Modrá Obrazovka

[predatorx21]

Dobrý den,mám takový problém,poslední dobou se mi během jakékoliv činnosti na pc objevuje modrá obrazovka,klidně i 4x za den a právě včera to došlo do takového stavu že se pc ani nechtělo nastartovat,pořád se dokola restartovávalo až se mi po asi 2 hodinách podařilo rozjet. ale teď ještě k tomu výtižení procesoru pěkně skáče třeba ze 7% na 50 % a tak dále...

Děkuji za pomoc

[predatorx21]

Logfile of random's system information tool 1.10 (written by random/random)

Run by Dominik at 2015-06-03 14:54:16
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 714 GB (75%) free of 954 GB
Total RAM: 8126 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:54:25, on 3.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Dominik.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8587 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7ecb0e77-4c2d-4473-a651-aec2f5ad2b33 -SystemEventPortName:HostProcess-b4831654-8e4e-4207-bdd0-9a3999e534bd -IoCancelEventPortName:HostProcess-28ed73de-ae3f-4d76-b6c0-b85670cb9629 -NonStateChangingEventPortName:HostProcess-ec27256f-a755-4940-9164-58c88ab934c2 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d0563983-d053-47ba-aa94-78f0283b09f2 -DeviceGroupId:WpdFsGroup
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4796.0.1694427405\1656918001" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,43,52 --gpu-vendor-id=0x10de --gpu-device-id=0x11c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.5286 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_15/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4796.2.444572805\1850489017" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_15/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4796.6.341178386\1371668348" /prefetch:673131151
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe" 02463b1d-4dd7-4fc8-8ec5-f0670b1721a1 1
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "-1313228520-19948142511939374578-1781220327-2130400592-155648802817669214-1833137832
\??\C:\Windows\system32\conhost.exe "-20467878491517082709411029772-21056829932355044211062904963-365806474-1244549543
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_15/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4796.14.353014416\292448174" /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group6 pct:10f stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Extension (public)/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/StandardR4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Disabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_13/*UMA-Uniformity-Trial-10-Percent/group_06/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_15/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=4796 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="4796.17.1970364021\1002336372" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Dominik\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-06-12 6548112]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-04-30 1337000]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-05-08 2685072]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2015-05-08 1570672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-05-14 28917376]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-05-15 2888384]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2015-05-08 8322328]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-03-26 291608]
"PWRISOVM.EXE"=C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2013-10-23 337432]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-11-29 284440]

C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-06-03 14:54:16 ----D---- C:\rsit
2015-06-03 14:54:16 ----D---- C:\Program Files\trend micro
2015-06-02 19:53:21 ----D---- C:\Program Files (x86)\SpeedFan
2015-06-02 19:41:52 ----A---- C:\Windows\ntbtlog.txt
2015-06-02 19:05:11 ----D---- C:\Windows\system32\MRT
2015-06-02 19:05:10 ----A---- C:\Windows\system32\MRT.exe
2015-06-02 19:05:09 ----D---- C:\b9ec592ae2028e244561
2015-06-01 21:33:58 ----D---- C:\Program Files (x86)\Hatred
2015-05-29 22:43:32 ----D---- C:\Program Files\Common Files\DESIGNER
2015-05-28 23:45:32 ----SD---- C:\Windows\SYSWOW64\GWX
2015-05-28 23:45:32 ----SD---- C:\Windows\system32\GWX
2015-05-28 23:45:32 ----D---- C:\Windows\Migration
2015-05-28 21:23:04 ----D---- C:\Program Files\CCleaner
2015-05-28 18:44:01 ----D---- C:\Program Files (x86)\Rockstar Games
2015-05-28 18:43:57 ----D---- C:\Program Files\Rockstar Games
2015-05-28 18:21:31 ----D---- C:\Program Files (x86)\Grand Theft Auto V
2015-05-28 15:17:15 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-05-28 15:17:15 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-05-27 21:44:14 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-05-27 21:44:14 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-05-27 21:44:13 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-05-27 21:44:13 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-05-27 21:44:11 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-05-27 21:44:11 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-05-27 21:44:11 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-05-27 21:44:11 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-05-27 21:44:11 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-05-27 21:44:11 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-05-27 20:13:42 ----HD---- C:\Windows\system32\CanonIJ Uninstaller Information
2015-05-27 20:13:37 ----HD---- C:\ProgramData\CanonBJ
2015-05-27 20:13:23 ----A---- C:\Windows\system32\CNMLMAD.DLL
2015-05-27 20:10:52 ----A---- C:\Windows\SYSWOW64\CNHMCA.dll
2015-05-27 20:10:52 ----A---- C:\Windows\SYSWOW64\CNC5100U.dll
2015-05-27 20:10:52 ----A---- C:\Windows\SYSWOW64\CNC5100L.dll
2015-05-27 20:10:50 ----A---- C:\Windows\system32\CNC5100L.dll
2015-05-27 20:10:49 ----A---- C:\Windows\system32\CNHMCA6.dll
2015-05-27 20:10:49 ----A---- C:\Windows\system32\CNC5100I.dll
2015-05-27 20:10:49 ----A---- C:\Windows\system32\CNC5100C.dll
2015-05-27 16:31:51 ----D---- C:\Windows\PCHEALTH
2015-05-27 16:29:33 ----D---- C:\Program Files\Microsoft Analysis Services
2015-05-27 16:29:33 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2015-05-27 16:29:23 ----D---- C:\Program Files (x86)\Microsoft Office
2015-05-27 16:29:18 ----D---- C:\ProgramData\Microsoft Help
2015-05-27 16:29:18 ----D---- C:\Program Files\Microsoft Office
2015-05-27 16:29:07 ----RHD---- C:\MSOCache
2015-05-27 15:22:21 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-27 15:22:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2015-05-27 15:22:20 ----A---- C:\Windows\explorer.exe
2015-05-27 15:21:54 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-05-27 15:21:54 ----A---- C:\Windows\system32\d3d10warp.dll
2015-05-27 15:21:53 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-05-27 15:21:53 ----A---- C:\Windows\system32\d2d1.dll
2015-05-27 15:20:57 ----A---- C:\Windows\system32\spoolsv.exe
2015-05-27 15:20:56 ----A---- C:\Windows\splwow64.exe
2015-05-26 20:59:20 ----D---- C:\Program Files (x86)\Microsoft Chart Controls
2015-05-26 20:59:11 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-05-26 20:59:11 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-05-26 20:59:10 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-05-26 20:59:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-05-26 20:59:10 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-05-26 20:59:10 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-05-26 20:59:08 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-05-26 20:59:08 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-05-26 16:00:36 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-05-26 16:00:36 ----A---- C:\Windows\system32\FntCache.dll
2015-05-26 16:00:36 ----A---- C:\Windows\system32\DWrite.dll
2015-05-26 16:00:34 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-05-26 16:00:34 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-05-26 16:00:24 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-05-26 16:00:24 ----A---- C:\Windows\system32\WMPhoto.dll
2015-05-26 15:56:07 ----D---- C:\Users\Dominik\AppData\Roaming\Adobe
2015-05-26 15:24:56 ----A---- C:\Windows\system32\IEUDINIT.EXE
2015-05-26 15:20:55 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\url.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\icardie.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-26 15:20:50 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-26 15:20:50 ----A---- C:\Windows\system32\elshyph.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-26 15:20:49 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\wininet.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\urlmon.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-05-26 15:20:49 ----A---- C:\Windows\system32\msrating.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\msls31.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\jsIntl.dll
2015-05-26 15:20:49 ----A---- C:\Windows\system32\iertutil.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\wextract.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\webcheck.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\vbscript.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\url.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\pngfilt.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\occache.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\mshtmler.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\mshtml.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\mshta.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\msfeedssync.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\licmgr10.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\jscript9.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\inseng.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\iexpress.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ieui.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\iesysprep.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\iesetup.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\iernonce.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ieframe.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ieapfltr.dat
2015-05-26 15:20:48 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-26 15:20:48 ----A---- C:\Windows\system32\icardie.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-26 15:20:48 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-26 15:20:47 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-26 15:20:47 ----A---- C:\Windows\system32\jscript.dll
2015-05-26 15:20:47 ----A---- C:\Windows\system32\imgutil.dll
2015-05-26 15:20:47 ----A---- C:\Windows\system32\iepeers.dll
2015-05-26 15:20:47 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-26 15:20:47 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-26 15:19:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-05-26 15:19:49 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\XpsPrint.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\UIAnimation.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\dxgi.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\d3d10level9.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\d3d10core.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\d3d10_1.dll
2015-05-26 15:19:49 ----A---- C:\Windows\system32\d3d10.dll
2015-05-25 21:14:41 ----D---- C:\Program Files (x86)\Steam
2015-05-25 15:23:28 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\system32\KBDYAK.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\system32\KBDTAT.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\system32\KBDRU1.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\system32\KBDRU.DLL
2015-05-25 15:23:28 ----A---- C:\Windows\system32\KBDBASH.DLL
2015-05-25 15:23:25 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2015-05-25 15:23:25 ----A---- C:\Windows\SYSWOW64\esent.dll
2015-05-25 15:23:25 ----A---- C:\Windows\system32\fsutil.exe
2015-05-25 15:23:25 ----A---- C:\Windows\system32\esent.dll
2015-05-25 15:23:25 ----A---- C:\Windows\system32\drivers\amdxata.sys
2015-05-25 15:23:24 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2015-05-25 15:23:24 ----A---- C:\Windows\system32\drivers\nvstor.sys
2015-05-25 15:23:24 ----A---- C:\Windows\system32\drivers\nvraid.sys
2015-05-25 15:23:24 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2015-05-25 15:23:24 ----A---- C:\Windows\system32\drivers\amdsata.sys
2015-05-24 20:14:03 ----D---- C:\Program Files (x86)\Darkest Hour
2015-05-24 13:26:10 ----SD---- C:\Windows\system32\CompatTel
2015-05-24 13:26:10 ----D---- C:\Windows\system32\appraiser
2015-05-24 13:26:08 ----D---- C:\Windows\SYSWOW64\Wat
2015-05-24 13:26:07 ----D---- C:\Windows\system32\Wat
2015-05-24 13:20:16 ----D---- C:\8b4defcd9062a37b07d8fcea
2015-05-24 12:08:41 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-05-24 12:08:41 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-05-24 12:08:41 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-05-24 12:08:41 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-05-24 12:08:40 ----A---- C:\Windows\system32\WUDFx.dll
2015-05-24 12:08:40 ----A---- C:\Windows\system32\WUDFHost.exe
2015-05-24 12:08:40 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2015-05-24 12:01:23 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-24 12:01:23 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-24 11:53:34 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-05-24 11:53:33 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-05-24 11:53:33 ----A---- C:\Windows\system32\wmi.dll
2015-05-24 11:44:29 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2015-05-24 11:44:28 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2015-05-24 11:44:28 ----A---- C:\Windows\system32\infocardapi.dll
2015-05-24 11:44:28 ----A---- C:\Windows\system32\icardagt.exe
2015-05-24 11:44:27 ----A---- C:\Windows\SYSWOW64\icardres.dll
2015-05-24 11:44:27 ----A---- C:\Windows\system32\icardres.dll
2015-05-24 11:44:12 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-05-24 11:44:12 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-05-23 22:52:19 ----D---- C:\ProgramData\Steam
2015-05-23 22:03:17 ----D---- C:\Program Files\WinRAR
2015-05-23 20:26:41 ----D---- C:\Users\Dominik\AppData\Roaming\Intel Corporation
2015-05-23 12:59:26 ----A---- C:\Windows\system32\RTNUninst64.dll
2015-05-23 12:59:26 ----A---- C:\Windows\system32\RtNicProp64.dll
2015-05-23 12:59:26 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2015-05-23 12:53:28 ----D---- C:\Users\Dominik\AppData\Roaming\InstallShield
2015-05-23 12:10:43 ----D---- C:\Windows\Minidump
2015-05-23 11:23:43 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-05-23 11:23:43 ----A---- C:\Windows\system32\wdi.dll
2015-05-23 11:23:43 ----A---- C:\Windows\system32\powertracker.dll
2015-05-23 11:23:43 ----A---- C:\Windows\system32\perftrack.dll
2015-05-23 11:21:31 ----A---- C:\Windows\system32\termsrv.dll
2015-05-23 11:21:08 ----A---- C:\Windows\system32\lsasrv.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-05-23 11:21:07 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\wdigest.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\TSpkg.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\sspicli.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\schannel.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\secur32.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\ncrypt.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\msv1_0.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\lsass.exe
2015-05-23 11:21:07 ----A---- C:\Windows\system32\kerberos.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-05-23 11:21:07 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-05-23 11:21:07 ----A---- C:\Windows\system32\credssp.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\certcli.dll
2015-05-23 11:21:07 ----A---- C:\Windows\system32\auditpol.exe
2015-05-23 11:21:07 ----A---- C:\Windows\system32\adtschema.dll
2015-05-23 11:21:06 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-05-23 11:21:06 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-05-23 11:21:06 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-05-23 11:21:06 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-05-23 11:21:06 ----A---- C:\Windows\system32\sspisrv.dll
2015-05-23 11:21:06 ----A---- C:\Windows\system32\msobjs.dll
2015-05-23 11:21:06 ----A---- C:\Windows\system32\msaudite.dll
2015-05-23 11:20:53 ----A---- C:\Windows\system32\services.exe
2015-05-23 11:20:51 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-05-23 11:20:49 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2015-05-23 11:20:49 ----A---- C:\Windows\system32\xmllite.dll
2015-05-23 11:20:45 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-05-23 11:20:45 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-05-23 11:20:45 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-05-23 11:20:45 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-05-23 11:20:45 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-05-23 11:20:45 ----A---- C:\Windows\system32\lpk.dll
2015-05-23 11:20:45 ----A---- C:\Windows\system32\fontsub.dll
2015-05-23 11:20:45 ----A---- C:\Windows\system32\dciman32.dll
2015-05-23 11:20:45 ----A---- C:\Windows\system32\atmlib.dll
2015-05-23 11:20:45 ----A---- C:\Windows\system32\atmfd.dll
2015-05-23 11:20:43 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2015-05-23 11:20:43 ----A---- C:\Windows\system32\msieftp.dll
2015-05-23 11:20:41 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2015-05-23 11:20:41 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2015-05-23 11:20:41 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2015-05-23 11:20:41 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2015-05-23 11:20:41 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2015-05-23 11:20:41 ----A---- C:\Windows\system32\odbctrac.dll
2015-05-23 11:20:41 ----A---- C:\Windows\system32\odbccu32.dll
2015-05-23 11:20:41 ----A---- C:\Windows\system32\odbccr32.dll
2015-05-23 11:20:41 ----A---- C:\Windows\system32\odbccp32.dll
2015-05-23 11:20:39 ----A---- C:\Windows\system32\wwansvc.dll
2015-05-23 11:20:39 ----A---- C:\Windows\system32\wwanprotdim.dll
2015-05-23 11:20:38 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-05-23 11:20:38 ----A---- C:\Windows\system32\comctl32.dll
2015-05-23 11:20:36 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2015-05-23 11:20:36 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2015-05-23 11:20:36 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2015-05-23 11:20:36 ----A---- C:\Windows\system32\dhcpcore6.dll
2015-05-23 11:20:28 ----A---- C:\Windows\SYSWOW64\sbe.dll
2015-05-23 11:20:28 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2015-05-23 11:20:28 ----A---- C:\Windows\system32\sbe.dll
2015-05-23 11:20:28 ----A---- C:\Windows\system32\CPFilters.dll
2015-05-23 11:20:01 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-05-23 11:20:01 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-05-23 11:20:01 ----A---- C:\Windows\system32\msxml6r.dll
2015-05-23 11:20:01 ----A---- C:\Windows\system32\msxml6.dll
2015-05-23 11:20:00 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2015-05-23 11:20:00 ----A---- C:\Windows\system32\ntshrui.dll
2015-05-23 11:19:58 ----A---- C:\Windows\system32\win32k.sys
2015-05-23 11:17:57 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2015-05-23 11:17:57 ----A---- C:\Windows\system32\tquery.dll
2015-05-23 11:17:57 ----A---- C:\Windows\system32\SearchIndexer.exe
2015-05-23 11:17:57 ----A---- C:\Windows\system32\mssrch.dll
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\tquery.dll
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\mssph.dll
2015-05-23 11:17:56 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2015-05-23 11:17:56 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2015-05-23 11:17:56 ----A---- C:\Windows\system32\SearchFilterHost.exe
2015-05-23 11:17:56 ----A---- C:\Windows\system32\mssvp.dll
2015-05-23 11:17:56 ----A---- C:\Windows\system32\mssphtb.dll
2015-05-23 11:17:56 ----A---- C:\Windows\system32\mssph.dll
2015-05-23 11:17:56 ----A---- C:\Windows\system32\msscntrs.dll
2015-05-23 11:17:37 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-05-23 11:17:37 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-05-23 11:17:37 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-05-23 11:17:36 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-05-23 11:17:36 ----A---- C:\Windows\system32\usp10.dll
2015-05-23 11:17:35 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-05-23 11:17:34 ----A---- C:\Windows\system32\webio.dll
2015-05-23 11:17:32 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-05-23 11:17:31 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-05-23 11:17:21 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-05-23 11:17:21 ----A---- C:\Windows\system32\drmv2clt.dll
2015-05-23 11:17:21 ----A---- C:\Windows\system32\blackbox.dll
2015-05-23 11:17:20 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-05-23 11:17:19 ----A---- C:\Windows\system32\wmp.dll
2015-05-23 11:17:19 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-05-23 11:17:19 ----A---- C:\Windows\system32\mf.dll
2015-05-23 11:17:18 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-05-23 11:17:18 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-05-23 11:17:18 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-05-23 11:17:18 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-05-23 11:17:17 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-05-23 11:17:17 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-05-23 11:17:17 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-05-23 11:17:17 ----A---- C:\Windows\system32\crypt32.dll
2015-05-23 11:17:17 ----A---- C:\Windows\system32\ci.dll
2015-05-23 11:17:16 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-05-23 11:17:16 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-05-23 11:17:16 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-05-23 11:17:16 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-05-23 11:17:16 ----A---- C:\Windows\system32\wintrust.dll
2015-05-23 11:17:16 ----A---- C:\Windows\system32\winresume.exe
2015-05-23 11:17:16 ----A---- C:\Windows\system32\winload.exe
2015-05-23 11:17:16 ----A---- C:\Windows\system32\quartz.dll
2015-05-23 11:17:16 ----A---- C:\Windows\system32\evr.dll
2015-05-23 11:17:16 ----A---- C:\Windows\system32\cryptsvc.dll
2015-05-23 11:17:16 ----A---- C:\Windows\system32\audiosrv.dll
2015-05-23 11:17:15 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-05-23 11:17:15 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-05-23 11:17:15 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-05-23 11:17:15 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-05-23 11:17:15 ----A---- C:\Windows\system32\qdvd.dll
2015-05-23 11:17:15 ----A---- C:\Windows\system32\pcasvc.dll
2015-05-23 11:17:15 ----A---- C:\Windows\system32\mfplat.dll
2015-05-23 11:17:15 ----A---- C:\Windows\system32\cryptui.dll
2015-05-23 11:17:15 ----A---- C:\Windows\system32\cryptnet.dll
2015-05-23 11:17:15 ----A---- C:\Windows\system32\AudioEng.dll
2015-05-23 11:17:14 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-05-23 11:17:14 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-05-23 11:17:14 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-05-23 11:17:14 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-05-23 11:17:14 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\msscp.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\msnetobj.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\EncDump.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-05-23 11:17:14 ----A---- C:\Windows\system32\cryptsp.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\AudioSes.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\appidsvc.dll
2015-05-23 11:17:14 ----A---- C:\Windows\system32\appidapi.dll
2015-05-23 11:17:13 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-05-23 11:17:13 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-05-23 11:17:13 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-05-23 11:17:13 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-05-23 11:17:13 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-05-23 11:17:13 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-05-23 11:17:13 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-05-23 11:17:13 ----A---- C:\Windows\system32\rrinstaller.exe
2015-05-23 11:17:13 ----A---- C:\Windows\system32\pcadm.dll
2015-05-23 11:17:13 ----A---- C:\Windows\system32\mfps.dll
2015-05-23 11:17:13 ----A---- C:\Windows\system32\mfpmp.exe
2015-05-23 11:17:13 ----A---- C:\Windows\system32\drivers\appid.sys
2015-05-23 11:17:13 ----A---- C:\Windows\system32\audiodg.exe
2015-05-23 11:17:13 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-05-23 11:17:12 ----A---- C:\Windows\system32\pcawrk.exe
2015-05-23 11:17:12 ----A---- C:\Windows\system32\pcalua.exe
2015-05-23 11:17:12 ----A---- C:\Windows\system32\msmmsp.dll
2015-05-23 11:17:12 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-05-23 11:17:11 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-05-23 11:17:11 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-05-23 11:17:11 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-05-23 11:17:11 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-05-23 11:17:11 ----A---- C:\Windows\system32\wmploc.DLL
2015-05-23 11:17:11 ----A---- C:\Windows\system32\spwmp.dll
2015-05-23 11:17:11 ----A---- C:\Windows\system32\pcaevts.dll
2015-05-23 11:17:11 ----A---- C:\Windows\system32\mferror.dll
2015-05-23 11:17:11 ----A---- C:\Windows\system32\dxmasf.dll
2015-05-23 11:16:36 ----A---- C:\Windows\system32\profsvc.dll
2015-05-23 11:16:34 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-05-23 11:16:34 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-05-23 11:16:34 ----A---- C:\Windows\system32\mscorier.dll
2015-05-23 11:16:34 ----A---- C:\Windows\system32\dfshim.dll
2015-05-23 11:16:33 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-05-23 11:16:33 ----A---- C:\Windows\system32\mscories.dll
2015-05-23 11:16:24 ----A---- C:\Windows\system32\wer.dll
2015-05-23 11:16:23 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-05-23 11:16:23 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2015-05-23 11:16:23 ----A---- C:\Windows\system32\imagehlp.dll
2015-05-23 11:16:21 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-05-23 11:16:21 ----A---- C:\Windows\system32\InkEd.dll
2015-05-23 11:16:20 ----A---- C:\Windows\system32\jnwmon.dll
2015-05-23 11:16:19 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-05-23 11:16:19 ----A---- C:\Windows\system32\drivers\netio.sys
2015-05-23 11:16:19 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-05-23 11:15:59 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-05-23 11:15:59 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-05-23 11:15:59 ----A---- C:\Windows\system32\nlasvc.dll
2015-05-23 11:15:45 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-05-23 11:15:45 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-05-23 11:15:45 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-05-23 11:15:45 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-05-23 11:15:45 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wuwebv.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wups2.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wups.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wudriver.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wucltux.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wuauclt.exe
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wuapp.exe
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wuapi.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-05-23 11:15:45 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-05-23 11:15:44 ----A---- C:\Windows\system32\wuaueng.dll
2015-05-23 11:15:30 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-05-23 11:15:30 ----A---- C:\Windows\system32\drivers\drmk.sys
2015-05-23 11:15:26 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-05-23 11:15:26 ----A---- C:\Windows\system32\osk.exe
2015-05-23 11:15:23 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-05-23 11:15:20 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-05-23 11:15:20 ----A---- C:\Windows\system32\ubpm.dll
2015-05-23 11:15:19 ----A---- C:\Windows\system32\drivers\ataport.sys
2015-05-23 11:15:16 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-05-23 11:15:16 ----A---- C:\Windows\system32\wpdshext.dll
2015-05-23 11:15:15 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-05-23 11:15:15 ----A---- C:\Windows\SYSWOW64\credui.dll
2015-05-23 11:15:15 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-05-23 11:15:15 ----A---- C:\Windows\system32\credui.dll
2015-05-23 11:15:07 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2015-05-23 11:15:07 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2015-05-23 11:15:07 ----A---- C:\Windows\system32\mfc42u.dll
2015-05-23 11:15:07 ----A---- C:\Windows\system32\mfc42.dll
2015-05-23 11:15:05 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-05-23 11:15:05 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-05-23 11:15:05 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-05-23 11:15:05 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-05-23 11:15:05 ----A---- C:\Windows\system32\secproc_isv.dll
2015-05-23 11:15:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-05-23 11:15:05 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-05-23 11:15:05 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-05-23 11:15:05 ----A---- C:\Windows\system32\RMActivate.exe
2015-05-23 11:15:04 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2015-05-23 11:15:04 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2015-05-23 11:15:04 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-05-23 11:15:04 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-05-23 11:15:04 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-05-23 11:15:04 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2015-05-23 11:15:04 ----A---- C:\Windows\system32\secproc_ssp.dll
2015-05-23 11:15:04 ----A---- C:\Windows\system32\secproc.dll
2015-05-23 11:15:04 ----A---- C:\Windows\system32\msdrm.dll
2015-05-23 11:14:55 ----A---- C:\Windows\system32\drivers\usbport.sys
2015-05-23 11:14:55 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-05-23 11:14:55 ----A---- C:\Windows\system32\drivers\usbehci.sys
2015-05-23 11:14:55 ----A---- C:\Windows\system32\drivers\usbd.sys
2015-05-23 11:14:55 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2015-05-23 11:14:53 ----A---- C:\Windows\system32\d3d11.dll
2015-05-23 11:14:52 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-05-23 11:14:49 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2015-05-23 11:14:49 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-05-23 11:14:45 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-05-23 11:14:45 ----A---- C:\Windows\system32\qedit.dll
2015-05-23 11:14:43 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-05-23 11:14:43 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-05-23 11:14:41 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-05-23 11:14:39 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-05-23 11:14:39 ----A---- C:\Windows\system32\shell32.dll
2015-05-23 11:14:34 ----A---- C:\Windows\system32\drivers\afd.sys
2015-05-23 11:14:33 ----A---- C:\Windows\system32\Wdfres.dll
2015-05-23 11:14:33 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2015-05-23 11:14:33 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-05-23 11:14:32 ----A---- C:\Windows\system32\aitstatic.exe
2015-05-23 11:14:31 ----A---- C:\Windows\system32\invagent.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\generaltel.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\devinv.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\appraiser.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\aepic.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\aepdu.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\aeinv.dll
2015-05-23 11:14:31 ----A---- C:\Windows\system32\acmigration.dll
2015-05-23 11:14:25 ----A---- C:\Windows\system32\drivers\usbcir.sys
2015-05-23 11:14:23 ----A---- C:\Windows\SYSWOW64\netevent.dll
2015-05-23 11:14:23 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2015-05-23 11:14:23 ----A---- C:\Windows\system32\nlaapi.dll
2015-05-23 11:14:23 ----A---- C:\Windows\system32\netevent.dll
2015-05-23 11:14:23 ----A---- C:\Windows\system32\netcorehc.dll
2015-05-23 11:14:23 ----A---- C:\Windows\system32\ncsi.dll
2015-05-23 11:14:23 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-05-23 11:14:23 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2015-05-23 11:14:16 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-05-23 11:14:15 ----A---- C:\Windows\system32\drivers\usbscan.sys
2015-05-23 11:14:15 ----A---- C:\Windows\system32\drivers\hidparse.sys
2015-05-23 11:14:15 ----A---- C:\Windows\system32\drivers\hidclass.sys
2015-05-23 11:14:14 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2015-05-23 11:14:14 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2015-05-23 11:14:14 ----A---- C:\Windows\system32\dnsrslvr.dll
2015-05-23 11:14:14 ----A---- C:\Windows\system32\dnscacheugc.exe
2015-05-23 11:14:14 ----A---- C:\Windows\system32\dnsapi.dll
2015-05-23 11:13:53 ----A---- C:\Windows\system32\WebClnt.dll
2015-05-23 11:13:52 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-05-23 11:13:52 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-05-23 11:13:52 ----A---- C:\Windows\system32\davclnt.dll
2015-05-23 11:13:51 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-05-23 11:13:51 ----A---- C:\Windows\system32\dpnet.dll
2015-05-23 11:13:50 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-05-23 11:13:50 ----A---- C:\Windows\system32\gdi32.dll
2015-05-23 11:13:40 ----A---- C:\Windows\system32\objsel.dll
2015-05-23 11:13:39 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-05-23 11:13:39 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2015-05-23 11:13:39 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\system32\dpapiprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\system32\dimsroam.dll
2015-05-23 11:13:39 ----A---- C:\Windows\system32\cngprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\system32\capiprovider.dll
2015-05-23 11:13:39 ----A---- C:\Windows\system32\adprovider.dll
2015-05-23 11:13:38 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2015-05-23 11:13:38 ----A---- C:\Windows\system32\wincredprovider.dll
2015-05-23 11:13:21 ----A---- C:\Windows\system32\OxpsConverter.exe
2015-05-23 11:12:57 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-05-23 11:12:57 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-05-23 11:12:57 ----A---- C:\Windows\system32\msxml3r.dll
2015-05-23 11:12:57 ----A---- C:\Windows\system32\msxml3.dll
2015-05-23 11:12:56 ----A---- C:\Windows\system32\drivers\srvnet.sys
2015-05-23 11:12:56 ----A---- C:\Windows\system32\drivers\srv2.sys
2015-05-23 11:12:56 ----A---- C:\Windows\system32\drivers\srv.sys
2015-05-23 11:12:55 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-05-23 11:12:55 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-05-23 11:12:54 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-05-23 11:12:54 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-05-23 11:12:54 ----A---- C:\Windows\system32\cdd.dll
2015-05-23 11:12:50 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-05-23 11:12:50 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-05-23 11:12:50 ----A---- C:\Windows\system32\ntdll.dll
2015-05-23 11:12:49 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-05-23 11:12:49 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-05-23 11:12:49 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-05-23 11:12:49 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\wow64win.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\wow64.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\winsrv.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\srcore.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\KernelBase.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\kernel32.dll
2015-05-23 11:12:49 ----A---- C:\Windows\system32\drivers\cng.sys
2015-05-23 11:12:49 ----A---- C:\Windows\system32\conhost.exe
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-23 11:12:48 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-23 11:12:48 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-05-23 11:12:48 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-05-23 11:12:48 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-05-23 11:12:48 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-05-23 11:12:48 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-05-23 11:12:48 ----A---- C:\Windows\system32\wow64cpu.dll
2015-05-23 11:12:48 ----A---- C:\Windows\system32\srclient.dll
2015-05-23 11:12:48 ----A---- C:\Windows\system32\smss.exe
2015-05-23 11:12:48 ----A---- C:\Windows\system32\rstrui.exe
2015-05-23 11:12:48 ----A---- C:\Windows\system32\ntvdm64.dll
2015-05-23 11:12:48 ----A---- C:\Windows\system32\csrsrv.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-23 11:12:47 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-23 11:12:47 ----A---- C:\Windows\SYSWOW64\user.exe
2015-05-23 11:12:47 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-05-23 11:12:47 ----A---- C:\Windows\system32\apisetschema.dll
2015-05-23 11:12:34 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-05-23 11:12:34 ----A---- C:\Windows\system32\mswsock.dll
2015-05-23 11:12:31 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-05-23 11:12:31 ----A---- C:\Windows\SYSWOW64\gameux.dll
2015-05-23 11:12:31 ----A---- C:\Windows\system32\Wpc.dll
2015-05-23 11:12:31 ----A---- C:\Windows\system32\gameux.dll
2015-05-23 11:12:23 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-05-23 11:12:23 ----A---- C:\Windows\system32\psisdecd.dll
2015-05-23 11:11:54 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-05-23 11:11:54 ----A---- C:\Windows\system32\oleaut32.dll
2015-05-23 11:11:52 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-23 11:11:52 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-23 11:11:52 ----A---- C:\Windows\system32\tdh.dll
2015-05-23 11:11:52 ----A---- C:\Windows\system32\advapi32.dll
2015-05-23 11:11:48 ----A---- C:\Windows\system32\drivers\partmgr.sys
2015-05-23 11:11:41 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-05-23 11:11:41 ----A---- C:\Windows\system32\poqexec.exe
2015-05-23 11:11:36 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-05-23 11:11:36 ----A---- C:\Windows\system32\pku2u.dll
2015-05-23 11:11:01 ----A---- C:\Windows\system32\drivers\http.sys
2015-05-23 11:10:57 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2015-05-23 11:10:57 ----A---- C:\Windows\system32\iologmsg.dll
2015-05-23 11:10:57 ----A---- C:\Windows\system32\drivers\storport.sys
2015-05-23 11:10:57 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2015-05-23 11:10:57 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2015-05-23 11:10:53 ----A---- C:\Windows\SYSWOW64\synceng.dll
2015-05-23 11:10:53 ----A---- C:\Windows\system32\synceng.dll
2015-05-23 11:10:52 ----A---- C:\Windows\system32\kdusb.dll
2015-05-23 11:10:52 ----A---- C:\Windows\system32\kdcom.dll
2015-05-23 11:10:52 ----A---- C:\Windows\system32\kd1394.dll
2015-05-23 11:10:49 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2015-05-23 11:10:49 ----A---- C:\Windows\system32\shdocvw.dll
2015-05-23 11:10:43 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-05-23 11:10:43 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-05-23 11:10:43 ----A---- C:\Windows\system32\mstscax.dll
2015-05-23 11:10:39 ----A---- C:\Windows\system32\charmap.exe
2015-05-23 11:10:38 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-05-23 11:10:37 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-05-23 11:10:37 ----A---- C:\Windows\system32\msctf.dll
2015-05-23 11:10:35 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-05-23 11:10:35 ----A---- C:\Windows\system32\rastls.dll
2015-05-23 11:10:34 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2015-05-23 11:10:34 ----A---- C:\Windows\system32\win32spl.dll
2015-05-23 11:10:33 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-05-23 11:10:33 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-05-23 11:10:33 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-05-23 11:10:33 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-05-23 11:10:33 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-05-23 11:10:33 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-05-23 11:10:33 ----A---- C:\Windows\system32\WsmSvc.dll
2015-05-23 11:10:33 ----A---- C:\Windows\system32\WsmAuto.dll
2015-05-23 11:10:33 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-05-23 11:10:33 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-05-23 11:10:32 ----A---- C:\Windows\system32\taskhost.exe
2015-05-23 11:10:28 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2015-05-23 11:10:28 ----A---- C:\Windows\system32\cryptdlg.dll
2015-05-23 11:10:21 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2015-05-23 11:10:21 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2015-05-23 11:10:21 ----A---- C:\Windows\SYSWOW64\devobj.dll
2015-05-23 11:10:21 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2015-05-23 11:10:21 ----A---- C:\Windows\system32\umpnpmgr.dll
2015-05-23 11:10:13 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-05-23 11:10:13 ----A---- C:\Windows\system32\tzres.dll
2015-05-23 11:10:01 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-05-23 11:10:01 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-05-23 11:10:01 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-05-23 11:10:01 ----A---- C:\Windows\system32\shimeng.dll
2015-05-23 11:10:01 ----A---- C:\Windows\system32\sdbinst.exe
2015-05-23 11:10:01 ----A---- C:\Windows\system32\apphelp.dll
2015-05-23 11:10:01 ----A---- C:\Windows\system32\aelupsvc.dll
2015-05-23 11:09:56 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-05-23 11:09:56 ----A---- C:\Windows\system32\packager.dll
2015-05-23 11:09:53 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-05-23 11:09:53 ----A---- C:\Windows\system32\winsta.dll
2015-05-23 11:09:53 ----A---- C:\Windows\system32\winlogon.exe
2015-05-23 11:09:53 ----A---- C:\Windows\system32\mstsc.exe
2015-05-23 11:09:52 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-05-23 11:09:52 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-05-23 11:09:52 ----A---- C:\Windows\system32\tsgqec.dll
2015-05-23 11:09:52 ----A---- C:\Windows\system32\rdrmemptylst.exe
2015-05-23 11:09:52 ----A---- C:\Windows\system32\rdpwsx.dll
2015-05-23 11:09:52 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-05-23 11:09:52 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-05-23 11:09:52 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-05-23 11:09:52 ----A---- C:\Windows\system32\aaclient.dll
2015-05-23 11:09:44 ----A---- C:\Windows\system32\browser.dll
2015-05-23 11:09:43 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2015-05-23 11:09:43 ----A---- C:\Windows\SYSWOW64\browcli.dll
2015-05-23 11:09:43 ----A---- C:\Windows\system32\netapi32.dll
2015-05-23 11:09:43 ----A---- C:\Windows\system32\browcli.dll
2015-05-23 11:09:21 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2015-05-23 11:09:21 ----A---- C:\Windows\system32\prevhost.exe
2015-05-23 11:09:18 ----A---- C:\Windows\system32\drivers\fvevol.sys
2015-05-23 11:09:16 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-05-23 11:09:16 ----A---- C:\Windows\system32\inetcomm.dll
2015-05-23 11:09:16 ----A---- C:\Windows\system32\FXSCOVER.exe
2015-05-23 11:09:15 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-05-23 11:09:15 ----A---- C:\Windows\system32\msvcrt.dll
2015-05-23 11:09:14 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-05-23 11:09:13 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-05-23 11:09:13 ----A---- C:\Windows\system32\scesrv.dll
2015-05-23 11:09:11 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-05-23 11:09:11 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-05-23 11:09:11 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-05-23 11:09:11 ----A---- C:\Windows\system32\msihnd.dll
2015-05-23 11:09:11 ----A---- C:\Windows\system32\msi.dll
2015-05-23 11:09:11 ----A---- C:\Windows\system32\consent.exe
2015-05-23 11:09:11 ----A---- C:\Windows\system32\authui.dll
2015-05-23 11:09:11 ----A---- C:\Windows\system32\appinfo.dll
2015-05-23 11:09:06 ----A---- C:\Windows\system32\certutil.exe
2015-05-23 11:09:05 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-05-23 11:09:05 ----A---- C:\Windows\SYSWOW64\certenc.dll
2015-05-23 11:09:05 ----A---- C:\Windows\system32\certenc.dll
2015-05-23 11:08:57 ----A---- C:\Windows\SYSWOW64\wscript.exe
2015-05-23 11:08:57 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2015-05-23 11:08:57 ----A---- C:\Windows\SYSWOW64\cscript.exe
2015-05-23 11:08:57 ----A---- C:\Windows\system32\wscript.exe
2015-05-23 11:08:57 ----A---- C:\Windows\system32\scrrun.dll
2015-05-23 11:08:57 ----A---- C:\Windows\system32\cscript.exe
2015-05-23 11:08:40 ----A---- C:\Windows\system32\localspl.dll
2015-05-23 11:08:37 ----A---- C:\Windows\system32\drivers\bowser.sys
2015-05-23 11:08:35 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-05-23 11:08:35 ----A---- C:\Windows\system32\oleacc.dll
2015-05-23 11:08:34 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-05-23 11:08:34 ----A---- C:\Windows\system32\EncDec.dll
2015-05-23 11:08:34 ----A---- C:\Windows\system32\clfs.sys
2015-05-23 11:08:33 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-05-23 11:08:33 ----A---- C:\Windows\system32\clfsw32.dll
2015-05-23 11:08:27 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2015-05-23 11:08:27 ----A---- C:\Windows\system32\cdosys.dll
2015-05-23 11:07:46 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-05-23 11:07:46 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2015-05-23 11:07:46 ----A---- C:\Windows\system32\nshwfp.dll
2015-05-23 11:07:46 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-05-23 11:07:46 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-05-23 11:07:16 ----A---- C:\Windows\system32\scavengeui.dll
2015-05-23 03:15:44 ----A---- C:\Windows\system32\rpcrt4.dll
2015-05-23 03:15:43 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-05-23 03:01:23 ----D---- C:\Fraps
2015-05-23 00:41:37 ----D---- C:\Users\Dominik\AppData\Roaming\vlc
2015-05-23 00:31:39 ----D---- C:\Program Files (x86)\VideoLAN
2015-05-22 20:47:20 ----D---- C:\Games
2015-05-22 20:43:50 ----D---- C:\Users\Dominik\AppData\Roaming\PowerISO
2015-05-22 20:38:21 ----D---- C:\Users\Dominik\AppData\Roaming\WinRAR
2015-05-22 20:22:08 ----D---- C:\Program Files (x86)\WinRAR
2015-05-22 19:34:31 ----D---- C:\Program Files (x86)\PowerISO
2015-05-22 19:34:31 ----A---- C:\Windows\system32\drivers\scdemu.sys
2015-05-22 19:21:59 ----D---- C:\GOG Games
2015-05-22 19:18:18 ----D---- C:\Users\Dominik\AppData\Roaming\NVIDIA
2015-05-22 19:03:50 ----D---- C:\ProgramData\Package Cache
2015-05-22 15:22:03 ----D---- C:\Windows\Panther
2015-05-22 15:21:51 ----RASH---- C:\BOOTSECT.BAK
2015-05-22 15:21:50 ----SHD---- C:\Boot

[predatorx21]

2015-05-22 15:21:25 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-05-22 15:21:25 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-05-22 15:21:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-05-22 15:21:25 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-05-22 15:21:25 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-05-22 15:21:25 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-05-22 15:21:24 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-05-22 15:21:23 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-05-22 15:21:23 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-05-22 15:21:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-05-22 15:21:23 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-05-22 15:21:23 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-05-22 15:21:23 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-05-22 15:21:22 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-05-22 15:21:22 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-05-22 15:21:22 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-05-22 15:21:22 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-05-22 15:21:22 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-05-22 15:21:22 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-05-22 15:21:22 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-05-22 15:21:22 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-05-22 15:21:21 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-05-22 15:21:21 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-05-22 15:21:21 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-05-22 15:21:21 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-05-22 15:21:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-05-22 15:21:21 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-05-22 15:21:21 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-05-22 15:21:21 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-05-22 15:21:21 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-05-22 15:21:21 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-05-22 15:21:20 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-05-22 15:21:20 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-05-22 15:21:20 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-05-22 15:21:20 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-05-22 15:21:20 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-05-22 15:21:20 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-05-22 15:21:20 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-05-22 15:21:20 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-05-22 15:21:20 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-05-22 15:21:20 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-05-22 15:21:19 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-05-22 15:21:19 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-05-22 15:21:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-05-22 15:21:19 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-05-22 15:21:19 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-05-22 15:21:19 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-05-22 15:21:18 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-05-22 15:21:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-05-22 15:21:18 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-05-22 15:21:18 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-05-22 15:21:18 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-05-22 15:21:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-05-22 15:21:18 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-05-22 15:21:18 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-05-22 15:21:18 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-05-22 15:21:18 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-05-22 15:21:18 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-05-22 15:21:18 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-05-22 15:21:17 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-05-22 15:21:17 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-05-22 15:21:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-05-22 15:21:17 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-05-22 15:21:17 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-05-22 15:21:17 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-05-22 15:21:17 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-05-22 15:21:17 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-05-22 15:21:16 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-05-22 15:21:16 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-05-22 15:21:16 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-05-22 15:21:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-05-22 15:21:16 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-05-22 15:21:16 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-05-22 15:21:16 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-05-22 15:21:16 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-05-22 15:21:15 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-05-22 15:21:15 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-05-22 15:21:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-05-22 15:21:15 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-05-22 15:21:15 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-05-22 15:21:15 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-05-22 15:21:14 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-05-22 15:21:14 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-05-22 15:21:14 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-05-22 15:21:14 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-05-22 15:21:14 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-05-22 15:21:14 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-05-22 15:21:14 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-05-22 15:21:14 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-05-22 15:21:13 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-05-22 15:21:13 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-05-22 15:21:13 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-05-22 15:21:13 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-05-22 15:21:13 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-05-22 15:21:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-05-22 15:21:13 ----A---- C:\Windows\system32\xinput1_3.dll
2015-05-22 15:21:13 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-05-22 15:21:13 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-05-22 15:21:13 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-05-22 15:21:13 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-05-22 15:21:13 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-05-22 15:21:12 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-05-22 15:21:12 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-05-22 15:21:12 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-05-22 15:21:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-05-22 15:21:12 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-05-22 15:21:12 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-05-22 15:21:12 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-05-22 15:21:12 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-05-22 15:21:11 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-05-22 15:21:11 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-05-22 15:21:11 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-05-22 15:21:11 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-05-22 15:21:11 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-05-22 15:21:11 ----A---- C:\Windows\system32\d3dx10.dll
2015-05-22 15:21:10 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-05-22 15:21:10 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-05-22 15:21:10 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-05-22 15:21:10 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-05-22 15:21:10 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-05-22 15:21:10 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-05-22 15:21:07 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-05-22 15:21:07 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-05-22 15:21:07 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-05-22 15:21:07 ----A---- C:\Windows\system32\xinput1_2.dll
2015-05-22 15:21:07 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-05-22 15:21:07 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-05-22 15:21:06 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-05-22 15:21:06 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-05-22 15:21:06 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-05-22 15:21:06 ----A---- C:\Windows\system32\xinput1_1.dll
2015-05-22 15:21:06 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-05-22 15:21:06 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-05-22 15:21:03 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-05-22 15:21:03 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-05-22 15:21:02 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-05-22 15:21:02 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-05-22 15:21:02 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-05-22 15:21:02 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-05-22 15:21:02 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-05-22 15:21:02 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-05-22 15:21:02 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-05-22 15:21:02 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-05-22 15:21:01 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-05-22 15:21:01 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-05-22 15:21:01 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-05-22 15:21:01 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-05-22 15:21:01 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-05-22 15:21:01 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-05-22 15:21:01 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-05-22 15:21:01 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-05-22 15:14:03 ----D---- C:\Users\Dominik\AppData\Roaming\Skype
2015-05-22 15:13:55 ----RD---- C:\Program Files (x86)\Skype
2015-05-22 15:13:54 ----D---- C:\ProgramData\Skype
2015-05-22 15:10:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-05-22 15:10:50 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-05-22 15:10:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-05-22 15:10:50 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-05-22 15:10:49 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-05-22 15:10:49 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-05-22 15:10:33 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2015-05-22 15:10:33 ----A---- C:\Windows\SYSWOW64\nvspbridge.dll
2015-05-22 15:10:33 ----A---- C:\Windows\system32\nvspcap64.dll
2015-05-22 15:10:33 ----A---- C:\Windows\system32\nvspbridge64.dll
2015-05-22 15:09:46 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2015-05-22 15:07:30 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-05-22 15:05:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2015-05-22 15:04:07 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvumdshimx.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvopencl.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvoglv64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvoglshim64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvinitx.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\NvIFR64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvhdap64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\NvFBC64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvdispgenco6435286.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvdispco6435286.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvd3dumx.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvcuvid.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvcuda.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvcompiler.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvaudcap64v.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\nvapi64.dll
2015-05-22 15:04:07 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2015-05-22 15:04:07 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2015-05-22 15:04:07 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2015-05-22 15:03:05 ----D---- C:\NVIDIA
2015-05-22 14:57:30 ----A---- C:\Windows\system32\rdpcore.dll
2015-05-22 14:57:29 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-05-22 14:57:29 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2015-05-22 14:57:07 ----D---- C:\Program Files (x86)\Microsoft Security Client
2015-05-22 14:57:02 ----D---- C:\Program Files\Microsoft Security Client
2015-05-22 14:54:12 ----D---- C:\Program Files (x86)\Google
2015-05-22 14:49:38 ----SHD---- C:\Windows\Installer
2015-05-22 14:49:08 ----D---- C:\ProgramData\NVIDIA
2015-05-22 14:48:32 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2015-05-22 14:48:08 ----A---- C:\Windows\system32\nvvsvc.exe
2015-05-22 14:48:08 ----A---- C:\Windows\system32\nvsvcr.dll
2015-05-22 14:48:08 ----A---- C:\Windows\system32\nvsvc64.dll
2015-05-22 14:48:08 ----A---- C:\Windows\system32\nvshext.dll
2015-05-22 14:48:08 ----A---- C:\Windows\system32\nvmctray.dll
2015-05-22 14:48:08 ----A---- C:\Windows\system32\nvcpl.dll
2015-05-22 14:47:57 ----D---- C:\temp
2015-05-22 14:47:57 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-05-22 14:47:57 ----A---- C:\Windows\system32\OpenCL.dll
2015-05-22 14:47:53 ----D---- C:\ProgramData\NVIDIA Corporation
2015-05-22 14:47:48 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-05-22 14:47:28 ----A---- C:\Windows\system32\nvdispco64.dll
2015-05-22 14:47:27 ----A---- C:\Windows\system32\nvdispgenco64.dll
2015-05-22 14:47:13 ----A---- C:\Windows\system32\nvwgf2umx.dll
2015-05-22 14:46:29 ----D---- C:\Program Files\NVIDIA Corporation
2015-05-22 14:45:38 ----N---- C:\Windows\SYSWOW64\drivers\NVXBAR.SYS
2015-05-22 14:45:19 ----N---- C:\Windows\SYSWOW64\drivers\NVCAP.SYS
2015-05-22 14:40:29 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys
2015-05-22 14:40:21 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys
2015-05-22 14:38:54 ----D---- C:\Windows\SYSWOW64\RTCOM
2015-05-22 14:38:54 ----D---- C:\Program Files\Realtek
2015-05-22 14:38:41 ----A---- C:\Windows\system32\tosade.dll
2015-05-22 14:38:40 ----A---- C:\Windows\system32\tepeqapo64.dll
2015-05-22 14:38:40 ----A---- C:\Windows\system32\tadefxapo264.dll
2015-05-22 14:38:40 ----A---- C:\Windows\system32\tadefxapo.dll
2015-05-22 14:38:39 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\WavesGUILib.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SRSWOW64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SRSTSX64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SRSTSH64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SRSHP64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SFSS_APO.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SFNHK64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SFCOM64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\SFAPO64.dll
2015-05-22 14:38:39 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2015-05-22 14:38:38 ----A---- C:\Windows\system32\RtPgEx64.dll
2015-05-22 14:38:38 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2015-05-22 14:38:38 ----A---- C:\Windows\system32\RtkCfg64.dll
2015-05-22 14:38:38 ----A---- C:\Windows\system32\RtkAPO64.dll
2015-05-22 14:38:38 ----A---- C:\Windows\system32\RtkApi64.dll
2015-05-22 14:38:38 ----A---- C:\Windows\system32\RTCOM64.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RTEEP64A.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RTEEL64A.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RTEEG64A.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RTEED64A.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RP3DHT64.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RP3DAA64.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\RCoInstII64.dll
2015-05-22 14:38:37 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2015-05-22 14:38:37 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2015-05-22 14:38:19 ----A---- C:\Windows\system32\RCoRes64.dat
2015-05-22 14:38:12 ----A---- C:\Windows\system32\R4EEP64A.dll
2015-05-22 14:38:12 ----A---- C:\Windows\system32\R4EEL64A.dll
2015-05-22 14:38:12 ----A---- C:\Windows\system32\R4EEG64A.dll
2015-05-22 14:38:12 ----A---- C:\Windows\system32\R4EED64A.dll
2015-05-22 14:38:12 ----A---- C:\Windows\system32\R4EEA64A.dll
2015-05-22 14:38:11 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-05-22 14:38:11 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2015-05-22 14:38:11 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2015-05-22 14:38:11 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2015-05-22 14:38:10 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-05-22 14:38:10 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2015-05-22 14:38:10 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2015-05-22 14:38:10 ----A---- C:\Windows\system32\KAAPORT64.dll
2015-05-22 14:38:08 ----A---- C:\Windows\system32\FMAPO64.dll
2015-05-22 14:38:08 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-05-22 14:38:08 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2015-05-22 14:38:08 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2015-05-22 14:38:07 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2015-05-22 14:38:07 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2015-05-22 14:38:07 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\AERTAR64.dll
2015-05-22 14:38:05 ----A---- C:\Windows\system32\AERTAC64.dll
2015-05-22 14:38:02 ----R---- C:\Windows\RtlExUpd.dll
2015-05-22 14:38:02 ----HD---- C:\Program Files (x86)\Temp
2015-05-22 14:35:58 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-05-22 14:35:58 ----D---- C:\Program Files (x86)\Realtek
2015-05-22 14:33:53 ----D---- C:\Program Files (x86)\Intel
2015-05-22 14:33:53 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2015-05-22 14:33:31 ----D---- C:\Intel
2015-05-22 14:33:15 ----D---- C:\MSI
2015-05-22 14:29:50 ----D---- C:\Users\Dominik\AppData\Roaming\Identities
2015-05-22 14:29:42 ----SD---- C:\Users\Dominik\AppData\Roaming\Microsoft
2015-05-22 14:29:42 ----D---- C:\Users\Dominik\AppData\Roaming\Media Center Programs
2015-05-22 14:29:38 ----SHD---- C:\Recovery
2015-05-22 14:29:38 ----SHD---- C:\ProgramData\Šablony
2015-05-22 14:29:38 ----SHD---- C:\ProgramData\Plocha
2015-05-22 14:29:38 ----SHD---- C:\ProgramData\Oblíbené položky
2015-05-22 14:29:38 ----SHD---- C:\ProgramData\Nabídka Start
2015-05-22 14:29:38 ----SHD---- C:\ProgramData\Dokumenty
2015-05-22 14:29:38 ----SHD---- C:\ProgramData\Data aplikací
2015-05-22 14:29:35 ----D---- C:\Windows\SoftwareDistribution
2015-05-22 14:22:51 ----D---- C:\Windows\Prefetch
2015-05-22 14:22:26 ----ASH---- C:\pagefile.sys
2015-05-22 14:22:25 ----SHD---- C:\System Volume Information
2015-05-22 14:22:25 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2015-06-03 14:54:16 ----RD---- C:\Program Files
2015-06-03 14:53:41 ----D---- C:\Windows\Temp
2015-06-03 10:56:11 ----D---- C:\Windows\System32
2015-06-03 10:56:11 ----D---- C:\Windows\inf
2015-06-03 10:56:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-06-02 20:59:21 ----D---- C:\Windows
2015-06-02 20:28:10 ----D---- C:\Windows\system32\config
2015-06-02 19:58:05 ----D---- C:\Windows\Tasks
2015-06-02 19:58:05 ----D---- C:\Windows\system32\wfp
2015-06-02 19:58:05 ----D---- C:\Windows\system32\DriverStore
2015-06-02 19:58:05 ----D---- C:\Windows\system32\catroot2
2015-06-02 19:58:04 ----D---- C:\Windows\system32\wbem
2015-06-02 19:57:59 ----D---- C:\Windows\registration
2015-06-02 19:56:56 ----D---- C:\Windows\Logs
2015-06-02 19:56:22 ----D---- C:\Windows\system32\LogFiles
2015-06-02 19:53:21 ----RD---- C:\Program Files (x86)
2015-06-02 19:51:44 ----D---- C:\Windows\SysWOW64
2015-06-02 19:05:11 ----D---- C:\Windows\debug
2015-06-01 21:37:05 ----RSD---- C:\Windows\assembly
2015-05-30 19:19:32 ----D---- C:\Windows\system32\wdi
2015-05-29 22:43:32 ----D---- C:\Program Files\Common Files
2015-05-29 22:41:54 ----RSD---- C:\Windows\Fonts
2015-05-28 23:46:40 ----D---- C:\Windows\winsxs
2015-05-28 23:45:32 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-05-28 23:45:32 ----D---- C:\Windows\system32\cs-CZ
2015-05-28 21:50:05 ----D---- C:\Windows\Microsoft.NET
2015-05-28 21:23:11 ----D---- C:\Windows\system32\Tasks
2015-05-28 21:09:13 ----D---- C:\Windows\system32\FxsTmp
2015-05-27 20:13:37 ----HD---- C:\ProgramData
2015-05-27 20:11:00 ----D---- C:\Windows\system32\drivers
2015-05-27 20:10:59 ----RSD---- C:\Windows\Media
2015-05-27 20:10:57 ----D---- C:\Windows\twain_32
2015-05-27 16:31:56 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-05-27 16:31:51 ----SD---- C:\ProgramData\Microsoft
2015-05-27 16:29:44 ----D---- C:\Windows\ShellNew
2015-05-26 15:52:15 ----D---- C:\Windows\ehome
2015-05-26 15:52:15 ----D---- C:\Program Files\Common Files\System
2015-05-26 15:52:14 ----D---- C:\Windows\SYSWOW64\migration
2015-05-26 15:52:14 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-26 15:52:14 ----D---- C:\Windows\system32\migration
2015-05-26 15:52:14 ----D---- C:\Windows\PolicyDefinitions
2015-05-26 15:52:14 ----D---- C:\Program Files\Internet Explorer
2015-05-26 15:52:14 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\it-IT
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\es-ES
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\el-GR
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\de-DE
2015-05-26 15:52:13 ----D---- C:\Windows\SYSWOW64\da-DK
2015-05-26 15:52:13 ----D---- C:\Windows\system32\zh-TW
2015-05-26 15:52:13 ----D---- C:\Windows\system32\zh-HK
2015-05-26 15:52:13 ----D---- C:\Windows\system32\zh-CN
2015-05-26 15:52:13 ----D---- C:\Windows\system32\tr-TR
2015-05-26 15:52:13 ----D---- C:\Windows\system32\sv-SE
2015-05-26 15:52:13 ----D---- C:\Windows\system32\ru-RU
2015-05-26 15:52:13 ----D---- C:\Windows\system32\pt-PT
2015-05-26 15:52:13 ----D---- C:\Windows\system32\pt-BR
2015-05-26 15:52:13 ----D---- C:\Windows\system32\pl-PL
2015-05-26 15:52:13 ----D---- C:\Windows\system32\nl-NL
2015-05-26 15:52:13 ----D---- C:\Windows\system32\nb-NO
2015-05-26 15:52:13 ----D---- C:\Windows\system32\ko-KR
2015-05-26 15:52:13 ----D---- C:\Windows\system32\ja-JP
2015-05-26 15:52:13 ----D---- C:\Windows\system32\it-IT
2015-05-26 15:52:13 ----D---- C:\Windows\system32\hu-HU
2015-05-26 15:52:13 ----D---- C:\Windows\system32\fr-FR
2015-05-26 15:52:13 ----D---- C:\Windows\system32\fi-FI
2015-05-26 15:52:13 ----D---- C:\Windows\system32\es-ES
2015-05-26 15:52:13 ----D---- C:\Windows\system32\en-US
2015-05-26 15:52:13 ----D---- C:\Windows\system32\el-GR
2015-05-26 15:52:13 ----D---- C:\Windows\system32\de-DE
2015-05-26 15:52:13 ----D---- C:\Windows\system32\da-DK
2015-05-26 15:52:13 ----D---- C:\Windows\AppPatch
2015-05-26 15:15:59 ----D---- C:\Windows\AppCompat
2015-05-25 21:14:43 ----D---- C:\Program Files (x86)\Common Files
2015-05-24 13:26:21 ----D---- C:\Windows\SYSWOW64\Dism
2015-05-24 13:26:21 ----D---- C:\Program Files\Windows Media Player
2015-05-24 13:26:21 ----D---- C:\Program Files (x86)\Windows Media Player
2015-05-24 13:26:20 ----D---- C:\Windows\system32\Dism
2015-05-24 13:26:20 ----D---- C:\Windows\system32\CodeIntegrity
2015-05-24 13:26:20 ----D---- C:\Windows\system32\Boot
2015-05-24 13:26:13 ----D---- C:\Windows\system32\AdvancedInstallers
2015-05-24 13:26:13 ----D---- C:\Program Files\Windows Journal
2015-05-24 13:26:12 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-05-24 13:26:11 ----D---- C:\Windows\tracing
2015-05-24 13:26:11 ----D---- C:\Program Files\Windows Defender
2015-05-24 13:26:11 ----D---- C:\Program Files (x86)\Windows Defender
2015-05-24 13:25:30 ----D---- C:\Windows\system32\drivers\UMDF
2015-05-24 13:07:30 ----D---- C:\Windows\system32\catroot
2015-05-22 15:04:13 ----RD---- C:\Users
2015-05-22 14:48:08 ----D---- C:\Windows\Help
2015-05-22 14:45:38 ----D---- C:\Windows\SYSWOW64\drivers
2015-05-22 14:35:51 ----D---- C:\Windows\system32\restore
2015-05-22 14:29:48 ----SHD---- C:\$Recycle.Bin
2015-05-22 14:29:38 ----D---- C:\Program Files\Windows NT
2015-05-22 14:27:37 ----D---- C:\Windows\rescache
2015-05-22 14:24:42 ----D---- C:\Windows\system32\sysprep

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-03-26 19224]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2015-03-04 280376]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2013-10-23 129944]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2015-03-04 124568]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-03-26 789272]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2015-05-13 195912]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-05-08 19600]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2014-11-22 38032]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2015-01-15 977624]
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver64.sys []
S3 NTIOLib_1_0_C;NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-05-08 1152656]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-29 13592]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-04-30 23816]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-05-08 1884304]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-05-08 22997648]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2015-05-12 937288]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-05-12 410768]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2015-04-30 366544]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-05-26 114688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-05-15 837824]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-05-24 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Márty84]

Zdravim

Pokud je problem jeste aktualni...

Kouknete do slozky C:\Windows\Minidump . Pokud v ni budou nejake soubory, uplodnete je treba na leteckou postu http://leteckaposta.cz/ a sem dejte odkaz na stazeni.

[predatorx21]

no bohužel ve složce žádné soubory nejsou... navíc absolutně nechápu šílené chování procesoru kdy zátěž skáče jako pominutá.

[Márty84]

Az se zase objevi modra obrazovka, mel by se v te slozce vytvorit soubor s informacemi. Tak ho pak poslete.


Mezitim....

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[predatorx21]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 5.6.2015
Čas skenování: 21:25:21
Protokol: malware.txt
Správce: Ano

Verze: 2.01.6.1022
Databáze malwaru: v2015.06.05.05
Databáze rootkitů: v2015.06.02.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Dominik

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 644402
Uplynulý čas: 51 min, 18 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

[Márty84]

MBAM odinstalujte.

Ktery proces zatezuje ten procesor nejvice?

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

[predatorx21]

Právě že žádný proces,všechny jsou na nule a i přes to zátěž procesoru šíleně lítá.
# AdwCleaner v4.206 - Log vytvořen 05/06/2015 v 23:23:41
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-06-05.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Dominik - DOMINIK-PC
# Spuštěno z : C:\Users\Dominik\Downloads\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****


***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17801


-\\ Google Chrome v43.0.2357.81


*************************

AdwCleaner[R0].txt - [1132 bytů] - [05/06/2015 23:08:20]
AdwCleaner[R1].txt - [1044 bytů] - [05/06/2015 23:14:41]
AdwCleaner[S0].txt - [969 bytů] - [05/06/2015 23:23:41]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1026 bytů] ##########




----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium Edition SP1 [6.1 Build 7601] (x64)
Date : 2015/06/05 23:30:02

-- Controller Map ----------------------------------------------------------
+ Intel(R) 7 Series/C216 Chipset Family SATA AHCI Controller - 1E02 [ATA]
+ ATA Channel 0 (0)
- WDC WD10EZEX-00ZF5A0 ATA Device
+ ATA Channel 1 (1)
- TSSTcorp CDDVDW SH-224BB ATA Device

-- Disk List ---------------------------------------------------------------
(1) WDC WD10EZEX-00ZF5A0 : 1000,2 GB [0/0/0, pd1]

----------------------------------------------------------------------------
(1) WDC WD10EZEX-00ZF5A0
----------------------------------------------------------------------------
Model : WDC WD10EZEX-00ZF5A0
Firmware : 80.00A80
Serial Number : WD-WCC1S0888705
Disk Size : 1000,2 GB (8,4/137,4/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/600
Power On Hours : 10095 hod.
Power On Count : 1598 krát
Temparature : 35 C (95 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 175 172 _21 0000000008B9 Čas na roztočení ploten
04 _99 _99 __0 000000000647 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _87 _87 __0 00000000276F Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _99 _99 __0 00000000063E Počet cyklů zapnutí zařízení
C0 200 200 __0 000000000073 Počet vypnutí disku
C1 200 200 __0 0000000005D3 Počet cyklů načítání/vymazání
C2 108 _99 __0 000000000023 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000001 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 5330 5330 3838 3837 3035
020: 0000 0000 0000 3830 2E30 3830 3830 5744 4320 5744
030: 3130 455A 4558 2D30 305A 4130 4130 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 970E 970E 0006 0044 0040
080: 01FE 0000 746B 7D61 4123 BC41 BC41 4123 207F 0035
090: 0035 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 6003 6003 0000 5001 4EE2
110: 07A3 FE6E 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0400
130: 0001 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 30B5 30B5 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 103E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 39A5

[Márty84]

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[predatorx21]

ComboFix 15-05-31.01 - Dominik 06.06.2015 0:10.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8126.6387 [GMT 2:00]
Spuštěný z: c:\users\Dominik\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
SP: Microsoft Security Essentials *Disabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-05-05 do 2015-06-05 )))))))))))))))))))))))))))))))
.
.
2015-06-05 22:14 . 2015-06-05 22:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-06-05 21:28 . 2015-06-05 21:28 -------- d-----w- C:\o
2015-06-05 21:08 . 2015-06-05 21:23 -------- d-----w- C:\AdwCleaner
2015-06-05 15:23 . 2015-06-05 15:23 -------- d-----w- c:\programdata\Ashampoo
2015-06-05 15:23 . 2015-06-05 15:23 -------- d-----w- c:\program files (x86)\Ashampoo
2015-06-05 15:09 . 2015-06-05 15:09 -------- d-----w- c:\program files\CPUID
2015-06-05 15:09 . 2015-06-05 15:20 -------- d-----w- C:\modra obrazovka
2015-06-05 15:09 . 2015-06-05 15:09 -------- d-----w- c:\program files (x86)\JAM Software
2015-06-05 13:30 . 2015-05-02 18:16 12214312 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B0DCB906-AF0E-4DEC-AE0C-6C2A5269974E}\mpengine.dll
2015-06-04 13:51 . 2015-06-04 13:51 -------- d-----w- c:\programdata\Malwarebytes
2015-06-04 13:29 . 2015-06-04 13:29 -------- d-----w- c:\programdata\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-06-04 13:29 . 2015-06-04 13:29 -------- d-----w- c:\program files (x86)\Common Files\IObit
2015-06-04 13:29 . 2015-01-10 13:32 128288 ----a-w- c:\windows\system32\IObitSmartDefragExtension.dll
2015-06-04 13:29 . 2014-06-04 13:17 34080 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2015-06-04 13:29 . 2015-06-04 13:29 -------- d-----w- c:\programdata\ProductData
2015-06-04 13:29 . 2015-06-04 13:29 26528 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2015-06-04 13:26 . 2015-06-04 13:29 -------- d-----w- c:\programdata\IObit
2015-06-04 13:26 . 2015-06-04 13:32 -------- d-----w- c:\program files (x86)\IObit
2015-06-04 13:06 . 2015-05-22 13:02 1187344 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B5368171-4844-4BAA-892D-91994F7B41AF}\gapaengine.dll
2015-06-04 13:05 . 2015-05-02 18:16 12214312 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-06-03 12:54 . 2015-06-03 12:54 -------- d-----w- C:\rsit
2015-06-03 12:54 . 2015-06-03 12:54 -------- d-----w- c:\program files\trend micro
2015-06-02 17:53 . 2015-06-02 20:36 -------- d-----w- c:\program files (x86)\SpeedFan
2015-06-02 17:05 . 2015-06-02 17:05 -------- d-----w- c:\windows\system32\MRT
2015-06-02 17:05 . 2015-06-02 17:05 -------- d-----w- C:\b9ec592ae2028e244561
2015-06-01 19:33 . 2015-06-01 19:34 -------- d-----w- c:\program files (x86)\Hatred
2015-05-29 20:43 . 2015-05-29 20:43 -------- d-----w- c:\program files\Common Files\DESIGNER
2015-05-28 21:45 . 2015-06-02 17:58 -------- d-s---w- c:\windows\system32\GWX
2015-05-28 21:45 . 2015-05-28 21:45 -------- d-s---w- c:\windows\SysWow64\GWX
2015-05-28 21:45 . 2015-05-28 21:45 -------- d-----w- c:\windows\Migration
2015-05-28 16:44 . 2015-05-28 16:44 -------- d-----w- c:\program files (x86)\Rockstar Games
2015-05-28 16:43 . 2015-05-28 16:43 -------- d-----w- c:\program files\Rockstar Games
2015-05-28 16:21 . 2015-05-28 16:41 -------- d-----w- c:\program files (x86)\Grand Theft Auto V
2015-05-28 13:25 . 2015-05-28 13:25 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2015-05-28 13:17 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-05-28 13:17 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-05-27 19:44 . 2010-06-02 02:55 239960 ----a-w- c:\windows\SysWow64\xactengine3_7.dll
2015-05-27 19:44 . 2010-06-02 02:55 176984 ----a-w- c:\windows\system32\xactengine3_7.dll
2015-05-27 19:44 . 2010-05-26 09:41 1907552 ----a-w- c:\windows\system32\d3dcsx_43.dll
2015-05-27 19:44 . 2010-05-26 09:41 1868128 ----a-w- c:\windows\SysWow64\d3dcsx_43.dll
2015-05-27 19:44 . 2010-02-04 08:01 78680 ----a-w- c:\windows\system32\XAPOFX1_4.dll
2015-05-27 19:44 . 2010-02-04 08:01 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_4.dll
2015-05-27 19:44 . 2010-02-04 08:01 530776 ----a-w- c:\windows\system32\XAudio2_6.dll
2015-05-27 19:44 . 2010-02-04 08:01 528216 ----a-w- c:\windows\SysWow64\XAudio2_6.dll
2015-05-27 19:44 . 2010-02-04 08:01 238936 ----a-w- c:\windows\SysWow64\xactengine3_6.dll
2015-05-27 19:44 . 2010-02-04 08:01 176984 ----a-w- c:\windows\system32\xactengine3_6.dll
2015-05-27 18:13 . 2015-05-27 18:13 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2015-05-27 18:13 . 2015-05-27 18:13 -------- d--h--w- c:\programdata\CanonBJ
2015-05-27 18:13 . 2012-03-14 03:00 99840 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPPAD.DLL
2015-05-27 18:13 . 2012-03-14 03:00 30208 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPDAD.DLL
2015-05-27 18:13 . 2012-03-14 03:00 385024 ----a-w- c:\windows\system32\CNMLMAD.DLL
2015-05-27 18:10 . 2010-03-18 17:25 307200 ----a-w- c:\windows\SysWow64\CNC5100L.dll
2015-05-27 18:10 . 2010-03-18 15:11 106496 ----a-w- c:\windows\SysWow64\CNC5100U.dll
2015-05-27 18:10 . 2008-08-25 16:02 15872 ----a-w- c:\windows\SysWow64\CNHMCA.dll
2015-05-27 18:10 . 2010-03-18 17:26 348672 ----a-w- c:\windows\system32\CNC5100L.dll
2015-05-27 18:10 . 2010-03-18 15:13 1354240 ----a-w- c:\windows\system32\CNC5100C.dll
2015-05-27 18:10 . 2010-03-18 15:13 112128 ----a-w- c:\windows\system32\CNC5100I.dll
2015-05-27 18:10 . 2008-08-25 16:02 17920 ----a-w- c:\windows\system32\CNHMCA6.dll
2015-05-27 14:31 . 2015-05-27 14:31 -------- d-----w- c:\windows\PCHEALTH
2015-05-27 14:29 . 2015-05-27 14:29 -------- d-----w- c:\program files\Microsoft Analysis Services
2015-05-27 14:29 . 2015-05-27 14:29 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2015-05-27 14:29 . 2015-05-29 20:45 -------- d-----w- c:\programdata\Microsoft Help
2015-05-27 14:29 . 2015-05-27 14:31 -------- d-----w- c:\program files\Microsoft Office
2015-05-27 14:29 . 2015-05-27 14:29 -------- d-----r- C:\MSOCache
2015-05-27 13:22 . 2015-04-21 16:26 968704 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2015-05-27 13:22 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2015-05-27 13:22 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2015-05-27 13:21 . 2014-06-24 03:29 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2015-05-27 13:21 . 2014-06-24 02:59 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2015-05-27 13:21 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-05-27 13:21 . 2013-11-22 22:48 3928064 ----a-w- c:\windows\system32\d2d1.dll
2015-05-27 13:20 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-05-27 13:20 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-05-26 18:59 . 2015-05-26 18:59 -------- d-----w- c:\program files (x86)\Microsoft Chart Controls
2015-05-26 18:59 . 2010-06-02 02:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2015-05-26 18:59 . 2010-06-02 02:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2015-05-26 18:59 . 2010-06-02 02:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2015-05-26 18:59 . 2010-06-02 02:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2015-05-26 18:59 . 2010-05-26 09:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2015-05-26 18:59 . 2010-05-26 09:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll
2015-05-26 18:59 . 2010-02-04 08:01 24920 ----a-w- c:\windows\system32\X3DAudio1_7.dll
2015-05-26 18:59 . 2010-02-04 08:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2015-05-26 14:00 . 2015-04-20 03:17 1647104 ----a-w- c:\windows\system32\DWrite.dll
2015-05-26 14:00 . 2015-04-20 03:17 1179136 ----a-w- c:\windows\system32\FntCache.dll
2015-05-26 14:00 . 2015-04-20 02:56 1250816 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-05-26 14:00 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-05-26 14:00 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-05-26 14:00 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-05-26 14:00 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-05-26 13:24 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2015-05-26 13:19 . 2015-05-26 13:19 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-25 19:14 . 2015-06-05 17:51 -------- d-----w- c:\program files (x86)\Common Files\Steam
2015-05-25 19:14 . 2015-06-05 21:25 -------- d-----w- c:\program files (x86)\Steam
2015-05-25 13:28 . 2015-05-22 13:02 1187344 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2015-05-24 18:14 . 2015-05-24 18:39 -------- d-----w- c:\program files (x86)\Darkest Hour
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-s---w- c:\windows\system32\CompatTel
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-----w- c:\windows\system32\appraiser
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-----w- c:\windows\SysWow64\Wat
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-----w- c:\windows\system32\Wat
2015-05-24 11:20 . 2015-05-24 11:20 -------- d-----w- C:\8b4defcd9062a37b07d8fcea
2015-05-24 10:48 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2015-05-24 10:08 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-05-24 10:08 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-05-24 10:08 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-05-24 10:08 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-05-24 10:08 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-05-24 10:08 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-05-24 10:08 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-05-24 10:01 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-24 10:01 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-24 09:53 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-05-24 09:53 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-05-24 09:53 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-05-24 09:44 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-05-24 09:44 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-05-24 09:44 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-05-24 09:44 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-05-24 09:44 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-05-24 09:44 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-05-24 09:44 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-05-24 09:44 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-05-23 20:52 . 2015-05-23 20:52 -------- d-----w- c:\programdata\Steam
2015-05-23 20:03 . 2015-06-03 16:31 -------- d-----w- c:\program files\WinRAR
2015-05-23 10:59 . 2015-01-15 06:42 977624 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2015-05-23 10:59 . 2015-01-15 06:42 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-26 13:20 . 2015-05-26 13:20 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2015-05-26 13:20 . 2015-05-26 13:20 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-04-14 01:33 . 2015-04-14 01:33 1614504 ----a-w- c:\windows\system32\FM20.DLL
2015-03-17 04:56 . 2015-05-23 09:12 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-06-02 28787840]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-06-04 2892992]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-03-26 291608]
"PWRISOVM.EXE"="c:\program files (x86)\PowerISO\PWRISOVM.EXE" [2013-10-23 337432]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
.
c:\users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-6-25 246472]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-26 14:05 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22 12:54]
.
2015-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-22 12:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2015-04-29 1337000]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-05-08 2685072]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-05-08 1570672]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-06-06 00:16:45
ComboFix-quarantined-files.txt 2015-06-05 22:16
.
Před spuštěním: Volných bajtů: 736 681 553 920
Po spuštění: Volných bajtů: 736 158 654 464
.
- - End Of File - - D63BCC0761EBFCA1D9C3168AA41999CC
A36C5E4F47E84449FF07ED3517B43A31

[Márty84]

Odinstalujte vse od IObit. Umi to nadelat vic skody nez uzitku

Porad system pada? Uz mate nejaky dump soubor?

[predatorx21]

No ještě nespadl ale procesor pořád lítá...

[Márty84]

Vyzkousejte, jestli lita i v nouzovem rezimu.


Presunte ComboFix primo na plochu, jinak to nebude fungovat!
Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\programdata\Malwarebytes

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"=-
"Steam"=-

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Driver::
SkypeUpdate
LiveUpdateSvc
MBAMSwissArmy

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[predatorx21]

v nouzovém režimu to nedělá

ComboFix 15-05-31.01 - Dominik 06.06.2015 12:42:40.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8126.5309 [GMT 2:00]
Spuštěný z: c:\users\Dominik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Dominik\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
SP: Microsoft Security Essentials *Disabled/Updated* {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Malwarebytes
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\gatekeeper.conf
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\license.conf
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\notifications.conf
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\settings.conf
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\settings.conf.error
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\scheduler.conf
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\scheduler.conf.error
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Configuration\statistics.conf
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\exclusions.dat
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-2015-06-04 (16-00-10).xml
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-2015-06-04 (16-24-38).xml
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-2015-06-04 (16-25-11).xml
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-2015-06-04 (16-27-51).xml
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-2015-06-05 (21-24-55).xml
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\protection-log-2015-06-04.xml
c:\programdata\Malwarebytes\Malwarebytes Anti-Malware\Logs\protection-log-2015-06-05.xml
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_MBAMSWISSARMY
-------\Service_LiveUpdateSvc
-------\Service_MBAMSwissArmy
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-05-06 do 2015-06-06 )))))))))))))))))))))))))))))))
.
.
2015-06-05 21:28 . 2015-06-05 21:28 -------- d-----w- C:\o
2015-06-05 21:08 . 2015-06-05 21:23 -------- d-----w- C:\AdwCleaner
2015-06-05 15:23 . 2015-06-05 15:23 -------- d-----w- c:\programdata\Ashampoo
2015-06-05 15:23 . 2015-06-05 15:23 -------- d-----w- c:\program files (x86)\Ashampoo
2015-06-05 15:09 . 2015-06-05 15:09 -------- d-----w- c:\program files\CPUID
2015-06-05 15:09 . 2015-06-05 15:20 -------- d-----w- C:\modra obrazovka
2015-06-05 15:09 . 2015-06-05 15:09 -------- d-----w- c:\program files (x86)\JAM Software
2015-06-05 13:30 . 2015-05-02 18:16 12214312 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B0DCB906-AF0E-4DEC-AE0C-6C2A5269974E}\mpengine.dll
2015-06-04 13:29 . 2015-06-04 13:29 -------- d-----w- c:\programdata\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-06-04 13:29 . 2015-06-04 13:29 -------- d-----w- c:\program files (x86)\Common Files\IObit
2015-06-04 13:29 . 2015-01-10 13:32 128288 ----a-w- c:\windows\system32\IObitSmartDefragExtension.dll
2015-06-04 13:29 . 2014-06-04 13:17 34080 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2015-06-04 13:29 . 2015-06-04 13:29 -------- d-----w- c:\programdata\ProductData
2015-06-04 13:29 . 2015-06-04 13:29 26528 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2015-06-04 13:26 . 2015-06-04 13:29 -------- d-----w- c:\programdata\IObit
2015-06-04 13:26 . 2015-06-04 13:32 -------- d-----w- c:\program files (x86)\IObit
2015-06-04 13:06 . 2015-05-22 13:02 1187344 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B5368171-4844-4BAA-892D-91994F7B41AF}\gapaengine.dll
2015-06-04 13:05 . 2015-05-02 18:16 12214312 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2015-06-03 12:54 . 2015-06-03 12:54 -------- d-----w- C:\rsit
2015-06-03 12:54 . 2015-06-03 12:54 -------- d-----w- c:\program files\trend micro
2015-06-02 17:53 . 2015-06-02 20:36 -------- d-----w- c:\program files (x86)\SpeedFan
2015-06-02 17:05 . 2015-06-02 17:05 -------- d-----w- c:\windows\system32\MRT
2015-06-02 17:05 . 2015-06-02 17:05 -------- d-----w- C:\b9ec592ae2028e244561
2015-06-01 19:33 . 2015-06-01 19:34 -------- d-----w- c:\program files (x86)\Hatred
2015-05-29 20:43 . 2015-05-29 20:43 -------- d-----w- c:\program files\Common Files\DESIGNER
2015-05-28 21:45 . 2015-06-02 17:58 -------- d-s---w- c:\windows\system32\GWX
2015-05-28 21:45 . 2015-05-28 21:45 -------- d-s---w- c:\windows\SysWow64\GWX
2015-05-28 21:45 . 2015-05-28 21:45 -------- d-----w- c:\windows\Migration
2015-05-28 16:44 . 2015-05-28 16:44 -------- d-----w- c:\program files (x86)\Rockstar Games
2015-05-28 16:43 . 2015-05-28 16:43 -------- d-----w- c:\program files\Rockstar Games
2015-05-28 16:21 . 2015-05-28 16:41 -------- d-----w- c:\program files (x86)\Grand Theft Auto V
2015-05-28 13:25 . 2015-05-28 13:25 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2015-05-28 13:17 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-05-28 13:17 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-05-27 19:44 . 2010-06-02 02:55 239960 ----a-w- c:\windows\SysWow64\xactengine3_7.dll
2015-05-27 19:44 . 2010-06-02 02:55 176984 ----a-w- c:\windows\system32\xactengine3_7.dll
2015-05-27 19:44 . 2010-05-26 09:41 1907552 ----a-w- c:\windows\system32\d3dcsx_43.dll
2015-05-27 19:44 . 2010-05-26 09:41 1868128 ----a-w- c:\windows\SysWow64\d3dcsx_43.dll
2015-05-27 19:44 . 2010-02-04 08:01 78680 ----a-w- c:\windows\system32\XAPOFX1_4.dll
2015-05-27 19:44 . 2010-02-04 08:01 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_4.dll
2015-05-27 19:44 . 2010-02-04 08:01 530776 ----a-w- c:\windows\system32\XAudio2_6.dll
2015-05-27 19:44 . 2010-02-04 08:01 528216 ----a-w- c:\windows\SysWow64\XAudio2_6.dll
2015-05-27 19:44 . 2010-02-04 08:01 238936 ----a-w- c:\windows\SysWow64\xactengine3_6.dll
2015-05-27 19:44 . 2010-02-04 08:01 176984 ----a-w- c:\windows\system32\xactengine3_6.dll
2015-05-27 18:13 . 2015-05-27 18:13 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2015-05-27 18:13 . 2015-05-27 18:13 -------- d--h--w- c:\programdata\CanonBJ
2015-05-27 18:13 . 2012-03-14 03:00 99840 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPPAD.DLL
2015-05-27 18:13 . 2012-03-14 03:00 30208 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPDAD.DLL
2015-05-27 18:13 . 2012-03-14 03:00 385024 ----a-w- c:\windows\system32\CNMLMAD.DLL
2015-05-27 18:10 . 2010-03-18 17:25 307200 ----a-w- c:\windows\SysWow64\CNC5100L.dll
2015-05-27 18:10 . 2010-03-18 15:11 106496 ----a-w- c:\windows\SysWow64\CNC5100U.dll
2015-05-27 18:10 . 2008-08-25 16:02 15872 ----a-w- c:\windows\SysWow64\CNHMCA.dll
2015-05-27 18:10 . 2010-03-18 17:26 348672 ----a-w- c:\windows\system32\CNC5100L.dll
2015-05-27 18:10 . 2010-03-18 15:13 1354240 ----a-w- c:\windows\system32\CNC5100C.dll
2015-05-27 18:10 . 2010-03-18 15:13 112128 ----a-w- c:\windows\system32\CNC5100I.dll
2015-05-27 18:10 . 2008-08-25 16:02 17920 ----a-w- c:\windows\system32\CNHMCA6.dll
2015-05-27 14:31 . 2015-05-27 14:31 -------- d-----w- c:\windows\PCHEALTH
2015-05-27 14:29 . 2015-05-27 14:29 -------- d-----w- c:\program files\Microsoft Analysis Services
2015-05-27 14:29 . 2015-05-27 14:29 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2015-05-27 14:29 . 2015-05-29 20:45 -------- d-----w- c:\programdata\Microsoft Help
2015-05-27 14:29 . 2015-05-27 14:31 -------- d-----w- c:\program files\Microsoft Office
2015-05-27 14:29 . 2015-05-27 14:29 -------- d-----r- C:\MSOCache
2015-05-27 13:22 . 2015-04-21 16:26 968704 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2015-05-27 13:22 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2015-05-27 13:22 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2015-05-27 13:21 . 2014-06-24 03:29 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2015-05-27 13:21 . 2014-06-24 02:59 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2015-05-27 13:21 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-05-27 13:21 . 2013-11-22 22:48 3928064 ----a-w- c:\windows\system32\d2d1.dll
2015-05-27 13:20 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-05-27 13:20 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-05-26 18:59 . 2015-05-26 18:59 -------- d-----w- c:\program files (x86)\Microsoft Chart Controls
2015-05-26 18:59 . 2010-06-02 02:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2015-05-26 18:59 . 2010-06-02 02:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2015-05-26 18:59 . 2010-06-02 02:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2015-05-26 18:59 . 2010-06-02 02:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2015-05-26 18:59 . 2010-05-26 09:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2015-05-26 18:59 . 2010-05-26 09:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll
2015-05-26 18:59 . 2010-02-04 08:01 24920 ----a-w- c:\windows\system32\X3DAudio1_7.dll
2015-05-26 18:59 . 2010-02-04 08:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2015-05-26 14:00 . 2015-04-20 03:17 1647104 ----a-w- c:\windows\system32\DWrite.dll
2015-05-26 14:00 . 2015-04-20 03:17 1179136 ----a-w- c:\windows\system32\FntCache.dll
2015-05-26 14:00 . 2015-04-20 02:56 1250816 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-05-26 14:00 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-05-26 14:00 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-05-26 14:00 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-05-26 14:00 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-05-26 13:24 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2015-05-26 13:19 . 2015-05-26 13:19 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-25 19:14 . 2015-06-05 17:51 -------- d-----w- c:\program files (x86)\Common Files\Steam
2015-05-25 19:14 . 2015-06-06 09:46 -------- d-----w- c:\program files (x86)\Steam
2015-05-25 13:28 . 2015-05-22 13:02 1187344 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2015-05-24 18:14 . 2015-05-24 18:39 -------- d-----w- c:\program files (x86)\Darkest Hour
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-s---w- c:\windows\system32\CompatTel
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-----w- c:\windows\system32\appraiser
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-----w- c:\windows\SysWow64\Wat
2015-05-24 11:26 . 2015-05-24 11:26 -------- d-----w- c:\windows\system32\Wat
2015-05-24 11:20 . 2015-05-24 11:20 -------- d-----w- C:\8b4defcd9062a37b07d8fcea
2015-05-24 10:48 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2015-05-24 10:08 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-05-24 10:08 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-05-24 10:08 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-05-24 10:08 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-05-24 10:08 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-05-24 10:08 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-05-24 10:08 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-05-24 10:01 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-24 10:01 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-24 09:53 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-05-24 09:53 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-05-24 09:53 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-05-24 09:44 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-05-24 09:44 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-05-24 09:44 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-05-24 09:44 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-05-24 09:44 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-05-24 09:44 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-05-24 09:44 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-05-24 09:44 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-05-23 20:52 . 2015-05-23 20:52 -------- d-----w- c:\programdata\Steam
2015-05-23 20:03 . 2015-06-03 16:31 -------- d-----w- c:\program files\WinRAR
2015-05-23 10:59 . 2015-01-15 06:42 977624 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2015-05-23 10:59 . 2015-01-15 06:42 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2015-05-23 10:59 . 2015-01-15 06:42 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2015-05-23 09:23 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-26 13:20 . 2015-05-26 13:20 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2015-05-26 13:20 . 2015-05-26 13:20 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-04-14 01:33 . 2015-04-14 01:33 1614504 ----a-w- c:\windows\system32\FM20.DLL
2015-03-17 04:56 . 2015-05-23 09:12 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-03-26 291608]
"PWRISOVM.EXE"="c:\program files (x86)\PowerISO\PWRISOVM.EXE" [2013-10-23 337432]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
.
c:\users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-6-25 246472]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;d:\ntiolib_x64.sys;d:\NTIOLib_X64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-26 14:05 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2015-04-29 1337000]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-05-08 2685072]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-05-08 1570672]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\users\Dominik\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
.
**************************************************************************
.
Celkový čas: 2015-06-06 12:53:40 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-06-06 10:53
ComboFix2.txt 2015-06-05 22:16
.
Před spuštěním: Volných bajtů: 735 753 654 272
Po spuštění: Volných bajtů: 735 181 754 368
.
- - End Of File - - 9F7BD7B7E7636071233FB5EB25F8D282
A36C5E4F47E84449FF07ED3517B43A31