0d7d700a-8181-11e4-be6e-685d43b9d9c5} - "E:\setup.exe"
  
  SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
  SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
  
  C:\Users\Ketkerosaurus\AppData\Roaming\Origin
  C:\Windows\Temp\lsass.exe
  2014-12-20 16:34 - 2014-12-20 16:34 - 00006057 _____ () C:\Users\Ketkerosaurus\Desktop\FRST.txt
  2014-12-20 16:34 - 2014-12-20 16:34 - 00000000 ____D () C:\Users\Ketkerosaurus\Desktop\FRST-OlderVersion
  2014-12-19 00:22 - 2014-12-19 00:22 - 00008406 _____ () C:\Users\Ketkerosaurus\Desktop\zoek-results.txt
  2014-12-19 00:20 - 2014-12-19 00:08 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
  2014-12-19 00:09 - 2014-12-19 00:21 - 00008406 _____ () C:\zoek-results.log
  2014-12-19 00:08 - 2014-12-19 00:19 - 00000000 ____D () C:\zoek_backup
  2014-12-19 00:08 - 2014-12-19 00:08 - 01295360 _____ () C:\Users\Ketkerosaurus\Desktop\zoek.exe
  2014-12-19 00:04 - 2014-12-19 00:04 - 00004191 _____ () C:\Users\Ketkerosaurus\Desktop\AdwCleaner[S0].txt
  2014-12-19 00:00 - 2014-12-19 00:02 - 00000000 ____D () C:\AdwCleaner
  2014-12-19 00:00 - 2014-12-19 00:00 - 02166272 _____ () C:\Users\Ketkerosaurus\Desktop\adwcleaner_4.105.exe
  2014-12-18 23:55 - 2014-12-19 00:21 - 00001392 _____ () C:\WINDOWS\PFRO.log
  2014-12-18 23:41 - 2014-12-18 23:41 - 00135384 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
  2014-12-18 23:41 - 2014-12-18 23:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
  2014-12-18 23:39 - 2014-12-18 23:54 - 00000000 ____D () C:\Users\Ketkerosaurus\Desktop\mbar
  2014-12-18 23:39 - 2014-12-18 23:39 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Ketkerosaurus\Desktop\mbar-1.08.2.1001.exe
  2014-12-18 23:39 - 2014-12-18 23:39 - 00096472 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
  2014-12-14 02:12 - 2014-12-14 02:12 - 00003152 _____ () C:\WINDOWS\System32\Tasks\Origin
  2014-12-03 16:28 - 2014-12-03 16:28 - 00001136 _____ () C:\WINDOWS\system32\netcfg-127765.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00001136 _____ () C:\WINDOWS\system32\netcfg-122234.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00001102 _____ () C:\WINDOWS\system32\netcfg-134812.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000197 _____ () C:\WINDOWS\system32\netcfg-122921.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000185 _____ () C:\WINDOWS\system32\netcfg-118937.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000164 _____ () C:\WINDOWS\system32\netcfg-104625.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000163 _____ () C:\WINDOWS\system32\netcfg-135859.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000161 _____ () C:\WINDOWS\system32\netcfg-118640.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-118203.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-117562.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-105203.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000159 _____ () C:\WINDOWS\system32\netcfg-117046.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000157 _____ () C:\WINDOWS\system32\netcfg-117890.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000157 _____ () C:\WINDOWS\system32\netcfg-106750.txt
  2014-12-03 16:28 - 2014-12-03 16:28 - 00000150 _____ () C:\WINDOWS\system32\netcfg-103890.txt
  
  Task: {3EF127BE-A082-4888-8288-D487368A8388} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-11] (Microsoft Corporation)
  Task: {4B9B4FB0-4A73-41E4-9A45-6A0890803D7F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  Task: {59880523-2629-48E3-A6FB-92CE00FCB3AB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
  Task: {B95F920C-CC62-434C-9632-ABB74880DA87} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2014-12-11] (Maxthon International ltd.)
  Task: {F407C2E5-D97E-47B6-B1A9-7EA8130DFA31} - System32\Tasks\Origin => C:\Users\Ketkerosaurus\AppData\Roaming\Origin\update.vbe [2014-12-14] () <==== ATTENTION
  
  Hosts:
  EmptyTemp:
  Reboot:
  End
  

• Ulozte vytvoreny TXT jako fixlist.txt
• Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

• Kliknete na Fix
• Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

[Ketkerosaurus]

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 20-12-2014
Ran by Ketkerosaurus at 2014-12-20 20:09:20 Run:1
Running from C:\Users\Ketkerosaurus\Desktop
Loaded Profile: Ketkerosaurus (Available profiles: Ketkerosaurus)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [BrowserChoice] => C:\Windows\BrowserChoice\browserchoice.exe [86816 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\...\MountPoints2: {0d7d700a-8181-11e4-be6e-685d43b9d9c5} - "E:\setup.exe"

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

C:\Users\Ketkerosaurus\AppData\Roaming\Origin
C:\Windows\Temp\lsass.exe
2014-12-20 16:34 - 2014-12-20 16:34 - 00006057 _____ () C:\Users\Ketkerosaurus\Desktop\FRST.txt
2014-12-20 16:34 - 2014-12-20 16:34 - 00000000 ____D () C:\Users\Ketkerosaurus\Desktop\FRST-OlderVersion
2014-12-19 00:22 - 2014-12-19 00:22 - 00008406 _____ () C:\Users\Ketkerosaurus\Desktop\zoek-results.txt
2014-12-19 00:20 - 2014-12-19 00:08 - 00024064 _____ () C:\WINDOWS\zoek-delete.exe
2014-12-19 00:09 - 2014-12-19 00:21 - 00008406 _____ () C:\zoek-results.log
2014-12-19 00:08 - 2014-12-19 00:19 - 00000000 ____D () C:\zoek_backup
2014-12-19 00:08 - 2014-12-19 00:08 - 01295360 _____ () C:\Users\Ketkerosaurus\Desktop\zoek.exe
2014-12-19 00:04 - 2014-12-19 00:04 - 00004191 _____ () C:\Users\Ketkerosaurus\Desktop\AdwCleaner[S0].txt
2014-12-19 00:00 - 2014-12-19 00:02 - 00000000 ____D () C:\AdwCleaner
2014-12-19 00:00 - 2014-12-19 00:00 - 02166272 _____ () C:\Users\Ketkerosaurus\Desktop\adwcleaner_4.105.exe
2014-12-18 23:55 - 2014-12-19 00:21 - 00001392 _____ () C:\WINDOWS\PFRO.log
2014-12-18 23:41 - 2014-12-18 23:41 - 00135384 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-12-18 23:41 - 2014-12-18 23:41 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-18 23:39 - 2014-12-18 23:54 - 00000000 ____D () C:\Users\Ketkerosaurus\Desktop\mbar
2014-12-18 23:39 - 2014-12-18 23:39 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Ketkerosaurus\Desktop\mbar-1.08.2.1001.exe
2014-12-18 23:39 - 2014-12-18 23:39 - 00096472 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-12-14 02:12 - 2014-12-14 02:12 - 00003152 _____ () C:\WINDOWS\System32\Tasks\Origin
2014-12-03 16:28 - 2014-12-03 16:28 - 00001136 _____ () C:\WINDOWS\system32\netcfg-127765.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00001136 _____ () C:\WINDOWS\system32\netcfg-122234.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00001102 _____ () C:\WINDOWS\system32\netcfg-134812.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000197 _____ () C:\WINDOWS\system32\netcfg-122921.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000185 _____ () C:\WINDOWS\system32\netcfg-118937.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000164 _____ () C:\WINDOWS\system32\netcfg-104625.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000163 _____ () C:\WINDOWS\system32\netcfg-135859.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000161 _____ () C:\WINDOWS\system32\netcfg-118640.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-118203.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-117562.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000160 _____ () C:\WINDOWS\system32\netcfg-105203.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000159 _____ () C:\WINDOWS\system32\netcfg-117046.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000157 _____ () C:\WINDOWS\system32\netcfg-117890.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000157 _____ () C:\WINDOWS\system32\netcfg-106750.txt
2014-12-03 16:28 - 2014-12-03 16:28 - 00000150 _____ () C:\WINDOWS\system32\netcfg-103890.txt

Task: {3EF127BE-A082-4888-8288-D487368A8388} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-11] (Microsoft Corporation)
Task: {4B9B4FB0-4A73-41E4-9A45-6A0890803D7F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {59880523-2629-48E3-A6FB-92CE00FCB3AB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {B95F920C-CC62-434C-9632-ABB74880DA87} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2014-12-11] (Maxthon International ltd.)
Task: {F407C2E5-D97E-47B6-B1A9-7EA8130DFA31} - System32\Tasks\Origin => C:\Users\Ketkerosaurus\AppData\Roaming\Origin\update.vbe [2014-12-14] () <==== ATTENTION

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\Software\Microsoft\Windows\CurrentVersion\Run\\BrowserChoice => value deleted successfully.
HKU\S-1-5-21-4274451961-3935020190-366168367-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
"HKU\S-1-5-21-4274451961-3935020190-366168367-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0d7d700a-8181-11e4-be6e-685d43b9d9c5}" => Key deleted successfully.
HKCR\CLSID\{0d7d700a-8181-11e4-be6e-685d43b9d9c5} => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
C:\Users\Ketkerosaurus\AppData\Roaming\Origin => Moved successfully.
C:\Windows\Temp\lsass.exe => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\FRST.txt => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\FRST-OlderVersion => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\zoek-results.txt => Moved successfully.
C:\WINDOWS\zoek-delete.exe => Moved successfully.
C:\zoek-results.log => Moved successfully.
C:\zoek_backup => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\zoek.exe => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\AdwCleaner[S0].txt => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\adwcleaner_4.105.exe => Moved successfully.
C:\WINDOWS\PFRO.log => Moved successfully.
C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys => Moved successfully.
C:\ProgramData\Malwarebytes => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\mbar => Moved successfully.
C:\Users\Ketkerosaurus\Desktop\mbar-1.08.2.1001.exe => Moved successfully.
C:\WINDOWS\system32\Drivers\mbamchameleon.sys => Moved successfully.
C:\WINDOWS\System32\Tasks\Origin => Moved successfully.
C:\WINDOWS\system32\netcfg-127765.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-122234.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-134812.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-122921.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-118937.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-104625.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-135859.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-118640.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-118203.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-117562.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-105203.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-117046.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-117890.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-106750.txt => Moved successfully.
C:\WINDOWS\system32\netcfg-103890.txt => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3EF127BE-A082-4888-8288-D487368A8388} => Key not found.
C:\Windows\System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\RemovalTools\MRT_HB" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B9B4FB0-4A73-41E4-9A45-6A0890803D7F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B9B4FB0-4A73-41E4-9A45-6A0890803D7F}" => Key deleted successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{59880523-2629-48E3-A6FB-92CE00FCB3AB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59880523-2629-48E3-A6FB-92CE00FCB3AB}" => Key deleted successfully.
C:\Windows\System32\Tasks\CCleanerSkipUAC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B95F920C-CC62-434C-9632-ABB74880DA87}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B95F920C-CC62-434C-9632-ABB74880DA87}" => Key deleted successfully.
C:\Windows\System32\Tasks\Maxthon Update => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Maxthon Update" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F407C2E5-D97E-47B6-B1A9-7EA8130DFA31}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F407C2E5-D97E-47B6-B1A9-7EA8130DFA31}" => Key deleted successfully.
C:\Windows\System32\Tasks\Origin not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Origin" => Key deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 41.9 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====

[vyosek]

Jak se chova PC???

[Ketkerosaurus]

Je v poradku, moc Vam dekuji za pomoc. odporucite mi nejaky antiwir ktery ten bordel do pc nepusti?
samozrejme se budu snazit stahovat oficiani dema a pak si to kupovat ale urcite existuje i lepsi ochrana nez je ta co ma win 8.1 v sobe.
Jeste jednou diky moc.