Prosim o preventivku, dakujem.

[Rene182]

Zdravim poprosil by som o preventivku nakolko mi bol do PC instalnuta a stiahnuta neaka havet, skusil som nieco odstranit ja ale nieje to ono aspon mam taky pocit, dakujem

Log RSIT

Logfile of random's system information tool 1.10 (written by random/random)
Run by FesteR-PC at 2015-03-28 14:06:06
Microsoft Windows 8.1 Pro
System drive C: has 56 GB (56%) free of 100 GB
Total RAM: 16075 MB (86% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:06:10, on 28.3.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Users\FesteR-PC\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe
C:\Program Files (x86)\CesarFTP\CesarFTP.exe
C:\Program Files (x86)\CesarFTP\server.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\FesteR-PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hp&ts=14 ... 3895538955
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omniboxes.com/?type=hp&ts=14 ... 3895538955
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.omniboxes.com/?type=hp&ts=14 ... 3895538955
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.omniboxes.com/web/?type=ds&t ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omniboxes.com/?type=hp&ts=14 ... 3895538955
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.39.0.1640\jsdrv.exe
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [uTorrent] "C:\Users\FesteR-PC\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.39.0.1640\jsdrv.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{F461BC44-9C93-4BF7-90CD-ED48E3CAC043}: NameServer = 192.168.0.1
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater18.4.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

--
End of file - 9596 bytes

======Listing Processes======




c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-8d8f-1c39340a9e59 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"

wininit.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe"
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties"
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-78bea422-0710-4f3b-83f9-19f36aa6cc11 -SystemEventPortName:HostProcess-42ac2e61-2d51-443e-9267-b0c2d576d322 -IoCancelEventPortName:HostProcess-df5bd564-d0bf-4aaf-8e0b-408b8c54be10 -NonStateChangingEventPortName:HostProcess-5a44e675-28d3-4f82-a212-1ab66dddb4be -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:528897d8-527d-48d7-a480-f5b2175d604d -DeviceGroupId:WpdFsGroup
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"

winlogon.exe
"LogonUI.exe" /flags:0x0
"dwm.exe"

winlogon.exe
"dwm.exe"
taskhostex.exe
rdpclip
C:\Windows\Explorer.EXE
"C:\Users\FesteR-PC\AppData\Roaming\uTorrent\utorrent.exe"
"C:\Program Files (x86)\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\FesteR-PC\AppData\Local\Steam\htmlcache" -steampid 5356 -buildid 1424305157 -steamid "0" --blacklist-accelerated-compositing --process-per-tab --disable-accelerated-video-decode --enable-direct-write
"C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
ctfmon.exe
"C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe" --type=renderer --no-sandbox --user-agent="Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; rv:11.0) like Gecko" --lang=en-US --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --lang=en-US --uncaught-exception-stack-size=1024 --disable-pepper-3d --disable-accelerated-compositing --disable-accelerated-video-decode --disable-webrtc-hw-encoding --enable-software-compositing --disable-gpu-compositing --disable-pepper-3d --channel="876.1.1493328010\82470299" /prefetch:673131151
"C:\Program Files (x86)\CesarFTP\CesarFTP.exe"
C:\Program Files (x86)\CesarFTP\server.exe
"C:\Program Files (x86)\Steam\bin\steamwebhelper.exe" --type=renderer --disable-accelerated-video-decode --disable-delegated-renderer --disable-gpu-compositing --disable-threaded-compositing --enable-pinch --enable-software-compositing --no-sandbox --enable-direct-write --lang=en-US --lang=en-US --product-version="Valve Steam Client" --enable-pinch --disable-accelerated-compositing --disable-gpu-compositing --channel="1364.0.2046618134\1892984449" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" https://steamcommunity.com/linkfilter/? ... 242.45.75/
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1612.0.660625904\2083380376" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40 --gpu-vendor-id=0x0000 --gpu-device-id=0x0000 --gpu-driver-vendor --gpu-driver-version --ignored=" --type=renderer " /prefetch:822062411
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Windows\FileManager\PhotosApp.exe" -ServerName:Microsoft.Windows.PhotoManager
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/Preperiod_A2_StableBookmarksIndexURLs/PasswordGeneration/Disabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/QUIC/EnabledForLargePopulation/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=1612 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="1612.9.1938584384\661586084" /prefetch:673131151
taskeng.exe {A5FA5969-93E9-4853-99A8-F2C27CE780F8}
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe105_ Global\UsGthrCtrlFltPipeMssGthrPipe105 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 564 568 576 65536 572

"C:\Users\FesteR-PC\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\BYAIAMUF.job - C:\Users\FesteR-PC\AppData\Roaming\BYAIAMUF.exe /infocmdline=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
C:\Windows\tasks\CheckMeUp Update.job - C:\Program Files (x86)\ver0CheckMeUp\j4CheckMeUpK09.exe /update
C:\Windows\tasks\EYAME.job - C:\Users\FesteR-PC\AppData\Roaming\EYAME.exe /infocmdline=uyQwaw/bO3sA8csF674h74udZnwJdi0raU4ohlKw8ZBZTwIdySWUlZGcFFwwkjhZtYw5To060xGuZwf5KeEmNBNtgf1b3Mfw07XDP0vA7gF7NJOP+Ajl67qufibzZ7/EPL5WS7XM/z9P2yEGckMzYO6+Aps1wJNFlOsOcK+IruSla75LsNR99dQUod7yMpAQUZI183xJRGi2ftZHmaQb4BFtqmSImCUoJoRYCQYdC6eC8craQB3CfsT7ThyaJmJnPYtkwwbG7bQGoBeDjOSWrdmPwp/8/YoUjUbc3rjKsqm4aG2YcxJLITvbypOt/giVtFfaLv4BsePHOIqHchYuW7LGQqcUblJ1AHMBbiTBondC/jZzS8OMTy62sanMnMxy+8HWNgs2DlWlthR4lQYY1rN24hLfhXSv5ibkayrBHgmC2j6XuMgakJOXRgZEtlmWye0RSWlyUv/lEt2K2UoHeAHl50J45wiW0b+DX/PcwUzriIK1jWYa2mv49HMSy4LT
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll [2015-03-21 2467864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}]
CheckMeUp - C:\Program Files (x86)\ver0CheckMeUp\190_x64.dll [2015-03-23 237568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-20 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files (x86)\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll [2015-03-21 2424856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-20 172968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\FesteR-PC\AppData\Roaming\uTorrent\utorrent.exe [2014-04-14 398760]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-02-19 2874048]
"SPDriver"=C:\Program Files (x86)\ShopperPro\JSDriver\1.39.0.1640\jsdrv.exe [2015-03-23 3223040]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2014-12-19 458456]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"vProt"=C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2015-03-21 3033112]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07 335232]
"SPDriver"=C:\Program Files (x86)\ShopperPro\JSDriver\1.39.0.1640\jsdrv.exe [2015-03-23 3223040]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-03-06 3723728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SafeModeBlockNonAdmins"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-28 14:06:07 ----D---- C:\Program Files\trend micro
2015-03-28 14:06:06 ----D---- C:\rsit
2015-03-26 07:03:50 ----D---- C:\Users\FesteR-PC\AppData\Roaming\AVG2015
2015-03-26 07:02:49 ----HD---- C:\$AVG
2015-03-26 07:02:39 ----D---- C:\Program Files (x86)\AVG
2015-03-23 18:46:15 ----D---- C:\ProgramData\IHProtectUpDate
2015-03-23 18:46:14 ----D---- C:\Program Files (x86)\XTab
2015-03-23 18:45:42 ----D---- C:\ProgramData\WindowsMangerProtect
2015-03-23 18:45:30 ----D---- C:\Program Files (x86)\ver0CheckMeUp
2015-03-23 18:45:10 ----D---- C:\Program Files (x86)\YTDownloader
2015-03-23 18:45:02 ----D---- C:\ProgramData\ShopperPro
2015-03-23 18:45:01 ----D---- C:\Program Files (x86)\ShopperPro
2015-03-23 18:44:27 ----D---- C:\Program Files (x86)\globalUpdate
2015-03-23 18:44:15 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Opera Software
2015-03-23 18:43:50 ----D---- C:\Program Files (x86)\Opera
2015-03-23 18:19:23 ----D---- C:\ProgramData\TrackMania
2015-03-23 15:15:09 ----D---- C:\Users\FesteR-PC\AppData\Roaming\TeamViewer
2015-03-23 15:15:06 ----D---- C:\Program Files (x86)\TeamViewer
2015-03-21 21:26:39 ----D---- C:\Program Files\Common Files\Adobe
2015-03-21 21:25:52 ----D---- C:\ProgramData\Adobe
2015-03-21 21:25:52 ----D---- C:\Program Files\Adobe
2015-03-21 21:23:16 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Zoner
2015-03-21 21:22:54 ----D---- C:\ProgramData\Zoner
2015-03-21 21:22:41 ----D---- C:\Program Files\Zoner
2015-03-20 15:40:52 ----D---- C:\ProgramData\Sun
2015-03-20 15:40:51 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-20 15:40:38 ----D---- C:\ProgramData\Oracle
2015-03-20 15:40:36 ----D---- C:\Program Files (x86)\Java
2015-03-18 11:23:40 ----D---- C:\ProgramData\Avg_Update_0215tb
2015-03-14 20:38:36 ----D---- C:\Program Files (x86)\VideoLAN
2015-03-14 15:27:18 ----D---- C:\Users\FesteR-PC\AppData\Roaming\MediaInfo
2015-03-14 15:26:41 ----D---- C:\Program Files\MediaInfo
2015-03-14 15:22:48 ----D---- C:\Program Files (x86)\Maketorrent 2
2015-03-14 12:38:53 ----D---- C:\Users\FesteR-PC\AppData\Roaming\mkvtoolnix
2015-03-14 12:38:33 ----D---- C:\Program Files\MKVToolNix
2015-03-11 21:16:17 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Kodi
2015-03-11 21:13:48 ----D---- C:\Program Files (x86)\Kodi
2015-03-10 22:34:31 ----A---- C:\Windows\system32\mshtml.dll
2015-03-10 22:34:30 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-10 22:34:29 ----A---- C:\Windows\system32\jscript9.dll
2015-03-10 22:34:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-10 22:34:28 ----A---- C:\Windows\system32\ieframe.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-10 22:34:27 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\wininet.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\webcheck.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\vbscript.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\urlmon.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\inetcomm.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\iertutil.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\iepeers.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-10 22:34:27 ----A---- C:\Windows\system32\actxprxy.dll
2015-03-10 22:34:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-03-10 22:34:26 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-03-10 22:34:26 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-10 22:34:26 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-10 22:34:26 ----A---- C:\Windows\system32\jscript.dll
2015-03-10 22:34:26 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-10 22:34:26 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-10 22:34:06 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2015-03-10 22:34:06 ----A---- C:\Windows\system32\winshfhc.dll
2015-03-10 22:34:06 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2015-03-10 22:34:06 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2015-03-10 22:34:06 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2015-03-10 22:34:03 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2015-03-10 22:34:03 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2015-03-10 22:34:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2015-03-10 22:34:03 ----A---- C:\Windows\SYSWOW64\atlthunk.dll
2015-03-10 22:34:03 ----A---- C:\Windows\system32\mfc42u.dll
2015-03-10 22:34:03 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2015-03-10 22:34:03 ----A---- C:\Windows\system32\atlthunk.dll
2015-03-10 22:34:02 ----A---- C:\Windows\system32\mfc42.dll
2015-03-10 22:24:28 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-03-10 22:24:28 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-10 22:24:28 ----A---- C:\Windows\system32\ntdll.dll
2015-03-10 22:11:26 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-10 22:11:26 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-10 22:09:08 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-10 22:09:08 ----A---- C:\Windows\system32\shell32.dll
2015-03-10 22:06:40 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-10 22:06:40 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-03-10 22:06:40 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-10 22:06:40 ----A---- C:\Windows\explorer.exe
2015-03-10 22:06:05 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-10 22:06:05 ----A---- C:\Windows\system32\msctf.dll
2015-03-10 22:02:51 ----A---- C:\Windows\SYSWOW64\calc.exe
2015-03-10 22:02:51 ----A---- C:\Windows\system32\calc.exe
2015-03-10 22:02:35 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2015-03-10 22:02:35 ----A---- C:\Windows\system32\SHCore.dll
2015-03-10 21:57:37 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-10 21:57:37 ----A---- C:\Windows\system32\schannel.dll
2015-03-10 21:57:36 ----A---- C:\Windows\system32\win32k.sys
2015-03-10 21:57:35 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2015-03-10 21:57:35 ----A---- C:\Windows\system32\photowiz.dll
2015-03-10 21:57:10 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-03-10 21:57:10 ----A---- C:\Windows\system32\msftedit.dll
2015-03-10 21:54:49 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-10 21:54:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-10 21:54:49 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-10 21:54:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-10 21:54:49 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-10 21:54:49 ----A---- C:\Windows\system32\lpk.dll
2015-03-10 21:54:49 ----A---- C:\Windows\system32\fontsub.dll
2015-03-10 21:54:49 ----A---- C:\Windows\system32\dciman32.dll
2015-03-10 21:54:49 ----A---- C:\Windows\system32\atmlib.dll
2015-03-10 21:54:49 ----A---- C:\Windows\system32\atmfd.dll
2015-03-10 21:54:48 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\puiapi.dll
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\printui.exe
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\findnetprinters.dll
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll
2015-03-10 21:54:47 ----A---- C:\Windows\SYSWOW64\compstui.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\win32spl.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\puiobj.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\puiapi.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\prnntfy.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\printui.exe
2015-03-10 21:54:47 ----A---- C:\Windows\system32\ppcsnap.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\pmcsnap.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\localspl.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\findnetprinters.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\DafPrintProvider.dll
2015-03-10 21:54:47 ----A---- C:\Windows\system32\compstui.dll
2015-03-10 21:54:43 ----AC---- C:\Windows\system32\drivers\hidbth.sys
2015-03-10 21:52:40 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-03-10 21:52:40 ----A---- C:\Windows\system32\dwmcore.dll
2015-03-10 21:45:59 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-03-10 21:45:59 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-10 21:45:59 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-03-10 21:45:59 ----A---- C:\Windows\system32\WSShared.dll
2015-03-10 21:45:59 ----A---- C:\Windows\system32\WSReset.exe
2015-03-10 21:45:59 ----A---- C:\Windows\system32\WSCollect.exe
2015-03-10 21:45:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-10 21:45:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-03-10 21:44:20 ----A---- C:\Windows\SYSWOW64\StorageContextHandler.dll
2015-03-10 21:44:20 ----A---- C:\Windows\system32\StorageContextHandler.dll
2015-03-10 21:42:55 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-03-10 21:42:55 ----A---- C:\Windows\system32\authui.dll
2015-03-10 21:38:51 ----A---- C:\Windows\system32\ubpm.dll
2015-03-10 21:38:37 ----A---- C:\Windows\system32\rfxvmt.dll
2015-03-10 21:38:37 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-10 21:38:37 ----A---- C:\Windows\system32\rdpcorets.dll
2015-03-10 21:38:37 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-03-10 21:37:18 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2015-03-10 21:37:18 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2015-03-10 21:37:18 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2015-03-10 21:37:18 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2015-03-10 21:37:18 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2015-03-10 21:37:18 ----A---- C:\Windows\system32\eappprxy.dll
2015-03-10 21:37:18 ----A---- C:\Windows\system32\eapphost.dll
2015-03-10 21:37:18 ----A---- C:\Windows\system32\eappgnui.dll
2015-03-10 21:37:18 ----A---- C:\Windows\system32\eappcfg.dll
2015-03-10 21:37:18 ----A---- C:\Windows\system32\eapp3hst.dll
2015-03-10 21:34:37 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2015-03-10 21:33:03 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2015-03-10 21:33:03 ----A---- C:\Windows\system32\MrmCoreR.dll
2015-03-08 19:35:31 ----D---- C:\ProgramData\AVG Secure Search
2015-03-08 19:35:28 ----D---- C:\ProgramData\AVG Web TuneUp
2015-03-08 19:35:28 ----D---- C:\Program Files\AVG Web TuneUp
2015-03-08 19:28:25 ----D---- C:\ProgramData\Codemasters
2015-03-08 19:28:23 ----D---- C:\Program Files (x86)\OpenAL
2015-03-08 19:28:23 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2015-03-08 19:28:23 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2015-03-08 19:28:23 ----A---- C:\Windows\system32\wrap_oal.dll
2015-03-08 19:28:23 ----A---- C:\Windows\system32\OpenAL32.dll
2015-03-08 18:58:39 ----D---- C:\Windows\system32\appmgmt
2015-03-08 18:34:25 ----D---- C:\Users\FesteR-PC\AppData\Roaming\SpinTires
2015-03-03 17:31:24 ----D---- C:\ProgramData\EA Core
2015-03-03 17:31:23 ----D---- C:\ProgramData\EA Logs
2015-03-03 14:50:08 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2015-03-03 14:50:08 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2015-03-03 14:50:08 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiVAD64.exe
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiUtils64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiUMS64.exe
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiMux64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiMCUMD64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiLogServer64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiDDEAgent64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiAudioFilter64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelWiDiAAC64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxOSP.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxLHMLibv2_0.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxLHMLib.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxext.exe
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxexps.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxEMLibv2_0.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxEMLib.dll
2015-03-03 14:50:08 ----A---- C:\Windows\system32\igfxCoIn_v4061.dll
2015-03-03 14:50:07 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2015-03-03 14:50:07 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2015-03-03 14:50:07 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll
2015-03-03 14:50:07 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2015-03-03 14:50:07 ----A---- C:\Windows\SYSWOW64\igdmd32.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxDTCM.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxDILibv2_0.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxDILib.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxDHLibv2_0.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxDHLib.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxCUIServicePS.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxcmrt64.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfxcmjit64.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igfx11cmrt64.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igdumdim64.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igdrcl64.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\igdmd64.dll
2015-03-03 14:50:07 ----A---- C:\Windows\system32\drivers\igdkmd64.sys
2015-03-03 14:50:06 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2015-03-03 14:50:06 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2015-03-03 14:50:06 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2015-03-03 14:50:06 ----A---- C:\Windows\SYSWOW64\igdail32.dll
2015-03-03 14:50:06 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll
2015-03-03 14:50:06 ----A---- C:\Windows\SYSWOW64\ig7icd32.dll
2015-03-03 14:50:06 ----A---- C:\Windows\system32\igdfcl64.dll
2015-03-03 14:50:06 ----A---- C:\Windows\system32\igdde64.dll
2015-03-03 14:50:06 ----A---- C:\Windows\system32\igdbcl64.dll
2015-03-03 14:50:06 ----A---- C:\Windows\system32\igdail64.dll
2015-03-03 14:50:06 ----A---- C:\Windows\system32\ig7icd64.dll
2015-03-03 14:50:05 ----A---- C:\Windows\system32\Gfxv4_0.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\Gfxv2_0.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\GfxUIEx.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\drivers\IntcDAud.sys
2015-03-03 14:50:05 ----A---- C:\Windows\system32\DPTopologyAppv2_0.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\DPTopologyApp.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\difx64.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\CustomModeAppv2_0.exe
2015-03-03 14:50:05 ----A---- C:\Windows\system32\CustomModeApp.exe
2015-03-03 14:13:50 ----D---- C:\ProgramData\IntelDLM
2015-03-03 14:10:26 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-03-03 14:10:25 ----D---- C:\ProgramData\Package Cache
2015-03-03 14:09:12 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2015-03-03 14:09:11 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2015-03-03 14:08:50 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-03-03 14:08:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-03-03 14:08:50 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-03-03 14:08:50 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-03-03 14:08:49 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-03-03 14:08:49 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-03-02 20:54:59 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Origin
2015-03-02 20:54:02 ----D---- C:\ProgramData\Origin
2015-03-02 20:54:01 ----D---- C:\ProgramData\Electronic Arts
2015-03-02 20:47:24 ----D---- C:\Program Files (x86)\Steam
2015-03-02 20:08:11 ----D---- C:\ProgramData\KONAMI
2015-03-02 20:08:03 ----D---- C:\ProgramData\Steam
2015-03-02 20:05:57 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-03-02 20:05:57 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-03-02 20:05:57 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-03-02 20:05:57 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-03-02 20:05:56 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-03-02 20:05:56 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-03-02 20:05:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-03-02 20:05:56 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-03-02 20:05:56 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-03-02 20:05:56 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-03-02 20:05:55 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-03-02 20:05:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-03-02 20:05:55 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-03-02 20:05:55 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-03-02 20:05:55 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-03-02 20:05:55 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-03-02 20:05:55 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-03-02 20:05:55 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-03-02 20:05:55 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-03-02 20:05:55 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-03-02 20:05:54 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-03-02 20:05:54 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-03-02 20:05:54 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-03-02 20:05:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-03-02 20:05:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-03-02 20:05:54 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-03-02 20:05:54 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-03-02 20:05:54 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-03-02 20:05:54 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-03-02 20:05:54 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-03-02 20:05:53 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-03-02 20:05:53 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-03-02 20:05:53 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-03-02 20:05:53 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-03-02 20:05:52 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-03-02 20:05:52 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-03-02 20:05:51 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-03-02 20:05:51 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-03-02 20:05:51 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-03-02 20:05:51 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-03-02 20:05:51 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-03-02 20:05:51 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-03-02 20:05:51 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-03-02 20:05:51 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-03-02 20:05:50 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-03-02 20:05:50 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-03-02 20:05:50 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-03-02 20:05:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-03-02 20:05:50 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-03-02 20:05:50 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-03-02 20:05:50 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-03-02 20:05:50 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-03-02 20:05:49 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-03-02 20:05:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-03-02 20:05:49 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-03-02 20:05:49 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-03-02 20:05:49 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-03-02 20:05:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-03-02 20:05:49 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-03-02 20:05:49 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-03-02 20:05:49 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-03-02 20:05:49 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-03-02 20:05:49 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-03-02 20:05:49 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-03-02 20:05:48 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-03-02 20:05:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-03-02 20:05:48 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-03-02 20:05:48 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-03-02 20:05:48 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-03-02 20:05:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-03-02 20:05:48 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-03-02 20:05:48 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-03-02 20:05:48 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-03-02 20:05:48 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-03-02 20:05:48 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-03-02 20:05:48 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-03-02 20:05:47 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-03-02 20:05:47 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-03-02 20:05:47 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-03-02 20:05:47 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-03-02 20:05:46 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-03-02 20:05:46 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-03-02 20:05:46 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-03-02 20:05:46 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-03-02 20:05:45 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-03-02 20:05:45 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-03-02 20:05:45 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-03-02 20:05:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-03-02 20:05:45 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-03-02 20:05:45 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-03-02 20:05:45 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-03-02 20:05:45 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-03-02 20:05:43 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-03-02 20:05:43 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-03-02 20:05:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-03-02 20:05:43 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-03-02 20:05:43 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-03-02 20:05:43 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-03-02 20:05:42 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-03-02 20:05:42 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-03-02 20:05:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-03-02 20:05:41 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-03-02 20:05:40 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-03-02 20:05:40 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-03-02 20:05:40 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-03-02 20:05:40 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-03-02 20:05:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-03-02 20:05:40 ----A---- C:\Windows\system32\xinput1_3.dll
2015-03-02 20:05:40 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-03-02 20:05:40 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-03-02 20:05:40 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-03-02 20:05:40 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-03-02 20:05:39 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-03-02 20:05:39 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-03-02 20:05:39 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-03-02 20:05:39 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-03-02 20:05:39 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-03-02 20:05:39 ----A---- C:\Windows\system32\d3dx10.dll
2015-03-02 20:05:38 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-03-02 20:05:38 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-03-02 20:05:38 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-03-02 20:05:38 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-03-02 20:05:38 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-03-02 20:05:38 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-03-02 20:05:38 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-03-02 20:05:38 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-03-02 20:05:38 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-03-02 20:05:38 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-03-02 20:05:37 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-03-02 20:05:37 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-03-02 20:05:37 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-03-02 20:05:37 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-03-02 20:05:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-03-02 20:05:37 ----A---- C:\Windows\system32\xinput1_2.dll
2015-03-02 20:05:37 ----A---- C:\Windows\system32\xinput1_1.dll
2015-03-02 20:05:37 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-03-02 20:05:37 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-03-02 20:05:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-03-02 20:05:35 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-03-02 20:05:35 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-03-02 20:05:35 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-03-02 20:05:35 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-03-02 20:05:34 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-03-02 20:05:34 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-03-02 20:05:34 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-03-02 20:05:34 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-03-02 20:05:33 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-03-02 20:05:33 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-03-02 20:05:33 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-03-02 20:05:33 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-03-02 20:05:33 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-03-02 20:05:33 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-03-02 20:05:32 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-03-02 20:05:32 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-03-02 20:03:43 ----D---- C:\Windows\SYSWOW64\directx
2015-03-02 13:24:15 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 1 month======

2015-03-28 14:06:07 ----RD---- C:\Program Files
2015-03-28 14:05:56 ----D---- C:\Windows\Prefetch
2015-03-28 14:05:50 ----D---- C:\Users\FesteR-PC\AppData\Roaming\uTorrent
2015-03-28 14:04:05 ----D---- C:\Windows\Temp
2015-03-28 14:00:00 ----D---- C:\Windows\system32\sru
2015-03-28 09:36:57 ----D---- C:\ProgramData\MFAData
2015-03-26 19:55:26 ----D---- C:\Program Files\Common Files\System
2015-03-26 14:05:14 ----D---- C:\Windows\AppReadiness
2015-03-26 07:03:54 ----D---- C:\ProgramData\AVG2015
2015-03-26 07:03:19 ----SHD---- C:\Windows\Installer
2015-03-26 07:03:00 ----HD---- C:\Windows\ELAMBKUP
2015-03-26 07:03:00 ----D---- C:\Windows\system32\drivers
2015-03-26 07:02:39 ----RD---- C:\Program Files (x86)
2015-03-26 07:02:38 ----SHD---- C:\System Volume Information
2015-03-26 06:58:06 ----HD---- C:\ProgramData
2015-03-26 06:55:41 ----D---- C:\Windows\system32\wdi
2015-03-25 22:51:14 ----D---- C:\Windows\Inf
2015-03-25 22:50:00 ----D---- C:\Windows\system32\DriverStore
2015-03-25 15:27:42 ----D---- C:\Windows\system32\config
2015-03-24 20:19:38 ----RD---- C:\Windows\System32
2015-03-24 20:19:38 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-24 06:51:01 ----D---- C:\Windows\Tasks
2015-03-24 06:51:01 ----D---- C:\Windows\system32\Tasks
2015-03-23 21:02:16 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2015-03-23 19:44:01 ----D---- C:\Windows\SysWOW64
2015-03-23 18:45:32 ----D---- C:\Windows
2015-03-23 18:19:15 ----D---- C:\Windows\CbsTemp
2015-03-23 18:19:13 ----D---- C:\Windows\WinSxS
2015-03-23 18:18:40 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-23 18:18:40 ----D---- C:\Windows\system32\en-US
2015-03-23 18:18:39 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe
2015-03-23 18:18:39 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll
2015-03-23 18:18:39 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll
2015-03-23 18:18:39 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-03-23 18:18:39 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll
2015-03-23 18:18:39 ----A---- C:\Windows\system32\dpnet.dll
2015-03-23 18:18:38 ----A---- C:\Windows\system32\dpnsvr.exe
2015-03-23 18:18:38 ----A---- C:\Windows\system32\dpnhupnp.dll
2015-03-23 18:18:38 ----A---- C:\Windows\system32\dpnhpast.dll
2015-03-23 18:18:38 ----A---- C:\Windows\system32\dpnathlp.dll
2015-03-23 18:18:36 ----A---- C:\Windows\SYSWOW64\dpwsockx.dll
2015-03-23 18:18:36 ----A---- C:\Windows\SYSWOW64\dpmodemx.dll
2015-03-23 18:18:36 ----A---- C:\Windows\SYSWOW64\dplayx.dll
2015-03-23 18:18:36 ----A---- C:\Windows\SYSWOW64\dplaysvr.exe
2015-03-23 15:15:10 ----RSD---- C:\Windows\Fonts
2015-03-23 11:31:23 ----SD---- C:\Users\FesteR-PC\AppData\Roaming\Microsoft
2015-03-23 10:12:23 ----D---- C:\Windows\Microsoft.NET
2015-03-21 21:30:00 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Adobe
2015-03-21 21:26:39 ----D---- C:\Program Files\Common Files
2015-03-20 15:40:51 ----D---- C:\Program Files (x86)\Common Files
2015-03-16 18:23:13 ----HD---- C:\Program Files\WindowsApps
2015-03-14 20:46:50 ----D---- C:\Windows\SYSWOW64\drivers
2015-03-13 07:48:08 ----D---- C:\Windows\rescache
2015-03-11 21:15:03 ----D---- C:\Windows\Logs
2015-03-11 14:13:58 ----D---- C:\Program Files\Internet Explorer
2015-03-11 14:13:58 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 14:13:57 ----RD---- C:\Windows\ToastData
2015-03-11 14:13:57 ----D---- C:\Program Files\Windows Defender
2015-03-11 14:13:56 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-03-11 14:13:56 ----D---- C:\Windows\system32\sk-SK
2015-03-11 14:13:56 ----D---- C:\Windows\PolicyDefinitions
2015-03-11 14:13:56 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 14:13:55 ----D---- C:\Windows\WinStore
2015-03-11 02:14:28 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 02:13:01 ----D---- C:\Windows\system32\MRT
2015-03-11 02:10:31 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 02:09:15 ----A---- C:\Windows\win.ini
2015-03-10 21:29:18 ----D---- C:\Windows\system32\catroot2
2015-03-08 19:55:44 ----SHD---- C:\$Recycle.Bin
2015-03-08 19:35:47 ----D---- C:\ProgramData\AVG Security Toolbar
2015-03-04 22:24:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-03 17:04:18 ----SD---- C:\ProgramData\Microsoft
2015-03-03 15:02:16 ----A---- C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-03-03 14:57:58 ----D---- C:\Windows\system32\catroot
2015-03-03 14:51:07 ----D---- C:\Program Files (x86)\Intel
2015-03-03 14:50:13 ----D---- C:\Intel
2015-03-03 14:17:35 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-03 14:09:11 ----D---- C:\Windows\system32\LogFiles
2015-03-01 14:25:07 ----D---- C:\Windows\SYSWOW64\config

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-11-18 203544]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-02-03 341472]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-02-05 133088]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-06-18 31512]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-06-18 153368]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-02-24 280544]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-08-28 243480]
R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys [2015-02-20 289248]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-01-08 3775928]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-01-08 454416]
R3 iwdbus;@oem2.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-11-04 27032]
R3 MEIx64;@oem4.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 WUDFSensorLP;@locationprovider.inf,%WudfLocationProviderDisplayName%;UMDF Reflector service for LocationProvider; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
R3 WUDFWpdFs;WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [2014-05-31 227840]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys [2013-09-04 20496]
S3 intaud_WaveExtensible;@oem1.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-11-04 38296]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-03-06 3416016]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-03-06 309232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-01-08 319080]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-03-03 76152]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-02-17 5436176]
R2 vToolbarUpdater18.4.0;vToolbarUpdater18.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe [2015-03-08 1875480]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [2015-03-21 620056]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24 107848]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-01-08 280680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24 107848]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

-----------------EOF-----------------

[Roli]

Zdravím, v první řadě mám dotaz, na zabezpečení od AVG trváš ?


Přes Odebrat programy nebo CCleaner níže odinstaluj ver0CheckMeUp


Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém


Stáhni a spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files
C:\Windows\tasks\BYAIAMUF.job
C:\Windows\tasks\CheckMeUp Update.job
C:\Windows\tasks\EYAME.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\


Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem jej spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po dokončení skenu klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zkopíruj Report.


Nakonec použij Mbam z mého podpisu a dej mi sem z něj log, předem nic nemazat !

[Rene182]

Dakujem za odpoved.

Zdravím, v první řadě mám dotaz, na zabezpečení od AVG trváš ? netrvam

Přes Odebrat programy nebo CCleaner níže odinstaluj ver0CheckMeUp nemam ho tam - nevidim to

log OTMoveIt

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Windows\tasks\BYAIAMUF.job moved successfully.
C:\Windows\tasks\CheckMeUp Update.job moved successfully.
C:\Windows\tasks\EYAME.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: FesteR-PC
->Temp folder emptied: 265998 bytes
->Temporary Internet Files folder emptied: 5263199 bytes
->Java cache emptied: 349992 bytes
->Google Chrome cache emptied: 8402366 bytes
->Flash cache emptied: 492 bytes

User: Natalka a Sarka
->Temp folder emptied: 1699685 bytes
->Temporary Internet Files folder emptied: 210585237 bytes
->Google Chrome cache emptied: 344742081 bytes
->Flash cache emptied: 704 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 10032333 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 554,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 03282015_181329

Files moved on Reboot...
C:\Users\FesteR-PC\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.

Registry entries deleted on Reboot...



log AdwCleaner

# AdwCleaner v4.113 - Logfile created 28/03/2015 at 18:19:56
# Updated 22/03/2015 by Xplode
# Database : 2015-03-27.1 [Server]
# Operating system : Windows 8.1 Pro (x64)
# Username : FesteR-PC - FESTER
# Running from : C:\Users\FesteR-PC\Downloads\adwcleaner_4.113.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\AVG Security Toolbar
Folder Deleted : C:\ProgramData\ShopperPro
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\ProgramData\IHProtectUpDate
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\ShopperPro
Folder Deleted : C:\Program Files (x86)\YTDownloader
Folder Deleted : C:\Program Files (x86)\XTab
Folder Deleted : C:\Program Files (x86)\ver0CheckMeUp
Folder Deleted : C:\Users\FesteR-PC\AppData\Local\globalUpdate
Folder Deleted : C:\Users\FesteR-PC\AppData\Local\BrowserHelper
Folder Deleted : C:\Users\FesteR-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
Folder Deleted : C:\Users\Natalka a Sarka\AppData\Local\BrowserHelper
File Deleted : C:\Windows\patsearch.bin

***** [ Scheduled tasks ] *****

Task Deleted : ShopperPro
Task Deleted : ShopperProJSUpd
Task Deleted : SPDriver
Task Deleted : YTDownloader
Task Deleted : YTDownloaderUpd
Task Deleted : CheckMeUp Update

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SPDriver]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\YTDownloader
Key Deleted : HKCU\Software\Appscion
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\CheckMeUp
Key Deleted : HKLM\SOFTWARE\ShopperPro
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\YTDownloader
Key Deleted : HKLM\SOFTWARE\IHProtect
Key Deleted : HKLM\SOFTWARE\omniboxesSoftware
Key Deleted : [x64] HKLM\SOFTWARE\ShopperPro

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v41.0.2272.101

[C:\Users\FesteR-PC\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.omniboxes.com/web/?type=ds&ts=14271 ... earchTerms}

*************************

AdwCleaner[R0].txt - [8094 bytes] - [28/03/2015 18:17:30]
AdwCleaner[S0].txt - [5905 bytes] - [28/03/2015 18:19:56]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5964 bytes] ##########


Log Mbam

Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum skenovania: 28.3.2015
Scan čas: 18:25:35
Logfile: mam.txt
Správca: áno

Verzia: 2.00.4.1028
Malware databázy: v2015.03.28.04
Rootkit databázy: v2015.03.26.01
Licencia: Skúšobná verzia
Ochrana pred škodlivým softvérom: Povolené
Škodlivých webových stránok Ochrana: Povolené
Sebaobrany: Telesne

OS: Windows 8.1
CPU: x64
Systém súborov: NTFS
Používateľ: FesteR-PC

Typ skenu: Hrozba Scan
Výsledok: Dokončené
Objekty naskenované: 381089
Uplynulý čas: 6 min, 51 sec

Pamäť: Povolené
Pri spustení: Povolené
Súborový systém: Povolené
Archív: Povolené
Rootkity: Telesne
Heuristiky: Povolené
ŠTEŇA: Upozorniť
VYKUROVAC: Povolené

Procesy: 0
(Žiadne zákernej položky neboli zistené)

Moduly: 0
(Žiadne zákernej položky neboli zistené)

Kľúče databázy Registry: 15
PUP.Optional.SavePass.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SavePass 1.1-nv, , [72729ab01476c0769c6f0cd1847f37c9],
PUP.Optional.SavePass.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SavePass 1.1-nv-ie, , [90545ceecebc4ee85fac16c727dce818],
PUP.Optional.Cinema.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\CinemaP-1.9cV16.03-nv-ie, , [6b793f0bb1d9a4926f7aa8315ca79070],
PUP.Optional.GeForce.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Ge-Force-nv-ie, , [03e1a8a2eb9f0f27a20f0c3f689d6a96],
PUP.Optional.SavePass.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SavePass 1.1-nv-ie, , [eafa96b4a0ea9b9be823459825de6f91],
PUP.Optional.SavePass.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SavePass1.1, , [62824dfd513943f375f49630b74cef11],
PUP.Optional.Sense.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Sense-nv-ie, , [30b4bd8d96f473c321310646e5200000],
PUP.Optional.CheckMeUp.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKLM\SOFTWARE\CLASSES\CLSID\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{72C9F141-C00A-616D-EE9D-69F082519D04}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E35B177E-4F63-BC4D-20BA-4FD509C6144B}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E35B177E-4F63-BC4D-20BA-4FD509C6144B}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{72C9F141-C00A-616D-EE9D-69F082519D04}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}, , [50943a108208f14598aaa35df0162dd3],
PUP.Optional.CheckMeUp.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}, , [50943a108208f14598aaa35df0162dd3],

Hodnoty databázy Registry: 1
PUP.Optional.CheckMeUp.A, HKU\S-1-5-21-3787963373-3500389747-404984235-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|{969E3CF4-34F8-788A-EDA2-1FF1929946D9}, C:\Program Files (x86)\ver0CheckMeUp\190.xpi, , [865e272352381e18be781836d035d32d]

Údaje databázy Registry: 0
(Žiadne zákernej položky neboli zistené)

Priečinky: 2
PUP.Optional.ShopperPro.A, C:\Users\Public\Documents\ShopperPro, , [04e079d1236779bd472c81335aa9ce32],
PUP.Optional.ShopperPro.A, C:\Users\Public\Documents\ShopperPro\JsDriver, , [04e079d1236779bd472c81335aa9ce32],

Súbory: 3
PUP.Optional.WebTInst.A, C:\Windows\System32\drivers\Msft_Kernel_webTinstMKTN_01009.Wdf, , [a93b32182862cb6b09604775cd36d12f],
PUP.Optional.ShopperPro.A, C:\Users\Public\Documents\ShopperPro\JsDriver\Config.xml, , [04e079d1236779bd472c81335aa9ce32],
PUP.Optional.Omniboxes.A, C:\Users\FesteR-PC\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Dobrá:)), Zlá:) "homepage": "http://www.omniboxes.com/?type=hp&ts=14 ... 3895538955",), ,[41a3b595078339fdd1360c2830d641bf]

Fyzický sektory: 0
(Žiadne zákernej položky neboli zistené)


(end)

[vyosek]

Zdravim

Omlouvam se kolegovi za vstup

Vazeny uzivateli, budte tak mlaskav a neodmazavejte a pak znovu nedavejte (stejne) nove prispevky do sveho tematu, abyste se dostal do popredi.

Nase forum funguje na bazi dobrovolnosti a vsichni jsme tu ve svem VOLNEM case a zdarma. A svuj cas venujeme na reseni Vasich problemu.

Je nedele vecer a kolega se treba venuje sve rodiny, o prispevku vi ze tu je a bude jej resit, jak mu to jeho casove moznosti dovoli.

Pokud chcete okamzitou pomoc, obratte se na placene servisy, kde se Vam jiste za vikendovy priplatek budou venovat. Zde si bud pockate, nebo mate smulu.

[Rene182]

Ospravedlnujem sa, jasne chapem.

Vdaka

[Roli]

To co Mbam našel nech po jeho znovuspuštění smazat a pak mi sem dej aktuální log.txt z Rsit.

[Rene182]

dakujem za vas ccas.

Logfile of random's system information tool 1.10 (written by random/random)
Run by FesteR-PC at 2015-03-30 20:10:32
Microsoft Windows 8.1 Pro
System drive C: has 54 GB (54%) free of 100 GB
Total RAM: 16075 MB (88% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:10:33, on 30.3.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files\Lexmark\ErrorApp\lmab1err.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\FesteR-PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [uTorrent] "C:\Users\FesteR-PC\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [LMab1err] C:\Program Files\Lexmark\ErrorApp\LMab1err.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{F461BC44-9C93-4BF7-90CD-ED48E3CAC043}: NameServer = 192.168.0.1
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: lmab_device - - C:\Windows\system32\LMabcoms.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7803 bytes

======Listing Processes======




c:\PROGRA~2\AVG\AVG2015\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe /pipeName=c2feea3f-0200-0000-b035-7439ac895465 /binaryPath="C:\Program Files (x86)\AVG\AVG2015\"

wininit.exe

winlogon.exe

C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\igfxCUIService.exe
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe"
C:\Windows\system32\LMabcoms.exe -service
"C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2015\avgemca.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-13fe92d0-e308-4924-8332-6fba20dd1a79 -SystemEventPortName:HostProcess-f1790771-36ff-4dc1-88f9-71f80faae5c5 -IoCancelEventPortName:HostProcess-58d809f8-e1f0-4873-a9d1-3f4e9403d75a -NonStateChangingEventPortName:HostProcess-80f6630a-5c33-412c-8e70-abfa9b3e872a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:312e2bc5-3d51-42b2-b021-27646e206d12 -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe" /starttray
igfxEM.exe
igfxHK.exe
igfxTray.exe
C:\Windows\Explorer.EXE
taskhostex.exe
taskeng.exe {69D6ABAD-5C36-4993-890A-CD127A12D917}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Lexmark\ErrorApp\lmab1err.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel

winlogon.exe
"LogonUI.exe" /flags:0x0
"dwm.exe"
rdpclip
"C:\Windows\System32\rdpinput.exe"
/QuitInfo:0000000000000474;000000000000077C;
/loadhooks /Parent:0000000000000ed0

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\FesteR-PC\Desktop\bbb.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1036.0.1611804575\1739030860" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,18,40 --gpu-vendor-id=0x0000 --gpu-device-id=0x0000 --gpu-driver-vendor --gpu-driver-version --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=sk --force-fieldtrials="BrowserBlacklist/Enabled/CTRequiredForEVTrial/RequirementEnforced/ChromeSuggestions/Default/DomRel-Enable/enable/EmbeddedSearch/Group1 pct:10a stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/NewProfileManagement/Enabled/OmniboxBundledExperimentV1/Preperiod_A2_StableBookmarksIndexURLs/PasswordGeneration/Disabled/QUIC/ControlForLargePopulation/RememberCertificateErrorDecisions/Default/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Population-Restrict/normal/UMA-Uniformity-Trial-1-Percent/group_83/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/group_01/UwSInterstitialStatus/On/VoiceTrigger/Install/WebRTC-IPv6Default/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --font-cache-shared-mem-suffix=1036 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --channel="1036.3.1181081792\1830955427" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\FesteR-PC\Downloads\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}]
CheckMeUp - C:\Program Files (x86)\ver0CheckMeUp\190_x64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-20 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-20 172968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\FesteR-PC\AppData\Roaming\uTorrent\utorrent.exe [2014-04-14 398760]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-02-19 2874048]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [2014-12-19 458456]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-03-13 7451928]
"LMab1err"=C:\Program Files\Lexmark\ErrorApp\LMab1err.exe [2010-03-26 582312]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2015\avgui.exe [2015-03-25 3723728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"SafeModeBlockNonAdmins"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-03-30 16:34:16 ----ASH---- C:\pagefile.sys
2015-03-30 16:31:44 ----A---- C:\Windows\system32\lexlog.dll
2015-03-30 16:31:39 ----D---- C:\Program Files\Lexmark_HostCD
2015-03-30 16:31:20 ----A---- C:\Windows\system32\lmabusb1.dll
2015-03-30 16:31:20 ----A---- C:\Windows\system32\lmabserv.dll
2015-03-30 16:31:20 ----A---- C:\Windows\system32\lmabpmui.dll
2015-03-30 16:31:19 ----A---- C:\Windows\system32\lmabpar1.dll
2015-03-30 16:31:19 ----A---- C:\Windows\system32\lmablmpm.dll
2015-03-30 16:31:19 ----A---- C:\Windows\system32\lmabip1.dll
2015-03-30 16:31:19 ----A---- C:\Windows\system32\lmabiobj.dll
2015-03-30 16:31:19 ----A---- C:\Windows\system32\lmabinpa.dll
2015-03-30 16:31:18 ----A---- C:\Windows\SYSWOW64\lmabserv.dll
2015-03-30 16:31:18 ----A---- C:\Windows\system32\lmabiesc.dll
2015-03-30 16:31:18 ----A---- C:\Windows\system32\lmabhcp.dll
2015-03-30 16:31:18 ----A---- C:\Windows\system32\lmabcoms.exe
2015-03-30 16:31:18 ----A---- C:\Windows\system32\lmabcomm.dll
2015-03-30 16:31:18 ----A---- C:\Windows\system32\lmabcomc.dll
2015-03-30 16:31:17 ----A---- C:\Windows\SYSWOW64\lmabhcp.dll
2015-03-30 16:31:17 ----A---- C:\Windows\SYSWOW64\lmabcoms.exe
2015-03-30 16:31:17 ----A---- C:\Windows\SYSWOW64\lmabcomm.dll
2015-03-30 16:31:17 ----A---- C:\Windows\SYSWOW64\lmabcomc.dll
2015-03-30 16:31:15 ----D---- C:\Program Files\Lexmark
2015-03-30 16:31:15 ----A---- C:\Windows\Lexcfi.dll
2015-03-30 16:30:58 ----D---- C:\Lexmark
2015-03-28 19:24:38 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-03-28 19:24:30 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-28 19:24:30 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-03-28 19:24:30 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-03-28 19:23:32 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Malwarebytes
2015-03-28 19:23:30 ----D---- C:\ProgramData\Malwarebytes
2015-03-28 19:23:29 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2015-03-28 19:23:29 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-03-28 19:17:25 ----D---- C:\AdwCleaner
2015-03-28 19:13:29 ----D---- C:\_OTM
2015-03-28 19:07:00 ----D---- C:\Program Files\CCleaner
2015-03-28 15:06:07 ----D---- C:\Program Files\trend micro
2015-03-28 15:06:06 ----D---- C:\rsit
2015-03-26 08:03:50 ----D---- C:\Users\FesteR-PC\AppData\Roaming\AVG2015
2015-03-26 08:02:49 ----HD---- C:\$AVG
2015-03-26 08:02:39 ----D---- C:\Program Files (x86)\AVG
2015-03-25 11:21:34 ----A---- C:\Windows\system32\drivers\avgidsdrivera.sys
2015-03-23 19:44:15 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Opera Software
2015-03-23 19:43:50 ----D---- C:\Program Files (x86)\Opera
2015-03-23 19:19:23 ----D---- C:\ProgramData\TrackMania
2015-03-23 16:15:09 ----D---- C:\Users\FesteR-PC\AppData\Roaming\TeamViewer
2015-03-23 16:15:06 ----D---- C:\Program Files (x86)\TeamViewer
2015-03-21 22:26:39 ----D---- C:\Program Files\Common Files\Adobe
2015-03-21 22:25:52 ----D---- C:\ProgramData\Adobe
2015-03-21 22:25:52 ----D---- C:\Program Files\Adobe
2015-03-21 22:23:16 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Zoner
2015-03-21 22:22:54 ----D---- C:\ProgramData\Zoner
2015-03-21 22:22:41 ----D---- C:\Program Files\Zoner
2015-03-20 16:40:52 ----D---- C:\ProgramData\Sun
2015-03-20 16:40:51 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-03-20 16:40:38 ----D---- C:\ProgramData\Oracle
2015-03-20 16:40:36 ----D---- C:\Program Files (x86)\Java
2015-03-19 16:05:44 ----A---- C:\Windows\system32\drivers\avgwfpa.sys
2015-03-18 12:23:40 ----D---- C:\ProgramData\Avg_Update_0215tb
2015-03-14 21:38:36 ----D---- C:\Program Files (x86)\VideoLAN
2015-03-14 16:27:18 ----D---- C:\Users\FesteR-PC\AppData\Roaming\MediaInfo
2015-03-14 16:26:41 ----D---- C:\Program Files\MediaInfo
2015-03-14 16:22:48 ----D---- C:\Program Files (x86)\Maketorrent 2
2015-03-14 13:38:53 ----D---- C:\Users\FesteR-PC\AppData\Roaming\mkvtoolnix
2015-03-14 13:38:33 ----D---- C:\Program Files\MKVToolNix
2015-03-11 22:16:17 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Kodi
2015-03-11 22:13:48 ----D---- C:\Program Files (x86)\Kodi
2015-03-10 23:34:31 ----A---- C:\Windows\system32\mshtml.dll
2015-03-10 23:34:30 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-10 23:34:29 ----A---- C:\Windows\system32\jscript9.dll
2015-03-10 23:34:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-10 23:34:28 ----A---- C:\Windows\system32\ieframe.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-10 23:34:27 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\wininet.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\webcheck.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\vbscript.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\urlmon.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\jscript9diag.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\inetcomm.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\iertutil.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\iepeers.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-10 23:34:27 ----A---- C:\Windows\system32\actxprxy.dll
2015-03-10 23:34:26 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-03-10 23:34:26 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-03-10 23:34:26 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-03-10 23:34:26 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-10 23:34:26 ----A---- C:\Windows\system32\jscript.dll
2015-03-10 23:34:26 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-10 23:34:26 ----A---- C:\Windows\system32\ieapfltr.dll
2015-03-10 23:34:06 ----A---- C:\Windows\SYSWOW64\winshfhc.dll
2015-03-10 23:34:06 ----A---- C:\Windows\system32\winshfhc.dll
2015-03-10 23:34:06 ----A---- C:\Windows\system32\drivers\WdNisDrv.sys
2015-03-10 23:34:06 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2015-03-10 23:34:06 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2015-03-10 23:34:03 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2015-03-10 23:34:03 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2015-03-10 23:34:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2015-03-10 23:34:03 ----A---- C:\Windows\SYSWOW64\atlthunk.dll
2015-03-10 23:34:03 ----A---- C:\Windows\system32\mfc42u.dll
2015-03-10 23:34:03 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2015-03-10 23:34:03 ----A---- C:\Windows\system32\atlthunk.dll
2015-03-10 23:34:02 ----A---- C:\Windows\system32\mfc42.dll
2015-03-10 23:24:28 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-03-10 23:24:28 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-10 23:24:28 ----A---- C:\Windows\system32\ntdll.dll
2015-03-10 23:11:26 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-10 23:11:26 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-10 23:09:08 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-10 23:09:08 ----A---- C:\Windows\system32\shell32.dll
2015-03-10 23:06:40 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-10 23:06:40 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-03-10 23:06:40 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-10 23:06:40 ----A---- C:\Windows\explorer.exe
2015-03-10 23:06:05 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-10 23:06:05 ----A---- C:\Windows\system32\msctf.dll
2015-03-10 23:02:51 ----A---- C:\Windows\SYSWOW64\calc.exe
2015-03-10 23:02:51 ----A---- C:\Windows\system32\calc.exe
2015-03-10 23:02:35 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2015-03-10 23:02:35 ----A---- C:\Windows\system32\SHCore.dll
2015-03-10 22:57:37 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-10 22:57:37 ----A---- C:\Windows\system32\schannel.dll
2015-03-10 22:57:36 ----A---- C:\Windows\system32\win32k.sys
2015-03-10 22:57:35 ----A---- C:\Windows\SYSWOW64\photowiz.dll
2015-03-10 22:57:35 ----A---- C:\Windows\system32\photowiz.dll
2015-03-10 22:57:10 ----A---- C:\Windows\SYSWOW64\msftedit.dll
2015-03-10 22:57:10 ----A---- C:\Windows\system32\msftedit.dll
2015-03-10 22:54:49 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-03-10 22:54:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-03-10 22:54:49 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-03-10 22:54:49 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-10 22:54:49 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-10 22:54:49 ----A---- C:\Windows\system32\lpk.dll
2015-03-10 22:54:49 ----A---- C:\Windows\system32\fontsub.dll
2015-03-10 22:54:49 ----A---- C:\Windows\system32\dciman32.dll
2015-03-10 22:54:49 ----A---- C:\Windows\system32\atmlib.dll
2015-03-10 22:54:49 ----A---- C:\Windows\system32\atmfd.dll
2015-03-10 22:54:48 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\puiobj.dll
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\puiapi.dll
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\prnntfy.dll
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\printui.exe
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\findnetprinters.dll
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll
2015-03-10 22:54:47 ----A---- C:\Windows\SYSWOW64\compstui.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\win32spl.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\puiobj.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\puiapi.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\prnntfy.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\printui.exe
2015-03-10 22:54:47 ----A---- C:\Windows\system32\ppcsnap.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\pmcsnap.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\localspl.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\findnetprinters.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\DafPrintProvider.dll
2015-03-10 22:54:47 ----A---- C:\Windows\system32\compstui.dll
2015-03-10 22:54:43 ----AC---- C:\Windows\system32\drivers\hidbth.sys
2015-03-10 22:52:40 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-03-10 22:52:40 ----A---- C:\Windows\system32\dwmcore.dll
2015-03-10 22:45:59 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2015-03-10 22:45:59 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-10 22:45:59 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-03-10 22:45:59 ----A---- C:\Windows\system32\WSShared.dll
2015-03-10 22:45:59 ----A---- C:\Windows\system32\WSReset.exe
2015-03-10 22:45:59 ----A---- C:\Windows\system32\WSCollect.exe
2015-03-10 22:45:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-10 22:45:59 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-03-10 22:44:20 ----A---- C:\Windows\SYSWOW64\StorageContextHandler.dll
2015-03-10 22:44:20 ----A---- C:\Windows\system32\StorageContextHandler.dll
2015-03-10 22:42:55 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-03-10 22:42:55 ----A---- C:\Windows\system32\authui.dll
2015-03-10 22:38:51 ----A---- C:\Windows\system32\ubpm.dll
2015-03-10 22:38:37 ----A---- C:\Windows\system32\rfxvmt.dll
2015-03-10 22:38:37 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-10 22:38:37 ----A---- C:\Windows\system32\rdpcorets.dll
2015-03-10 22:38:37 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-03-10 22:37:18 ----A---- C:\Windows\SYSWOW64\eappprxy.dll
2015-03-10 22:37:18 ----A---- C:\Windows\SYSWOW64\eapphost.dll
2015-03-10 22:37:18 ----A---- C:\Windows\SYSWOW64\eappgnui.dll
2015-03-10 22:37:18 ----A---- C:\Windows\SYSWOW64\eappcfg.dll
2015-03-10 22:37:18 ----A---- C:\Windows\SYSWOW64\eapp3hst.dll
2015-03-10 22:37:18 ----A---- C:\Windows\system32\eappprxy.dll
2015-03-10 22:37:18 ----A---- C:\Windows\system32\eapphost.dll
2015-03-10 22:37:18 ----A---- C:\Windows\system32\eappgnui.dll
2015-03-10 22:37:18 ----A---- C:\Windows\system32\eappcfg.dll
2015-03-10 22:37:18 ----A---- C:\Windows\system32\eapp3hst.dll
2015-03-10 22:34:37 ----A---- C:\Windows\system32\LockScreenContentServer.exe
2015-03-10 22:33:03 ----A---- C:\Windows\SYSWOW64\MrmCoreR.dll
2015-03-10 22:33:03 ----A---- C:\Windows\system32\MrmCoreR.dll
2015-03-08 20:28:25 ----D---- C:\ProgramData\Codemasters
2015-03-08 20:28:23 ----D---- C:\Program Files (x86)\OpenAL
2015-03-08 20:28:23 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2015-03-08 20:28:23 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2015-03-08 20:28:23 ----A---- C:\Windows\system32\wrap_oal.dll
2015-03-08 20:28:23 ----A---- C:\Windows\system32\OpenAL32.dll
2015-03-08 19:58:39 ----D---- C:\Windows\system32\appmgmt
2015-03-08 19:34:25 ----D---- C:\Users\FesteR-PC\AppData\Roaming\SpinTires
2015-03-03 18:31:24 ----D---- C:\ProgramData\EA Core
2015-03-03 18:31:23 ----D---- C:\ProgramData\EA Logs
2015-03-03 15:50:08 ----A---- C:\Windows\SYSWOW64\IntelOpenCL32.dll
2015-03-03 15:50:08 ----A---- C:\Windows\SYSWOW64\IntelCpHeciSvc.exe
2015-03-03 15:50:08 ----A---- C:\Windows\SYSWOW64\igfxexps32.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiVAD64.exe
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiUtils64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiUMS64.exe
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiMux64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiMCUMD64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiLogServer64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiDDEAgent64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiAudioFilter64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelWiDiAAC64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\IntelOpenCL64.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxOSP.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxLHMLibv2_0.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxLHMLib.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxext.exe
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxexps.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxEMLibv2_0.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxEMLib.dll
2015-03-03 15:50:08 ----A---- C:\Windows\system32\igfxCoIn_v4061.dll
2015-03-03 15:50:07 ----A---- C:\Windows\SYSWOW64\igfxcmrt32.dll
2015-03-03 15:50:07 ----A---- C:\Windows\SYSWOW64\igfxcmjit32.dll
2015-03-03 15:50:07 ----A---- C:\Windows\SYSWOW64\igfx11cmrt32.dll
2015-03-03 15:50:07 ----A---- C:\Windows\SYSWOW64\igdrcl32.dll
2015-03-03 15:50:07 ----A---- C:\Windows\SYSWOW64\igdmd32.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxDTCM.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxDILibv2_0.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxDILib.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxDHLibv2_0.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxDHLib.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxCUIServicePS.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxcmrt64.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfxcmjit64.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igfx11cmrt64.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igdumdim64.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igdrcl64.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\igdmd64.dll
2015-03-03 15:50:07 ----A---- C:\Windows\system32\drivers\igdkmd64.sys
2015-03-03 15:50:06 ----A---- C:\Windows\SYSWOW64\igdfcl32.dll
2015-03-03 15:50:06 ----A---- C:\Windows\SYSWOW64\igdde32.dll
2015-03-03 15:50:06 ----A---- C:\Windows\SYSWOW64\igdbcl32.dll
2015-03-03 15:50:06 ----A---- C:\Windows\SYSWOW64\igdail32.dll
2015-03-03 15:50:06 ----A---- C:\Windows\SYSWOW64\igd10iumd32.dll
2015-03-03 15:50:06 ----A---- C:\Windows\SYSWOW64\ig7icd32.dll
2015-03-03 15:50:06 ----A---- C:\Windows\system32\igdfcl64.dll
2015-03-03 15:50:06 ----A---- C:\Windows\system32\igdde64.dll
2015-03-03 15:50:06 ----A---- C:\Windows\system32\igdbcl64.dll
2015-03-03 15:50:06 ----A---- C:\Windows\system32\igdail64.dll
2015-03-03 15:50:06 ----A---- C:\Windows\system32\ig7icd64.dll
2015-03-03 15:50:05 ----A---- C:\Windows\system32\Gfxv4_0.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\Gfxv2_0.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\GfxUIEx.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\drivers\IntcDAud.sys
2015-03-03 15:50:05 ----A---- C:\Windows\system32\DPTopologyAppv2_0.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\DPTopologyApp.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\difx64.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\CustomModeAppv2_0.exe
2015-03-03 15:50:05 ----A---- C:\Windows\system32\CustomModeApp.exe
2015-03-03 15:13:50 ----D---- C:\ProgramData\IntelDLM
2015-03-03 15:10:26 ----D---- C:\Program Files (x86)\Intel Driver Update Utility
2015-03-03 15:10:25 ----D---- C:\ProgramData\Package Cache
2015-03-03 15:09:12 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2015-03-03 15:09:11 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2015-03-03 15:08:50 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-03-03 15:08:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-03-03 15:08:50 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-03-03 15:08:50 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-03-03 15:08:49 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-03-03 15:08:49 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-03-02 21:54:59 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Origin
2015-03-02 21:54:02 ----D---- C:\ProgramData\Origin
2015-03-02 21:54:01 ----D---- C:\ProgramData\Electronic Arts
2015-03-02 21:47:24 ----D---- C:\Program Files (x86)\Steam
2015-03-02 21:08:11 ----D---- C:\ProgramData\KONAMI
2015-03-02 21:08:03 ----D---- C:\ProgramData\Steam
2015-03-02 21:05:57 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-03-02 21:05:57 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-03-02 21:05:57 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-03-02 21:05:57 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-03-02 21:05:56 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-03-02 21:05:56 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-03-02 21:05:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-03-02 21:05:56 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-03-02 21:05:56 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-03-02 21:05:56 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-03-02 21:05:55 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-03-02 21:05:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-03-02 21:05:55 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-03-02 21:05:55 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-03-02 21:05:55 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-03-02 21:05:55 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-03-02 21:05:55 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-03-02 21:05:55 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-03-02 21:05:55 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-03-02 21:05:55 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-03-02 21:05:54 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-03-02 21:05:54 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-03-02 21:05:54 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-03-02 21:05:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-03-02 21:05:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-03-02 21:05:54 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-03-02 21:05:54 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-03-02 21:05:54 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-03-02 21:05:54 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-03-02 21:05:54 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-03-02 21:05:53 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-03-02 21:05:53 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-03-02 21:05:53 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-03-02 21:05:53 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-03-02 21:05:52 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-03-02 21:05:52 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-03-02 21:05:51 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-03-02 21:05:51 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-03-02 21:05:51 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-03-02 21:05:51 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-03-02 21:05:51 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-03-02 21:05:51 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-03-02 21:05:51 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-03-02 21:05:51 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-03-02 21:05:50 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-03-02 21:05:50 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-03-02 21:05:50 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-03-02 21:05:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-03-02 21:05:50 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-03-02 21:05:50 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-03-02 21:05:50 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-03-02 21:05:50 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-03-02 21:05:49 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-03-02 21:05:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-03-02 21:05:49 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-03-02 21:05:49 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-03-02 21:05:49 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-03-02 21:05:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-03-02 21:05:49 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-03-02 21:05:49 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-03-02 21:05:49 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-03-02 21:05:49 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-03-02 21:05:49 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-03-02 21:05:49 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-03-02 21:05:48 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-03-02 21:05:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-03-02 21:05:48 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-03-02 21:05:48 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-03-02 21:05:48 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-03-02 21:05:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-03-02 21:05:48 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-03-02 21:05:48 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-03-02 21:05:48 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-03-02 21:05:48 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-03-02 21:05:48 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-03-02 21:05:48 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-03-02 21:05:47 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-03-02 21:05:47 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-03-02 21:05:47 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-03-02 21:05:47 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-03-02 21:05:46 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-03-02 21:05:46 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-03-02 21:05:46 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-03-02 21:05:46 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-03-02 21:05:45 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-03-02 21:05:45 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-03-02 21:05:45 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-03-02 21:05:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-03-02 21:05:45 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-03-02 21:05:45 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-03-02 21:05:45 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-03-02 21:05:45 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-03-02 21:05:43 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-03-02 21:05:43 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-03-02 21:05:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-03-02 21:05:43 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-03-02 21:05:43 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-03-02 21:05:43 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-03-02 21:05:42 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-03-02 21:05:42 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-03-02 21:05:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-03-02 21:05:41 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-03-02 21:05:40 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-03-02 21:05:40 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-03-02 21:05:40 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-03-02 21:05:40 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-03-02 21:05:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-03-02 21:05:40 ----A---- C:\Windows\system32\xinput1_3.dll
2015-03-02 21:05:40 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-03-02 21:05:40 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-03-02 21:05:40 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-03-02 21:05:40 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-03-02 21:05:39 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-03-02 21:05:39 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-03-02 21:05:39 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-03-02 21:05:39 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-03-02 21:05:39 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-03-02 21:05:39 ----A---- C:\Windows\system32\d3dx10.dll
2015-03-02 21:05:38 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-03-02 21:05:38 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-03-02 21:05:38 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-03-02 21:05:38 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-03-02 21:05:38 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-03-02 21:05:38 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-03-02 21:05:38 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-03-02 21:05:38 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-03-02 21:05:38 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-03-02 21:05:38 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-03-02 21:05:37 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-03-02 21:05:37 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-03-02 21:05:37 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-03-02 21:05:37 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-03-02 21:05:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-03-02 21:05:37 ----A---- C:\Windows\system32\xinput1_2.dll
2015-03-02 21:05:37 ----A---- C:\Windows\system32\xinput1_1.dll
2015-03-02 21:05:37 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-03-02 21:05:37 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-03-02 21:05:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-03-02 21:05:35 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-03-02 21:05:35 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-03-02 21:05:35 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-03-02 21:05:35 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-03-02 21:05:34 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-03-02 21:05:34 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-03-02 21:05:34 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-03-02 21:05:34 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-03-02 21:05:33 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-03-02 21:05:33 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-03-02 21:05:33 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-03-02 21:05:33 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-03-02 21:05:33 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-03-02 21:05:33 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-03-02 21:05:32 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-03-02 21:05:32 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-03-02 21:03:43 ----D---- C:\Windows\SYSWOW64\directx
2015-03-02 14:24:15 ----D---- C:\Windows\Minidump

======List of files/folders modified in the last 1 month======

2015-03-30 20:08:20 ----D---- C:\Windows\Temp
2015-03-30 20:02:00 ----D---- C:\Windows\system32\sru
2015-03-30 19:54:29 ----D---- C:\Windows\Prefetch
2015-03-30 16:40:02 ----RD---- C:\Windows\System32
2015-03-30 16:40:02 ----D---- C:\Windows\Inf
2015-03-30 16:40:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-30 16:36:00 ----D---- C:\Users\FesteR-PC\AppData\Roaming\uTorrent
2015-03-30 16:31:39 ----RD---- C:\Program Files
2015-03-30 16:31:37 ----RSD---- C:\Windows\Fonts
2015-03-30 16:31:18 ----D---- C:\Windows\SysWOW64
2015-03-30 16:31:15 ----D---- C:\Windows
2015-03-30 14:56:09 ----SHD---- C:\Windows\Installer
2015-03-30 14:55:54 ----D---- C:\ProgramData\MFAData
2015-03-30 14:55:18 ----D---- C:\Windows\system32\drivers
2015-03-28 19:24:30 ----RD---- C:\Program Files (x86)
2015-03-28 19:23:30 ----HD---- C:\ProgramData
2015-03-28 19:19:58 ----D---- C:\Windows\system32\Tasks
2015-03-28 19:16:42 ----D---- C:\Windows\SoftwareDistribution
2015-03-28 19:13:29 ----D---- C:\Windows\Tasks
2015-03-28 19:12:31 ----D---- C:\Windows\system32\NDF
2015-03-28 19:08:15 ----D---- C:\Windows\Panther
2015-03-28 19:08:14 ----D---- C:\Windows\Logs
2015-03-28 19:08:14 ----D---- C:\Windows\debug
2015-03-28 15:56:39 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2015-03-28 15:56:38 ----D---- C:\Program Files (x86)\Common Files
2015-03-26 20:55:26 ----D---- C:\Program Files\Common Files\System
2015-03-26 15:05:14 ----D---- C:\Windows\AppReadiness
2015-03-26 08:03:54 ----D---- C:\ProgramData\AVG2015
2015-03-26 08:03:00 ----HD---- C:\Windows\ELAMBKUP
2015-03-26 08:02:38 ----SHD---- C:\System Volume Information
2015-03-26 07:55:41 ----D---- C:\Windows\system32\wdi
2015-03-25 23:50:00 ----D---- C:\Windows\system32\DriverStore
2015-03-25 16:27:42 ----D---- C:\Windows\system32\config
2015-03-23 19:19:15 ----D---- C:\Windows\CbsTemp
2015-03-23 19:19:13 ----D---- C:\Windows\WinSxS
2015-03-23 19:18:40 ----D---- C:\Windows\SYSWOW64\en-US
2015-03-23 19:18:40 ----D---- C:\Windows\system32\en-US
2015-03-23 19:18:39 ----A---- C:\Windows\SYSWOW64\dpnsvr.exe
2015-03-23 19:18:39 ----A---- C:\Windows\SYSWOW64\dpnhupnp.dll
2015-03-23 19:18:39 ----A---- C:\Windows\SYSWOW64\dpnhpast.dll
2015-03-23 19:18:39 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-03-23 19:18:39 ----A---- C:\Windows\SYSWOW64\dpnathlp.dll
2015-03-23 19:18:39 ----A---- C:\Windows\system32\dpnet.dll
2015-03-23 19:18:38 ----A---- C:\Windows\system32\dpnsvr.exe
2015-03-23 19:18:38 ----A---- C:\Windows\system32\dpnhupnp.dll
2015-03-23 19:18:38 ----A---- C:\Windows\system32\dpnhpast.dll
2015-03-23 19:18:38 ----A---- C:\Windows\system32\dpnathlp.dll
2015-03-23 19:18:36 ----A---- C:\Windows\SYSWOW64\dpwsockx.dll
2015-03-23 19:18:36 ----A---- C:\Windows\SYSWOW64\dpmodemx.dll
2015-03-23 19:18:36 ----A---- C:\Windows\SYSWOW64\dplayx.dll
2015-03-23 19:18:36 ----A---- C:\Windows\SYSWOW64\dplaysvr.exe
2015-03-23 12:31:23 ----SD---- C:\Users\FesteR-PC\AppData\Roaming\Microsoft
2015-03-23 11:12:23 ----D---- C:\Windows\Microsoft.NET
2015-03-21 22:30:00 ----D---- C:\Users\FesteR-PC\AppData\Roaming\Adobe
2015-03-21 22:26:39 ----D---- C:\Program Files\Common Files
2015-03-16 19:23:13 ----HD---- C:\Program Files\WindowsApps
2015-03-14 21:46:50 ----D---- C:\Windows\SYSWOW64\drivers
2015-03-13 08:48:08 ----D---- C:\Windows\rescache
2015-03-11 15:13:58 ----D---- C:\Program Files\Internet Explorer
2015-03-11 15:13:58 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-11 15:13:57 ----RD---- C:\Windows\ToastData
2015-03-11 15:13:57 ----D---- C:\Program Files\Windows Defender
2015-03-11 15:13:56 ----D---- C:\Windows\SYSWOW64\sk-SK
2015-03-11 15:13:56 ----D---- C:\Windows\system32\sk-SK
2015-03-11 15:13:56 ----D---- C:\Windows\PolicyDefinitions
2015-03-11 15:13:56 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-11 15:13:55 ----D---- C:\Windows\WinStore
2015-03-11 03:14:28 ----D---- C:\ProgramData\Microsoft Help
2015-03-11 03:13:01 ----D---- C:\Windows\system32\MRT
2015-03-11 03:10:31 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 03:09:15 ----A---- C:\Windows\win.ini
2015-03-10 22:29:18 ----D---- C:\Windows\system32\catroot2
2015-03-08 20:55:44 ----SHD---- C:\$Recycle.Bin
2015-03-04 23:24:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-03-03 18:04:18 ----SD---- C:\ProgramData\Microsoft
2015-03-03 16:02:16 ----A---- C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-03-03 15:57:58 ----D---- C:\Windows\system32\catroot
2015-03-03 15:51:07 ----D---- C:\Program Files (x86)\Intel
2015-03-03 15:50:13 ----D---- C:\Intel
2015-03-03 15:17:35 ----N---- C:\Windows\system32\MpSigStub.exe
2015-03-03 15:09:11 ----D---- C:\Windows\system32\LogFiles
2015-03-01 15:25:07 ----D---- C:\Windows\SYSWOW64\config

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-11-18 203544]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2015-02-03 341472]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2015-02-05 133088]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-06-18 31512]
R0 Wof;Windows Overlay File System Filter Driver; C:\Windows\system32\drivers\Wof.sys [2014-03-13 157016]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-06-18 153368]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2015-03-25 281056]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-08-28 243480]
R1 Avgwfpa;AVG Firewall Driver; C:\Windows\system32\DRIVERS\avgwfpa.sys [2015-03-19 289248]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2015-01-08 3775928]
R3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Zvuk pre obrazovky; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-01-08 454416]
R3 iwdbus;@oem2.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2014-11-04 27032]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2014-11-21 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-03-30 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2014-11-21 64216]
R3 MEIx64;@oem4.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
S0 Avgboota;AVG Early Launch Anti-Malware Driver; C:\Windows\system32\DRIVERS\avgboota.sys [2013-09-04 20496]
S3 intaud_WaveExtensible;@oem1.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2014-11-04 38296]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [2015-03-25 3416016]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [2015-03-25 309232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2015-01-08 319080]
R2 lmab_device;lmab_device; C:\Windows\system32\LMabcoms.exe [2012-09-28 1048576]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-11-21 969016]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-11-21 1871160]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-03-03 76152]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-02-17 5436176]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24 107848]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2015-01-08 280680]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24 107848]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]

-----------------EOF-----------------

Upraveno - nedávej prosím logy do CODE, blbě se to čte

[Roli]

Nejdříve odinstaluj AVG a poté projeď PC AVG Removerem, protože AVG po sobě nikdy pořádně neuklidí.


Po restartu PC jej nahraď Avastem.


Znovu spusť OTMoveIt

do levého okna aplikace pod Paste Instructions for Items to be Moved zkopíruj tento text:

Kód: Vybrat vše

:processes
explorer.exe       

:files
C:\Program Files (x86)\ver0CheckMeUp

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}]

:commands
[purity]
[emptytemp]
[start explorer]

klikni na MoveIt! a v pravém zeleném okně aplikace se Ti objeví info o provedene akci, obsah okna zkopíruj sem,

pokud aplikace bude požadovat restart, klikni na YES

v tom případě sem zkopíruj obsah logu uloženého na C:\_OTMoveIt\MovedFiles\

[Rene182]

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
File/Folder C:\Program Files (x86)\ver0CheckMeUp not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B7A5EE16-3FED-399F-55F6-58AF84D02FC4}\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: FesteR-PC
->Temp folder emptied: 8130094 bytes
->Temporary Internet Files folder emptied: 1352817 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 393719489 bytes
->Flash cache emptied: 0 bytes

User: Natalka a Sarka
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 128 bytes
->Google Chrome cache emptied: 353928249 bytes
->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 18464 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 722,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 03312015_191850

Files moved on Reboot...
C:\Users\FesteR-PC\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[Roli]

Tak ještě jednou mi sem dej aktuální log z Rsit.