06:13:51.0153 0x1498 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
06:13:51.0194 0x1498 PptpMiniport - ok
06:13:51.0211 0x1498 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
06:13:51.0224 0x1498 Processor - ok
06:13:51.0251 0x1498 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
06:13:51.0269 0x1498 ProfSvc - ok
06:13:51.0292 0x1498 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
06:13:51.0304 0x1498 ProtectedStorage - ok
06:13:51.0353 0x1498 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
06:13:51.0409 0x1498 Psched - ok
06:13:51.0481 0x1498 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
06:13:51.0526 0x1498 ql2300 - ok
06:13:51.0541 0x1498 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
06:13:51.0553 0x1498 ql40xx - ok
06:13:51.0613 0x1498 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
06:13:51.0635 0x1498 QWAVE - ok
06:13:51.0649 0x1498 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
06:13:51.0665 0x1498 QWAVEdrv - ok
06:13:51.0682 0x1498 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
06:13:51.0717 0x1498 RasAcd - ok
06:13:51.0757 0x1498 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
06:13:51.0796 0x1498 RasAgileVpn - ok
06:13:51.0829 0x1498 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
06:13:51.0881 0x1498 RasAuto - ok
06:13:51.0895 0x1498 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
06:13:51.0933 0x1498 Rasl2tp - ok
06:13:51.0943 0x1498 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
06:13:51.0987 0x1498 RasMan - ok
06:13:52.0004 0x1498 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
06:13:52.0034 0x1498 RasPppoe - ok
06:13:52.0039 0x1498 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
06:13:52.0078 0x1498 RasSstp - ok
06:13:52.0116 0x1498 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
06:13:52.0163 0x1498 rdbss - ok
06:13:52.0177 0x1498 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
06:13:52.0201 0x1498 rdpbus - ok
06:13:52.0227 0x1498 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
06:13:52.0264 0x1498 RDPCDD - ok
06:13:52.0278 0x1498 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
06:13:52.0314 0x1498 RDPENCDD - ok
06:13:52.0319 0x1498 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
06:13:52.0354 0x1498 RDPREFMP - ok
06:13:52.0392 0x1498 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
06:13:52.0408 0x1498 RDPWD - ok
06:13:52.0450 0x1498 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
06:13:52.0464 0x1498 rdyboost - ok
06:13:52.0499 0x1498 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
06:13:52.0545 0x1498 RemoteAccess - ok
06:13:52.0577 0x1498 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
06:13:52.0612 0x1498 RemoteRegistry - ok
06:13:52.0661 0x1498 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
06:13:52.0679 0x1498 RFCOMM - ok
06:13:52.0692 0x1498 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
06:13:52.0733 0x1498 RpcEptMapper - ok
06:13:52.0756 0x1498 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
06:13:52.0770 0x1498 RpcLocator - ok
06:13:52.0807 0x1498 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
06:13:52.0845 0x1498 RpcSs - ok
06:13:52.0881 0x1498 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
06:13:52.0925 0x1498 rspndr - ok
06:13:52.0959 0x1498 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs C:\Windows\system32\lsass.exe
06:13:52.0972 0x1498 SamSs - ok
06:13:52.0991 0x1498 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
06:13:53.0003 0x1498 sbp2port - ok
06:13:53.0027 0x1498 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
06:13:53.0069 0x1498 SCardSvr - ok
06:13:53.0088 0x1498 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
06:13:53.0118 0x1498 scfilter - ok
06:13:53.0179 0x1498 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
06:13:53.0219 0x1498 Schedule - ok
06:13:53.0244 0x1498 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
06:13:53.0273 0x1498 SCPolicySvc - ok
06:13:53.0293 0x1498 [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
06:13:53.0321 0x1498 sdbus - ok
06:13:53.0362 0x1498 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
06:13:53.0408 0x1498 SDRSVC - ok
06:13:53.0450 0x1498 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
06:13:53.0483 0x1498 secdrv - ok
06:13:53.0495 0x1498 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
06:13:53.0541 0x1498 seclogon - ok
06:13:53.0551 0x1498 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
06:13:53.0588 0x1498 SENS - ok
06:13:53.0615 0x1498 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
06:13:53.0628 0x1498 SensrSvc - ok
06:13:53.0663 0x1498 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
06:13:53.0686 0x1498 Serenum - ok
06:13:53.0718 0x1498 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
06:13:53.0733 0x1498 Serial - ok
06:13:53.0744 0x1498 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
06:13:53.0769 0x1498 sermouse - ok
06:13:53.0801 0x1498 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
06:13:53.0849 0x1498 SessionEnv - ok
06:13:53.0866 0x1498 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
06:13:53.0907 0x1498 sffdisk - ok
06:13:53.0910 0x1498 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
06:13:53.0924 0x1498 sffp_mmc - ok
06:13:53.0927 0x1498 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
06:13:53.0941 0x1498 sffp_sd - ok
06:13:53.0944 0x1498 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
06:13:53.0958 0x1498 sfloppy - ok
06:13:54.0001 0x1498 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
06:13:54.0054 0x1498 SharedAccess - ok
06:13:54.0089 0x1498 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
06:13:54.0126 0x1498 ShellHWDetection - ok
06:13:54.0159 0x1498 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
06:13:54.0170 0x1498 SiSRaid2 - ok
06:13:54.0174 0x1498 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
06:13:54.0186 0x1498 SiSRaid4 - ok
06:13:54.0201 0x1498 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
06:13:54.0239 0x1498 Smb - ok
06:13:54.0288 0x1498 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
06:13:54.0318 0x1498 SNMPTRAP - ok
06:13:54.0338 0x1498 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
06:13:54.0347 0x1498 spldr - ok
06:13:54.0403 0x1498 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
06:13:54.0443 0x1498 Spooler - ok
06:13:54.0611 0x1498 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
06:13:54.0734 0x1498 sppsvc - ok
06:13:54.0750 0x1498 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
06:13:54.0787 0x1498 sppuinotify - ok
06:13:54.0822 0x1498 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
06:13:54.0855 0x1498 srv - ok
06:13:54.0867 0x1498 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
06:13:54.0894 0x1498 srv2 - ok
06:13:54.0913 0x1498 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
06:13:54.0928 0x1498 srvnet - ok
06:13:54.0963 0x1498 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
06:13:55.0005 0x1498 SSDPSRV - ok
06:13:55.0010 0x1498 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
06:13:55.0042 0x1498 SstpSvc - ok
06:13:55.0052 0x1498 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
06:13:55.0062 0x1498 stexstor - ok
06:13:55.0135 0x1498 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
06:13:55.0186 0x1498 stisvc - ok
06:13:55.0210 0x1498 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
06:13:55.0220 0x1498 swenum - ok
06:13:55.0271 0x1498 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
06:13:55.0326 0x1498 swprv - ok
06:13:55.0405 0x1498 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
06:13:55.0459 0x1498 SysMain - ok
06:13:55.0492 0x1498 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
06:13:55.0520 0x1498 TabletInputService - ok
06:13:55.0540 0x1498 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
06:13:55.0588 0x1498 TapiSrv - ok
06:13:55.0602 0x1498 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
06:13:55.0667 0x1498 TBS - ok
06:13:55.0751 0x1498 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
06:13:55.0806 0x1498 Tcpip - ok
06:13:55.0862 0x1498 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
06:13:55.0911 0x1498 TCPIP6 - ok
06:13:55.0937 0x1498 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
06:13:55.0948 0x1498 tcpipreg - ok
06:13:55.0968 0x1498 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
06:13:55.0995 0x1498 TDPIPE - ok
06:13:56.0021 0x1498 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
06:13:56.0031 0x1498 TDTCP - ok
06:13:56.0056 0x1498 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
06:13:56.0068 0x1498 tdx - ok
06:13:56.0088 0x1498 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
06:13:56.0098 0x1498 TermDD - ok
06:13:56.0131 0x1498 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
06:13:56.0161 0x1498 TermService - ok
06:13:56.0192 0x1498 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
06:13:56.0223 0x1498 Themes - ok
06:13:56.0239 0x1498 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
06:13:56.0273 0x1498 THREADORDER - ok
06:13:56.0293 0x1498 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
06:13:56.0326 0x1498 TrkWks - ok
06:13:56.0379 0x1498 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
06:13:56.0430 0x1498 TrustedInstaller - ok
06:13:56.0474 0x1498 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
06:13:56.0501 0x1498 tssecsrv - ok
06:13:56.0542 0x1498 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
06:13:56.0596 0x1498 TsUsbFlt - ok
06:13:56.0601 0x1498 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
06:13:56.0621 0x1498 TsUsbGD - ok
06:13:56.0673 0x1498 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
06:13:56.0720 0x1498 tunnel - ok
06:13:56.0750 0x1498 [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
06:13:56.0759 0x1498 TurboB - ok
06:13:56.0774 0x1498 [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
06:13:56.0785 0x1498 TurboBoost - ok
06:13:56.0800 0x1498 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
06:13:56.0811 0x1498 uagp35 - ok
06:13:56.0835 0x1498 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D, 1EA835F172B6BF3D7F496E079DF1CDF00122B2110C08D61427582BC9405D2B7B ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
06:13:56.0843 0x1498 UBHelper - ok
06:13:56.0869 0x1498 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
06:13:56.0912 0x1498 udfs - ok
06:13:56.0942 0x1498 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
06:13:56.0956 0x1498 UI0Detect - ok
06:13:56.0966 0x1498 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
06:13:56.0977 0x1498 uliagpkx - ok
06:13:57.0003 0x1498 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
06:13:57.0031 0x1498 umbus - ok
06:13:57.0066 0x1498 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
06:13:57.0092 0x1498 UmPass - ok
06:13:57.0237 0x1498 [ 374EBDA379A8F38E0CFC2211611E7167, 0D6C3002B28E27C052227488CEE69FA99399421FF777EB48031E6080A759F532 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
06:13:57.0308 0x1498 UNS - ok
06:13:57.0343 0x1498 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
06:13:57.0392 0x1498 upnphost - ok
06:13:57.0424 0x1498 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
06:13:57.0437 0x1498 usbccgp - ok
06:13:57.0458 0x1498 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
06:13:57.0472 0x1498 usbcir - ok
06:13:57.0492 0x1498 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
06:13:57.0518 0x1498 usbehci - ok
06:13:57.0577 0x1498 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
06:13:57.0604 0x1498 usbhub - ok
06:13:57.0630 0x1498 [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci C:\Windows\system32\drivers\usbohci.sys
06:13:57.0651 0x1498 usbohci - ok
06:13:57.0664 0x1498 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
06:13:57.0687 0x1498 usbprint - ok
06:13:57.0698 0x1498 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:13:57.0710 0x1498 USBSTOR - ok
06:13:57.0716 0x1498 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
06:13:57.0748 0x1498 usbuhci - ok
06:13:57.0788 0x1498 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
06:13:57.0802 0x1498 usbvideo - ok
06:13:57.0817 0x1498 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
06:13:57.0856 0x1498 UxSms - ok
06:13:57.0881 0x1498 [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc C:\Windows\system32\lsass.exe
06:13:57.0893 0x1498 VaultSvc - ok
06:13:58.0012 0x1498 [ 2D8A86BE49A1AD9D05678A2A10F64CE7, 771B5882267B593A1E389DB26F21C3F790D534C8C98FD4A8F043978EA6E09CD6 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
06:13:58.0041 0x1498 VBoxAswDrv - ok
06:13:58.0067 0x1498 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
06:13:58.0078 0x1498 vdrvroot - ok
06:13:58.0118 0x1498 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
06:13:58.0169 0x1498 vds - ok
06:13:58.0181 0x1498 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
06:13:58.0196 0x1498 vga - ok
06:13:58.0200 0x1498 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
06:13:58.0235 0x1498 VgaSave - ok
06:13:58.0243 0x1498 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
06:13:58.0257 0x1498 vhdmp - ok
06:13:58.0284 0x1498 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
06:13:58.0295 0x1498 viaide - ok
06:13:58.0316 0x1498 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
06:13:58.0328 0x1498 volmgr - ok
06:13:58.0339 0x1498 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
06:13:58.0358 0x1498 volmgrx - ok
06:13:58.0382 0x1498 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
06:13:58.0398 0x1498 volsnap - ok
06:13:58.0422 0x1498 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
06:13:58.0436 0x1498 vsmraid - ok
06:13:58.0510 0x1498 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
06:13:58.0579 0x1498 VSS - ok
06:13:58.0622 0x1498 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
06:13:58.0635 0x1498 vwifibus - ok
06:13:58.0645 0x1498 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
06:13:58.0661 0x1498 vwififlt - ok
06:13:58.0672 0x1498 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
06:13:58.0712 0x1498 W32Time - ok
06:13:58.0734 0x1498 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
06:13:58.0746 0x1498 WacomPen - ok
06:13:58.0765 0x1498 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
06:13:58.0805 0x1498 WANARP - ok
06:13:58.0826 0x1498 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
06:13:58.0856 0x1498 Wanarpv6 - ok
06:13:58.0957 0x1498 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
06:13:58.0998 0x1498 WatAdminSvc - ok
06:13:59.0059 0x1498 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
06:13:59.0124 0x1498 wbengine - ok
06:13:59.0154 0x1498 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
06:13:59.0177 0x1498 WbioSrvc - ok
06:13:59.0200 0x1498 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
06:13:59.0226 0x1498 wcncsvc - ok
06:13:59.0261 0x1498 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
06:13:59.0275 0x1498 WcsPlugInService - ok
06:13:59.0304 0x1498 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
06:13:59.0315 0x1498 Wd - ok
06:13:59.0356 0x1498 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
06:13:59.0386 0x1498 Wdf01000 - ok
06:13:59.0419 0x1498 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
06:13:59.0450 0x1498 WdiServiceHost - ok
06:13:59.0454 0x1498 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
06:13:59.0468 0x1498 WdiSystemHost - ok
06:13:59.0494 0x1498 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
06:13:59.0514 0x1498 WebClient - ok
06:13:59.0549 0x1498 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
06:13:59.0601 0x1498 Wecsvc - ok
06:13:59.0622 0x1498 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
06:13:59.0676 0x1498 wercplsupport - ok
06:13:59.0701 0x1498 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
06:13:59.0740 0x1498 WerSvc - ok
06:13:59.0787 0x1498 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
06:13:59.0815 0x1498 WfpLwf - ok
06:13:59.0835 0x1498 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
06:13:59.0846 0x1498 WIMMount - ok
06:13:59.0879 0x1498 WinDefend - ok
06:13:59.0898 0x1498 WinHttpAutoProxySvc - ok
06:13:59.0969 0x1498 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
06:14:00.0013 0x1498 Winmgmt - ok
06:14:00.0652 0x1498 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
06:14:00.0804 0x1498 WinRM - ok
06:14:00.0862 0x1498 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
06:14:00.0892 0x1498 WinUsb - ok
06:14:00.0932 0x1498 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
06:14:00.0971 0x1498 Wlansvc - ok
06:14:01.0063 0x1498 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
06:14:01.0092 0x1498 wlcrasvc - ok
06:14:01.0326 0x1498 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
06:14:01.0414 0x1498 wlidsvc - ok
06:14:01.0454 0x1498 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
06:14:01.0493 0x1498 WmiAcpi - ok
06:14:01.0553 0x1498 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
06:14:01.0580 0x1498 wmiApSrv - ok
06:14:01.0613 0x1498 WMPNetworkSvc - ok
06:14:01.0642 0x1498 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
06:14:01.0668 0x1498 WPCSvc - ok
06:14:01.0690 0x1498 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
06:14:01.0707 0x1498 WPDBusEnum - ok
06:14:01.0730 0x1498 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
06:14:01.0772 0x1498 ws2ifsl - ok
06:14:01.0819 0x1498 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
06:14:01.0861 0x1498 wscsvc - ok
06:14:01.0865 0x1498 WSearch - ok
06:14:02.0254 0x1498 [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv C:\Windows\system32\wuaueng.dll
06:14:02.0438 0x1498 wuauserv - ok
06:14:02.0469 0x1498 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
06:14:02.0496 0x1498 WudfPf - ok
06:14:02.0531 0x1498 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
06:14:02.0547 0x1498 WUDFRd - ok
06:14:02.0577 0x1498 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
06:14:02.0591 0x1498 wudfsvc - ok
06:14:02.0647 0x1498 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
06:14:02.0690 0x1498 WwanSvc - ok
06:14:02.0697 0x1498 ================ Scan global ===============================
06:14:02.0726 0x1498 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
06:14:02.0765 0x1498 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
06:14:02.0778 0x1498 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
06:14:02.0804 0x1498 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
06:14:02.0838 0x1498 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
06:14:02.0846 0x1498 [ Global ] - ok
06:14:02.0846 0x1498 ================ Scan MBR ==================================
06:14:02.0856 0x1498 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
06:14:03.0332 0x1498 \Device\Harddisk0\DR0 - ok
06:14:03.0333 0x1498 ================ Scan VBR ==================================
06:14:03.0368 0x1498 [ C447B9FE55F94817C2101D8BEF47AD52 ] \Device\Harddisk0\DR0\Partition1
06:14:03.0383 0x1498 \Device\Harddisk0\DR0\Partition1 - ok
06:14:03.0405 0x1498 [ 1B81750C64E01DDE1D96B6EC717A51E0 ] \Device\Harddisk0\DR0\Partition2
06:14:03.0455 0x1498 \Device\Harddisk0\DR0\Partition2 - ok
06:14:03.0457 0x1498 ================ Scan generic autorun ======================
06:14:03.0539 0x1498 [ BA9E8BF3E91C14DE99FDB1FA946D07AF, 9C3F5F52EE5B8D02B15EE18AA492FB110547A8DCDA3F8284A614F4E1A30F9BB1 ] C:\Windows\system32\igfxtray.exe
06:14:03.0567 0x1498 IgfxTray - ok
06:14:03.0582 0x1498 [ B20857C91A3E992A5AC93D8625C53CAE, ECB89856B267E2F4930CB7B404B51425C6375A47F864577C1A7B8B255278EC12 ] C:\Windows\system32\hkcmd.exe
06:14:03.0601 0x1498 HotKeysCmds - ok
06:14:03.0621 0x1498 [ 29E120E36791B2E620CC398847C28E12, 7C2904FEDD50F49447FD091D33BB3BFA5A2A684101ADB123BC2C08699320B912 ] C:\Windows\system32\igfxpers.exe
06:14:03.0639 0x1498 Persistence - ok
06:14:03.0642 0x1498 IntelTBRunOnce - ok
06:14:03.0642 0x1498 ETDCtrl - ok
06:14:04.0467 0x1498 [ 2D0838648D185E0B475E83AB1864F403, 3607D775E23C574CDEC6FA32A90114297BB914AAB5CEB9679B36FFFE484F527D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
06:14:04.0998 0x1498 RtHDVCpl - ok
06:14:05.0192 0x1498 [ 7586ACA6DBFBDCD5EBC1776486D53AA4, 1DA51BE57CB6DDCB9DAEA337802DEEE729D56C2548B2BB8909D7FA007A68BBFB ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
06:14:05.0279 0x1498 RtHDVBg - ok
06:14:05.0411 0x1498 [ F0474296AC4E0E6BDE733C1B8513E41A, 2E54894FC1B422F0C520D11166204926D3994A3440037D655C73D66D7118859C ] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
06:14:05.0465 0x1498 Power Management - ok
06:14:05.0583 0x1498 [ 4A80B3C030178E65CF0BECFF1BB20905, EBBB74B0597D1884D279C77248A818A6D9300DDE06BCE498945B82715ABE0196 ] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
06:14:05.0599 0x1498 SuiteTray - ok
06:14:05.0650 0x1498 [ 0D360F06B168A6F37ACA9D9F958245DA, 0F37D510AE0A31503A359F65D5C04CD798B178A3A3E2601DFBAB6534B3C7C23C ] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
06:14:05.0663 0x1498 BackupManagerTray - ok
06:14:05.0880 0x1498 [ 9ABC4E3B00CFA3A47D5569F5B49FE42F, 5D33CCE770BC9BC3AFA544A21F100A7F1E5A36577FDB30884160AC4BFE6A1838 ] C:\Program Files (x86)\Launch Manager\LManager.exe
06:14:05.0917 0x1498 LManager - ok
06:14:05.0969 0x1498 [ 14017E1CE1583C2C26F69C5BC3D4DBD0, 1D17EC0FF6DF5AF44C82EA6C6806CC940121BC93439D87C5442D7EEEFFA39E3A ] C:\Dolby PCEE4\pcee4.exe
06:14:05.0991 0x1498 Dolby Advanced Audio v2 - ok
06:14:06.0773 0x1498 [ F66203AF9C159E2CBD54DF981654F499, C28A7E3D4BB50F14D40C3AE9D1267D11015381A9615663BAAAB6C0084A72E607 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
06:14:06.0911 0x1498 AvastUI.exe - ok
06:14:07.0223 0x1498 [ 919F88F5158350947FB255358CEA4907, E67E46DD7185A2B7928BDFFA7893CBF7D4BB92E4881F38E9DDB5E582D2D2D48E ] C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe
06:14:07.0280 0x1498 seznam-listicka-distribuce - ok
06:14:07.0916 0x1498 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
06:14:07.0965 0x1498 Adobe ARM - ok
06:14:08.0303 0x1498 [ 919F88F5158350947FB255358CEA4907, E67E46DD7185A2B7928BDFFA7893CBF7D4BB92E4881F38E9DDB5E582D2D2D48E ] C:\Users\Doma\AppData\Roaming\Seznam.cz\szninstall.exe
06:14:08.0342 0x1498 cz.seznam.software.autoupdate - ok
06:14:08.0421 0x1498 [ 177C7E1FB4793BFCC6B06D11D8032481, E929662796B17B361E4A1B5E2F004C60B9A396A46F980F7C3B1E9D9912F68870 ] C:\Users\Doma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
06:14:08.0433 0x1498 cz.seznam.software.szndesktop - ok
06:14:09.0113 0x1498 [ C81F59B7D524FB462F73B27757084618, 6C7DF7257ED0D9C69A53B98F15EAF1B42D302659791EE80F48D06BCA11EA09D8 ] C:\Program Files\CCleaner\CCleaner64.exe
06:14:09.0447 0x1498 CCleaner Monitoring - ok
06:14:09.0698 0x1498 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
06:14:09.0760 0x1498 Sidebar - ok
06:14:09.0763 0x1498 AVDworks - ok
06:14:09.0828 0x1498 [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\SysWOW64\regsvr32.exe
06:14:09.0860 0x1498 UZDmedia - ok
06:14:09.0861 0x1498 Waiting for KSN requests completion. In queue: 116
06:14:10.0861 0x1498 Waiting for KSN requests completion. In queue: 116
06:14:11.0861 0x1498 Waiting for KSN requests completion. In queue: 116
06:14:12.0953 0x1498 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.3.2225.1172 ), 0x41000 ( enabled : updated )
06:14:12.0991 0x1498 Win FW state via NFP2: enabled ( trusted )
06:14:15.0673 0x1498 ============================================================
06:14:15.0673 0x1498 Scan finished
06:14:15.0673 0x1498 ============================================================
06:14:15.0688 0x12f0 Detected object count: 0
06:14:15.0689 0x12f0 Actual detected object count: 0
06:16:16.0609 0x12dc Deinitialize success
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
avast blazni co minutu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
mbar
Malwarebytes Anti-Rootkit BETA 1.9.2.1008
www.malwarebytes.org
Database version:
main: v2015.09.11.01
rootkit: v2015.08.16.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Doma :: DOMA-PC [administrator]
11.9.2015 6:20:25
mbar-log-2015-09-11 (06-20-25).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 363233
Time elapsed: 22 minute(s), 36 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Database version:
main: v2015.09.11.01
rootkit: v2015.08.16.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Doma :: DOMA-PC [administrator]
11.9.2015 6:20:25
mbar-log-2015-09-11 (06-20-25).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 363233
Time elapsed: 22 minute(s), 36 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Re: avast blazni co minutu
Odinstalujte Spybota, program je zastaraly. Pokud nepouzivate, odinstalujte Seznam Software. Vypnete trvale Windows Defender. Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
KillAll::
Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=-
"cz.seznam.software.szndesktop"=-
"CCleaner Monitoring"=-
"AVDworks"=-
"UZDmedia"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"seznam-listicka-distribuce"=-
"Adobe ARM"=-
RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
Driver::
BBUpdate
BBSvc
Reboot::Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.
Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku Zopakujte sken s MBAMPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
combofix
ComboFix 15-09-07.01 - Doma 13.09.2015 18:55:55.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3948.2281 [GMT 2:00]
Spuštěný z: c:\users\Doma\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Doma\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_BBSvc
-------\Service_BBUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-13 do 2015-09-13 )))))))))))))))))))))))))))))))
.
.
2015-09-13 17:02 . 2015-09-13 17:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-11 07:44 . 2015-07-31 09:21 11745192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{17409CB6-CB51-4CF6-B3E5-5AE5910E152A}\mpengine.dll
2015-09-11 04:20 . 2015-09-11 04:43 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2015-09-10 13:13 . 2015-09-11 04:20 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-09-10 13:04 . 2015-09-11 04:19 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-09-10 13:04 . 2015-09-10 13:04 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-09-10 13:04 . 2015-09-10 13:04 -------- d-----w- c:\programdata\Malwarebytes
2015-09-10 13:04 . 2015-06-18 06:41 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-09-10 13:04 . 2015-06-18 06:41 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-09-09 15:58 . 2015-09-09 15:59 -------- d-----w- C:\rsit
2015-09-09 15:58 . 2015-09-09 15:59 -------- d-----w- c:\program files\trend micro
2015-09-09 15:32 . 2015-08-05 17:56 1737216 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2015-09-09 15:32 . 2015-08-05 17:56 1411072 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2015-09-09 15:32 . 2015-08-05 17:56 1398272 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2015-09-09 15:32 . 2015-08-05 17:56 1372160 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-09-09 15:30 . 2015-08-18 01:14 816744 ----a-w- c:\program files (x86)\Internet Explorer\iexplore.exe
2015-09-09 15:29 . 2015-07-23 00:06 5568960 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-09-09 15:28 . 2015-08-27 18:18 2004480 ----a-w- c:\windows\system32\msxml6.dll
2015-09-09 15:27 . 2015-09-02 01:51 3209216 ----a-w- c:\windows\system32\win32k.sys
2015-09-01 16:27 . 2015-09-01 16:27 -------- d-----w- c:\program files (x86)\phenomedia
2015-09-01 16:27 . 2015-09-01 16:27 -------- d-----w- c:\program files (x86)\Einfach_Spielen
2015-09-01 16:22 . 2015-09-01 16:22 -------- d-----w- c:\program files\WinRAR
2015-08-23 15:54 . 2015-08-23 15:57 -------- d-s---w- c:\windows\system32\GWX
2015-08-23 15:54 . 2015-08-23 15:54 -------- d-s---w- c:\windows\SysWow64\GWX
2015-08-23 13:13 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-08-23 13:13 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-08-22 13:55 . 2015-08-22 13:55 22200 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2015-08-22 13:51 . 2015-08-22 13:51 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2015-08-22 11:39 . 2014-07-09 02:03 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2015-08-22 11:39 . 2014-07-09 01:31 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2015-08-22 11:39 . 2014-07-09 01:31 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
2015-08-22 11:39 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-08-22 11:39 . 2013-11-22 22:48 3928064 ----a-w- c:\windows\system32\d2d1.dll
2015-08-22 11:28 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-08-22 11:28 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-08-22 11:22 . 2015-08-22 11:22 -------- d-----w- c:\windows\SysWow64\Wat
2015-08-22 11:22 . 2015-08-22 11:22 -------- d-----w- c:\windows\system32\Wat
2015-08-22 10:54 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 10:54 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 10:38 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-08-22 10:38 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-08-22 10:38 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-08-22 10:38 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-08-22 10:38 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-08-22 10:38 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-08-22 10:38 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-08-22 10:13 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-08-22 10:13 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-08-22 10:13 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-08-22 10:13 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-08-22 10:13 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-08-22 10:13 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-08-22 10:12 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-08-22 10:12 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-08-22 09:33 . 2015-07-30 18:06 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2015-08-22 09:33 . 2015-07-30 18:06 1648128 ----a-w- c:\windows\system32\DWrite.dll
2015-08-22 09:33 . 2015-07-30 18:06 1180160 ----a-w- c:\windows\system32\FntCache.dll
2015-08-22 09:33 . 2015-07-30 17:57 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2015-08-22 09:33 . 2015-07-30 17:57 1251328 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-08-22 09:33 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-08-22 09:33 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-08-22 09:32 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-08-22 09:32 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-08-22 09:24 . 2015-08-22 09:24 -------- d-----w- c:\program files\Microsoft Silverlight
2015-08-22 09:24 . 2015-08-22 09:24 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-----w- c:\windows\Migration
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-s---w- c:\windows\system32\CompatTel
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-----w- c:\windows\system32\appraiser
2015-08-21 15:04 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2015-08-21 14:55 . 2015-08-21 14:55 68608 ----a-w- c:\windows\system32\taskhost.exe
2015-08-21 13:44 . 2015-08-21 13:44 -------- d-----w- c:\program files\CCleaner
2015-08-21 13:25 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2015-08-21 13:25 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2015-08-21 13:25 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2015-08-21 13:25 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2015-08-21 13:22 . 2014-08-12 02:02 878080 ----a-w- c:\windows\system32\IMJP10K.DLL
2015-08-21 13:22 . 2014-08-12 01:36 701440 ----a-w- c:\windows\SysWow64\IMJP10K.DLL
2015-08-21 13:20 . 2015-06-03 20:16 1239720 ----a-w- c:\windows\system32\aitstatic.exe
2015-08-21 13:20 . 2015-07-28 20:05 774656 ----a-w- c:\windows\system32\invagent.dll
2015-08-21 13:20 . 2015-07-28 20:05 743424 ----a-w- c:\windows\system32\generaltel.dll
2015-08-21 13:20 . 2015-07-28 20:05 437760 ----a-w- c:\windows\system32\devinv.dll
2015-08-21 13:20 . 2015-07-28 20:05 69120 ----a-w- c:\windows\system32\acmigration.dll
2015-08-21 13:20 . 2015-07-28 19:55 1148416 ----a-w- c:\windows\system32\aeinv.dll
2015-08-21 13:20 . 2015-06-03 20:16 193536 ----a-w- c:\windows\system32\aepic.dll
2015-08-21 13:20 . 2015-07-28 20:05 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-08-21 13:20 . 2015-06-02 00:07 254976 ----a-w- c:\windows\system32\cewmdm.dll
2015-08-21 13:20 . 2015-06-01 23:47 210432 ----a-w- c:\windows\SysWow64\cewmdm.dll
2015-08-21 13:20 . 2015-04-18 03:10 460800 ----a-w- c:\windows\system32\certcli.dll
2015-08-21 13:20 . 2015-04-18 02:56 342016 ----a-w- c:\windows\SysWow64\certcli.dll
2015-08-21 13:18 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2015-08-21 13:17 . 2015-05-25 18:19 113664 ----a-w- c:\windows\system32\sechost.dll
2015-08-21 13:16 . 2014-04-25 02:34 801280 ----a-w- c:\windows\system32\usp10.dll
2015-08-21 13:16 . 2014-04-25 02:06 626688 ----a-w- c:\windows\SysWow64\usp10.dll
2015-08-21 13:16 . 2011-11-17 06:35 395776 ----a-w- c:\windows\system32\webio.dll
2015-08-21 13:16 . 2011-11-17 05:35 314880 ----a-w- c:\windows\SysWow64\webio.dll
2015-08-21 13:16 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2015-08-21 13:16 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2015-08-21 13:14 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll
2015-08-21 13:14 . 2014-06-18 22:23 73880 ----a-w- c:\windows\system32\mscories.dll
2015-08-21 13:14 . 2014-06-18 22:23 1943696 ----a-w- c:\windows\system32\dfshim.dll
2015-08-21 13:14 . 2014-06-18 22:23 156312 ----a-w- c:\windows\system32\mscorier.dll
2015-08-21 13:14 . 2014-06-18 22:23 81560 ----a-w- c:\windows\SysWow64\mscories.dll
2015-08-21 13:14 . 2014-06-18 22:23 156824 ----a-w- c:\windows\SysWow64\mscorier.dll
2015-08-21 13:14 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\SysWow64\dfshim.dll
2015-08-21 13:12 . 2014-01-29 02:32 484864 ----a-w- c:\windows\system32\wer.dll
2015-08-21 13:12 . 2014-01-29 02:06 381440 ----a-w- c:\windows\SysWow64\wer.dll
2015-08-21 13:12 . 2013-10-19 02:18 81408 ----a-w- c:\windows\system32\imagehlp.dll
2015-08-21 13:12 . 2013-10-19 01:36 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2015-08-21 13:12 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-08-21 13:12 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-08-21 13:12 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-08-21 13:11 . 2014-10-14 02:13 683520 ----a-w- c:\windows\system32\termsrv.dll
2015-08-21 13:10 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
2015-08-21 13:08 . 2013-07-12 10:41 185344 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2015-08-21 13:08 . 2013-07-12 10:41 100864 ----a-w- c:\windows\system32\drivers\usbcir.sys
2015-08-21 13:07 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2015-08-21 13:07 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2015-08-21 13:07 . 2014-12-19 01:46 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2015-08-21 13:07 . 2014-04-05 02:47 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2015-08-21 13:07 . 2014-04-05 02:47 288192 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2015-08-21 13:07 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-03 14:10 . 2011-08-12 07:32 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-08-21 14:57 . 2015-08-21 14:57 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2015-08-21 14:57 . 2015-08-21 14:57 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-08-20 00:55 . 2015-08-20 00:55 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2015-08-20 00:55 . 2015-08-20 00:55 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
2015-08-19 16:08 . 2011-03-29 01:36 24288 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-07-22 17:53 . 2015-09-09 15:29 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-06-23 11:30 . 2010-11-21 03:27 300704 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-06-21 341360]
"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-07-01 1103440]
"Dolby Advanced Audio v2"="c:\dolby pcee4\pcee4.exe" [2011-02-03 506712]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-08-26 6111824]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2015-06-15 73216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-5-10 1131296]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 ngvss;ngvss; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x]
S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x]
S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2015-09-13 c:\windows\Tasks\Acer Registration - Reminder Recall task.job
- c:\program files (x86)\Acer\Registration\GREG.exe [2011-05-11 11:30]
.
2015-09-12 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe [2015-08-22 14:10]
.
2015-09-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-20 14:10]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-08-19 16:18 778056 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-21 416024]
"IntelTBRunOnce"="wscript.exe" [2013-10-12 168960]
"ETDCtrl"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-21 2207848]
"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://acer.msn.com
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{3B5B973C-92A4-4855-9D3F-0F3D23332208} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Launch Manager\LMworker.exe
c:\program files (x86)\Launch Manager\LMutilps32.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
c:\program files\AVAST Software\Avast\AvastEmUpdate.exe
.
**************************************************************************
.
Celkový čas: 2015-09-13 19:08:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-09-13 17:08
ComboFix2.txt 2015-09-11 04:05
.
Před spuštěním: Volných bajtů: 915 022 831 616
Po spuštění: Volných bajtů: 914 984 513 536
.
- - End Of File - - 4A403C4B7E373391C20765257D65DA71
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3948.2281 [GMT 2:00]
Spuštěný z: c:\users\Doma\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Doma\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_BBSvc
-------\Service_BBUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-08-13 do 2015-09-13 )))))))))))))))))))))))))))))))
.
.
2015-09-13 17:02 . 2015-09-13 17:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-09-11 07:44 . 2015-07-31 09:21 11745192 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{17409CB6-CB51-4CF6-B3E5-5AE5910E152A}\mpengine.dll
2015-09-11 04:20 . 2015-09-11 04:43 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2015-09-10 13:13 . 2015-09-11 04:20 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-09-10 13:04 . 2015-09-11 04:19 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-09-10 13:04 . 2015-09-10 13:04 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-09-10 13:04 . 2015-09-10 13:04 -------- d-----w- c:\programdata\Malwarebytes
2015-09-10 13:04 . 2015-06-18 06:41 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-09-10 13:04 . 2015-06-18 06:41 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-09-09 15:58 . 2015-09-09 15:59 -------- d-----w- C:\rsit
2015-09-09 15:58 . 2015-09-09 15:59 -------- d-----w- c:\program files\trend micro
2015-09-09 15:32 . 2015-08-05 17:56 1737216 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2015-09-09 15:32 . 2015-08-05 17:56 1411072 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2015-09-09 15:32 . 2015-08-05 17:56 1398272 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2015-09-09 15:32 . 2015-08-05 17:56 1372160 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-09-09 15:30 . 2015-08-18 01:14 816744 ----a-w- c:\program files (x86)\Internet Explorer\iexplore.exe
2015-09-09 15:29 . 2015-07-23 00:06 5568960 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-09-09 15:28 . 2015-08-27 18:18 2004480 ----a-w- c:\windows\system32\msxml6.dll
2015-09-09 15:27 . 2015-09-02 01:51 3209216 ----a-w- c:\windows\system32\win32k.sys
2015-09-01 16:27 . 2015-09-01 16:27 -------- d-----w- c:\program files (x86)\phenomedia
2015-09-01 16:27 . 2015-09-01 16:27 -------- d-----w- c:\program files (x86)\Einfach_Spielen
2015-09-01 16:22 . 2015-09-01 16:22 -------- d-----w- c:\program files\WinRAR
2015-08-23 15:54 . 2015-08-23 15:57 -------- d-s---w- c:\windows\system32\GWX
2015-08-23 15:54 . 2015-08-23 15:54 -------- d-s---w- c:\windows\SysWow64\GWX
2015-08-23 13:13 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-08-23 13:13 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-08-22 13:55 . 2015-08-22 13:55 22200 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2015-08-22 13:51 . 2015-08-22 13:51 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDTAT.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDRU1.DLL
2015-08-22 11:39 . 2014-07-09 02:03 6656 ----a-w- c:\windows\system32\KBDRU.DLL
2015-08-22 11:39 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDBASH.DLL
2015-08-22 11:39 . 2014-07-09 01:31 7168 ----a-w- c:\windows\SysWow64\KBDYAK.DLL
2015-08-22 11:39 . 2014-07-09 01:31 6656 ----a-w- c:\windows\SysWow64\KBDBASH.DLL
2015-08-22 11:39 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-08-22 11:39 . 2013-11-22 22:48 3928064 ----a-w- c:\windows\system32\d2d1.dll
2015-08-22 11:28 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-08-22 11:28 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-08-22 11:22 . 2015-08-22 11:22 -------- d-----w- c:\windows\SysWow64\Wat
2015-08-22 11:22 . 2015-08-22 11:22 -------- d-----w- c:\windows\system32\Wat
2015-08-22 10:54 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 10:54 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 10:38 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-08-22 10:38 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-08-22 10:38 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-08-22 10:38 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-08-22 10:38 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-08-22 10:38 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-08-22 10:38 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-08-22 10:13 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-08-22 10:13 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-08-22 10:13 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-08-22 10:13 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-08-22 10:13 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-08-22 10:13 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-08-22 10:12 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-08-22 10:12 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-08-22 09:33 . 2015-07-30 18:06 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2015-08-22 09:33 . 2015-07-30 18:06 1648128 ----a-w- c:\windows\system32\DWrite.dll
2015-08-22 09:33 . 2015-07-30 18:06 1180160 ----a-w- c:\windows\system32\FntCache.dll
2015-08-22 09:33 . 2015-07-30 17:57 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2015-08-22 09:33 . 2015-07-30 17:57 1251328 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-08-22 09:33 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-08-22 09:33 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-08-22 09:32 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-08-22 09:32 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-08-22 09:24 . 2015-08-22 09:24 -------- d-----w- c:\program files\Microsoft Silverlight
2015-08-22 09:24 . 2015-08-22 09:24 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-----w- c:\windows\Migration
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-s---w- c:\windows\system32\CompatTel
2015-08-21 15:32 . 2015-08-21 15:32 -------- d-----w- c:\windows\system32\appraiser
2015-08-21 15:04 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2015-08-21 14:55 . 2015-08-21 14:55 68608 ----a-w- c:\windows\system32\taskhost.exe
2015-08-21 13:44 . 2015-08-21 13:44 -------- d-----w- c:\program files\CCleaner
2015-08-21 13:25 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2015-08-21 13:25 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2015-08-21 13:25 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2015-08-21 13:25 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2015-08-21 13:22 . 2014-08-12 02:02 878080 ----a-w- c:\windows\system32\IMJP10K.DLL
2015-08-21 13:22 . 2014-08-12 01:36 701440 ----a-w- c:\windows\SysWow64\IMJP10K.DLL
2015-08-21 13:20 . 2015-06-03 20:16 1239720 ----a-w- c:\windows\system32\aitstatic.exe
2015-08-21 13:20 . 2015-07-28 20:05 774656 ----a-w- c:\windows\system32\invagent.dll
2015-08-21 13:20 . 2015-07-28 20:05 743424 ----a-w- c:\windows\system32\generaltel.dll
2015-08-21 13:20 . 2015-07-28 20:05 437760 ----a-w- c:\windows\system32\devinv.dll
2015-08-21 13:20 . 2015-07-28 20:05 69120 ----a-w- c:\windows\system32\acmigration.dll
2015-08-21 13:20 . 2015-07-28 19:55 1148416 ----a-w- c:\windows\system32\aeinv.dll
2015-08-21 13:20 . 2015-06-03 20:16 193536 ----a-w- c:\windows\system32\aepic.dll
2015-08-21 13:20 . 2015-07-28 20:05 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-08-21 13:20 . 2015-06-02 00:07 254976 ----a-w- c:\windows\system32\cewmdm.dll
2015-08-21 13:20 . 2015-06-01 23:47 210432 ----a-w- c:\windows\SysWow64\cewmdm.dll
2015-08-21 13:20 . 2015-04-18 03:10 460800 ----a-w- c:\windows\system32\certcli.dll
2015-08-21 13:20 . 2015-04-18 02:56 342016 ----a-w- c:\windows\SysWow64\certcli.dll
2015-08-21 13:18 . 2011-10-01 05:45 886784 ----a-w- c:\program files\Common Files\System\wab32.dll
2015-08-21 13:17 . 2015-05-25 18:19 113664 ----a-w- c:\windows\system32\sechost.dll
2015-08-21 13:16 . 2014-04-25 02:34 801280 ----a-w- c:\windows\system32\usp10.dll
2015-08-21 13:16 . 2014-04-25 02:06 626688 ----a-w- c:\windows\SysWow64\usp10.dll
2015-08-21 13:16 . 2011-11-17 06:35 395776 ----a-w- c:\windows\system32\webio.dll
2015-08-21 13:16 . 2011-11-17 05:35 314880 ----a-w- c:\windows\SysWow64\webio.dll
2015-08-21 13:16 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2015-08-21 13:16 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2015-08-21 13:14 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll
2015-08-21 13:14 . 2014-06-18 22:23 73880 ----a-w- c:\windows\system32\mscories.dll
2015-08-21 13:14 . 2014-06-18 22:23 1943696 ----a-w- c:\windows\system32\dfshim.dll
2015-08-21 13:14 . 2014-06-18 22:23 156312 ----a-w- c:\windows\system32\mscorier.dll
2015-08-21 13:14 . 2014-06-18 22:23 81560 ----a-w- c:\windows\SysWow64\mscories.dll
2015-08-21 13:14 . 2014-06-18 22:23 156824 ----a-w- c:\windows\SysWow64\mscorier.dll
2015-08-21 13:14 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\SysWow64\dfshim.dll
2015-08-21 13:12 . 2014-01-29 02:32 484864 ----a-w- c:\windows\system32\wer.dll
2015-08-21 13:12 . 2014-01-29 02:06 381440 ----a-w- c:\windows\SysWow64\wer.dll
2015-08-21 13:12 . 2013-10-19 02:18 81408 ----a-w- c:\windows\system32\imagehlp.dll
2015-08-21 13:12 . 2013-10-19 01:36 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2015-08-21 13:12 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-08-21 13:12 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-08-21 13:12 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-08-21 13:11 . 2014-10-14 02:13 683520 ----a-w- c:\windows\system32\termsrv.dll
2015-08-21 13:10 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
2015-08-21 13:08 . 2013-07-12 10:41 185344 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2015-08-21 13:08 . 2013-07-12 10:41 100864 ----a-w- c:\windows\system32\drivers\usbcir.sys
2015-08-21 13:07 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2015-08-21 13:07 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2015-08-21 13:07 . 2014-12-19 01:46 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2015-08-21 13:07 . 2014-04-05 02:47 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2015-08-21 13:07 . 2014-04-05 02:47 288192 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2015-08-21 13:07 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-03 14:10 . 2011-08-12 07:32 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-08-21 14:57 . 2015-08-21 14:57 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2015-08-21 14:57 . 2015-08-21 14:57 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-08-20 00:55 . 2015-08-20 00:55 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 2560 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 5632 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 50176 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
2015-08-20 00:55 . 2015-08-20 00:55 27136 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
2015-08-20 00:55 . 2015-08-20 00:55 15360 ----a-w- c:\windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
2015-08-19 16:08 . 2011-03-29 01:36 24288 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-07-22 17:53 . 2015-09-09 15:29 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-06-23 11:30 . 2010-11-21 03:27 300704 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-06-21 341360]
"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-07-01 1103440]
"Dolby Advanced Audio v2"="c:\dolby pcee4\pcee4.exe" [2011-02-03 506712]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-08-26 6111824]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2015-06-15 73216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-5-10 1131296]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 ngvss;ngvss; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\DRIVERS\b57xdbd.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdbd.sys [x]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\DRIVERS\b57xdmp.sys;c:\windows\SYSNATIVE\DRIVERS\b57xdmp.sys [x]
S3 bScsiMSa;bScsiMSa;c:\windows\system32\DRIVERS\bScsiMSa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiMSa.sys [x]
S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2015-09-13 c:\windows\Tasks\Acer Registration - Reminder Recall task.job
- c:\program files (x86)\Acer\Registration\GREG.exe [2011-05-11 11:30]
.
2015-09-12 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe [2015-08-22 14:10]
.
2015-09-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-20 14:10]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-08-19 16:18 778056 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-21 416024]
"IntelTBRunOnce"="wscript.exe" [2013-10-12 168960]
"ETDCtrl"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-21 2207848]
"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://acer.msn.com
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.0.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{3B5B973C-92A4-4855-9D3F-0F3D23332208} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_18_0_0_232_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Launch Manager\LMworker.exe
c:\program files (x86)\Launch Manager\LMutilps32.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
c:\program files\AVAST Software\Avast\AvastEmUpdate.exe
.
**************************************************************************
.
Celkový čas: 2015-09-13 19:08:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-09-13 17:08
ComboFix2.txt 2015-09-11 04:05
.
Před spuštěním: Volných bajtů: 915 022 831 616
Po spuštění: Volných bajtů: 914 984 513 536
.
- - End Of File - - 4A403C4B7E373391C20765257D65DA71
Re: avast blazni co minutu
Mbam nic nenasel. Akorat jsem si neulozila ten log da se nekde dohledat nebo se to musi znovu prohledat?
Re: avast blazni co minutu
Pokud nic nenasel, log nepotrebuju 
Jak se nyni chova pocitac? Porad vyskakuje nejake hlaseni?
Dejte novy log z RSITx64
a k tomu
Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach
Jak se nyni chova pocitac? Porad vyskakuje nejake hlaseni? Dejte novy log z RSITx64a k tomu
Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
rsit
Logfile of random's system information tool 1.10 (written by random/random)
Run by Doma at 2015-09-14 17:13:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 871 GB (93%) free of 935 GB
Total RAM: 3948 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:13:41, on 14.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18015)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera_crashreporter.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files\trend micro\Doma.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9823 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 4247472
\??\C:\Windows\system32\conhost.exe "-10227990501837728357-1430372831-183746341879754150-1090926396-20319480491307403346
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Dolby PCEE4\pcee4.exe" -autostart
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\SysWOW64\RunDll32.exe "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
taskeng.exe {C89C3A19-90F8-4E21-A4BF-422A24C19F90}
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=3968
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=gpu-process --channel="3968.0.54086549\1674689404" --crash-reporter-pid=4492 --enable-mse-h264-support --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,23,46 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2418 --crash-reporter-pid=4492 --enable-mse-h264-support --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.2.1209110752\199386869" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.3.2094925313\1514221487" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.4.889255627\423270691" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.5.959782963\1265901677" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.10.1854098702\1865952097" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.11.525147875\1641011842" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Doma\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Reminder Recall task.job - C:\Program Files (x86)\Acer\Registration\GREG.exe /RR
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-19 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-19 559624]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07 1152264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07 1152264]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-06-21 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-06-21 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-06-21 416024]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-05 2589992]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-28 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-08-02 1831016]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-06-22 341360]
"BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2011-04-24 297280]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-07-01 1103440]
"Dolby Advanced Audio v2"=C:\Dolby PCEE4\pcee4.exe [2011-02-03 506712]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-26 6111824]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-06-10 389632]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-09-14 15:29:39 ----D---- C:\Program Files\Tracker Software
2015-09-14 15:23:33 ----D---- C:\Users\Doma\AppData\Roaming\Software602
2015-09-14 15:23:04 ----A---- C:\Windows\system32\602localmon.dll
2015-09-14 15:23:01 ----D---- C:\Users\Doma\AppData\Roaming\602XML
2015-09-14 15:22:54 ----D---- C:\Users\Doma\AppData\Roaming\602Installer
2015-09-14 15:22:50 ----D---- C:\Program Files (x86)\Software602
2015-09-13 19:08:34 ----SHD---- C:\$RECYCLE.BIN
2015-09-13 19:08:30 ----A---- C:\ComboFix.txt
2015-09-11 06:20:17 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-11 06:12:45 ----A---- C:\TDSSKiller.3.1.0.5_11.09.2015_06.12.45_log.txt
2015-09-11 06:05:46 ----D---- C:\Windows\temp
2015-09-11 05:57:41 ----A---- C:\Windows\zip.exe
2015-09-11 05:57:41 ----A---- C:\Windows\SWSC.exe
2015-09-11 05:57:41 ----A---- C:\Windows\SWREG.exe
2015-09-11 05:57:41 ----A---- C:\Windows\sed.exe
2015-09-11 05:57:41 ----A---- C:\Windows\PEV.exe
2015-09-11 05:57:41 ----A---- C:\Windows\NIRCMD.exe
2015-09-11 05:57:41 ----A---- C:\Windows\MBR.exe
2015-09-11 05:57:41 ----A---- C:\Windows\grep.exe
2015-09-11 05:34:03 ----D---- C:\Qoobox
2015-09-11 05:33:46 ----D---- C:\Windows\erdnt
2015-09-10 15:13:20 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-09-10 15:04:08 ----D---- C:\ProgramData\Malwarebytes
2015-09-10 15:04:08 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-10 15:04:08 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-09-10 15:04:08 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-09-10 15:04:08 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-09-09 17:58:56 ----D---- C:\rsit
2015-09-09 17:58:56 ----D---- C:\Program Files\trend micro
2015-09-09 17:31:59 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-09-09 17:31:59 ----A---- C:\Windows\system32\InkEd.dll
2015-09-09 17:31:58 ----A---- C:\Windows\system32\jnwmon.dll
2015-09-09 17:31:56 ----A---- C:\Windows\system32\schedsvc.dll
2015-09-09 17:31:46 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-09 17:31:46 ----A---- C:\Windows\system32\tzres.dll
2015-09-09 17:31:10 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-09 17:31:10 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-09 17:31:10 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-09 17:31:10 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-09 17:31:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-09 17:31:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-09 17:31:03 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-09 17:31:03 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-09 17:31:03 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-09 17:31:02 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 17:31:02 ----A---- C:\Windows\system32\iernonce.dll
2015-09-09 17:31:02 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-09 17:31:00 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-09 17:31:00 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-09 17:31:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-09 17:31:00 ----A---- C:\Windows\system32\urlmon.dll
2015-09-09 17:31:00 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-09 17:30:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-09 17:30:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-09 17:30:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-09 17:30:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 17:30:58 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-09 17:30:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-09 17:30:57 ----A---- C:\Windows\system32\iesetup.dll
2015-09-09 17:30:57 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-09 17:30:56 ----A---- C:\Windows\system32\iertutil.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-09 17:30:55 ----A---- C:\Windows\system32\vbscript.dll
2015-09-09 17:30:55 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-09 17:30:55 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-09 17:30:54 ----A---- C:\Windows\system32\ieui.dll
2015-09-09 17:30:54 ----A---- C:\Windows\system32\ieframe.dll
2015-09-09 17:30:54 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\jscript.dll
2015-09-09 17:30:52 ----A---- C:\Windows\system32\wininet.dll
2015-09-09 17:30:52 ----A---- C:\Windows\system32\jscript9.dll
2015-09-09 17:30:51 ----A---- C:\Windows\system32\msrating.dll
2015-09-09 17:30:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-09 17:30:50 ----A---- C:\Windows\system32\mshtml.dll
2015-09-09 17:29:52 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-09 17:29:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-09 17:29:52 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-09 17:29:50 ----A---- C:\Windows\system32\tdh.dll
2015-09-09 17:29:50 ----A---- C:\Windows\system32\ntdll.dll
2015-09-09 17:29:50 ----A---- C:\Windows\system32\kernel32.dll
2015-09-09 17:29:49 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-09 17:29:48 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-09 17:29:48 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-09 17:29:47 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-09 17:29:47 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-09 17:29:47 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-09 17:29:47 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-09 17:29:47 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-09 17:29:47 ----A---- C:\Windows\system32\advapi32.dll
2015-09-09 17:29:46 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\wow64.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\srcore.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\rstrui.exe
2015-09-09 17:29:46 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\kerberos.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-09 17:29:45 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-09 17:29:45 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\winsrv.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\wdigest.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\smss.exe
2015-09-09 17:29:45 ----A---- C:\Windows\system32\schannel.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\conhost.exe
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-09 17:29:44 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\sspicli.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\srclient.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\lsass.exe
2015-09-09 17:29:44 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-09 17:29:44 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\auditpol.exe
2015-09-09 17:29:43 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-09 17:29:43 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-09 17:29:42 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\wow64win.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\secur32.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-09 17:29:42 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-09 17:29:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-09 17:29:42 ----A---- C:\Windows\system32\credssp.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-09 17:29:40 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-09 17:29:40 ----A---- C:\Windows\system32\adtschema.dll
2015-09-09 17:29:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-09 17:29:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-09 17:29:39 ----A---- C:\Windows\system32\msobjs.dll
2015-09-09 17:29:39 ----A---- C:\Windows\system32\msaudite.dll
2015-09-09 17:29:06 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-09 17:29:06 ----A---- C:\Windows\system32\consent.exe
2015-09-09 17:29:06 ----A---- C:\Windows\system32\authui.dll
2015-09-09 17:29:06 ----A---- C:\Windows\system32\appinfo.dll
2015-09-09 17:28:44 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-09 17:28:44 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-09 17:28:44 ----A---- C:\Windows\system32\msxml6.dll
2015-09-09 17:28:44 ----A---- C:\Windows\system32\msxml3.dll
2015-09-09 17:28:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-09 17:28:43 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-09 17:28:43 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-09 17:28:43 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-09 17:28:31 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 17:28:30 ----A---- C:\Windows\system32\appidsvc.dll
2015-09-09 17:28:30 ----A---- C:\Windows\system32\appidapi.dll
2015-09-09 17:28:29 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-09-09 17:28:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-09-09 17:28:26 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 17:28:25 ----A---- C:\Windows\system32\drivers\appid.sys
2015-09-09 17:27:12 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-09 17:27:12 ----A---- C:\Windows\system32\win32k.sys
2015-09-09 17:27:12 ----A---- C:\Windows\system32\atmfd.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\lpk.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\fontsub.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\dciman32.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\atmlib.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wups2.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wups.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wudriver.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wucltux.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuaueng.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuapp.exe
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuapi.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-01 18:27:11 ----D---- C:\Program Files (x86)\phenomedia
2015-09-01 18:27:10 ----D---- C:\Program Files (x86)\Einfach_Spielen
2015-09-01 18:22:54 ----D---- C:\Users\Doma\AppData\Roaming\WinRAR
2015-09-01 18:22:35 ----D---- C:\Program Files\WinRAR
2015-08-23 17:54:03 ----SD---- C:\Windows\SYSWOW64\GWX
2015-08-23 17:54:03 ----SD---- C:\Windows\system32\GWX
2015-08-23 15:13:44 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-08-23 15:13:44 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-08-22 15:55:55 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2015-08-22 15:51:42 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-22 13:39:15 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2015-08-22 13:39:15 ----A---- C:\Windows\system32\KBDTAT.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDYAK.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDRU1.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDRU.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDBASH.DLL
2015-08-22 13:39:11 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-08-22 13:39:11 ----A---- C:\Windows\system32\d2d1.dll
2015-08-22 13:28:12 ----A---- C:\Windows\system32\spoolsv.exe
2015-08-22 13:28:12 ----A---- C:\Windows\splwow64.exe
2015-08-22 13:22:17 ----D---- C:\Windows\SYSWOW64\Wat
2015-08-22 13:22:17 ----D---- C:\Windows\system32\Wat
2015-08-22 12:54:35 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:54:35 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:38:24 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-08-22 12:38:24 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-08-22 12:38:23 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-08-22 12:38:23 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFx.dll
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFHost.exe
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2015-08-22 12:13:27 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2015-08-22 12:13:27 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2015-08-22 12:13:27 ----A---- C:\Windows\system32\infocardapi.dll
2015-08-22 12:13:27 ----A---- C:\Windows\system32\icardagt.exe
2015-08-22 12:13:25 ----A---- C:\Windows\SYSWOW64\icardres.dll
2015-08-22 12:13:25 ----A---- C:\Windows\system32\icardres.dll
2015-08-22 12:12:57 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-08-22 12:12:57 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-08-22 11:33:21 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-22 11:33:21 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\FntCache.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\DWrite.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-22 11:33:11 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-08-22 11:33:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-08-22 11:32:52 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-08-22 11:32:52 ----A---- C:\Windows\system32\WMPhoto.dll
2015-08-22 11:24:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-22 11:24:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-21 19:02:41 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-21 17:32:29 ----D---- C:\Windows\Migration
2015-08-21 17:32:28 ----SD---- C:\Windows\system32\CompatTel
2015-08-21 17:32:28 ----D---- C:\Windows\system32\appraiser
2015-08-21 17:04:42 ----A---- C:\Windows\system32\IEUDINIT.EXE
2015-08-21 16:57:44 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2015-08-21 16:57:41 ----A---- C:\Windows\system32\elshyph.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\url.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\icardie.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msls31.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\mshtmler.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msfeedssync.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\jsIntl.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\iesysprep.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-08-21 16:57:35 ----A---- C:\Windows\system32\url.dll
2015-08-21 16:57:35 ----A---- C:\Windows\system32\ieapfltr.dat
2015-08-21 16:57:35 ----A---- C:\Windows\system32\icardie.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\wextract.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\webcheck.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\pngfilt.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\occache.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\mshta.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\licmgr10.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\inseng.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\imgutil.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\iexpress.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\iepeers.dll
2015-08-21 16:55:07 ----A---- C:\Windows\system32\taskhost.exe
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\XpsPrint.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\UIAnimation.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\dxgi.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10level9.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10_1.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10.dll
2015-08-21 15:44:36 ----D---- C:\Program Files\CCleaner
2015-08-21 15:25:45 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\wdi.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\powertracker.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\perftrack.dll
2015-08-21 15:22:04 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-08-21 15:22:04 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-08-21 15:21:40 ----A---- C:\Windows\system32\dpapiprovider.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\dimsroam.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\cngprovider.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\capiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\wincredprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\objsel.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\adprovider.dll
2015-08-21 15:20:28 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-21 15:20:28 ----A---- C:\Windows\system32\aitstatic.exe
2015-08-21 15:20:27 ----A---- C:\Windows\system32\invagent.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\generaltel.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\devinv.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\appraiser.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\aepic.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\aeinv.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\acmigration.dll
2015-08-21 15:20:25 ----A---- C:\Windows\system32\aepdu.dll
2015-08-21 15:20:23 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-08-21 15:20:23 ----A---- C:\Windows\system32\cewmdm.dll
2015-08-21 15:20:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-08-21 15:20:15 ----A---- C:\Windows\system32\certcli.dll
2015-08-21 15:19:37 ----A---- C:\Windows\system32\services.exe
2015-08-21 15:19:35 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-08-21 15:19:33 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2015-08-21 15:19:33 ----A---- C:\Windows\system32\xmllite.dll
2015-08-21 15:19:16 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2015-08-21 15:19:16 ----A---- C:\Windows\system32\msieftp.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbctrac.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccu32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccr32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccp32.dll
2015-08-21 15:19:06 ----A---- C:\Windows\system32\wwansvc.dll
2015-08-21 15:19:05 ----A---- C:\Windows\system32\wwanprotdim.dll
2015-08-21 15:19:04 ----A---- C:\Windows\system32\wmp.dll
2015-08-21 15:19:03 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-08-21 15:19:01 ----A---- C:\Windows\system32\wmploc.DLL
2015-08-21 15:19:01 ----A---- C:\Windows\system32\spwmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\system32\dxmasf.dll
2015-08-21 15:18:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\sysmain.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\mstscax.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\aaclient.dll
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-08-21 15:17:40 ----A---- C:\Windows\system32\tracerpt.exe
2015-08-21 15:17:40 ----A---- C:\Windows\system32\sechost.dll
2015-08-21 15:17:40 ----A---- C:\Windows\system32\logman.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\typeperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\relog.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\diskperf.exe
2015-08-21 15:17:04 ----A---- C:\Windows\system32\ntshrui.dll
2015-08-21 15:17:03 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2015-08-21 15:16:25 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-08-21 15:16:25 ----A---- C:\Windows\system32\usp10.dll
2015-08-21 15:16:23 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-08-21 15:16:23 ----A---- C:\Windows\system32\webio.dll
Run by Doma at 2015-09-14 17:13:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 871 GB (93%) free of 935 GB
Total RAM: 3948 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:13:41, on 14.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18015)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera_crashreporter.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
C:\Program Files\trend micro\Doma.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9823 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 4247472
\??\C:\Windows\system32\conhost.exe "-10227990501837728357-1430372831-183746341879754150-1090926396-20319480491307403346
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Dolby PCEE4\pcee4.exe" -autostart
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\SysWOW64\RunDll32.exe "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
taskeng.exe {C89C3A19-90F8-4E21-A4BF-422A24C19F90}
"C:\Program Files\EgisTec IPS\PMMUpdate.exe"
"C:\Program Files\EgisTec IPS\EgisUpdate.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=3968
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=gpu-process --channel="3968.0.54086549\1674689404" --crash-reporter-pid=4492 --enable-mse-h264-support --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,23,46 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0116 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2418 --crash-reporter-pid=4492 --enable-mse-h264-support --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.2.1209110752\199386869" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.3.2094925313\1514221487" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.4.889255627\423270691" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.5.959782963\1265901677" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.10.1854098702\1865952097" /prefetch:673131151
"C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --enable-deferred-image-decoding --lang=cs --disable-client-side-phishing-detection --ppapi-flash-path="C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_18_0_0_232.dll" --ppapi-flash-version=18.0.0.232 --crash-reporter-pid=4492 --enable-mse-h264-support --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --disable-accelerated-video-decode --channel="3968.11.525147875\1641011842" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Doma\Desktop\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Reminder Recall task.job - C:\Program Files (x86)\Acer\Registration\GREG.exe /RR
C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-19 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-19 559624]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07 1152264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07 1152264]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-06-21 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-06-21 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-06-21 416024]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-04-05 2589992]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-28 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2011-08-02 1831016]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-06-22 341360]
"BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2011-04-24 297280]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-07-01 1103440]
"Dolby Advanced Audio v2"=C:\Dolby PCEE4\pcee4.exe [2011-02-03 506712]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-26 6111824]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-06-10 389632]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2015-09-14 15:29:39 ----D---- C:\Program Files\Tracker Software
2015-09-14 15:23:33 ----D---- C:\Users\Doma\AppData\Roaming\Software602
2015-09-14 15:23:04 ----A---- C:\Windows\system32\602localmon.dll
2015-09-14 15:23:01 ----D---- C:\Users\Doma\AppData\Roaming\602XML
2015-09-14 15:22:54 ----D---- C:\Users\Doma\AppData\Roaming\602Installer
2015-09-14 15:22:50 ----D---- C:\Program Files (x86)\Software602
2015-09-13 19:08:34 ----SHD---- C:\$RECYCLE.BIN
2015-09-13 19:08:30 ----A---- C:\ComboFix.txt
2015-09-11 06:20:17 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-11 06:12:45 ----A---- C:\TDSSKiller.3.1.0.5_11.09.2015_06.12.45_log.txt
2015-09-11 06:05:46 ----D---- C:\Windows\temp
2015-09-11 05:57:41 ----A---- C:\Windows\zip.exe
2015-09-11 05:57:41 ----A---- C:\Windows\SWSC.exe
2015-09-11 05:57:41 ----A---- C:\Windows\SWREG.exe
2015-09-11 05:57:41 ----A---- C:\Windows\sed.exe
2015-09-11 05:57:41 ----A---- C:\Windows\PEV.exe
2015-09-11 05:57:41 ----A---- C:\Windows\NIRCMD.exe
2015-09-11 05:57:41 ----A---- C:\Windows\MBR.exe
2015-09-11 05:57:41 ----A---- C:\Windows\grep.exe
2015-09-11 05:34:03 ----D---- C:\Qoobox
2015-09-11 05:33:46 ----D---- C:\Windows\erdnt
2015-09-10 15:13:20 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-09-10 15:04:08 ----D---- C:\ProgramData\Malwarebytes
2015-09-10 15:04:08 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-10 15:04:08 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-09-10 15:04:08 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-09-10 15:04:08 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-09-09 17:58:56 ----D---- C:\rsit
2015-09-09 17:58:56 ----D---- C:\Program Files\trend micro
2015-09-09 17:31:59 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-09-09 17:31:59 ----A---- C:\Windows\system32\InkEd.dll
2015-09-09 17:31:58 ----A---- C:\Windows\system32\jnwmon.dll
2015-09-09 17:31:56 ----A---- C:\Windows\system32\schedsvc.dll
2015-09-09 17:31:46 ----A---- C:\Windows\SYSWOW64\tzres.dll
2015-09-09 17:31:46 ----A---- C:\Windows\system32\tzres.dll
2015-09-09 17:31:10 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2015-09-09 17:31:10 ----A---- C:\Windows\SYSWOW64\dwmapi.dll
2015-09-09 17:31:10 ----A---- C:\Windows\system32\dwmcore.dll
2015-09-09 17:31:10 ----A---- C:\Windows\system32\dwmapi.dll
2015-09-09 17:31:03 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-09-09 17:31:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-09-09 17:31:03 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-09-09 17:31:03 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-09-09 17:31:03 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-09-09 17:31:02 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-09-09 17:31:02 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 17:31:02 ----A---- C:\Windows\system32\iernonce.dll
2015-09-09 17:31:02 ----A---- C:\Windows\system32\ie4uinit.exe
2015-09-09 17:31:00 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-09-09 17:31:00 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-09-09 17:31:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-09-09 17:31:00 ----A---- C:\Windows\system32\urlmon.dll
2015-09-09 17:31:00 ----A---- C:\Windows\system32\iedkcs32.dll
2015-09-09 17:30:59 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-09-09 17:30:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-09-09 17:30:59 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-09-09 17:30:58 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-09-09 17:30:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 17:30:58 ----A---- C:\Windows\system32\msfeeds.dll
2015-09-09 17:30:58 ----A---- C:\Windows\system32\dxtrans.dll
2015-09-09 17:30:57 ----A---- C:\Windows\system32\iesetup.dll
2015-09-09 17:30:57 ----A---- C:\Windows\system32\ieapfltr.dll
2015-09-09 17:30:56 ----A---- C:\Windows\system32\iertutil.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-09-09 17:30:55 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-09-09 17:30:55 ----A---- C:\Windows\system32\vbscript.dll
2015-09-09 17:30:55 ----A---- C:\Windows\system32\jsproxy.dll
2015-09-09 17:30:55 ----A---- C:\Windows\system32\ieUnatt.exe
2015-09-09 17:30:54 ----A---- C:\Windows\system32\ieui.dll
2015-09-09 17:30:54 ----A---- C:\Windows\system32\ieframe.dll
2015-09-09 17:30:54 ----A---- C:\Windows\system32\dxtmsft.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\mshtmled.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\jscript9diag.dll
2015-09-09 17:30:53 ----A---- C:\Windows\system32\jscript.dll
2015-09-09 17:30:52 ----A---- C:\Windows\system32\wininet.dll
2015-09-09 17:30:52 ----A---- C:\Windows\system32\jscript9.dll
2015-09-09 17:30:51 ----A---- C:\Windows\system32\msrating.dll
2015-09-09 17:30:51 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-09-09 17:30:50 ----A---- C:\Windows\system32\mshtml.dll
2015-09-09 17:29:52 ----A---- C:\Windows\system32\UtcResources.dll
2015-09-09 17:29:52 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-09-09 17:29:52 ----A---- C:\Windows\system32\diagtrack.dll
2015-09-09 17:29:50 ----A---- C:\Windows\system32\tdh.dll
2015-09-09 17:29:50 ----A---- C:\Windows\system32\ntdll.dll
2015-09-09 17:29:50 ----A---- C:\Windows\system32\kernel32.dll
2015-09-09 17:29:49 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-09-09 17:29:48 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-09-09 17:29:48 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-09-09 17:29:47 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-09-09 17:29:47 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-09-09 17:29:47 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-09-09 17:29:47 ----A---- C:\Windows\system32\lsasrv.dll
2015-09-09 17:29:47 ----A---- C:\Windows\system32\KernelBase.dll
2015-09-09 17:29:47 ----A---- C:\Windows\system32\advapi32.dll
2015-09-09 17:29:46 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\wow64.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\srcore.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\rstrui.exe
2015-09-09 17:29:46 ----A---- C:\Windows\system32\rpcrt4.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\kerberos.dll
2015-09-09 17:29:46 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-09-09 17:29:45 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-09-09 17:29:45 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\winsrv.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\wdigest.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\smss.exe
2015-09-09 17:29:45 ----A---- C:\Windows\system32\schannel.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\ncrypt.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\msv1_0.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\csrsrv.dll
2015-09-09 17:29:45 ----A---- C:\Windows\system32\conhost.exe
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-09-09 17:29:44 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-09-09 17:29:44 ----A---- C:\Windows\system32\TSpkg.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\sspicli.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\srclient.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\lsass.exe
2015-09-09 17:29:44 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-09-09 17:29:44 ----A---- C:\Windows\system32\cryptbase.dll
2015-09-09 17:29:44 ----A---- C:\Windows\system32\auditpol.exe
2015-09-09 17:29:43 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-09-09 17:29:43 ----A---- C:\Windows\system32\ntvdm64.dll
2015-09-09 17:29:42 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-09-09 17:29:42 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\wow64win.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\wow64cpu.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\sspisrv.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\secur32.dll
2015-09-09 17:29:42 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-09-09 17:29:42 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-09-09 17:29:42 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-09-09 17:29:42 ----A---- C:\Windows\system32\credssp.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29:40 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\user.exe
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-09-09 17:29:40 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-09-09 17:29:40 ----A---- C:\Windows\system32\apisetschema.dll
2015-09-09 17:29:40 ----A---- C:\Windows\system32\adtschema.dll
2015-09-09 17:29:39 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-09-09 17:29:39 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-09-09 17:29:39 ----A---- C:\Windows\system32\msobjs.dll
2015-09-09 17:29:39 ----A---- C:\Windows\system32\msaudite.dll
2015-09-09 17:29:06 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-09-09 17:29:06 ----A---- C:\Windows\system32\consent.exe
2015-09-09 17:29:06 ----A---- C:\Windows\system32\authui.dll
2015-09-09 17:29:06 ----A---- C:\Windows\system32\appinfo.dll
2015-09-09 17:28:44 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-09-09 17:28:44 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-09-09 17:28:44 ----A---- C:\Windows\system32\msxml6.dll
2015-09-09 17:28:44 ----A---- C:\Windows\system32\msxml3.dll
2015-09-09 17:28:43 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-09-09 17:28:43 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-09-09 17:28:43 ----A---- C:\Windows\system32\msxml6r.dll
2015-09-09 17:28:43 ----A---- C:\Windows\system32\msxml3r.dll
2015-09-09 17:28:31 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 17:28:30 ----A---- C:\Windows\system32\appidsvc.dll
2015-09-09 17:28:30 ----A---- C:\Windows\system32\appidapi.dll
2015-09-09 17:28:29 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-09-09 17:28:26 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-09-09 17:28:26 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 17:28:25 ----A---- C:\Windows\system32\drivers\appid.sys
2015-09-09 17:27:12 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-09-09 17:27:12 ----A---- C:\Windows\system32\win32k.sys
2015-09-09 17:27:12 ----A---- C:\Windows\system32\atmfd.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-09-09 17:27:11 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\lpk.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\fontsub.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\dciman32.dll
2015-09-09 17:27:11 ----A---- C:\Windows\system32\atmlib.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-09-09 17:27:03 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuwebv.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wups2.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wups.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wudriver.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wucltux.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuaueng.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuauclt.exe
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuapp.exe
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wuapi.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 17:27:03 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-09-01 18:27:11 ----D---- C:\Program Files (x86)\phenomedia
2015-09-01 18:27:10 ----D---- C:\Program Files (x86)\Einfach_Spielen
2015-09-01 18:22:54 ----D---- C:\Users\Doma\AppData\Roaming\WinRAR
2015-09-01 18:22:35 ----D---- C:\Program Files\WinRAR
2015-08-23 17:54:03 ----SD---- C:\Windows\SYSWOW64\GWX
2015-08-23 17:54:03 ----SD---- C:\Windows\system32\GWX
2015-08-23 15:13:44 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-08-23 15:13:44 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-08-22 15:55:55 ----A---- C:\Windows\SYSWOW64\drivers\DrvAgent64.SYS
2015-08-22 15:51:42 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2015-08-22 13:39:15 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2015-08-22 13:39:15 ----A---- C:\Windows\system32\KBDTAT.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDYAK.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDRU1.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDRU.DLL
2015-08-22 13:39:14 ----A---- C:\Windows\system32\KBDBASH.DLL
2015-08-22 13:39:11 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-08-22 13:39:11 ----A---- C:\Windows\system32\d2d1.dll
2015-08-22 13:28:12 ----A---- C:\Windows\system32\spoolsv.exe
2015-08-22 13:28:12 ----A---- C:\Windows\splwow64.exe
2015-08-22 13:22:17 ----D---- C:\Windows\SYSWOW64\Wat
2015-08-22 13:22:17 ----D---- C:\Windows\system32\Wat
2015-08-22 12:54:35 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:54:35 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:38:24 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-08-22 12:38:24 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-08-22 12:38:23 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-08-22 12:38:23 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFx.dll
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFHost.exe
2015-08-22 12:38:22 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2015-08-22 12:13:27 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2015-08-22 12:13:27 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2015-08-22 12:13:27 ----A---- C:\Windows\system32\infocardapi.dll
2015-08-22 12:13:27 ----A---- C:\Windows\system32\icardagt.exe
2015-08-22 12:13:25 ----A---- C:\Windows\SYSWOW64\icardres.dll
2015-08-22 12:13:25 ----A---- C:\Windows\system32\icardres.dll
2015-08-22 12:12:57 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-08-22 12:12:57 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-08-22 11:33:21 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-08-22 11:33:21 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\FntCache.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\DWrite.dll
2015-08-22 11:33:21 ----A---- C:\Windows\system32\d3d10warp.dll
2015-08-22 11:33:11 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-08-22 11:33:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-08-22 11:32:52 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-08-22 11:32:52 ----A---- C:\Windows\system32\WMPhoto.dll
2015-08-22 11:24:24 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-22 11:24:24 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-21 19:02:41 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-21 17:32:29 ----D---- C:\Windows\Migration
2015-08-21 17:32:28 ----SD---- C:\Windows\system32\CompatTel
2015-08-21 17:32:28 ----D---- C:\Windows\system32\appraiser
2015-08-21 17:04:42 ----A---- C:\Windows\system32\IEUDINIT.EXE
2015-08-21 16:57:44 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2015-08-21 16:57:41 ----A---- C:\Windows\system32\elshyph.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\url.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2015-08-21 16:57:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-08-21 16:57:39 ----A---- C:\Windows\SYSWOW64\icardie.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-08-21 16:57:38 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msls31.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\mshtmler.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msfeedssync.exe
2015-08-21 16:57:36 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\jsIntl.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\iesysprep.dll
2015-08-21 16:57:36 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-08-21 16:57:35 ----A---- C:\Windows\system32\url.dll
2015-08-21 16:57:35 ----A---- C:\Windows\system32\ieapfltr.dat
2015-08-21 16:57:35 ----A---- C:\Windows\system32\icardie.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\wextract.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\webcheck.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\pngfilt.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\occache.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\mshta.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\licmgr10.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\inseng.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\imgutil.dll
2015-08-21 16:57:34 ----A---- C:\Windows\system32\iexpress.exe
2015-08-21 16:57:34 ----A---- C:\Windows\system32\iepeers.dll
2015-08-21 16:55:07 ----A---- C:\Windows\system32\taskhost.exe
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51:11 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51:10 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-08-21 16:51:10 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\XpsPrint.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\UIAnimation.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\dxgi.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10level9.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10_1.dll
2015-08-21 16:51:10 ----A---- C:\Windows\system32\d3d10.dll
2015-08-21 15:44:36 ----D---- C:\Program Files\CCleaner
2015-08-21 15:25:45 ----A---- C:\Windows\SYSWOW64\wdi.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\wdi.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\powertracker.dll
2015-08-21 15:25:45 ----A---- C:\Windows\system32\perftrack.dll
2015-08-21 15:22:04 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-08-21 15:22:04 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-08-21 15:21:40 ----A---- C:\Windows\system32\dpapiprovider.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\dimsroam.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\cngprovider.dll
2015-08-21 15:21:40 ----A---- C:\Windows\system32\capiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\wincredprovider.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\objsel.dll
2015-08-21 15:21:39 ----A---- C:\Windows\system32\adprovider.dll
2015-08-21 15:20:28 ----A---- C:\Windows\system32\CompatTelRunner.exe
2015-08-21 15:20:28 ----A---- C:\Windows\system32\aitstatic.exe
2015-08-21 15:20:27 ----A---- C:\Windows\system32\invagent.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\generaltel.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\devinv.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\appraiser.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\aepic.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\aeinv.dll
2015-08-21 15:20:27 ----A---- C:\Windows\system32\acmigration.dll
2015-08-21 15:20:25 ----A---- C:\Windows\system32\aepdu.dll
2015-08-21 15:20:23 ----A---- C:\Windows\SYSWOW64\cewmdm.dll
2015-08-21 15:20:23 ----A---- C:\Windows\system32\cewmdm.dll
2015-08-21 15:20:15 ----A---- C:\Windows\SYSWOW64\certcli.dll
2015-08-21 15:20:15 ----A---- C:\Windows\system32\certcli.dll
2015-08-21 15:19:37 ----A---- C:\Windows\system32\services.exe
2015-08-21 15:19:35 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-08-21 15:19:33 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2015-08-21 15:19:33 ----A---- C:\Windows\system32\xmllite.dll
2015-08-21 15:19:16 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2015-08-21 15:19:16 ----A---- C:\Windows\system32\msieftp.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbctrac.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccu32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccr32.dll
2015-08-21 15:19:15 ----A---- C:\Windows\system32\odbccp32.dll
2015-08-21 15:19:06 ----A---- C:\Windows\system32\wwansvc.dll
2015-08-21 15:19:05 ----A---- C:\Windows\system32\wwanprotdim.dll
2015-08-21 15:19:04 ----A---- C:\Windows\system32\wmp.dll
2015-08-21 15:19:03 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-08-21 15:19:01 ----A---- C:\Windows\system32\wmploc.DLL
2015-08-21 15:19:01 ----A---- C:\Windows\system32\spwmp.dll
2015-08-21 15:19:01 ----A---- C:\Windows\system32\dxmasf.dll
2015-08-21 15:18:54 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2015-08-21 15:18:54 ----A---- C:\Windows\system32\dhcpcore6.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\sysmain.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\msmmsp.dll
2015-08-21 15:18:37 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-08-21 15:18:08 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\tsgqec.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\mstscax.dll
2015-08-21 15:18:08 ----A---- C:\Windows\system32\aaclient.dll
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\tracerpt.exe
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\sechost.dll
2015-08-21 15:17:40 ----A---- C:\Windows\SYSWOW64\logman.exe
2015-08-21 15:17:40 ----A---- C:\Windows\system32\tracerpt.exe
2015-08-21 15:17:40 ----A---- C:\Windows\system32\sechost.dll
2015-08-21 15:17:40 ----A---- C:\Windows\system32\logman.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\typeperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\relog.exe
2015-08-21 15:17:39 ----A---- C:\Windows\SYSWOW64\diskperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\typeperf.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\relog.exe
2015-08-21 15:17:39 ----A---- C:\Windows\system32\diskperf.exe
2015-08-21 15:17:04 ----A---- C:\Windows\system32\ntshrui.dll
2015-08-21 15:17:03 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2015-08-21 15:16:25 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-08-21 15:16:25 ----A---- C:\Windows\system32\usp10.dll
2015-08-21 15:16:23 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-08-21 15:16:23 ----A---- C:\Windows\system32\webio.dll
rsit
2015-08-21 15:16:22 ----A---- C:\Windows\system32\TSWorkspace.dll
2015-08-21 15:16:21 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-08-21 15:15:59 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-08-21 15:15:59 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-08-21 15:15:59 ----A---- C:\Windows\system32\drmv2clt.dll
2015-08-21 15:15:59 ----A---- C:\Windows\system32\blackbox.dll
2015-08-21 15:15:55 ----A---- C:\Windows\system32\mf.dll
2015-08-21 15:15:54 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-08-21 15:15:54 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-08-21 15:15:53 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-08-21 15:15:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-08-21 15:15:51 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-08-21 15:15:50 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-08-21 15:15:50 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-08-21 15:15:50 ----A---- C:\Windows\system32\ci.dll
2015-08-21 15:15:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-08-21 15:15:49 ----A---- C:\Windows\system32\winresume.exe
2015-08-21 15:15:49 ----A---- C:\Windows\system32\winload.exe
2015-08-21 15:15:49 ----A---- C:\Windows\system32\quartz.dll
2015-08-21 15:15:49 ----A---- C:\Windows\system32\audiosrv.dll
2015-08-21 15:15:48 ----A---- C:\Windows\system32\evr.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\qdvd.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\mfplat.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\cryptui.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\AudioEng.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\pcasvc.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\msscp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\EncDump.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\cryptsp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\AudioSes.dll
2015-08-21 15:15:45 ----A---- C:\Windows\system32\msnetobj.dll
2015-08-21 15:15:44 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\rrinstaller.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\pcadm.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\mfps.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\mfpmp.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\audiodg.exe
2015-08-21 15:15:42 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-08-21 15:15:42 ----A---- C:\Windows\system32\pcawrk.exe
2015-08-21 15:15:41 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-08-21 15:15:41 ----A---- C:\Windows\system32\pcalua.exe
2015-08-21 15:15:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-08-21 15:15:41 ----A---- C:\Windows\system32\mferror.dll
2015-08-21 15:14:23 ----A---- C:\Windows\system32\profsvc.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\mscories.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\mscorier.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\dfshim.dll
2015-08-21 15:12:56 ----A---- C:\Windows\system32\wer.dll
2015-08-21 15:12:55 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-08-21 15:12:49 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-08-21 15:12:49 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\wmi.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\imagehlp.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-08-21 15:11:25 ----A---- C:\Windows\system32\termsrv.dll
2015-08-21 15:10:42 ----A---- C:\Windows\system32\basesrv.dll
2015-08-21 15:09:50 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-08-21 15:09:50 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-08-21 15:09:50 ----A---- C:\Windows\system32\nlasvc.dll
2015-08-21 15:09:46 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-08-21 15:09:46 ----A---- C:\Windows\system32\drivers\drmk.sys
2015-08-21 15:09:44 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-08-21 15:09:44 ----A---- C:\Windows\system32\ubpm.dll
2015-08-21 15:09:42 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-08-21 15:09:42 ----A---- C:\Windows\system32\wpdshext.dll
2015-08-21 15:09:38 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-08-21 15:09:38 ----A---- C:\Windows\SYSWOW64\credui.dll
2015-08-21 15:09:38 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-08-21 15:09:38 ----A---- C:\Windows\system32\credui.dll
2015-08-21 15:09:28 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\system32\davclnt.dll
2015-08-21 15:09:24 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-08-21 15:09:24 ----A---- C:\Windows\system32\gdi32.dll
2015-08-21 15:09:23 ----A---- C:\Windows\system32\drivers\usbehci.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbport.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbd.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2015-08-21 15:09:20 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-08-21 15:09:20 ----A---- C:\Windows\system32\d3d11.dll
2015-08-21 15:09:17 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-08-21 15:09:17 ----A---- C:\Windows\system32\qedit.dll
2015-08-21 15:09:16 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-08-21 15:09:16 ----A---- C:\Windows\system32\comctl32.dll
2015-08-21 15:09:12 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-08-21 15:09:07 ----A---- C:\Windows\system32\Wdfres.dll
2015-08-21 15:09:07 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2015-08-21 15:09:07 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-08-21 15:09:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-08-21 15:09:02 ----A---- C:\Windows\system32\crypt32.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\wintrust.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\cryptsvc.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\cryptnet.dll
2015-08-21 15:08:19 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2015-08-21 15:08:19 ----A---- C:\Windows\system32\drivers\usbcir.sys
2015-08-21 15:07:34 ----A---- C:\Windows\system32\OxpsConverter.exe
2015-08-21 15:07:28 ----A---- C:\Windows\system32\drivers\ataport.sys
2015-08-21 15:07:26 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\netio.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-08-21 15:06:56 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-08-21 15:06:56 ----A---- C:\Windows\system32\osk.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_ssp.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\msdrm.dll
2015-08-21 15:06:36 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2015-08-21 15:06:36 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-08-21 15:06:33 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-08-21 15:06:33 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-08-21 15:06:32 ----A---- C:\Windows\system32\drivers\afd.sys
2015-08-21 15:06:30 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-08-21 15:06:30 ----A---- C:\Windows\system32\ole32.dll
2015-08-21 15:06:22 ----A---- C:\Windows\system32\drivers\cng.sys
2015-08-21 15:05:44 ----A---- C:\Windows\system32\ncsi.dll
2015-08-21 15:05:43 ----A---- C:\Windows\SYSWOW64\netevent.dll
2015-08-21 15:05:43 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\nlaapi.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\netevent.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\netcorehc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2015-08-21 15:04:43 ----A---- C:\Windows\system32\drivers\hidparse.sys
2015-08-21 15:04:43 ----A---- C:\Windows\system32\drivers\hidclass.sys
2015-08-21 15:04:26 ----A---- C:\Windows\system32\Wpc.dll
2015-08-21 15:04:25 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-08-21 15:04:25 ----A---- C:\Windows\SYSWOW64\gameux.dll
2015-08-21 15:04:25 ----A---- C:\Windows\system32\gameux.dll
2015-08-21 15:04:04 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-08-21 15:04:01 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-08-21 15:04:01 ----A---- C:\Windows\system32\dpnet.dll
2015-08-21 15:03:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-08-21 15:03:57 ----A---- C:\Windows\system32\msi.dll
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-08-21 15:03:56 ----A---- C:\Windows\system32\msihnd.dll
2015-08-21 15:03:56 ----A---- C:\Windows\system32\msiexec.exe
2015-08-21 15:03:55 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-08-21 15:03:55 ----A---- C:\Windows\system32\msimsg.dll
2015-08-21 06:54:48 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-08-21 06:54:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-08-21 06:54:48 ----A---- C:\Windows\system32\cdd.dll
2015-08-21 06:54:45 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-08-21 06:54:45 ----A---- C:\Windows\system32\mswsock.dll
2015-08-21 06:44:29 ----A---- C:\Windows\system32\rdrmemptylst.exe
2015-08-21 06:44:29 ----A---- C:\Windows\system32\rdpwsx.dll
2015-08-21 06:43:47 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-08-21 06:43:47 ----A---- C:\Windows\system32\psisdecd.dll
2015-08-21 06:42:53 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-08-21 06:42:53 ----A---- C:\Windows\system32\oleaut32.dll
2015-08-21 06:42:33 ----A---- C:\Windows\system32\drivers\partmgr.sys
2015-08-21 06:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-08-21 06:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-08-21 06:42:19 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-08-21 06:42:19 ----A---- C:\Windows\system32\pku2u.dll
2015-08-21 06:41:18 ----A---- C:\Windows\system32\drivers\stream.sys
2015-08-21 06:41:17 ----A---- C:\Windows\system32\drivers\http.sys
2015-08-21 06:41:16 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-08-21 06:41:12 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2015-08-21 06:41:12 ----A---- C:\Windows\system32\iologmsg.dll
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\storport.sys
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2015-08-21 06:40:58 ----A---- C:\Windows\SYSWOW64\synceng.dll
2015-08-21 06:40:58 ----A---- C:\Windows\system32\synceng.dll
2015-08-21 06:40:57 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-08-21 06:40:57 ----A---- C:\Windows\system32\charmap.exe
2015-08-21 06:40:43 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2015-08-21 06:40:43 ----A---- C:\Windows\system32\shdocvw.dll
2015-08-21 06:40:29 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-08-21 06:40:29 ----A---- C:\Windows\system32\msctf.dll
2015-08-21 06:40:27 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-08-21 06:40:27 ----A---- C:\Windows\system32\rastls.dll
2015-08-21 06:40:25 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2015-08-21 06:40:25 ----A---- C:\Windows\system32\win32spl.dll
2015-08-21 06:40:24 ----A---- C:\Windows\system32\WsmSvc.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WsmAuto.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-08-21 06:40:05 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2015-08-21 06:40:05 ----A---- C:\Windows\system32\cryptdlg.dll
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\shimeng.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\sdbinst.exe
2015-08-21 06:39:05 ----A---- C:\Windows\system32\apphelp.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\aelupsvc.dll
2015-08-21 06:38:40 ----A---- C:\Windows\system32\winlogon.exe
2015-08-21 06:38:39 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-08-21 06:38:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-08-21 06:38:39 ----A---- C:\Windows\system32\winsta.dll
2015-08-21 06:38:39 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-08-21 06:38:39 ----A---- C:\Windows\system32\mstsc.exe
2015-08-21 06:38:39 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-08-21 06:38:38 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-08-21 06:38:12 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-08-21 06:38:12 ----A---- C:\Windows\system32\packager.dll
2015-08-21 06:38:10 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2015-08-21 06:38:10 ----A---- C:\Windows\SYSWOW64\browcli.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\netapi32.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\browser.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\browcli.dll
2015-08-21 06:37:25 ----A---- C:\Windows\system32\drivers\fvevol.sys
2015-08-21 06:37:24 ----A---- C:\Windows\system32\msvcrt.dll
2015-08-21 06:37:23 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-08-21 06:37:19 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-08-21 06:37:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-08-21 06:37:18 ----A---- C:\Windows\system32\scesrv.dll
2015-08-21 06:37:15 ----A---- C:\Windows\system32\certutil.exe
2015-08-21 06:37:14 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-08-21 06:37:14 ----A---- C:\Windows\SYSWOW64\certenc.dll
2015-08-21 06:37:14 ----A---- C:\Windows\system32\certenc.dll
2015-08-21 06:37:04 ----A---- C:\Windows\SYSWOW64\wscript.exe
2015-08-21 06:37:04 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2015-08-21 06:37:04 ----A---- C:\Windows\system32\wscript.exe
2015-08-21 06:37:04 ----A---- C:\Windows\system32\scrrun.dll
2015-08-21 06:37:04 ----A---- C:\Windows\system32\cscript.exe
2015-08-21 06:37:03 ----A---- C:\Windows\SYSWOW64\cscript.exe
2015-08-21 06:36:21 ----A---- C:\Windows\system32\shell32.dll
2015-08-21 06:36:19 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-21 06:36:15 ----A---- C:\Windows\system32\localspl.dll
2015-08-21 06:36:10 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-08-21 06:36:10 ----A---- C:\Windows\system32\oleacc.dll
2015-08-21 06:36:02 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-08-21 06:36:02 ----A---- C:\Windows\system32\EncDec.dll
2015-08-21 06:36:00 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-08-21 06:36:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-08-21 06:36:00 ----A---- C:\Windows\system32\clfs.sys
2015-08-21 06:33:33 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2015-08-21 06:33:33 ----A---- C:\Windows\system32\cdosys.dll
2015-08-21 06:26:31 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-08-21 06:26:31 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-08-21 06:26:30 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-08-21 06:26:30 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2015-08-21 06:26:30 ----A---- C:\Windows\system32\nshwfp.dll
2015-08-21 06:26:14 ----A---- C:\Windows\system32\scavengeui.dll
2015-08-20 21:41:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-20 21:40:58 ----D---- C:\Windows\system32\Macromed
2015-08-20 21:25:52 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-08-20 21:25:24 ----D---- C:\Users\Doma\AppData\Roaming\Opera
2015-08-20 21:14:34 ----D---- C:\AdwCleaner
2015-08-20 21:08:02 ----D---- C:\Windows\SYSWOW64\VLX Player
2015-08-20 21:07:47 ----D---- C:\Program Files (x86)\Seznam.cz
2015-08-20 20:07:15 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-08-20 20:07:15 ----A---- C:\Windows\system32\rdpcore.dll
2015-08-20 20:07:14 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2015-08-20 19:27:32 ----D---- C:\Users\Doma\AppData\Roaming\vlc
2015-08-20 19:26:51 ----D---- C:\Program Files (x86)\VideoLAN
2015-08-20 19:06:41 ----A---- C:\autoexec.bat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfi005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfh005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfd005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfc005.dat
2015-08-20 02:56:33 ----D---- C:\Windows\SYSWOW64\cs
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\XPSViewer
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2015-08-20 02:56:31 ----D---- C:\Windows\system32\cs
2015-08-20 02:56:31 ----D---- C:\Windows\cs-CZ
2015-08-20 02:56:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-20 02:50:19 ----D---- C:\Windows\NAPP_Dism_Log
2015-08-19 19:02:43 ----D---- C:\Users\Doma\AppData\Roaming\Seznam.cz
2015-08-19 19:00:38 ----D---- C:\Users\Doma\AppData\Roaming\uTorrent
2015-08-19 18:37:34 ----D---- C:\Users\Doma\AppData\Roaming\Opera Software
2015-08-19 18:36:52 ----D---- C:\Program Files (x86)\Opera
2015-08-19 18:35:42 ----D---- C:\KMPlayer
2015-08-19 18:19:02 ----D---- C:\Users\Doma\AppData\Roaming\AVAST Software
2015-08-19 18:18:39 ----D---- C:\Windows\SYSWOW64\vbox
2015-08-19 18:18:39 ----D---- C:\Windows\system32\vbox
2015-08-19 18:18:11 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-08-19 18:18:10 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-08-19 18:18:10 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-08-19 18:18:09 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-08-19 18:18:08 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-08-19 18:18:05 ----A---- C:\Windows\system32\aswBoot.exe
2015-08-19 18:17:58 ----A---- C:\Windows\avastSS.scr
2015-08-19 18:15:48 ----D---- C:\Program Files\AVAST Software
2015-08-19 18:15:13 ----D---- C:\ProgramData\AVAST Software
2015-08-19 18:11:07 ----D---- C:\Users\Doma\AppData\Roaming\Mozilla
2015-08-19 18:08:33 ----D---- C:\Users\Doma\AppData\Roaming\Adobe
2015-08-19 18:00:08 ----D---- C:\Users\Doma\AppData\Roaming\Macromedia
2015-08-19 17:59:44 ----D---- C:\Users\Doma\AppData\Roaming\Identities
2015-08-19 17:58:01 ----D---- C:\Users\Doma\AppData\Roaming\CyberLink
2015-08-19 17:57:33 ----SD---- C:\Users\Doma\AppData\Roaming\Microsoft
2015-08-19 17:57:33 ----D---- C:\Users\Doma\AppData\Roaming\Media Center Programs
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Šablony
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Plocha
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Dokumenty
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Data aplikací
2015-08-19 17:57:15 ----D---- C:\Recovery
2015-08-19 17:30:03 ----D---- C:\ProgramData\CLSK
2015-08-19 17:28:52 ----D---- C:\ProgramData\Temp
2015-08-19 17:28:52 ----D---- C:\ProgramData\CyberLink
2015-08-19 17:25:59 ----D---- C:\ProgramData\NTI Launcher
2015-08-19 17:24:37 ----D---- C:\ProgramData\FLEXnet
2015-08-19 17:24:00 ----D---- C:\Program Files (x86)\Microsoft Office
2015-08-19 17:22:38 ----D---- C:\Program Files (x86)\Microsoft
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\btwcoins.dll
2015-08-19 17:17:43 ----D---- C:\Program Files\WIDCOMM
2015-08-19 17:15:03 ----D---- C:\Dolby PCEE4
2015-08-19 17:14:55 ----D---- C:\Windows\SYSWOW64\RTCOM
2015-08-19 17:14:46 ----D---- C:\Program Files\Realtek
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtPCEE4.DAT
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtPCEE3.DAT
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\rtkhdaud.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtHdatEx.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTHDAEQ1.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX3.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX2.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX1.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX0.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTConvEQ.dat
2015-08-19 17:14:45 ----A---- C:\Windows\system32\WavesGUILib.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSWOW64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSTSX64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSTSH64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSHP64.dll
2015-08-19 17:14:44 ----N---- C:\Windows\SYSWOW64\SFCOM.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFNHK64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFCOM64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFAPO64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkCfg64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkAPO64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkApi64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEP64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEL64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEG64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEED64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTCOM64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RP3DHT64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RP3DAA64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RCoRes64.dat
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RCoInst64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EED64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-19 17:14:41 ----HD---- C:\Program Files (x86)\Temp
2015-08-19 17:14:41 ----D---- C:\Program Files (x86)\Realtek
2015-08-19 17:14:41 ----A---- C:\Windows\system32\FMAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\AERTAR64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\AERTAC64.dll
2015-08-19 17:14:40 ----A---- C:\Windows\RtlExUpd.dll
2015-08-19 17:13:14 ----D---- C:\Program Files\Elantech
2015-08-19 17:10:27 ----D---- C:\Program Files\Intel
2015-08-19 17:09:05 ----D---- C:\Program Files (x86)\Launch Manager
2015-08-19 17:07:12 ----AD---- C:\book
2015-08-19 17:07:09 ----D---- C:\ProgramData\EgisTec
2015-08-19 17:07:05 ----D---- C:\ProgramData\Intel
2015-08-19 17:04:14 ----D---- C:\Windows\SoftwareDistribution
2015-08-19 17:03:54 ----D---- C:\Program Files\Common Files\Intel
2015-08-19 17:01:12 ----ASH---- C:\hiberfil.sys
2015-08-19 17:01:11 ----SHD---- C:\System Volume Information
2015-08-19 17:01:11 ----ASH---- C:\pagefile.sys
======List of files/folders modified in the last 1 month======
2015-09-14 17:13:41 ----D---- C:\Windows\Prefetch
2015-09-14 15:29:39 ----RD---- C:\Program Files
2015-09-14 15:28:32 ----SHD---- C:\Windows\Installer
2015-09-14 15:28:31 ----D---- C:\Windows\SysWOW64
2015-09-14 15:28:31 ----D---- C:\Windows\System32
2015-09-14 15:28:28 ----D---- C:\Program Files (x86)\Common Files
2015-09-14 15:22:50 ----RD---- C:\Program Files (x86)
2015-09-14 14:45:04 ----D---- C:\Windows\inf
2015-09-14 14:45:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-14 14:44:57 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-14 09:43:53 ----D---- C:\Windows\system32\config
2015-09-14 05:06:47 ----D---- C:\Windows\Tasks
2015-09-13 19:10:16 ----D---- C:\Windows\system32\wdi
2015-09-13 19:08:32 ----D---- C:\Windows\system32\drivers
2015-09-13 19:04:43 ----D---- C:\Windows
2015-09-13 19:04:42 ----A---- C:\Windows\system.ini
2015-09-13 19:04:40 ----D---- C:\Windows\system32\drivers\etc
2015-09-13 18:59:12 ----D---- C:\Windows\SYSWOW64\drivers
2015-09-13 18:59:12 ----D---- C:\Windows\AppPatch
2015-09-11 21:54:20 ----D---- C:\Windows\rescache
2015-09-11 21:12:05 ----D---- C:\Windows\system32\drivers\UMDF
2015-09-11 06:20:17 ----D---- C:\ProgramData
2015-09-11 05:54:33 ----SD---- C:\ProgramData\Microsoft
2015-09-10 19:28:07 ----D---- C:\Windows\Speech
2015-09-10 09:13:07 ----RSD---- C:\Windows\assembly
2015-09-10 09:13:07 ----D---- C:\Windows\Microsoft.NET
2015-09-10 08:07:15 ----D---- C:\Windows\winsxs
2015-09-10 08:04:52 ----D---- C:\Program Files\Windows Journal
2015-09-10 08:04:51 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-10 08:04:51 ----D---- C:\Windows\system32\cs-CZ
2015-09-10 08:04:51 ----D---- C:\Windows\ehome
2015-09-10 08:04:50 ----D---- C:\Program Files\Internet Explorer
2015-09-10 08:04:49 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-10 08:04:46 ----D---- C:\Windows\system32\en-US
2015-09-10 08:04:46 ----D---- C:\Windows\PolicyDefinitions
2015-09-10 08:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 08:04:28 ----D---- C:\Windows\system32\Boot
2015-09-09 17:26:18 ----D---- C:\Windows\system32\catroot2
2015-08-30 11:30:17 ----D---- C:\$Windows.~BT
2015-08-30 11:14:04 ----D---- C:\Windows\Panther
2015-08-30 10:23:00 ----D---- C:\Windows\Logs
2015-08-23 17:59:29 ----D---- C:\ProgramData\Adobe
2015-08-23 17:53:46 ----RSD---- C:\Windows\Fonts
2015-08-23 13:06:17 ----D---- C:\Windows\AppCompat
2015-08-22 21:51:23 ----D---- C:\Windows\system32\LogFiles
2015-08-22 15:55:05 ----D---- C:\Windows\system32\Tasks
2015-08-22 13:21:40 ----D---- C:\Windows\system32\DriverStore
2015-08-21 17:32:28 ----D---- C:\Windows\system32\wbem
2015-08-21 17:32:25 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-21 17:32:24 ----D---- C:\Program Files\Windows Media Player
2015-08-21 17:32:24 ----D---- C:\Program Files\Common Files\System
2015-08-21 17:32:19 ----D---- C:\Windows\SYSWOW64\migration
2015-08-21 17:32:15 ----D---- C:\Windows\system32\migration
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\it-IT
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\el-GR
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\es-ES
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\de-DE
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\da-DK
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pt-PT
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pt-BR
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pl-PL
2015-08-21 17:32:04 ----D---- C:\Windows\system32\ko-KR
2015-08-21 17:32:04 ----D---- C:\Windows\system32\it-IT
2015-08-21 17:32:03 ----D---- C:\Windows\system32\zh-HK
2015-08-21 17:32:03 ----D---- C:\Windows\system32\tr-TR
2015-08-21 17:32:03 ----D---- C:\Windows\system32\nl-NL
2015-08-21 17:32:03 ----D---- C:\Windows\system32\hu-HU
2015-08-21 17:32:03 ----D---- C:\Windows\system32\fr-FR
2015-08-21 17:32:03 ----D---- C:\Windows\system32\fi-FI
2015-08-21 17:32:03 ----D---- C:\Windows\system32\el-GR
2015-08-21 17:32:02 ----D---- C:\Windows\system32\zh-TW
2015-08-21 17:32:02 ----D---- C:\Windows\system32\zh-CN
2015-08-21 17:32:02 ----D---- C:\Windows\system32\sv-SE
2015-08-21 17:32:02 ----D---- C:\Windows\system32\ja-JP
2015-08-21 17:32:02 ----D---- C:\Windows\system32\es-ES
2015-08-21 17:32:02 ----D---- C:\Windows\system32\de-DE
2015-08-21 17:32:01 ----D---- C:\Windows\system32\ru-RU
2015-08-21 17:32:01 ----D---- C:\Windows\system32\nb-NO
2015-08-21 17:32:01 ----D---- C:\Windows\system32\da-DK
2015-08-21 17:31:39 ----D---- C:\Windows\SYSWOW64\Dism
2015-08-21 17:31:35 ----D---- C:\Windows\system32\Dism
2015-08-21 17:31:29 ----D---- C:\Windows\system32\CodeIntegrity
2015-08-21 17:31:12 ----D---- C:\Windows\system32\AdvancedInstallers
2015-08-21 17:30:56 ----D---- C:\Windows\tracing
2015-08-21 17:30:56 ----D---- C:\Program Files\Windows Defender
2015-08-21 17:30:56 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-21 17:03:43 ----D---- C:\Windows\system32\catroot
2015-08-20 18:42:41 ----D---- C:\Windows\debug
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\winrm
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\WCN
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\slmgr
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\en
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\DriverStore
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2015-08-20 02:59:09 ----D---- C:\Windows\servicing
2015-08-20 02:59:08 ----D---- C:\Windows\system32\winrm
2015-08-20 02:59:08 ----D---- C:\Windows\system32\WCN
2015-08-20 02:59:08 ----D---- C:\Windows\system32\slmgr
2015-08-20 02:59:08 ----D---- C:\Windows\system32\en
2015-08-20 02:59:08 ----D---- C:\Windows\system32\drivers\en-US
2015-08-20 02:59:08 ----D---- C:\Windows\en-US
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Sidebar
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Mail
2015-08-20 02:56:34 ----D---- C:\Program Files\DVD Maker
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Sidebar
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-20 02:56:33 ----D---- C:\Windows\SYSWOW64\migwiz
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\wbem
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\MUI
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\com
2015-08-20 02:56:31 ----D---- C:\Windows\system32\oobe
2015-08-20 02:56:31 ----D---- C:\Windows\system32\migwiz
2015-08-20 02:56:31 ----D---- C:\Windows\IME
2015-08-20 02:56:30 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2015-08-20 02:56:30 ----D---- C:\Windows\system32\MUI
2015-08-20 02:56:30 ----D---- C:\Windows\system32\com
2015-08-19 19:16:25 ----D---- C:\ProgramData\McAfee
2015-08-19 19:16:25 ----D---- C:\Program Files\Common Files
2015-08-19 18:13:33 ----D---- C:\ProgramData\Skype
2015-08-19 18:12:09 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-19 18:11:59 ----D---- C:\Program Files (x86)\Acer
2015-08-19 18:06:22 ----D---- C:\Windows\system32\restore
2015-08-19 18:00:18 ----D---- C:\ProgramData\oem
2015-08-19 18:00:14 ----D---- C:\Windows\system32\OEM
2015-08-19 17:59:11 ----D---- C:\OEM
2015-08-19 17:57:27 ----RD---- C:\Users
2015-08-19 17:57:15 ----D---- C:\Windows\system32\Recovery
2015-08-19 17:57:15 ----D---- C:\Program Files\Windows NT
2015-08-19 17:53:59 ----D---- C:\Windows\system32\sysprep
2015-08-19 17:40:06 ----D---- C:\Windows\Help
2015-08-19 17:31:59 ----D---- C:\Program Files\Acer
2015-08-19 17:24:57 ----D---- C:\Program Files (x86)\NTI
2015-08-19 17:18:17 ----SD---- C:\Windows\system32\Microsoft
2015-08-19 17:16:27 ----D---- C:\ProgramData\EgisTec IPS
2015-08-19 17:08:17 ----D---- C:\Program Files\Broadcom
2015-08-19 17:08:14 ----D---- C:\Windows\Downloaded Installations
2015-08-19 17:07:35 ----AD---- C:\Windows\DeployWinRE2
2015-08-19 17:03:51 ----D---- C:\Program Files (x86)\Intel
2015-08-19 17:03:27 ----D---- C:\Intel
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-08-19 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-08-19 274808]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-08-19 115152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-08-19 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-08-19 1048344]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-08-19 447944]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-08-12 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-08-12 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-08-12 62776]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-08-19 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-08-19 90968]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-08-19 273824]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-20 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-20 19496]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-06-08 4729408]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-05 142632]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-06-10 12230912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-29 2819560]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-05-10 425000]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2011-03-10 18432]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2011-03-10 17408]
S2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-08-19 150672]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-01-10 349736]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-01-24 107560]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-09-14 138280]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-15 39464]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-09-14 21416]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-08-22 22200]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 63704]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-26 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-19 146600]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-05-10 956192]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
R2 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-08-02 872552]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-30 36456]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-04-24 256832]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-08-19 4047768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-03 269000]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-08-19 655624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-08-15 114688]
S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-08-22 1255736]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
2015-08-21 15:16:21 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2015-08-21 15:15:59 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-08-21 15:15:59 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-08-21 15:15:59 ----A---- C:\Windows\system32\drmv2clt.dll
2015-08-21 15:15:59 ----A---- C:\Windows\system32\blackbox.dll
2015-08-21 15:15:55 ----A---- C:\Windows\system32\mf.dll
2015-08-21 15:15:54 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-08-21 15:15:54 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-08-21 15:15:53 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-08-21 15:15:53 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-08-21 15:15:51 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-08-21 15:15:50 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-08-21 15:15:50 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-08-21 15:15:50 ----A---- C:\Windows\system32\ci.dll
2015-08-21 15:15:49 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-08-21 15:15:49 ----A---- C:\Windows\system32\winresume.exe
2015-08-21 15:15:49 ----A---- C:\Windows\system32\winload.exe
2015-08-21 15:15:49 ----A---- C:\Windows\system32\quartz.dll
2015-08-21 15:15:49 ----A---- C:\Windows\system32\audiosrv.dll
2015-08-21 15:15:48 ----A---- C:\Windows\system32\evr.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-08-21 15:15:47 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\qdvd.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\mfplat.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\cryptui.dll
2015-08-21 15:15:47 ----A---- C:\Windows\system32\AudioEng.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-08-21 15:15:46 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\pcasvc.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\msscp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\EncDump.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\cryptsp.dll
2015-08-21 15:15:46 ----A---- C:\Windows\system32\AudioSes.dll
2015-08-21 15:15:45 ----A---- C:\Windows\system32\msnetobj.dll
2015-08-21 15:15:44 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-08-21 15:15:43 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\rrinstaller.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\pcadm.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\mfps.dll
2015-08-21 15:15:43 ----A---- C:\Windows\system32\mfpmp.exe
2015-08-21 15:15:43 ----A---- C:\Windows\system32\audiodg.exe
2015-08-21 15:15:42 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-08-21 15:15:42 ----A---- C:\Windows\system32\pcawrk.exe
2015-08-21 15:15:41 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-08-21 15:15:41 ----A---- C:\Windows\system32\pcalua.exe
2015-08-21 15:15:41 ----A---- C:\Windows\system32\pcaevts.dll
2015-08-21 15:15:41 ----A---- C:\Windows\system32\mferror.dll
2015-08-21 15:14:23 ----A---- C:\Windows\system32\profsvc.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-08-21 15:14:15 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\mscories.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\mscorier.dll
2015-08-21 15:14:15 ----A---- C:\Windows\system32\dfshim.dll
2015-08-21 15:12:56 ----A---- C:\Windows\system32\wer.dll
2015-08-21 15:12:55 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-08-21 15:12:49 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-08-21 15:12:49 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\wmi.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\imagehlp.dll
2015-08-21 15:12:49 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-08-21 15:11:25 ----A---- C:\Windows\system32\termsrv.dll
2015-08-21 15:10:42 ----A---- C:\Windows\system32\basesrv.dll
2015-08-21 15:09:50 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-08-21 15:09:50 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-08-21 15:09:50 ----A---- C:\Windows\system32\nlasvc.dll
2015-08-21 15:09:46 ----A---- C:\Windows\system32\drivers\portcls.sys
2015-08-21 15:09:46 ----A---- C:\Windows\system32\drivers\drmk.sys
2015-08-21 15:09:44 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-08-21 15:09:44 ----A---- C:\Windows\system32\ubpm.dll
2015-08-21 15:09:42 ----A---- C:\Windows\SYSWOW64\wpdshext.dll
2015-08-21 15:09:42 ----A---- C:\Windows\system32\wpdshext.dll
2015-08-21 15:09:38 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-08-21 15:09:38 ----A---- C:\Windows\SYSWOW64\credui.dll
2015-08-21 15:09:38 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-08-21 15:09:38 ----A---- C:\Windows\system32\credui.dll
2015-08-21 15:09:28 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\system32\WebClnt.dll
2015-08-21 15:09:28 ----A---- C:\Windows\system32\davclnt.dll
2015-08-21 15:09:24 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-08-21 15:09:24 ----A---- C:\Windows\system32\gdi32.dll
2015-08-21 15:09:23 ----A---- C:\Windows\system32\drivers\usbehci.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbport.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbhub.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbd.sys
2015-08-21 15:09:22 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2015-08-21 15:09:20 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-08-21 15:09:20 ----A---- C:\Windows\system32\d3d11.dll
2015-08-21 15:09:17 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-08-21 15:09:17 ----A---- C:\Windows\system32\qedit.dll
2015-08-21 15:09:16 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-08-21 15:09:16 ----A---- C:\Windows\system32\comctl32.dll
2015-08-21 15:09:12 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-08-21 15:09:07 ----A---- C:\Windows\system32\Wdfres.dll
2015-08-21 15:09:07 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2015-08-21 15:09:07 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-08-21 15:09:02 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-08-21 15:09:02 ----A---- C:\Windows\system32\crypt32.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-08-21 15:09:01 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\wintrust.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\cryptsvc.dll
2015-08-21 15:09:01 ----A---- C:\Windows\system32\cryptnet.dll
2015-08-21 15:08:19 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2015-08-21 15:08:19 ----A---- C:\Windows\system32\drivers\usbcir.sys
2015-08-21 15:07:34 ----A---- C:\Windows\system32\OxpsConverter.exe
2015-08-21 15:07:28 ----A---- C:\Windows\system32\drivers\ataport.sys
2015-08-21 15:07:26 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\netio.sys
2015-08-21 15:07:10 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-08-21 15:06:56 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-08-21 15:06:56 ----A---- C:\Windows\system32\osk.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-08-21 15:06:49 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_ssp.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc_isv.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\secproc.dll
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\RMActivate.exe
2015-08-21 15:06:49 ----A---- C:\Windows\system32\msdrm.dll
2015-08-21 15:06:36 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2015-08-21 15:06:36 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-08-21 15:06:33 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-08-21 15:06:33 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-08-21 15:06:32 ----A---- C:\Windows\system32\drivers\afd.sys
2015-08-21 15:06:30 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-08-21 15:06:30 ----A---- C:\Windows\system32\ole32.dll
2015-08-21 15:06:22 ----A---- C:\Windows\system32\drivers\cng.sys
2015-08-21 15:05:44 ----A---- C:\Windows\system32\ncsi.dll
2015-08-21 15:05:43 ----A---- C:\Windows\SYSWOW64\netevent.dll
2015-08-21 15:05:43 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\nlaapi.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\netevent.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\netcorehc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\iphlpsvc.dll
2015-08-21 15:05:43 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2015-08-21 15:04:43 ----A---- C:\Windows\system32\drivers\hidparse.sys
2015-08-21 15:04:43 ----A---- C:\Windows\system32\drivers\hidclass.sys
2015-08-21 15:04:26 ----A---- C:\Windows\system32\Wpc.dll
2015-08-21 15:04:25 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2015-08-21 15:04:25 ----A---- C:\Windows\SYSWOW64\gameux.dll
2015-08-21 15:04:25 ----A---- C:\Windows\system32\gameux.dll
2015-08-21 15:04:04 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-08-21 15:04:01 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-08-21 15:04:01 ----A---- C:\Windows\system32\dpnet.dll
2015-08-21 15:03:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-08-21 15:03:57 ----A---- C:\Windows\system32\msi.dll
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-08-21 15:03:56 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-08-21 15:03:56 ----A---- C:\Windows\system32\msihnd.dll
2015-08-21 15:03:56 ----A---- C:\Windows\system32\msiexec.exe
2015-08-21 15:03:55 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-08-21 15:03:55 ----A---- C:\Windows\system32\msimsg.dll
2015-08-21 06:54:48 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-08-21 06:54:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-08-21 06:54:48 ----A---- C:\Windows\system32\cdd.dll
2015-08-21 06:54:45 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-08-21 06:54:45 ----A---- C:\Windows\system32\mswsock.dll
2015-08-21 06:44:29 ----A---- C:\Windows\system32\rdrmemptylst.exe
2015-08-21 06:44:29 ----A---- C:\Windows\system32\rdpwsx.dll
2015-08-21 06:43:47 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-08-21 06:43:47 ----A---- C:\Windows\system32\psisdecd.dll
2015-08-21 06:42:53 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-08-21 06:42:53 ----A---- C:\Windows\system32\oleaut32.dll
2015-08-21 06:42:33 ----A---- C:\Windows\system32\drivers\partmgr.sys
2015-08-21 06:42:27 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-08-21 06:42:27 ----A---- C:\Windows\system32\poqexec.exe
2015-08-21 06:42:19 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-08-21 06:42:19 ----A---- C:\Windows\system32\pku2u.dll
2015-08-21 06:41:18 ----A---- C:\Windows\system32\drivers\stream.sys
2015-08-21 06:41:17 ----A---- C:\Windows\system32\drivers\http.sys
2015-08-21 06:41:16 ----A---- C:\Windows\system32\drivers\bthport.sys
2015-08-21 06:41:12 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2015-08-21 06:41:12 ----A---- C:\Windows\system32\iologmsg.dll
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\storport.sys
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2015-08-21 06:41:12 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2015-08-21 06:40:58 ----A---- C:\Windows\SYSWOW64\synceng.dll
2015-08-21 06:40:58 ----A---- C:\Windows\system32\synceng.dll
2015-08-21 06:40:57 ----A---- C:\Windows\SYSWOW64\charmap.exe
2015-08-21 06:40:57 ----A---- C:\Windows\system32\charmap.exe
2015-08-21 06:40:43 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2015-08-21 06:40:43 ----A---- C:\Windows\system32\shdocvw.dll
2015-08-21 06:40:29 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-08-21 06:40:29 ----A---- C:\Windows\system32\msctf.dll
2015-08-21 06:40:27 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-08-21 06:40:27 ----A---- C:\Windows\system32\rastls.dll
2015-08-21 06:40:25 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2015-08-21 06:40:25 ----A---- C:\Windows\system32\win32spl.dll
2015-08-21 06:40:24 ----A---- C:\Windows\system32\WsmSvc.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2015-08-21 06:40:23 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WsmWmiPl.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WsmAuto.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2015-08-21 06:40:23 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2015-08-21 06:40:05 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2015-08-21 06:40:05 ----A---- C:\Windows\system32\cryptdlg.dll
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-08-21 06:39:05 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\shimeng.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\sdbinst.exe
2015-08-21 06:39:05 ----A---- C:\Windows\system32\apphelp.dll
2015-08-21 06:39:05 ----A---- C:\Windows\system32\aelupsvc.dll
2015-08-21 06:38:40 ----A---- C:\Windows\system32\winlogon.exe
2015-08-21 06:38:39 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-08-21 06:38:39 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-08-21 06:38:39 ----A---- C:\Windows\system32\winsta.dll
2015-08-21 06:38:39 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-08-21 06:38:39 ----A---- C:\Windows\system32\mstsc.exe
2015-08-21 06:38:39 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-08-21 06:38:38 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-08-21 06:38:12 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-08-21 06:38:12 ----A---- C:\Windows\system32\packager.dll
2015-08-21 06:38:10 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2015-08-21 06:38:10 ----A---- C:\Windows\SYSWOW64\browcli.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\netapi32.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\browser.dll
2015-08-21 06:38:10 ----A---- C:\Windows\system32\browcli.dll
2015-08-21 06:37:25 ----A---- C:\Windows\system32\drivers\fvevol.sys
2015-08-21 06:37:24 ----A---- C:\Windows\system32\msvcrt.dll
2015-08-21 06:37:23 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-08-21 06:37:19 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-08-21 06:37:18 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-08-21 06:37:18 ----A---- C:\Windows\system32\scesrv.dll
2015-08-21 06:37:15 ----A---- C:\Windows\system32\certutil.exe
2015-08-21 06:37:14 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-08-21 06:37:14 ----A---- C:\Windows\SYSWOW64\certenc.dll
2015-08-21 06:37:14 ----A---- C:\Windows\system32\certenc.dll
2015-08-21 06:37:04 ----A---- C:\Windows\SYSWOW64\wscript.exe
2015-08-21 06:37:04 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2015-08-21 06:37:04 ----A---- C:\Windows\system32\wscript.exe
2015-08-21 06:37:04 ----A---- C:\Windows\system32\scrrun.dll
2015-08-21 06:37:04 ----A---- C:\Windows\system32\cscript.exe
2015-08-21 06:37:03 ----A---- C:\Windows\SYSWOW64\cscript.exe
2015-08-21 06:36:21 ----A---- C:\Windows\system32\shell32.dll
2015-08-21 06:36:19 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-08-21 06:36:15 ----A---- C:\Windows\system32\localspl.dll
2015-08-21 06:36:10 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-08-21 06:36:10 ----A---- C:\Windows\system32\oleacc.dll
2015-08-21 06:36:02 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-08-21 06:36:02 ----A---- C:\Windows\system32\EncDec.dll
2015-08-21 06:36:00 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-08-21 06:36:00 ----A---- C:\Windows\system32\clfsw32.dll
2015-08-21 06:36:00 ----A---- C:\Windows\system32\clfs.sys
2015-08-21 06:33:33 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2015-08-21 06:33:33 ----A---- C:\Windows\system32\cdosys.dll
2015-08-21 06:26:31 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-08-21 06:26:31 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-08-21 06:26:30 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-08-21 06:26:30 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2015-08-21 06:26:30 ----A---- C:\Windows\system32\nshwfp.dll
2015-08-21 06:26:14 ----A---- C:\Windows\system32\scavengeui.dll
2015-08-20 21:41:03 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-08-20 21:40:58 ----D---- C:\Windows\system32\Macromed
2015-08-20 21:25:52 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-08-20 21:25:24 ----D---- C:\Users\Doma\AppData\Roaming\Opera
2015-08-20 21:14:34 ----D---- C:\AdwCleaner
2015-08-20 21:08:02 ----D---- C:\Windows\SYSWOW64\VLX Player
2015-08-20 21:07:47 ----D---- C:\Program Files (x86)\Seznam.cz
2015-08-20 20:07:15 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-08-20 20:07:15 ----A---- C:\Windows\system32\rdpcore.dll
2015-08-20 20:07:14 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2015-08-20 19:27:32 ----D---- C:\Users\Doma\AppData\Roaming\vlc
2015-08-20 19:26:51 ----D---- C:\Program Files (x86)\VideoLAN
2015-08-20 19:06:41 ----A---- C:\autoexec.bat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfi005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfh005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfd005.dat
2015-08-20 02:56:59 ----A---- C:\Windows\system32\perfc005.dat
2015-08-20 02:56:33 ----D---- C:\Windows\SYSWOW64\cs
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\XPSViewer
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2015-08-20 02:56:31 ----D---- C:\Windows\system32\cs
2015-08-20 02:56:31 ----D---- C:\Windows\cs-CZ
2015-08-20 02:56:30 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-08-20 02:50:19 ----D---- C:\Windows\NAPP_Dism_Log
2015-08-19 19:02:43 ----D---- C:\Users\Doma\AppData\Roaming\Seznam.cz
2015-08-19 19:00:38 ----D---- C:\Users\Doma\AppData\Roaming\uTorrent
2015-08-19 18:37:34 ----D---- C:\Users\Doma\AppData\Roaming\Opera Software
2015-08-19 18:36:52 ----D---- C:\Program Files (x86)\Opera
2015-08-19 18:35:42 ----D---- C:\KMPlayer
2015-08-19 18:19:02 ----D---- C:\Users\Doma\AppData\Roaming\AVAST Software
2015-08-19 18:18:39 ----D---- C:\Windows\SYSWOW64\vbox
2015-08-19 18:18:39 ----D---- C:\Windows\system32\vbox
2015-08-19 18:18:11 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-08-19 18:18:10 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-08-19 18:18:10 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-08-19 18:18:09 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-08-19 18:18:08 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\ngvss.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-08-19 18:18:07 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-08-19 18:18:05 ----A---- C:\Windows\system32\aswBoot.exe
2015-08-19 18:17:58 ----A---- C:\Windows\avastSS.scr
2015-08-19 18:15:48 ----D---- C:\Program Files\AVAST Software
2015-08-19 18:15:13 ----D---- C:\ProgramData\AVAST Software
2015-08-19 18:11:07 ----D---- C:\Users\Doma\AppData\Roaming\Mozilla
2015-08-19 18:08:33 ----D---- C:\Users\Doma\AppData\Roaming\Adobe
2015-08-19 18:00:08 ----D---- C:\Users\Doma\AppData\Roaming\Macromedia
2015-08-19 17:59:44 ----D---- C:\Users\Doma\AppData\Roaming\Identities
2015-08-19 17:58:01 ----D---- C:\Users\Doma\AppData\Roaming\CyberLink
2015-08-19 17:57:33 ----SD---- C:\Users\Doma\AppData\Roaming\Microsoft
2015-08-19 17:57:33 ----D---- C:\Users\Doma\AppData\Roaming\Media Center Programs
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Šablony
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Plocha
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Dokumenty
2015-08-19 17:57:15 ----SHD---- C:\ProgramData\Data aplikací
2015-08-19 17:57:15 ----D---- C:\Recovery
2015-08-19 17:30:03 ----D---- C:\ProgramData\CLSK
2015-08-19 17:28:52 ----D---- C:\ProgramData\Temp
2015-08-19 17:28:52 ----D---- C:\ProgramData\CyberLink
2015-08-19 17:25:59 ----D---- C:\ProgramData\NTI Launcher
2015-08-19 17:24:37 ----D---- C:\ProgramData\FLEXnet
2015-08-19 17:24:00 ----D---- C:\Program Files (x86)\Microsoft Office
2015-08-19 17:22:38 ----D---- C:\Program Files (x86)\Microsoft
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\drivers\btwampfl.sys
2015-08-19 17:18:45 ----A---- C:\Windows\system32\btwcoins.dll
2015-08-19 17:17:43 ----D---- C:\Program Files\WIDCOMM
2015-08-19 17:15:03 ----D---- C:\Dolby PCEE4
2015-08-19 17:14:55 ----D---- C:\Windows\SYSWOW64\RTCOM
2015-08-19 17:14:46 ----D---- C:\Program Files\Realtek
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtPCEE4.DAT
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtPCEE3.DAT
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\rtkhdaud.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RtHdatEx.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTHDAEQ1.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX3.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX2.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX1.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTEQEX0.dat
2015-08-19 17:14:46 ----A---- C:\Windows\system32\drivers\RTConvEQ.dat
2015-08-19 17:14:45 ----A---- C:\Windows\system32\WavesGUILib.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSWOW64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSTSX64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSTSH64.dll
2015-08-19 17:14:45 ----A---- C:\Windows\system32\SRSHP64.dll
2015-08-19 17:14:44 ----N---- C:\Windows\SYSWOW64\SFCOM.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFSS_APO.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFNHK64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFCOM64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\SFAPO64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\RtPgEx64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2015-08-19 17:14:44 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkCfg64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkAPO64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RtkApi64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEP64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEL64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEEG64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTEED64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RTCOM64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RP3DHT64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RP3DAA64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RCoRes64.dat
2015-08-19 17:14:43 ----A---- C:\Windows\system32\RCoInst64.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEP64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEL64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEG64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EED64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\R4EEA64A.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2015-08-19 17:14:43 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-19 17:14:41 ----HD---- C:\Program Files (x86)\Temp
2015-08-19 17:14:41 ----D---- C:\Program Files (x86)\Realtek
2015-08-19 17:14:41 ----A---- C:\Windows\system32\FMAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\AERTAR64.dll
2015-08-19 17:14:41 ----A---- C:\Windows\system32\AERTAC64.dll
2015-08-19 17:14:40 ----A---- C:\Windows\RtlExUpd.dll
2015-08-19 17:13:14 ----D---- C:\Program Files\Elantech
2015-08-19 17:10:27 ----D---- C:\Program Files\Intel
2015-08-19 17:09:05 ----D---- C:\Program Files (x86)\Launch Manager
2015-08-19 17:07:12 ----AD---- C:\book
2015-08-19 17:07:09 ----D---- C:\ProgramData\EgisTec
2015-08-19 17:07:05 ----D---- C:\ProgramData\Intel
2015-08-19 17:04:14 ----D---- C:\Windows\SoftwareDistribution
2015-08-19 17:03:54 ----D---- C:\Program Files\Common Files\Intel
2015-08-19 17:01:12 ----ASH---- C:\hiberfil.sys
2015-08-19 17:01:11 ----SHD---- C:\System Volume Information
2015-08-19 17:01:11 ----ASH---- C:\pagefile.sys
======List of files/folders modified in the last 1 month======
2015-09-14 17:13:41 ----D---- C:\Windows\Prefetch
2015-09-14 15:29:39 ----RD---- C:\Program Files
2015-09-14 15:28:32 ----SHD---- C:\Windows\Installer
2015-09-14 15:28:31 ----D---- C:\Windows\SysWOW64
2015-09-14 15:28:31 ----D---- C:\Windows\System32
2015-09-14 15:28:28 ----D---- C:\Program Files (x86)\Common Files
2015-09-14 15:22:50 ----RD---- C:\Program Files (x86)
2015-09-14 14:45:04 ----D---- C:\Windows\inf
2015-09-14 14:45:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-09-14 14:44:57 ----A---- C:\Windows\SYSWOW64\log.txt
2015-09-14 09:43:53 ----D---- C:\Windows\system32\config
2015-09-14 05:06:47 ----D---- C:\Windows\Tasks
2015-09-13 19:10:16 ----D---- C:\Windows\system32\wdi
2015-09-13 19:08:32 ----D---- C:\Windows\system32\drivers
2015-09-13 19:04:43 ----D---- C:\Windows
2015-09-13 19:04:42 ----A---- C:\Windows\system.ini
2015-09-13 19:04:40 ----D---- C:\Windows\system32\drivers\etc
2015-09-13 18:59:12 ----D---- C:\Windows\SYSWOW64\drivers
2015-09-13 18:59:12 ----D---- C:\Windows\AppPatch
2015-09-11 21:54:20 ----D---- C:\Windows\rescache
2015-09-11 21:12:05 ----D---- C:\Windows\system32\drivers\UMDF
2015-09-11 06:20:17 ----D---- C:\ProgramData
2015-09-11 05:54:33 ----SD---- C:\ProgramData\Microsoft
2015-09-10 19:28:07 ----D---- C:\Windows\Speech
2015-09-10 09:13:07 ----RSD---- C:\Windows\assembly
2015-09-10 09:13:07 ----D---- C:\Windows\Microsoft.NET
2015-09-10 08:07:15 ----D---- C:\Windows\winsxs
2015-09-10 08:04:52 ----D---- C:\Program Files\Windows Journal
2015-09-10 08:04:51 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-09-10 08:04:51 ----D---- C:\Windows\system32\cs-CZ
2015-09-10 08:04:51 ----D---- C:\Windows\ehome
2015-09-10 08:04:50 ----D---- C:\Program Files\Internet Explorer
2015-09-10 08:04:49 ----D---- C:\Windows\SYSWOW64\en-US
2015-09-10 08:04:46 ----D---- C:\Windows\system32\en-US
2015-09-10 08:04:46 ----D---- C:\Windows\PolicyDefinitions
2015-09-10 08:04:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-09-10 08:04:28 ----D---- C:\Windows\system32\Boot
2015-09-09 17:26:18 ----D---- C:\Windows\system32\catroot2
2015-08-30 11:30:17 ----D---- C:\$Windows.~BT
2015-08-30 11:14:04 ----D---- C:\Windows\Panther
2015-08-30 10:23:00 ----D---- C:\Windows\Logs
2015-08-23 17:59:29 ----D---- C:\ProgramData\Adobe
2015-08-23 17:53:46 ----RSD---- C:\Windows\Fonts
2015-08-23 13:06:17 ----D---- C:\Windows\AppCompat
2015-08-22 21:51:23 ----D---- C:\Windows\system32\LogFiles
2015-08-22 15:55:05 ----D---- C:\Windows\system32\Tasks
2015-08-22 13:21:40 ----D---- C:\Windows\system32\DriverStore
2015-08-21 17:32:28 ----D---- C:\Windows\system32\wbem
2015-08-21 17:32:25 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-21 17:32:24 ----D---- C:\Program Files\Windows Media Player
2015-08-21 17:32:24 ----D---- C:\Program Files\Common Files\System
2015-08-21 17:32:19 ----D---- C:\Windows\SYSWOW64\migration
2015-08-21 17:32:15 ----D---- C:\Windows\system32\migration
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\it-IT
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-08-21 17:32:07 ----D---- C:\Windows\SYSWOW64\el-GR
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\es-ES
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\de-DE
2015-08-21 17:32:06 ----D---- C:\Windows\SYSWOW64\da-DK
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pt-PT
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pt-BR
2015-08-21 17:32:04 ----D---- C:\Windows\system32\pl-PL
2015-08-21 17:32:04 ----D---- C:\Windows\system32\ko-KR
2015-08-21 17:32:04 ----D---- C:\Windows\system32\it-IT
2015-08-21 17:32:03 ----D---- C:\Windows\system32\zh-HK
2015-08-21 17:32:03 ----D---- C:\Windows\system32\tr-TR
2015-08-21 17:32:03 ----D---- C:\Windows\system32\nl-NL
2015-08-21 17:32:03 ----D---- C:\Windows\system32\hu-HU
2015-08-21 17:32:03 ----D---- C:\Windows\system32\fr-FR
2015-08-21 17:32:03 ----D---- C:\Windows\system32\fi-FI
2015-08-21 17:32:03 ----D---- C:\Windows\system32\el-GR
2015-08-21 17:32:02 ----D---- C:\Windows\system32\zh-TW
2015-08-21 17:32:02 ----D---- C:\Windows\system32\zh-CN
2015-08-21 17:32:02 ----D---- C:\Windows\system32\sv-SE
2015-08-21 17:32:02 ----D---- C:\Windows\system32\ja-JP
2015-08-21 17:32:02 ----D---- C:\Windows\system32\es-ES
2015-08-21 17:32:02 ----D---- C:\Windows\system32\de-DE
2015-08-21 17:32:01 ----D---- C:\Windows\system32\ru-RU
2015-08-21 17:32:01 ----D---- C:\Windows\system32\nb-NO
2015-08-21 17:32:01 ----D---- C:\Windows\system32\da-DK
2015-08-21 17:31:39 ----D---- C:\Windows\SYSWOW64\Dism
2015-08-21 17:31:35 ----D---- C:\Windows\system32\Dism
2015-08-21 17:31:29 ----D---- C:\Windows\system32\CodeIntegrity
2015-08-21 17:31:12 ----D---- C:\Windows\system32\AdvancedInstallers
2015-08-21 17:30:56 ----D---- C:\Windows\tracing
2015-08-21 17:30:56 ----D---- C:\Program Files\Windows Defender
2015-08-21 17:30:56 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-21 17:03:43 ----D---- C:\Windows\system32\catroot
2015-08-20 18:42:41 ----D---- C:\Windows\debug
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\winrm
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\WCN
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\slmgr
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\en
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\DriverStore
2015-08-20 02:59:09 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2015-08-20 02:59:09 ----D---- C:\Windows\servicing
2015-08-20 02:59:08 ----D---- C:\Windows\system32\winrm
2015-08-20 02:59:08 ----D---- C:\Windows\system32\WCN
2015-08-20 02:59:08 ----D---- C:\Windows\system32\slmgr
2015-08-20 02:59:08 ----D---- C:\Windows\system32\en
2015-08-20 02:59:08 ----D---- C:\Windows\system32\drivers\en-US
2015-08-20 02:59:08 ----D---- C:\Windows\en-US
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Sidebar
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-20 02:56:34 ----D---- C:\Program Files\Windows Mail
2015-08-20 02:56:34 ----D---- C:\Program Files\DVD Maker
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Sidebar
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-20 02:56:34 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-20 02:56:33 ----D---- C:\Windows\SYSWOW64\migwiz
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\wbem
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\MUI
2015-08-20 02:56:31 ----D---- C:\Windows\SYSWOW64\com
2015-08-20 02:56:31 ----D---- C:\Windows\system32\oobe
2015-08-20 02:56:31 ----D---- C:\Windows\system32\migwiz
2015-08-20 02:56:31 ----D---- C:\Windows\IME
2015-08-20 02:56:30 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2015-08-20 02:56:30 ----D---- C:\Windows\system32\MUI
2015-08-20 02:56:30 ----D---- C:\Windows\system32\com
2015-08-19 19:16:25 ----D---- C:\ProgramData\McAfee
2015-08-19 19:16:25 ----D---- C:\Program Files\Common Files
2015-08-19 18:13:33 ----D---- C:\ProgramData\Skype
2015-08-19 18:12:09 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-08-19 18:11:59 ----D---- C:\Program Files (x86)\Acer
2015-08-19 18:06:22 ----D---- C:\Windows\system32\restore
2015-08-19 18:00:18 ----D---- C:\ProgramData\oem
2015-08-19 18:00:14 ----D---- C:\Windows\system32\OEM
2015-08-19 17:59:11 ----D---- C:\OEM
2015-08-19 17:57:27 ----RD---- C:\Users
2015-08-19 17:57:15 ----D---- C:\Windows\system32\Recovery
2015-08-19 17:57:15 ----D---- C:\Program Files\Windows NT
2015-08-19 17:53:59 ----D---- C:\Windows\system32\sysprep
2015-08-19 17:40:06 ----D---- C:\Windows\Help
2015-08-19 17:31:59 ----D---- C:\Program Files\Acer
2015-08-19 17:24:57 ----D---- C:\Program Files (x86)\NTI
2015-08-19 17:18:17 ----SD---- C:\Windows\system32\Microsoft
2015-08-19 17:16:27 ----D---- C:\ProgramData\EgisTec IPS
2015-08-19 17:08:17 ----D---- C:\Program Files\Broadcom
2015-08-19 17:08:14 ----D---- C:\Windows\Downloaded Installations
2015-08-19 17:07:35 ----AD---- C:\Windows\DeployWinRE2
2015-08-19 17:03:51 ----D---- C:\Program Files (x86)\Intel
2015-08-19 17:03:27 ----D---- C:\Intel
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-08-19 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-08-19 274808]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-04-26 557848]
R0 ngvss;ngvss; C:\Windows\system32\drivers\ngvss.sys [2015-08-19 115152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-08-19 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-08-19 1048344]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-08-19 447944]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-08-12 22648]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-08-12 20520]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-08-12 62776]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-08-19 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-08-19 90968]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-08-19 273824]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-20 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-20 19496]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-06-08 4729408]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2011-04-05 142632]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-06-10 12230912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-29 2819560]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-05-10 425000]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-06-18 25816]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2011-03-10 18432]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2011-03-10 17408]
S2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-08-19 150672]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-01-10 349736]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-01-24 107560]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-09-14 138280]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-15 39464]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-09-14 21416]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2015-08-22 22200]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-06-18 63704]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-26 81088]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-19 146600]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2011-05-10 956192]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
R2 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2011-08-02 872552]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-30 36456]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-04-24 256832]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-08-19 4047768]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-06-18 1133880]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-03 269000]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-08-19 655624]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-08-15 114688]
S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-08-22 1255736]
S3 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-29 2292096]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
frst
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:14-09-2015
Ran by Doma (administrator) on DOMA-PC (14-09-2015 17:17:35)
Running from C:\Users\Doma\Desktop
Loaded Profiles: Doma (Available Profiles: Doma)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11786344 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-21] (Realtek Semiconductor)
HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)
HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-06-22] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-08-26] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-19] (AVAST Software)
ShellIconOverlayIdentifiers: [0PerformanceMonitor] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-08-19]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{95875B19-53A6-47BF-8BBB-12B08C7FA201}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1907473733-2528761356-270282088-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1907473733-2528761356-270282088-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1907473733-2528761356-270282088-1001 -> {DD97299E-301B-4EAA-8674-11579DA796E6} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-19] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-19] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
FireFox:
========
FF ProfilePath: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default
FF SelectedSearchEngine: Seznam
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-20] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-20] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-08] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1907473733-2528761356-270282088-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\searchplugins\firmycz.xml [2015-08-20]
FF SearchPlugin: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\searchplugins\zbocz.xml [2015-08-20]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-08-19]
FF Extension: Record Page - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-20]
FF Extension: Adblock Plus - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-19]
FF Extension: JavaScript Debugger - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi [2015-08-19]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-19]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-19]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-19]
Opera:
=======
OPR Extension: (skychko) - C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Extensions\fcnodchihpbcjiofidkkeaioejgpijkl [2015-08-21]
OPR Extension: (Adblock Plus) - C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-08-21]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-19] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-08-19] (Avast Software)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-19] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-19] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-19] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-19] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-19] (AVAST Software)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-08-19] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-14 17:17 - 2015-09-14 17:17 - 00016439 _____ C:\Users\Doma\Desktop\FRST.txt
2015-09-14 17:16 - 2015-09-14 17:17 - 00000000 ____D C:\FRST
2015-09-14 17:12 - 2015-09-14 17:12 - 00112640 _____ (forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
2015-09-14 17:11 - 2015-09-14 17:12 - 02190848 _____ (Farbar) C:\Users\Doma\Desktop\FRST64.exe
2015-09-14 15:29 - 2015-09-14 15:29 - 00001022 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk
2015-09-14 15:29 - 2015-09-14 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2015-09-14 15:29 - 2015-09-14 15:29 - 00000000 ____D C:\Program Files\Tracker Software
2015-09-14 15:28 - 2015-09-14 15:28 - 17847942 _____ C:\Users\Doma\Downloads\PDFXVwer.zip
2015-09-14 15:23 - 2015-09-14 15:26 - 00000000 ____D C:\Users\Doma\AppData\Roaming\602XML
2015-09-14 15:23 - 2015-09-14 15:23 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Software602
2015-09-14 15:23 - 2014-02-05 13:51 - 00036864 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\602localmon.dll
2015-09-14 15:22 - 2015-09-14 15:22 - 00000000 ____D C:\Program Files (x86)\Software602
2015-09-14 15:21 - 2015-09-14 15:22 - 80679592 _____ C:\Users\Doma\Downloads\software602_form_filler.exe
2015-09-14 15:08 - 2015-09-14 15:08 - 01703168 _____ (Foxit Software) C:\Users\Doma\Downloads\FoxitDPFEditor20_enu_Setup.exe
2015-09-13 21:22 - 2015-09-13 21:22 - 00000000 _____ C:\Users\Doma\Desktop\Nový textový dokument.txt
2015-09-13 19:25 - 2015-09-13 19:48 - 00000000 ____D C:\Users\Doma\Desktop\bojovnik
2015-09-13 19:24 - 2015-09-13 19:24 - 00019688 _____ C:\Users\Doma\Downloads\Southpaw (2015) 720p WEB-DL 950MB - MkvCage.torrent
2015-09-13 19:08 - 2015-09-13 19:08 - 00025000 _____ C:\ComboFix.txt
2015-09-13 19:04 - 2015-09-14 14:42 - 00000224 _____ C:\Windows\setupact.log
2015-09-13 19:04 - 2015-09-13 19:04 - 00000540 _____ C:\Windows\PFRO.log
2015-09-13 19:04 - 2015-09-13 19:04 - 00000000 _____ C:\Windows\setuperr.log
2015-09-11 21:12 - 2015-09-11 21:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-09-11 06:20 - 2015-09-11 06:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-11 06:19 - 2015-09-11 06:43 - 00000000 ____D C:\Users\Doma\Desktop\mbar
2015-09-11 06:18 - 2015-09-11 06:19 - 16563304 _____ (Malwarebytes Corp.) C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe
2015-09-11 06:12 - 2015-09-11 06:12 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Doma\Desktop\tdsskiller.exe
2015-09-11 06:10 - 2015-09-14 16:10 - 00300405 _____ C:\Windows\WindowsUpdate.log
2015-09-11 06:09 - 2015-09-11 06:09 - 00000000 ____D C:\Users\Doma\AppData\Local\GWX
2015-09-11 05:57 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-11 05:57 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-11 05:57 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-11 05:52 - 2015-09-11 05:52 - 00000000 ____D C:\Users\Doma\Documents\ProcAlyzer Dumps
2015-09-11 05:34 - 2015-09-13 19:08 - 00000000 ____D C:\Qoobox
2015-09-11 05:33 - 2015-09-13 19:02 - 00000000 ____D C:\Windows\erdnt
2015-09-10 19:56 - 2015-09-10 19:56 - 05635119 ____R (Swearware) C:\Users\Doma\Desktop\ComboFix.exe
2015-09-10 15:13 - 2015-09-13 19:15 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-10 15:04 - 2015-09-13 19:12 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-10 15:04 - 2015-09-10 15:04 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-10 15:04 - 2015-09-10 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-10 15:04 - 2015-09-10 15:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-10 15:04 - 2015-09-10 15:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-10 15:04 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-09-10 15:04 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-09-10 15:01 - 2015-09-10 15:02 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Doma\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-10 14:58 - 2015-09-10 14:58 - 01660416 _____ C:\Users\Doma\Desktop\adwcleaner_5.007.exe
2015-09-09 17:58 - 2015-09-14 17:13 - 00000000 ____D C:\Program Files\trend micro
2015-09-09 17:58 - 2015-09-09 17:59 - 00000000 ____D C:\rsit
2015-09-09 17:43 - 2015-09-09 17:43 - 01222144 _____ C:\Users\Doma\Desktop\RSITx64.exe
2015-09-09 17:31 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-09 17:31 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-09 17:31 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-09 17:31 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-09 17:31 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-09 17:31 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-09 17:31 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-09 17:31 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 17:31 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-09 17:31 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-09 17:31 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-09 17:31 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-09 17:31 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-09 17:31 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-09 17:31 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-09 17:31 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-09 17:31 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-09 17:31 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-09 17:31 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-09 17:31 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-09 17:31 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 17:31 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-09 17:31 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-09 17:31 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 17:31 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-09 17:31 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-09 17:31 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-09 17:31 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-09 17:31 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-09 17:31 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-09 17:31 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-09 17:31 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-09 17:31 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-09 17:30 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 17:30 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 17:30 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-09 17:30 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 17:30 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 17:30 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 17:30 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-09 17:30 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 17:30 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 17:30 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 17:30 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-09 17:30 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 17:30 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-09 17:30 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 17:30 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-09 17:30 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 17:30 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-09 17:30 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 17:30 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-09 17:30 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 17:30 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-09 17:30 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-09 17:30 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-09 17:30 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-09 17:30 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-09 17:30 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 17:30 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 17:30 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-09 17:30 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-09 17:30 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 17:30 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-09 17:30 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-09 17:30 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 17:30 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-09 17:30 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-09 17:30 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-09 17:30 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-09 17:29 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-09 17:29 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-09 17:29 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-09 17:29 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-09 17:29 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-09 17:29 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-09 17:29 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-09 17:29 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-09 17:29 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-09 17:29 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-09 17:29 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-09 17:29 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-09 17:29 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-09 17:29 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-09 17:29 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-09 17:29 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-09 17:29 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-09 17:29 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-09 17:29 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-09 17:29 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-09 17:29 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-09 17:29 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-09 17:29 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-09 17:29 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-09 17:29 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-09 17:29 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-09 17:29 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-09 17:28 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 17:28 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 17:28 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-09 17:28 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-09 17:28 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-09 17:28 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-09 17:28 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-09 17:28 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-09 17:28 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-09 17:28 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-09 17:28 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-09 17:28 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-09 17:28 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-09 17:28 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 17:28 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 17:28 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-09 17:28 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-09 17:27 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-09 17:27 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 17:27 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-09 17:27 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-09 17:27 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-09 17:27 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-09 17:27 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-09 17:27 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-09 17:27 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 17:27 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 17:27 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-09 17:27 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-09 17:27 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-09 17:27 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-09 17:27 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-09 17:27 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-07 17:07 - 2015-09-07 17:07 - 00002023 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk
2015-09-07 14:54 - 2015-09-07 14:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-09-01 18:27 - 2015-09-01 18:27 - 00002047 _____ C:\Users\Doma\Desktop\Sven XXX spielen.lnk
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\phenomedia
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\phenomedia
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\Program Files (x86)\phenomedia
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\Program Files (x86)\Einfach_Spielen
2015-09-01 18:26 - 2015-09-01 18:26 - 01199392 _____ C:\Users\Doma\Downloads\Sven XXX - CHIP-Installer.exe
2015-09-01 18:22 - 2015-09-01 18:22 - 02129208 _____ C:\Users\Doma\Downloads\winrar-x64-521cz.exe
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\Users\Doma\AppData\Roaming\WinRAR
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\Program Files\WinRAR
2015-08-23 17:54 - 2015-08-23 17:57 - 00000000 ___SD C:\Windows\system32\GWX
2015-08-23 17:54 - 2015-08-23 17:54 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-08-23 15:13 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-08-23 15:13 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-08-23 13:12 - 2015-09-07 14:53 - 00000000 ____D C:\Users\Doma\Desktop\ant-man
2015-08-22 15:55 - 2015-09-13 01:18 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-22 15:55 - 2015-08-22 15:55 - 00022200 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2015-08-22 15:55 - 2015-08-22 15:55 - 00003948 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-08-22 15:51 - 2015-08-22 15:51 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-08-22 13:39 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-08-22 13:39 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-22 13:28 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-08-22 13:28 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-08-22 12:55 - 2015-01-09 01:44 - 00419936 _____ C:\Windows\SysWOW64\locale.nls
2015-08-22 12:55 - 2015-01-09 01:43 - 00419936 _____ C:\Windows\system32\locale.nls
2015-08-22 12:54 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:54 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-08-22 12:38 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-08-22 12:38 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-08-22 12:38 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-08-22 12:38 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-08-22 12:13 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-08-22 12:13 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2015-08-22 12:13 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-08-22 12:13 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-08-22 12:13 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2015-08-22 12:13 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2015-08-22 12:12 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-08-22 12:12 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-08-22 11:33 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-22 11:33 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-22 11:33 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-22 11:33 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-22 11:33 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-22 11:33 - 2015-02-03 05:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-08-22 11:33 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-08-22 11:32 - 2015-02-04 05:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-08-22 11:32 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-08-22 11:25 - 2015-08-22 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-22 11:24 - 2015-08-22 11:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-22 11:24 - 2015-08-22 11:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-22 11:17 - 2015-08-23 17:58 - 00000000 ____D C:\Users\Doma\AppData\Local\Otics
2015-08-22 11:17 - 2015-08-22 11:18 - 00000000 ____D C:\Users\Doma\AppData\Local\AVDworks
2015-08-21 17:32 - 2015-08-21 17:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-21 17:32 - 2015-08-21 17:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-21 17:04 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2015-08-21 16:57 - 2015-08-21 16:57 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-08-21 16:57 - 2015-08-21 16:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-08-21 16:57 - 2015-08-21 16:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-08-21 16:57 - 2015-08-21 16:57 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-08-21 16:57 - 2015-08-21 16:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-08-21 16:55 - 2015-08-21 16:55 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-08-21 16:51 - 2015-08-21 16:51 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:05 - 2015-08-21 16:05 - 00087420 _____ C:\Users\Doma\Downloads\Svatky.gadget
2015-08-21 15:44 - 2015-08-21 15:44 - 00002786 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-08-21 15:44 - 2015-08-21 15:44 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-21 15:44 - 2015-08-21 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-21 15:44 - 2015-08-21 15:44 - 00000000 ____D C:\Program Files\CCleaner
2015-08-21 15:25 - 2015-01-09 05:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-08-21 15:25 - 2015-01-09 05:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-08-21 15:25 - 2015-01-09 05:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-08-21 15:25 - 2015-01-09 04:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-08-21 15:22 - 2014-08-12 04:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-08-21 15:22 - 2014-08-12 03:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2015-08-21 15:21 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-08-21 15:21 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2015-08-21 15:20 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-21 15:20 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-21 15:20 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-21 15:20 - 2015-06-03 22:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-08-21 15:20 - 2015-06-03 22:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-08-21 15:20 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-08-21 15:20 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-08-21 15:20 - 2015-04-18 05:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-08-21 15:20 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-08-21 15:19 - 2015-04-29 20:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-08-21 15:19 - 2015-04-29 20:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-08-21 15:19 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-08-21 15:19 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-08-21 15:19 - 2015-04-29 20:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-08-21 15:19 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-08-21 15:19 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-08-21 15:19 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-08-21 15:19 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-08-21 15:19 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-08-21 15:19 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-08-21 15:19 - 2014-12-11 19:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-08-21 15:19 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-08-21 15:19 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-08-21 15:19 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-08-21 15:19 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-08-21 15:19 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-08-21 15:19 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-08-21 15:18 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-21 15:18 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-21 15:18 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-21 15:18 - 2015-07-10 19:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-21 15:18 - 2015-07-10 19:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-08-21 15:18 - 2015-07-10 19:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-21 15:18 - 2015-07-10 19:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-21 15:18 - 2015-07-10 19:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-21 15:18 - 2015-07-10 19:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-08-21 15:18 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-08-21 15:18 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-08-21 15:18 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-08-21 15:18 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
Ran by Doma (administrator) on DOMA-PC (14-09-2015 17:17:35)
Running from C:\Users\Doma\Desktop
Loaded Profiles: Doma (Available Profiles: Doma)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174_0\opera.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-05] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11786344 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-21] (Realtek Semiconductor)
HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831016 2011-08-02] (Acer Incorporated)
HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-06-22] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-08-26] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-19] (AVAST Software)
ShellIconOverlayIdentifiers: [0PerformanceMonitor] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-08-19]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{95875B19-53A6-47BF-8BBB-12B08C7FA201}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1907473733-2528761356-270282088-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1907473733-2528761356-270282088-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1907473733-2528761356-270282088-1001 -> {DD97299E-301B-4EAA-8674-11579DA796E6} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-19] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-19] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
FireFox:
========
FF ProfilePath: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default
FF SelectedSearchEngine: Seznam
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-20] ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-20] ()
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-14] (Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2010-12-08] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1907473733-2528761356-270282088-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2015-09-08] (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\searchplugins\firmycz.xml [2015-08-20]
FF SearchPlugin: C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\searchplugins\zbocz.xml [2015-08-20]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-08-19]
FF Extension: Record Page - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-20]
FF Extension: Adblock Plus - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-08-19]
FF Extension: JavaScript Debugger - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi [2015-08-19]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-19]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-19]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-19]
Opera:
=======
OPR Extension: (skychko) - C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Extensions\fcnodchihpbcjiofidkkeaioejgpijkl [2015-08-21]
OPR Extension: (Adblock Plus) - C:\Users\Doma\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-08-21]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-19] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-08-19] (Avast Software)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-19] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-19] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-19] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-19] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-19] (AVAST Software)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-08-19] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-14 17:17 - 2015-09-14 17:17 - 00016439 _____ C:\Users\Doma\Desktop\FRST.txt
2015-09-14 17:16 - 2015-09-14 17:17 - 00000000 ____D C:\FRST
2015-09-14 17:12 - 2015-09-14 17:12 - 00112640 _____ (forum.viry.cz) C:\Users\Doma\Desktop\FRSTLauncher.exe
2015-09-14 17:11 - 2015-09-14 17:12 - 02190848 _____ (Farbar) C:\Users\Doma\Desktop\FRST64.exe
2015-09-14 15:29 - 2015-09-14 15:29 - 00001022 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk
2015-09-14 15:29 - 2015-09-14 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2015-09-14 15:29 - 2015-09-14 15:29 - 00000000 ____D C:\Program Files\Tracker Software
2015-09-14 15:28 - 2015-09-14 15:28 - 17847942 _____ C:\Users\Doma\Downloads\PDFXVwer.zip
2015-09-14 15:23 - 2015-09-14 15:26 - 00000000 ____D C:\Users\Doma\AppData\Roaming\602XML
2015-09-14 15:23 - 2015-09-14 15:23 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Software602
2015-09-14 15:23 - 2014-02-05 13:51 - 00036864 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\602localmon.dll
2015-09-14 15:22 - 2015-09-14 15:22 - 00000000 ____D C:\Program Files (x86)\Software602
2015-09-14 15:21 - 2015-09-14 15:22 - 80679592 _____ C:\Users\Doma\Downloads\software602_form_filler.exe
2015-09-14 15:08 - 2015-09-14 15:08 - 01703168 _____ (Foxit Software) C:\Users\Doma\Downloads\FoxitDPFEditor20_enu_Setup.exe
2015-09-13 21:22 - 2015-09-13 21:22 - 00000000 _____ C:\Users\Doma\Desktop\Nový textový dokument.txt
2015-09-13 19:25 - 2015-09-13 19:48 - 00000000 ____D C:\Users\Doma\Desktop\bojovnik
2015-09-13 19:24 - 2015-09-13 19:24 - 00019688 _____ C:\Users\Doma\Downloads\Southpaw (2015) 720p WEB-DL 950MB - MkvCage.torrent
2015-09-13 19:08 - 2015-09-13 19:08 - 00025000 _____ C:\ComboFix.txt
2015-09-13 19:04 - 2015-09-14 14:42 - 00000224 _____ C:\Windows\setupact.log
2015-09-13 19:04 - 2015-09-13 19:04 - 00000540 _____ C:\Windows\PFRO.log
2015-09-13 19:04 - 2015-09-13 19:04 - 00000000 _____ C:\Windows\setuperr.log
2015-09-11 21:12 - 2015-09-11 21:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-09-11 06:20 - 2015-09-11 06:43 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-09-11 06:19 - 2015-09-11 06:43 - 00000000 ____D C:\Users\Doma\Desktop\mbar
2015-09-11 06:18 - 2015-09-11 06:19 - 16563304 _____ (Malwarebytes Corp.) C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe
2015-09-11 06:12 - 2015-09-11 06:12 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Doma\Desktop\tdsskiller.exe
2015-09-11 06:10 - 2015-09-14 16:10 - 00300405 _____ C:\Windows\WindowsUpdate.log
2015-09-11 06:09 - 2015-09-11 06:09 - 00000000 ____D C:\Users\Doma\AppData\Local\GWX
2015-09-11 05:57 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-09-11 05:57 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-09-11 05:57 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-09-11 05:57 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-09-11 05:52 - 2015-09-11 05:52 - 00000000 ____D C:\Users\Doma\Documents\ProcAlyzer Dumps
2015-09-11 05:34 - 2015-09-13 19:08 - 00000000 ____D C:\Qoobox
2015-09-11 05:33 - 2015-09-13 19:02 - 00000000 ____D C:\Windows\erdnt
2015-09-10 19:56 - 2015-09-10 19:56 - 05635119 ____R (Swearware) C:\Users\Doma\Desktop\ComboFix.exe
2015-09-10 15:13 - 2015-09-13 19:15 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-09-10 15:04 - 2015-09-13 19:12 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-09-10 15:04 - 2015-09-10 15:04 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-10 15:04 - 2015-09-10 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-10 15:04 - 2015-09-10 15:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-10 15:04 - 2015-09-10 15:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-10 15:04 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-09-10 15:04 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-09-10 15:01 - 2015-09-10 15:02 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Doma\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-10 14:58 - 2015-09-10 14:58 - 01660416 _____ C:\Users\Doma\Desktop\adwcleaner_5.007.exe
2015-09-09 17:58 - 2015-09-14 17:13 - 00000000 ____D C:\Program Files\trend micro
2015-09-09 17:58 - 2015-09-09 17:59 - 00000000 ____D C:\rsit
2015-09-09 17:43 - 2015-09-09 17:43 - 01222144 _____ C:\Users\Doma\Desktop\RSITx64.exe
2015-09-09 17:31 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-09-09 17:31 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-09-09 17:31 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-09 17:31 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-09-09 17:31 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-09-09 17:31 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-09 17:31 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-09-09 17:31 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 17:31 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-09-09 17:31 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-09-09 17:31 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-09-09 17:31 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-09-09 17:31 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-09-09 17:31 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-09-09 17:31 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-09-09 17:31 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-09 17:31 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-09-09 17:31 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-09-09 17:31 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-09-09 17:31 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-09-09 17:31 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-09-09 17:31 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-09-09 17:31 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-09-09 17:31 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 17:31 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-09-09 17:31 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-09-09 17:31 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-09-09 17:31 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-09 17:31 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-09-09 17:31 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-09 17:31 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-09 17:31 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-09-09 17:31 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-09-09 17:30 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-09 17:30 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-09-09 17:30 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-09-09 17:30 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-09-09 17:30 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-09-09 17:30 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-09-09 17:30 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-09-09 17:30 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-09-09 17:30 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-09-09 17:30 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-09-09 17:30 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-09-09 17:30 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-09-09 17:30 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-09-09 17:30 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-09-09 17:30 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-09 17:30 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-09-09 17:30 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-09-09 17:30 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-09-09 17:30 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-09-09 17:30 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-09-09 17:30 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-09-09 17:30 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-09-09 17:30 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-09-09 17:30 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-09-09 17:30 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-09-09 17:30 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-09-09 17:30 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-09-09 17:30 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-09-09 17:30 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-09-09 17:30 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-09-09 17:30 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-09-09 17:30 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-09-09 17:30 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-09-09 17:30 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-09-09 17:30 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-09-09 17:30 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-09-09 17:30 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-09-09 17:29 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-09-09 17:29 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-09-09 17:29 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-09-09 17:29 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-09-09 17:29 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-09-09 17:29 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-09-09 17:29 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-09-09 17:29 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-09-09 17:29 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-09-09 17:29 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-09-09 17:29 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-09-09 17:29 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-09-09 17:29 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-09-09 17:29 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-09-09 17:29 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-09-09 17:29 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-09-09 17:29 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-09-09 17:29 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-09-09 17:29 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-09-09 17:29 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-09-09 17:29 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-09-09 17:29 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-09 17:29 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-09-09 17:29 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-09-09 17:29 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-09-09 17:29 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-09-09 17:29 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-09-09 17:29 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 17:29 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 17:29 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-09 17:29 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-09 17:29 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-09 17:29 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-09-09 17:28 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 17:28 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 17:28 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-09 17:28 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-09 17:28 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-09-09 17:28 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-09-09 17:28 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-09-09 17:28 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-09-09 17:28 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-09-09 17:28 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-09-09 17:28 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-09-09 17:28 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-09-09 17:28 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-09-09 17:28 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-09-09 17:28 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-09-09 17:28 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-09-09 17:28 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-09-09 17:27 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-09 17:27 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 17:27 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-09 17:27 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-09 17:27 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-09-09 17:27 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-09-09 17:27 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-09-09 17:27 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-09-09 17:27 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-09-09 17:27 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 17:27 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-09-09 17:27 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-09-09 17:27 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-09-09 17:27 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-09-09 17:27 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-09-09 17:27 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-09-09 17:27 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-09-09 17:27 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-09-07 17:07 - 2015-09-07 17:07 - 00002023 _____ C:\Users\Public\Desktop\Adobe Reader X.lnk
2015-09-07 14:54 - 2015-09-07 14:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-09-01 18:27 - 2015-09-01 18:27 - 00002047 _____ C:\Users\Doma\Desktop\Sven XXX spielen.lnk
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\phenomedia
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\phenomedia
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\Program Files (x86)\phenomedia
2015-09-01 18:27 - 2015-09-01 18:27 - 00000000 ____D C:\Program Files (x86)\Einfach_Spielen
2015-09-01 18:26 - 2015-09-01 18:26 - 01199392 _____ C:\Users\Doma\Downloads\Sven XXX - CHIP-Installer.exe
2015-09-01 18:22 - 2015-09-01 18:22 - 02129208 _____ C:\Users\Doma\Downloads\winrar-x64-521cz.exe
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\Users\Doma\AppData\Roaming\WinRAR
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-09-01 18:22 - 2015-09-01 18:22 - 00000000 ____D C:\Program Files\WinRAR
2015-08-23 17:54 - 2015-08-23 17:57 - 00000000 ___SD C:\Windows\system32\GWX
2015-08-23 17:54 - 2015-08-23 17:54 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-08-23 15:13 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-08-23 15:13 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-08-23 13:12 - 2015-09-07 14:53 - 00000000 ____D C:\Users\Doma\Desktop\ant-man
2015-08-22 15:55 - 2015-09-13 01:18 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-08-22 15:55 - 2015-08-22 15:55 - 00022200 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2015-08-22 15:55 - 2015-08-22 15:55 - 00003948 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-08-22 15:51 - 2015-08-22 15:51 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-08-22 13:39 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-08-22 13:39 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-08-22 13:39 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-08-22 13:39 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-22 13:28 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-08-22 13:28 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-08-22 12:55 - 2015-01-09 01:44 - 00419936 _____ C:\Windows\SysWOW64\locale.nls
2015-08-22 12:55 - 2015-01-09 01:43 - 00419936 _____ C:\Windows\system32\locale.nls
2015-08-22 12:54 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:54 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-08-22 12:38 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-08-22 12:38 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-08-22 12:38 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-08-22 12:38 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-08-22 12:38 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-08-22 12:13 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2015-08-22 12:13 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2015-08-22 12:13 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2015-08-22 12:13 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2015-08-22 12:13 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2015-08-22 12:13 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2015-08-22 12:12 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-08-22 12:12 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-08-22 11:33 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-22 11:33 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-22 11:33 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-22 11:33 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-22 11:33 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-22 11:33 - 2015-02-03 05:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-08-22 11:33 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-08-22 11:32 - 2015-02-04 05:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-08-22 11:32 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-08-22 11:25 - 2015-08-22 11:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-22 11:24 - 2015-08-22 11:24 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-22 11:24 - 2015-08-22 11:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-22 11:17 - 2015-08-23 17:58 - 00000000 ____D C:\Users\Doma\AppData\Local\Otics
2015-08-22 11:17 - 2015-08-22 11:18 - 00000000 ____D C:\Users\Doma\AppData\Local\AVDworks
2015-08-21 17:32 - 2015-08-21 17:32 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-21 17:32 - 2015-08-21 17:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-21 17:04 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2015-08-21 16:57 - 2015-08-21 16:57 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-08-21 16:57 - 2015-08-21 16:57 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-08-21 16:57 - 2015-08-21 16:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-08-21 16:57 - 2015-08-21 16:57 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-08-21 16:57 - 2015-08-21 16:57 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-08-21 16:57 - 2015-08-21 16:57 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-21 16:57 - 2015-08-21 16:57 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-08-21 16:55 - 2015-08-21 16:55 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-08-21 16:51 - 2015-08-21 16:51 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:51 - 2015-08-21 16:51 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-08-21 16:05 - 2015-08-21 16:05 - 00087420 _____ C:\Users\Doma\Downloads\Svatky.gadget
2015-08-21 15:44 - 2015-08-21 15:44 - 00002786 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-08-21 15:44 - 2015-08-21 15:44 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-21 15:44 - 2015-08-21 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-21 15:44 - 2015-08-21 15:44 - 00000000 ____D C:\Program Files\CCleaner
2015-08-21 15:25 - 2015-01-09 05:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-08-21 15:25 - 2015-01-09 05:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-08-21 15:25 - 2015-01-09 05:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-08-21 15:25 - 2015-01-09 04:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-08-21 15:22 - 2014-08-12 04:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-08-21 15:22 - 2014-08-12 03:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2015-08-21 15:21 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-08-21 15:21 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-08-21 15:21 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2015-08-21 15:20 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-21 15:20 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-21 15:20 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-21 15:20 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-21 15:20 - 2015-06-03 22:16 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-08-21 15:20 - 2015-06-03 22:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-08-21 15:20 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-08-21 15:20 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-08-21 15:20 - 2015-04-18 05:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-08-21 15:20 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-08-21 15:19 - 2015-04-29 20:22 - 14635008 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-08-21 15:19 - 2015-04-29 20:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-08-21 15:19 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-08-21 15:19 - 2015-04-29 20:21 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-08-21 15:19 - 2015-04-29 20:19 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-08-21 15:19 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-08-21 15:19 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-08-21 15:19 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-08-21 15:19 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-08-21 15:19 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-08-21 15:19 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-08-21 15:19 - 2014-12-11 19:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-08-21 15:19 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-08-21 15:19 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-08-21 15:19 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-08-21 15:19 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-08-21 15:19 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-08-21 15:19 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-08-21 15:19 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-08-21 15:19 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-08-21 15:18 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-21 15:18 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-21 15:18 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-21 15:18 - 2015-07-10 19:51 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-21 15:18 - 2015-07-10 19:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-08-21 15:18 - 2015-07-10 19:51 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-21 15:18 - 2015-07-10 19:34 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-21 15:18 - 2015-07-10 19:34 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-21 15:18 - 2015-07-10 19:33 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-08-21 15:18 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-08-21 15:18 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-08-21 15:18 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-08-21 15:18 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
frst
2015-08-21 15:17 - 2015-05-25 20:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-08-21 15:17 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-08-21 15:17 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-08-21 15:17 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-08-21 15:17 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-08-21 15:17 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2015-08-21 15:16 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-08-21 15:16 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-08-21 15:16 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-08-21 15:16 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-08-21 15:16 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-08-21 15:16 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-08-21 15:15 - 2015-02-03 05:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-08-21 15:15 - 2015-02-03 05:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-08-21 15:15 - 2015-02-03 05:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-08-21 15:15 - 2015-02-03 05:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-08-21 15:15 - 2015-02-03 05:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-08-21 15:15 - 2015-02-03 05:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-08-21 15:15 - 2015-02-03 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-08-21 15:15 - 2014-11-01 00:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-08-21 15:15 - 2014-06-28 02:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-08-21 15:15 - 2014-06-28 02:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-08-21 15:14 - 2014-12-19 05:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-08-21 15:12 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-08-21 15:12 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-08-21 15:12 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-08-21 15:12 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-08-21 15:12 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-08-21 15:12 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-08-21 15:12 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-08-21 15:11 - 2014-10-14 04:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-08-21 15:10 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-21 15:09 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-21 15:09 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-21 15:09 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-21 15:09 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-21 15:09 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-21 15:09 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-08-21 15:09 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-08-21 15:09 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-08-21 15:09 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-08-21 15:09 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-08-21 15:09 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-08-21 15:09 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-08-21 15:09 - 2015-02-03 05:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-08-21 15:09 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-08-21 15:09 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-08-21 15:09 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-08-21 15:09 - 2014-12-06 06:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-08-21 15:09 - 2014-12-06 05:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-08-21 15:09 - 2014-12-06 05:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-08-21 15:09 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-08-21 15:09 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-08-21 15:09 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-08-21 15:09 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-08-21 15:09 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-08-21 15:09 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-08-21 15:09 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-08-21 15:09 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-08-21 15:09 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-08-21 15:09 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-08-21 15:09 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-08-21 15:09 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-08-21 15:09 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-08-21 15:09 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-08-21 15:09 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-08-21 15:09 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-08-21 15:08 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-08-21 15:08 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-08-21 15:07 - 2014-12-19 03:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-08-21 15:07 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-21 15:07 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-21 15:07 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-08-21 15:07 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-08-21 15:07 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-08-21 15:06 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-08-21 15:06 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-08-21 15:06 - 2015-06-03 22:17 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-08-21 15:06 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-08-21 15:06 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-08-21 15:06 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-08-21 15:06 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-08-21 15:06 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-08-21 15:06 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-08-21 15:06 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-08-21 15:06 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-08-21 15:06 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-08-21 15:06 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-08-21 15:06 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-08-21 15:06 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-08-21 15:06 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2015-08-21 15:06 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2015-08-21 15:06 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2015-08-21 15:06 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2015-08-21 15:06 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-08-21 15:06 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2015-08-21 15:06 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2015-08-21 15:06 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2015-08-21 15:06 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2015-08-21 15:06 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-08-21 15:06 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-08-21 15:06 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-08-21 15:06 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-08-21 15:05 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-08-21 15:05 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-08-21 15:05 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-08-21 15:05 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-08-21 15:05 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-08-21 15:05 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2015-08-21 15:05 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2015-08-21 15:05 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-08-21 15:04 - 2015-08-21 15:04 - 00003816 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1440162271
2015-08-21 15:04 - 2015-08-21 15:04 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 31.lnk
2015-08-21 15:04 - 2014-11-11 03:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-08-21 15:04 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-08-21 15:04 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-08-21 15:04 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-08-21 15:04 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-08-21 15:04 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-08-21 15:04 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-08-21 15:04 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2015-08-21 15:04 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-08-21 15:04 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-08-21 15:03 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-08-21 15:03 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-08-21 15:03 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-08-21 15:03 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-08-21 15:03 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-08-21 15:03 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-08-21 15:03 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-08-21 15:03 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2015-08-21 06:54 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-08-21 06:54 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-08-21 06:54 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-08-21 06:54 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-08-21 06:54 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-08-21 06:44 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-08-21 06:44 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-08-21 06:44 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-08-21 06:44 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2015-08-21 06:43 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-08-21 06:43 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-08-21 06:43 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-08-21 06:43 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-08-21 06:42 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-08-21 06:42 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-08-21 06:42 - 2014-11-26 05:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-08-21 06:42 - 2014-11-26 05:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-08-21 06:42 - 2014-11-11 05:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-08-21 06:42 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-08-21 06:42 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-08-21 06:41 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-08-21 06:41 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-08-21 06:41 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-08-21 06:41 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-08-21 06:41 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-08-21 06:41 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-08-21 06:41 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2015-08-21 06:41 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-08-21 06:40 - 2015-01-17 04:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-08-21 06:40 - 2015-01-17 04:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-08-21 06:40 - 2014-10-30 04:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-08-21 06:40 - 2014-10-30 03:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-08-21 06:40 - 2014-10-03 04:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-08-21 06:40 - 2014-10-03 04:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-08-21 06:40 - 2014-10-03 04:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-08-21 06:40 - 2014-10-03 04:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-08-21 06:40 - 2014-10-03 04:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-08-21 06:40 - 2014-10-03 03:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-08-21 06:40 - 2014-10-03 03:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-08-21 06:40 - 2014-10-03 03:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-08-21 06:40 - 2014-10-03 03:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-08-21 06:40 - 2014-10-03 03:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-08-21 06:40 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-08-21 06:40 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-08-21 06:40 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-08-21 06:40 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-08-21 06:40 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-08-21 06:40 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-08-21 06:40 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-08-21 06:40 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2015-08-21 06:40 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-08-21 06:40 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-08-21 06:39 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-08-21 06:39 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-08-21 06:39 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-08-21 06:39 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-08-21 06:39 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-08-21 06:39 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-08-21 06:39 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-08-21 06:38 - 2014-10-25 03:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-08-21 06:38 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-08-21 06:38 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-08-21 06:38 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-08-21 06:38 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-08-21 06:38 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-08-21 06:38 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-08-21 06:38 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-08-21 06:38 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-08-21 06:38 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-08-21 06:38 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-08-21 06:38 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-08-21 06:38 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-08-21 06:38 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2015-08-21 06:38 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2015-08-21 06:37 - 2014-12-08 05:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-08-21 06:37 - 2014-12-08 04:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-08-21 06:37 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-08-21 06:37 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-08-21 06:37 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-08-21 06:37 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2015-08-21 06:37 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-08-21 06:37 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-08-21 06:37 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-08-21 06:37 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2015-08-21 06:37 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-08-21 06:37 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-08-21 06:37 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-08-21 06:37 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-08-21 06:37 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-08-21 06:37 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-08-21 06:37 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-08-21 06:37 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-08-21 06:36 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-21 06:36 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-21 06:36 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-08-21 06:36 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-08-21 06:36 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-08-21 06:36 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-08-21 06:36 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-08-21 06:36 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-08-21 06:36 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-08-21 06:36 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-08-21 06:33 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-08-21 06:33 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-08-21 06:26 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-08-21 06:26 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-08-21 06:26 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-08-21 06:26 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-08-21 06:26 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-08-21 06:26 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-08-20 21:41 - 2015-09-14 16:34 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-20 21:41 - 2015-09-03 16:10 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-20 21:41 - 2015-09-03 16:10 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-20 21:40 - 2015-09-03 16:10 - 00000000 ____D C:\Users\Doma\AppData\Local\Adobe
2015-08-20 21:40 - 2015-08-20 21:40 - 00000000 ____D C:\Windows\system32\Macromed
2015-08-20 21:37 - 2015-08-20 21:37 - 00187614 _____ C:\Users\Doma\Documents\opera-adblock-1.3.4-2.oex
2015-08-20 21:26 - 2015-08-20 21:26 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-08-20 21:25 - 2015-09-11 05:52 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-08-20 21:25 - 2015-08-20 21:25 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Opera
2015-08-20 21:25 - 2015-08-20 21:25 - 00000000 ____D C:\Users\Doma\AppData\Local\Opera
2015-08-20 21:24 - 2015-08-20 21:24 - 13350672 _____ (Opera Software ASA) C:\Users\Doma\Downloads\Opera_1063_int_Setup.exe
2015-08-20 21:14 - 2015-09-10 15:10 - 00000000 ____D C:\AdwCleaner
2015-08-20 21:08 - 2014-10-31 12:19 - 00000000 ____D C:\Windows\SysWOW64\VLX Player
2015-08-20 21:07 - 2015-09-13 18:45 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-08-20 20:07 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-08-20 20:07 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-08-20 20:07 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-08-20 19:27 - 2015-09-13 21:03 - 00000000 ____D C:\Users\Doma\AppData\Roaming\vlc
2015-08-20 19:27 - 2015-08-20 19:27 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-08-20 19:27 - 2015-08-20 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-20 19:26 - 2015-08-20 19:26 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2015-08-20 19:25 - 2015-08-20 19:26 - 28849904 _____ C:\Users\Doma\Downloads\vlc-2.2.1-win32.exe
2015-08-20 19:06 - 2015-08-20 19:06 - 00000000 _____ C:\autoexec.bat
2015-08-20 19:04 - 2015-08-20 19:04 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Doma\Downloads\SpyHunter-Installer.exe
2015-08-20 08:14 - 2015-09-14 17:00 - 00000384 _____ C:\Windows\Tasks\Acer Registration - Reminder Recall task.job
2015-08-20 08:14 - 2015-09-14 05:06 - 00003450 _____ C:\Windows\System32\Tasks\Acer Registration - Reminder Recall task
2015-08-20 02:56 - 2015-09-14 14:45 - 00631292 _____ C:\Windows\system32\perfh005.dat
2015-08-20 02:56 - 2015-09-14 14:45 - 00121914 _____ C:\Windows\system32\perfc005.dat
2015-08-20 02:56 - 2015-08-20 02:56 - 00292004 _____ C:\Windows\system32\perfi005.dat
2015-08-20 02:56 - 2015-08-20 02:56 - 00036232 _____ C:\Windows\system32\perfd005.dat
2015-08-20 02:56 - 2015-08-20 02:56 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-08-20 02:56 - 2015-08-20 02:56 - 00000000 ____D C:\Windows\SysWOW64\cs
2015-08-20 02:56 - 2015-08-20 02:56 - 00000000 ____D C:\Windows\system32\cs
2015-08-20 02:50 - 2015-08-20 02:50 - 00000000 ____D C:\Windows\NAPP_Dism_Log
2015-08-19 19:51 - 2015-08-20 18:39 - 00000000 ___RD C:\Users\Doma\Desktop\pisnicky
2015-08-19 19:28 - 2015-08-19 19:31 - 00000000 ___RD C:\Users\Doma\Desktop\fotky pc
2015-08-19 19:02 - 2015-09-13 18:45 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Seznam.cz
2015-08-19 19:02 - 2015-08-19 19:02 - 00002637 _____ C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-08-19 19:00 - 2015-09-14 05:07 - 00000000 ____D C:\Users\Doma\AppData\Roaming\uTorrent
2015-08-19 18:41 - 2015-08-19 18:41 - 00003148 _____ C:\Windows\System32\Tasks\{2C91F790-926E-4023-BD23-2B321A830185}
2015-08-19 18:38 - 2015-08-21 17:42 - 00001397 _____ C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-19 18:37 - 2015-08-21 15:04 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Opera Software
2015-08-19 18:37 - 2015-08-21 15:04 - 00000000 ____D C:\Users\Doma\AppData\Local\Opera Software
2015-08-19 18:36 - 2015-08-21 15:13 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-19 18:36 - 2015-08-19 18:36 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2015-08-19 18:35 - 2015-09-13 10:59 - 00000000 ____D C:\KMPlayer
2015-08-19 18:19 - 2015-08-19 18:19 - 00000000 ____D C:\Users\Doma\AppData\Roaming\AVAST Software
2015-08-19 18:18 - 2015-09-13 18:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-19 18:18 - 2015-08-19 18:18 - 01048344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-08-19 18:18 - 2015-08-19 18:18 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00150672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-08-19 18:18 - 2015-08-19 18:18 - 00000000 ____D C:\Windows\system32\vbox
2015-08-19 18:18 - 2015-08-19 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-19 18:18 - 2015-08-19 18:17 - 00115152 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2015-08-19 18:17 - 2015-08-19 18:17 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-08-19 18:15 - 2015-08-19 18:15 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-19 18:15 - 2015-08-19 18:15 - 00000000 ____D C:\Program Files\AVAST Software
2015-08-19 18:11 - 2015-08-19 18:17 - 00000000 ____D C:\Users\Doma\AppData\Local\Mozilla
2015-08-19 18:11 - 2015-08-19 18:11 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Mozilla
2015-08-19 18:08 - 2015-08-21 06:11 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Adobe
2015-08-19 18:07 - 2015-08-19 18:08 - 00000032 _____ C:\ProgramData\PS.log
2015-08-19 18:07 - 2015-08-19 18:07 - 00000000 ____D C:\Users\Doma\AppData\Local\EgisTec IPS
2015-08-19 18:03 - 2015-08-19 18:07 - 00000000 ____D C:\Users\Doma\AppData\Local\Cyberlink
2015-08-19 18:03 - 2015-08-19 18:03 - 00000000 ____D C:\Users\Doma\Documents\CyberLink
2015-08-19 18:00 - 2015-08-19 18:00 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Macromedia
2015-08-19 17:58 - 2015-08-22 13:26 - 00060424 _____ C:\Users\Doma\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-19 17:58 - 2015-08-19 17:58 - 00001955 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fooz Kids.lnk
2015-08-19 17:58 - 2015-08-19 17:58 - 00000000 ____D C:\Users\Doma\AppData\Roaming\CyberLink
2015-08-19 17:58 - 2015-08-19 17:58 - 00000000 ____D C:\Users\Doma\AppData\Local\Acer
2015-08-19 17:57 - 2015-08-20 19:06 - 00000000 ____D C:\Users\Doma
2015-08-19 17:57 - 2015-08-19 17:57 - 00000020 ___SH C:\Users\Doma\ntuser.ini
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Šablony
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Soubory cookie
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Poslední
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Okolní tiskárny
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Okolní síť
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Nabídka Start
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Dokumenty
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\AppData\Local\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Šablony
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Poslední
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Šablony
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Plocha
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Oblíbené položky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Dokumenty
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 ____D C:\Users\Doma\AppData\Local\VirtualStore
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 ____D C:\Recovery
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Family Protection
2015-08-19 17:57 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 17:57 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-19 17:30 - 2015-08-19 17:30 - 00000000 ____D C:\ProgramData\CLSK
2015-08-19 17:28 - 2015-08-19 18:09 - 00000000 ____D C:\ProgramData\CyberLink
2015-08-19 17:28 - 2015-08-19 17:31 - 00000000 ____D C:\ProgramData\Temp
2015-08-19 17:28 - 2015-08-19 17:30 - 00015245 _____ C:\ProgramData\ArcadeDeluxe5.log
2015-08-19 17:25 - 2015-08-19 17:25 - 00000000 ____D C:\ProgramData\NTI Launcher
2015-08-19 17:25 - 2015-08-19 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 9
2015-08-19 17:24 - 2015-08-19 17:24 - 00002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
2015-08-19 17:24 - 2015-08-19 17:24 - 00000000 ____D C:\ProgramData\FLEXnet
2015-08-19 17:24 - 2015-08-19 17:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-08-19 17:18 - 2011-02-15 09:35 - 00039464 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2015-08-19 17:18 - 2011-01-24 10:29 - 00107560 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2015-08-19 17:18 - 2011-01-10 09:15 - 00349736 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2015-08-19 17:18 - 2010-09-20 17:20 - 00022056 _____ (Broadcom Corporation.) C:\Windows\system32\btwcoins.dll
2015-08-19 17:18 - 2010-09-14 08:59 - 00138280 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2015-08-19 17:18 - 2010-09-14 08:59 - 00021416 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2015-08-19 17:17 - 2015-08-19 17:17 - 00000000 ____D C:\Program Files\WIDCOMM
2015-08-19 17:15 - 2015-08-19 17:35 - 00000000 ____D C:\Dolby PCEE4
2015-08-19 17:15 - 2015-08-19 17:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-08-19 17:14 - 2015-08-19 17:15 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-19 17:14 - 2015-08-19 17:14 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-08-19 17:14 - 2015-08-19 17:14 - 00000000 ____D C:\Program Files\Realtek
2015-08-19 17:14 - 2015-08-19 17:14 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-08-19 17:14 - 2011-03-29 13:24 - 02819560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-08-19 17:14 - 2011-03-28 10:39 - 02931816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-08-19 17:14 - 2011-03-25 09:07 - 00847872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-08-19 17:14 - 2011-03-24 10:03 - 00084584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2015-08-19 17:14 - 2011-03-15 09:32 - 00648808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-08-19 17:14 - 2011-03-10 05:32 - 02369640 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-08-19 17:14 - 2011-03-02 11:25 - 01242216 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-08-19 17:14 - 2011-02-25 13:37 - 01284712 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-08-19 17:14 - 2011-02-22 09:52 - 02075712 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-08-19 17:14 - 2010-12-01 14:11 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX0.dat
2015-08-19 17:14 - 2010-12-01 05:03 - 00003206 _____ C:\Windows\system32\Drivers\RtPCEE4.DAT
2015-08-19 17:14 - 2010-11-29 12:47 - 02578576 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2015-08-19 17:14 - 2010-11-29 12:47 - 01868944 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2015-08-19 17:14 - 2010-11-18 05:49 - 00121744 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-08-19 17:14 - 2010-11-03 12:31 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-08-19 17:14 - 2010-11-03 12:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-08-19 17:14 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 01327208 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 01179752 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 01111656 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00504936 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00491112 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00475752 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00317032 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00269928 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00266856 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00126056 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00125544 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00125032 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-08-19 17:14 - 2010-10-03 07:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-08-19 17:14 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-19 17:14 - 2010-09-23 11:21 - 00039672 _____ C:\Windows\system32\Drivers\RtPCEE3.DAT
2015-08-19 17:14 - 2010-07-22 10:48 - 00220496 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK64.dll
2015-08-19 17:14 - 2010-07-22 10:48 - 00081232 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM64.dll
2015-08-19 17:14 - 2010-07-22 10:48 - 00078160 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO64.dll
2015-08-19 17:14 - 2010-07-22 10:48 - 00074064 ____N (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-08-19 17:14 - 2010-07-22 10:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-08-19 17:14 - 2010-05-06 11:34 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-08-19 17:14 - 2010-03-22 07:21 - 00247560 _____ C:\Windows\system32\Drivers\RTConvEQ.dat
2015-08-19 17:14 - 2010-03-22 07:21 - 00001448 _____ C:\Windows\system32\Drivers\RtHdatEx.dat
2015-08-19 17:14 - 2010-03-15 10:59 - 00000024 _____ C:\Windows\system32\Drivers\rtkhdaud.dat
2015-08-19 17:14 - 2010-02-11 09:45 - 00000176 _____ C:\Windows\system32\Drivers\RTHDAEQ1.dat
2015-08-19 17:14 - 2010-01-26 15:52 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX3.dat
2015-08-19 17:14 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-08-19 17:14 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-08-19 17:14 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-08-19 17:14 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-08-19 17:14 - 2009-11-18 12:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2015-08-19 17:14 - 2009-11-17 12:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-08-19 17:14 - 2008-08-21 07:43 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX2.dat
2015-08-19 17:14 - 2005-06-26 23:29 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX1.dat
2015-08-19 17:13 - 2015-08-19 17:13 - 00000000 ____D C:\Program Files\Elantech
2015-08-19 17:10 - 2015-08-19 17:10 - 00000000 ____D C:\Program Files\Intel
2015-08-19 17:09 - 2015-08-19 17:09 - 00000184 _____ C:\Windows\LMv4.UNI
2015-08-19 17:09 - 2015-08-19 17:09 - 00000000 ____D C:\Program Files (x86)\Launch Manager
2015-08-19 17:08 - 2015-08-19 17:08 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_b57xdbd_01009.Wdf
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\ProgramData\Intel
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\ProgramData\EgisTec
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\book
2015-08-19 17:06 - 2015-08-19 17:06 - 00015360 _____ C:\Windows\system32\results.xml
2015-08-19 17:03 - 2015-08-19 17:03 - 00000000 ____D C:\Program Files\Common Files\Intel
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-14 14:57 - 2009-07-14 06:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-14 14:57 - 2009-07-14 06:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-14 14:45 - 2009-07-14 07:13 - 01470062 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-14 14:42 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-13 19:04 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-09-11 21:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-09-10 19:28 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Speech
2015-09-10 08:06 - 2009-07-14 06:45 - 00271712 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-10 08:04 - 2010-11-21 09:17 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 08:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-07 17:07 - 2011-08-12 09:31 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-09-03 16:10 - 2011-08-12 09:32 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-30 11:30 - 2015-07-10 18:25 - 00000000 ____D C:\$Windows.~BT
2015-08-30 11:14 - 2007-07-12 03:49 - 00000000 ____D C:\Windows\Panther
2015-08-23 17:59 - 2011-08-12 09:31 - 00000000 ____D C:\ProgramData\Adobe
2015-08-23 13:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-21 17:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-08-21 17:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2015-08-21 17:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-08-21 17:30 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-21 17:30 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-21 17:30 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\tracing
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\winrm
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\WCN
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\slmgr
2015-08-20 02:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
2015-08-20 02:56 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-08-20 02:56 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\com
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME
2015-08-20 02:42 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2015-08-20 02:42 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-08-19 19:16 - 2011-08-12 09:13 - 00000000 ____D C:\ProgramData\McAfee
2015-08-19 18:13 - 2011-08-12 09:12 - 00000000 ____D C:\ProgramData\Skype
2015-08-19 18:12 - 2011-08-12 08:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-19 18:11 - 2011-08-12 09:14 - 00000000 ____D C:\Program Files (x86)\Acer
2015-08-19 18:06 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore
2015-08-19 18:00 - 2011-08-12 09:30 - 00000000 ____D C:\ProgramData\oem
2015-08-19 17:59 - 2011-08-12 09:33 - 00000000 ____D C:\OEM
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT
2015-08-19 17:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2015-08-19 17:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2015-08-19 17:31 - 2011-08-12 09:14 - 00000000 ____D C:\Program Files\Acer
2015-08-19 17:24 - 2011-08-12 09:32 - 00000000 ____D C:\Program Files (x86)\NTI
2015-08-19 17:19 - 2009-07-14 05:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 17:16 - 2011-08-12 09:28 - 00000000 ____D C:\ProgramData\EgisTec IPS
2015-08-19 17:10 - 2011-08-12 08:58 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-19 17:08 - 2011-08-12 09:36 - 00000000 ____D C:\Windows\Downloaded Installations
2015-08-19 17:08 - 2011-08-12 09:02 - 00000000 ____D C:\Program Files\Broadcom
2015-08-19 17:07 - 2011-02-12 07:23 - 00000000 ____D C:\Windows\DeployWinRE2
2015-08-19 17:03 - 2011-08-12 08:58 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-19 17:03 - 2011-08-12 08:58 - 00000000 ____D C:\Intel
==================== Files in the root of some directories =======
2015-08-19 17:28 - 2015-08-19 17:30 - 0015245 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-08-19 18:07 - 2015-08-19 18:08 - 0000032 _____ () C:\ProgramData\PS.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-09-11 10:06
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Acer) (Fixed) (Total:913.41 GB) (Free:850.88 GB) NTFS
Available physical RAM: 2557.86 MB
Total physical RAM: 3947.86 MB
Percentage of memory in use: 35%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 721CD0AD)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=913.4 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => C:\Program Files (x86)\Acer\Registration\GREG.exe
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Doma\Desktop" je 15991 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
2015-08-21 15:17 - 2015-05-25 20:18 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-08-21 15:17 - 2015-05-25 20:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-08-21 15:17 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-08-21 15:17 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-08-21 15:17 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-08-21 15:17 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2015-08-21 15:17 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2015-08-21 15:16 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-08-21 15:16 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-08-21 15:16 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2015-08-21 15:16 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2015-08-21 15:16 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-08-21 15:16 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-08-21 15:15 - 2015-02-03 05:31 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-08-21 15:15 - 2015-02-03 05:30 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-08-21 15:15 - 2015-02-03 05:30 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-08-21 15:15 - 2015-02-03 05:29 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-08-21 15:15 - 2015-02-03 05:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-08-21 15:15 - 2015-02-03 05:19 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-08-21 15:15 - 2015-02-03 05:12 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-08-21 15:15 - 2015-02-03 05:12 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-08-21 15:15 - 2015-02-03 05:11 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-08-21 15:15 - 2015-02-03 05:11 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-08-21 15:15 - 2015-02-03 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-08-21 15:15 - 2014-11-01 00:24 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-08-21 15:15 - 2014-06-28 02:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-08-21 15:15 - 2014-06-28 02:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-08-21 15:14 - 2014-12-19 05:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2015-08-21 15:14 - 2014-06-19 00:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-08-21 15:12 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-08-21 15:12 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-08-21 15:12 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-08-21 15:12 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-08-21 15:12 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-08-21 15:12 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-08-21 15:12 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-08-21 15:11 - 2014-10-14 04:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-08-21 15:10 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-21 15:09 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-21 15:09 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-21 15:09 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-21 15:09 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-21 15:09 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-21 15:09 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-08-21 15:09 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-08-21 15:09 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-08-21 15:09 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-08-21 15:09 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-08-21 15:09 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-08-21 15:09 - 2015-04-24 20:17 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-08-21 15:09 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-08-21 15:09 - 2015-02-03 05:31 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-08-21 15:09 - 2015-02-03 05:12 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-08-21 15:09 - 2015-01-29 05:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-08-21 15:09 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-08-21 15:09 - 2014-12-06 06:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-08-21 15:09 - 2014-12-06 05:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-08-21 15:09 - 2014-12-06 05:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-08-21 15:09 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-08-21 15:09 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-08-21 15:09 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-08-21 15:09 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-08-21 15:09 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-08-21 15:09 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-08-21 15:09 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2015-08-21 15:09 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-08-21 15:09 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-08-21 15:09 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-08-21 15:09 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-08-21 15:09 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-08-21 15:09 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-08-21 15:09 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-08-21 15:09 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-08-21 15:09 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-08-21 15:09 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-08-21 15:08 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-08-21 15:08 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-08-21 15:07 - 2014-12-19 03:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-08-21 15:07 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-08-21 15:07 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-08-21 15:07 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-08-21 15:07 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-08-21 15:07 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-08-21 15:06 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-08-21 15:06 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-08-21 15:06 - 2015-06-03 22:17 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-08-21 15:06 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-08-21 15:06 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-08-21 15:06 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-08-21 15:06 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-08-21 15:06 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-08-21 15:06 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-08-21 15:06 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-08-21 15:06 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-08-21 15:06 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-08-21 15:06 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-08-21 15:06 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-08-21 15:06 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-08-21 15:06 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2015-08-21 15:06 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2015-08-21 15:06 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2015-08-21 15:06 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2015-08-21 15:06 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-08-21 15:06 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2015-08-21 15:06 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2015-08-21 15:06 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2015-08-21 15:06 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2015-08-21 15:06 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-08-21 15:06 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-08-21 15:06 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-08-21 15:06 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2015-08-21 15:05 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-08-21 15:05 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-08-21 15:05 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-08-21 15:05 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-08-21 15:05 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-08-21 15:05 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2015-08-21 15:05 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2015-08-21 15:05 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-08-21 15:04 - 2015-08-21 15:04 - 00003816 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1440162271
2015-08-21 15:04 - 2015-08-21 15:04 - 00001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 31.lnk
2015-08-21 15:04 - 2014-11-11 03:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-08-21 15:04 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-08-21 15:04 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-08-21 15:04 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-08-21 15:04 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-08-21 15:04 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-08-21 15:04 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-08-21 15:04 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-08-21 15:04 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-08-21 15:04 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2015-08-21 15:04 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2015-08-21 15:04 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-08-21 15:04 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-08-21 15:03 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-08-21 15:03 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-08-21 15:03 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-08-21 15:03 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-08-21 15:03 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-08-21 15:03 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-08-21 15:03 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-08-21 15:03 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2015-08-21 06:54 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-08-21 06:54 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-08-21 06:54 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-08-21 06:54 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-08-21 06:54 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-08-21 06:44 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2015-08-21 06:44 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2015-08-21 06:44 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2015-08-21 06:44 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2015-08-21 06:43 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-08-21 06:43 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-08-21 06:43 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-08-21 06:43 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-08-21 06:42 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-08-21 06:42 - 2015-02-18 09:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-08-21 06:42 - 2014-11-26 05:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-08-21 06:42 - 2014-11-26 05:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-08-21 06:42 - 2014-11-11 05:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-08-21 06:42 - 2014-11-11 04:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-08-21 06:42 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-08-21 06:41 - 2015-04-11 05:19 - 00069888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-08-21 06:41 - 2015-02-25 05:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-08-21 06:41 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-08-21 06:41 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-08-21 06:41 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-08-21 06:41 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-08-21 06:41 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2015-08-21 06:41 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-08-21 06:40 - 2015-01-17 04:48 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-08-21 06:40 - 2015-01-17 04:30 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-08-21 06:40 - 2014-10-30 04:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2015-08-21 06:40 - 2014-10-30 03:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2015-08-21 06:40 - 2014-10-03 04:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-08-21 06:40 - 2014-10-03 04:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2015-08-21 06:40 - 2014-10-03 04:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-08-21 06:40 - 2014-10-03 04:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2015-08-21 06:40 - 2014-10-03 04:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2015-08-21 06:40 - 2014-10-03 03:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-08-21 06:40 - 2014-10-03 03:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2015-08-21 06:40 - 2014-10-03 03:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-08-21 06:40 - 2014-10-03 03:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2015-08-21 06:40 - 2014-10-03 03:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2015-08-21 06:40 - 2014-09-04 07:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-08-21 06:40 - 2014-09-04 07:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-08-21 06:40 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-08-21 06:40 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-08-21 06:40 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-08-21 06:40 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-08-21 06:40 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-08-21 06:40 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2015-08-21 06:40 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2015-08-21 06:40 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2015-08-21 06:39 - 2015-03-04 06:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-08-21 06:39 - 2015-03-04 06:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-08-21 06:39 - 2015-03-04 06:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-08-21 06:39 - 2015-03-04 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-08-21 06:39 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-08-21 06:39 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-08-21 06:39 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-08-21 06:38 - 2014-10-25 03:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-08-21 06:38 - 2014-10-25 03:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-08-21 06:38 - 2014-07-17 04:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-08-21 06:38 - 2014-07-17 04:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-08-21 06:38 - 2014-07-17 04:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-08-21 06:38 - 2014-07-17 04:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2015-08-21 06:38 - 2014-07-17 03:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-08-21 06:38 - 2014-07-17 03:39 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-08-21 06:38 - 2014-07-17 03:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-08-21 06:38 - 2014-07-17 03:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2015-08-21 06:38 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2015-08-21 06:38 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2015-08-21 06:38 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2015-08-21 06:38 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2015-08-21 06:38 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2015-08-21 06:37 - 2014-12-08 05:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-08-21 06:37 - 2014-12-08 04:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-08-21 06:37 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-08-21 06:37 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-08-21 06:37 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-08-21 06:37 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2015-08-21 06:37 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-08-21 06:37 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2015-08-21 06:37 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-08-21 06:37 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2015-08-21 06:37 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-08-21 06:37 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-08-21 06:37 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-08-21 06:37 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-08-21 06:37 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-08-21 06:37 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-08-21 06:37 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-08-21 06:37 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-08-21 06:36 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-21 06:36 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-21 06:36 - 2015-03-04 06:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-08-21 06:36 - 2015-03-04 06:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-08-21 06:36 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-08-21 06:36 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-08-21 06:36 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-08-21 06:36 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2015-08-21 06:36 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-08-21 06:36 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-08-21 06:33 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-08-21 06:33 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-08-21 06:26 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-08-21 06:26 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-08-21 06:26 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-08-21 06:26 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-08-21 06:26 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-08-21 06:26 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-08-20 21:41 - 2015-09-14 16:34 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-20 21:41 - 2015-09-03 16:10 - 00778440 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-08-20 21:41 - 2015-09-03 16:10 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-08-20 21:40 - 2015-09-03 16:10 - 00000000 ____D C:\Users\Doma\AppData\Local\Adobe
2015-08-20 21:40 - 2015-08-20 21:40 - 00000000 ____D C:\Windows\system32\Macromed
2015-08-20 21:37 - 2015-08-20 21:37 - 00187614 _____ C:\Users\Doma\Documents\opera-adblock-1.3.4-2.oex
2015-08-20 21:26 - 2015-08-20 21:26 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2015-08-20 21:25 - 2015-09-11 05:52 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2015-08-20 21:25 - 2015-08-20 21:25 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Opera
2015-08-20 21:25 - 2015-08-20 21:25 - 00000000 ____D C:\Users\Doma\AppData\Local\Opera
2015-08-20 21:24 - 2015-08-20 21:24 - 13350672 _____ (Opera Software ASA) C:\Users\Doma\Downloads\Opera_1063_int_Setup.exe
2015-08-20 21:14 - 2015-09-10 15:10 - 00000000 ____D C:\AdwCleaner
2015-08-20 21:08 - 2014-10-31 12:19 - 00000000 ____D C:\Windows\SysWOW64\VLX Player
2015-08-20 21:07 - 2015-09-13 18:45 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-08-20 20:07 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-08-20 20:07 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-08-20 20:07 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2015-08-20 19:27 - 2015-09-13 21:03 - 00000000 ____D C:\Users\Doma\AppData\Roaming\vlc
2015-08-20 19:27 - 2015-08-20 19:27 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-08-20 19:27 - 2015-08-20 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-08-20 19:26 - 2015-08-20 19:26 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2015-08-20 19:25 - 2015-08-20 19:26 - 28849904 _____ C:\Users\Doma\Downloads\vlc-2.2.1-win32.exe
2015-08-20 19:06 - 2015-08-20 19:06 - 00000000 _____ C:\autoexec.bat
2015-08-20 19:04 - 2015-08-20 19:04 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Doma\Downloads\SpyHunter-Installer.exe
2015-08-20 08:14 - 2015-09-14 17:00 - 00000384 _____ C:\Windows\Tasks\Acer Registration - Reminder Recall task.job
2015-08-20 08:14 - 2015-09-14 05:06 - 00003450 _____ C:\Windows\System32\Tasks\Acer Registration - Reminder Recall task
2015-08-20 02:56 - 2015-09-14 14:45 - 00631292 _____ C:\Windows\system32\perfh005.dat
2015-08-20 02:56 - 2015-09-14 14:45 - 00121914 _____ C:\Windows\system32\perfc005.dat
2015-08-20 02:56 - 2015-08-20 02:56 - 00292004 _____ C:\Windows\system32\perfi005.dat
2015-08-20 02:56 - 2015-08-20 02:56 - 00036232 _____ C:\Windows\system32\perfd005.dat
2015-08-20 02:56 - 2015-08-20 02:56 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-08-20 02:56 - 2015-08-20 02:56 - 00000000 ____D C:\Windows\SysWOW64\cs
2015-08-20 02:56 - 2015-08-20 02:56 - 00000000 ____D C:\Windows\system32\cs
2015-08-20 02:50 - 2015-08-20 02:50 - 00000000 ____D C:\Windows\NAPP_Dism_Log
2015-08-19 19:51 - 2015-08-20 18:39 - 00000000 ___RD C:\Users\Doma\Desktop\pisnicky
2015-08-19 19:28 - 2015-08-19 19:31 - 00000000 ___RD C:\Users\Doma\Desktop\fotky pc
2015-08-19 19:02 - 2015-09-13 18:45 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Seznam.cz
2015-08-19 19:02 - 2015-08-19 19:02 - 00002637 _____ C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-08-19 19:00 - 2015-09-14 05:07 - 00000000 ____D C:\Users\Doma\AppData\Roaming\uTorrent
2015-08-19 18:41 - 2015-08-19 18:41 - 00003148 _____ C:\Windows\System32\Tasks\{2C91F790-926E-4023-BD23-2B321A830185}
2015-08-19 18:38 - 2015-08-21 17:42 - 00001397 _____ C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-19 18:37 - 2015-08-21 15:04 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Opera Software
2015-08-19 18:37 - 2015-08-21 15:04 - 00000000 ____D C:\Users\Doma\AppData\Local\Opera Software
2015-08-19 18:36 - 2015-08-21 15:13 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-19 18:36 - 2015-08-19 18:36 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2015-08-19 18:35 - 2015-09-13 10:59 - 00000000 ____D C:\KMPlayer
2015-08-19 18:19 - 2015-08-19 18:19 - 00000000 ____D C:\Users\Doma\AppData\Roaming\AVAST Software
2015-08-19 18:18 - 2015-09-13 18:44 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-08-19 18:18 - 2015-08-19 18:18 - 01048344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-08-19 18:18 - 2015-08-19 18:18 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00150672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-08-19 18:18 - 2015-08-19 18:18 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-08-19 18:18 - 2015-08-19 18:18 - 00000000 ____D C:\Windows\system32\vbox
2015-08-19 18:18 - 2015-08-19 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-19 18:18 - 2015-08-19 18:17 - 00115152 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2015-08-19 18:17 - 2015-08-19 18:17 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-08-19 18:15 - 2015-08-19 18:15 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-19 18:15 - 2015-08-19 18:15 - 00000000 ____D C:\Program Files\AVAST Software
2015-08-19 18:11 - 2015-08-19 18:17 - 00000000 ____D C:\Users\Doma\AppData\Local\Mozilla
2015-08-19 18:11 - 2015-08-19 18:11 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Mozilla
2015-08-19 18:08 - 2015-08-21 06:11 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Adobe
2015-08-19 18:07 - 2015-08-19 18:08 - 00000032 _____ C:\ProgramData\PS.log
2015-08-19 18:07 - 2015-08-19 18:07 - 00000000 ____D C:\Users\Doma\AppData\Local\EgisTec IPS
2015-08-19 18:03 - 2015-08-19 18:07 - 00000000 ____D C:\Users\Doma\AppData\Local\Cyberlink
2015-08-19 18:03 - 2015-08-19 18:03 - 00000000 ____D C:\Users\Doma\Documents\CyberLink
2015-08-19 18:00 - 2015-08-19 18:00 - 00000000 ____D C:\Users\Doma\AppData\Roaming\Macromedia
2015-08-19 17:58 - 2015-08-22 13:26 - 00060424 _____ C:\Users\Doma\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-19 17:58 - 2015-08-19 17:58 - 00001955 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fooz Kids.lnk
2015-08-19 17:58 - 2015-08-19 17:58 - 00000000 ____D C:\Users\Doma\AppData\Roaming\CyberLink
2015-08-19 17:58 - 2015-08-19 17:58 - 00000000 ____D C:\Users\Doma\AppData\Local\Acer
2015-08-19 17:57 - 2015-08-20 19:06 - 00000000 ____D C:\Users\Doma
2015-08-19 17:57 - 2015-08-19 17:57 - 00000020 ___SH C:\Users\Doma\ntuser.ini
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Šablony
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Soubory cookie
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Poslední
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Okolní tiskárny
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Okolní síť
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Nabídka Start
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Dokumenty
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Doma\AppData\Local\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Šablony
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Poslední
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Okolní síť
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Dokumenty
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Šablony
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Plocha
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Oblíbené položky
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Dokumenty
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 _SHDL C:\ProgramData\Data aplikací
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 ____D C:\Users\Doma\AppData\Local\VirtualStore
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 ____D C:\Recovery
2015-08-19 17:57 - 2015-08-19 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Family Protection
2015-08-19 17:57 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 17:57 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-08-19 17:30 - 2015-08-19 17:30 - 00000000 ____D C:\ProgramData\CLSK
2015-08-19 17:28 - 2015-08-19 18:09 - 00000000 ____D C:\ProgramData\CyberLink
2015-08-19 17:28 - 2015-08-19 17:31 - 00000000 ____D C:\ProgramData\Temp
2015-08-19 17:28 - 2015-08-19 17:30 - 00015245 _____ C:\ProgramData\ArcadeDeluxe5.log
2015-08-19 17:25 - 2015-08-19 17:25 - 00000000 ____D C:\ProgramData\NTI Launcher
2015-08-19 17:25 - 2015-08-19 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 9
2015-08-19 17:24 - 2015-08-19 17:24 - 00002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
2015-08-19 17:24 - 2015-08-19 17:24 - 00000000 ____D C:\ProgramData\FLEXnet
2015-08-19 17:24 - 2015-08-19 17:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-08-19 17:18 - 2011-02-15 09:35 - 00039464 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2015-08-19 17:18 - 2011-01-24 10:29 - 00107560 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2015-08-19 17:18 - 2011-01-10 09:15 - 00349736 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys
2015-08-19 17:18 - 2010-09-20 17:20 - 00022056 _____ (Broadcom Corporation.) C:\Windows\system32\btwcoins.dll
2015-08-19 17:18 - 2010-09-14 08:59 - 00138280 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2015-08-19 17:18 - 2010-09-14 08:59 - 00021416 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2015-08-19 17:17 - 2015-08-19 17:17 - 00000000 ____D C:\Program Files\WIDCOMM
2015-08-19 17:15 - 2015-08-19 17:35 - 00000000 ____D C:\Dolby PCEE4
2015-08-19 17:15 - 2015-08-19 17:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-08-19 17:14 - 2015-08-19 17:15 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-08-19 17:14 - 2015-08-19 17:14 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-08-19 17:14 - 2015-08-19 17:14 - 00000000 ____D C:\Program Files\Realtek
2015-08-19 17:14 - 2015-08-19 17:14 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-08-19 17:14 - 2011-03-29 13:24 - 02819560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-08-19 17:14 - 2011-03-28 10:39 - 02931816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-08-19 17:14 - 2011-03-25 09:07 - 00847872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-08-19 17:14 - 2011-03-24 10:03 - 00084584 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2015-08-19 17:14 - 2011-03-15 09:32 - 00648808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-08-19 17:14 - 2011-03-10 05:32 - 02369640 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-08-19 17:14 - 2011-03-07 07:25 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-08-19 17:14 - 2011-03-02 11:25 - 01242216 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-08-19 17:14 - 2011-02-25 13:37 - 01284712 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-08-19 17:14 - 2011-02-22 09:52 - 02075712 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-08-19 17:14 - 2010-12-01 14:11 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX0.dat
2015-08-19 17:14 - 2010-12-01 05:03 - 00003206 _____ C:\Windows\system32\Drivers\RtPCEE4.DAT
2015-08-19 17:14 - 2010-11-29 12:47 - 02578576 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2015-08-19 17:14 - 2010-11-29 12:47 - 01868944 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2015-08-19 17:14 - 2010-11-18 05:49 - 00121744 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-08-19 17:14 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-08-19 17:14 - 2010-11-03 12:31 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-08-19 17:14 - 2010-11-03 12:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-08-19 17:14 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 01327208 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 01179752 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 01111656 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00504936 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00491112 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00475752 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00317032 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00269928 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00266856 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00126056 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00125544 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-08-19 17:14 - 2010-11-03 12:29 - 00125032 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-08-19 17:14 - 2010-10-03 07:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-08-19 17:14 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-08-19 17:14 - 2010-09-23 11:21 - 00039672 _____ C:\Windows\system32\Drivers\RtPCEE3.DAT
2015-08-19 17:14 - 2010-07-22 10:48 - 00220496 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK64.dll
2015-08-19 17:14 - 2010-07-22 10:48 - 00081232 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM64.dll
2015-08-19 17:14 - 2010-07-22 10:48 - 00078160 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO64.dll
2015-08-19 17:14 - 2010-07-22 10:48 - 00074064 ____N (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-08-19 17:14 - 2010-07-22 10:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-08-19 17:14 - 2010-05-06 11:34 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-08-19 17:14 - 2010-03-22 07:21 - 00247560 _____ C:\Windows\system32\Drivers\RTConvEQ.dat
2015-08-19 17:14 - 2010-03-22 07:21 - 00001448 _____ C:\Windows\system32\Drivers\RtHdatEx.dat
2015-08-19 17:14 - 2010-03-15 10:59 - 00000024 _____ C:\Windows\system32\Drivers\rtkhdaud.dat
2015-08-19 17:14 - 2010-02-11 09:45 - 00000176 _____ C:\Windows\system32\Drivers\RTHDAEQ1.dat
2015-08-19 17:14 - 2010-01-26 15:52 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX3.dat
2015-08-19 17:14 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-08-19 17:14 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-08-19 17:14 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-08-19 17:14 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-08-19 17:14 - 2009-11-18 12:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2015-08-19 17:14 - 2009-11-17 12:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-08-19 17:14 - 2008-08-21 07:43 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX2.dat
2015-08-19 17:14 - 2005-06-26 23:29 - 00000520 _____ C:\Windows\system32\Drivers\RTEQEX1.dat
2015-08-19 17:13 - 2015-08-19 17:13 - 00000000 ____D C:\Program Files\Elantech
2015-08-19 17:10 - 2015-08-19 17:10 - 00000000 ____D C:\Program Files\Intel
2015-08-19 17:09 - 2015-08-19 17:09 - 00000184 _____ C:\Windows\LMv4.UNI
2015-08-19 17:09 - 2015-08-19 17:09 - 00000000 ____D C:\Program Files (x86)\Launch Manager
2015-08-19 17:08 - 2015-08-19 17:08 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_b57xdbd_01009.Wdf
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\ProgramData\Intel
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\ProgramData\EgisTec
2015-08-19 17:07 - 2015-08-19 17:07 - 00000000 ____D C:\book
2015-08-19 17:06 - 2015-08-19 17:06 - 00015360 _____ C:\Windows\system32\results.xml
2015-08-19 17:03 - 2015-08-19 17:03 - 00000000 ____D C:\Program Files\Common Files\Intel
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-14 14:57 - 2009-07-14 06:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-14 14:57 - 2009-07-14 06:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-14 14:45 - 2009-07-14 07:13 - 01470062 _____ C:\Windows\system32\PerfStringBackup.INI
2015-09-14 14:42 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-13 19:04 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-09-11 21:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-09-10 19:28 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Speech
2015-09-10 08:06 - 2009-07-14 06:45 - 00271712 _____ C:\Windows\system32\FNTCACHE.DAT
2015-09-10 08:04 - 2010-11-21 09:17 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 08:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-09-07 17:07 - 2011-08-12 09:31 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-09-03 16:10 - 2011-08-12 09:32 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-30 11:30 - 2015-07-10 18:25 - 00000000 ____D C:\$Windows.~BT
2015-08-30 11:14 - 2007-07-12 03:49 - 00000000 ____D C:\Windows\Panther
2015-08-23 17:59 - 2011-08-12 09:31 - 00000000 ____D C:\ProgramData\Adobe
2015-08-23 13:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2015-08-21 17:32 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-21 17:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-08-21 17:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2015-08-21 17:31 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-08-21 17:30 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-21 17:30 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-21 17:30 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\tracing
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\winrm
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\WCN
2015-08-20 02:59 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\slmgr
2015-08-20 02:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
2015-08-20 02:56 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-08-20 02:56 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2015-08-20 02:56 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\com
2015-08-20 02:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME
2015-08-20 02:42 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2015-08-20 02:42 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-08-19 19:16 - 2011-08-12 09:13 - 00000000 ____D C:\ProgramData\McAfee
2015-08-19 18:13 - 2011-08-12 09:12 - 00000000 ____D C:\ProgramData\Skype
2015-08-19 18:12 - 2011-08-12 08:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-19 18:11 - 2011-08-12 09:14 - 00000000 ____D C:\Program Files (x86)\Acer
2015-08-19 18:06 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore
2015-08-19 18:00 - 2011-08-12 09:30 - 00000000 ____D C:\ProgramData\oem
2015-08-19 17:59 - 2011-08-12 09:33 - 00000000 ____D C:\OEM
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery
2015-08-19 17:57 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT
2015-08-19 17:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2015-08-19 17:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help
2015-08-19 17:31 - 2011-08-12 09:14 - 00000000 ____D C:\Program Files\Acer
2015-08-19 17:24 - 2011-08-12 09:32 - 00000000 ____D C:\Program Files (x86)\NTI
2015-08-19 17:19 - 2009-07-14 05:20 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-19 17:16 - 2011-08-12 09:28 - 00000000 ____D C:\ProgramData\EgisTec IPS
2015-08-19 17:10 - 2011-08-12 08:58 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-08-19 17:08 - 2011-08-12 09:36 - 00000000 ____D C:\Windows\Downloaded Installations
2015-08-19 17:08 - 2011-08-12 09:02 - 00000000 ____D C:\Program Files\Broadcom
2015-08-19 17:07 - 2011-02-12 07:23 - 00000000 ____D C:\Windows\DeployWinRE2
2015-08-19 17:03 - 2011-08-12 08:58 - 00000000 ____D C:\Program Files (x86)\Intel
2015-08-19 17:03 - 2011-08-12 08:58 - 00000000 ____D C:\Intel
==================== Files in the root of some directories =======
2015-08-19 17:28 - 2015-08-19 17:30 - 0015245 _____ () C:\ProgramData\ArcadeDeluxe5.log
2015-08-19 18:07 - 2015-08-19 18:08 - 0000032 _____ () C:\ProgramData\PS.log
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-09-11 10:06
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Acer) (Fixed) (Total:913.41 GB) (Free:850.88 GB) NTFS
Available physical RAM: 2557.86 MB
Total physical RAM: 3947.86 MB
Percentage of memory in use: 35%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 721CD0AD)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=913.4 GB) - (Type=07 NTFS)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => C:\Program Files (x86)\Acer\Registration\GREG.exe
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Doma\Desktop" je 15991 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: avast blazni co minutu
Jinak avast uz nic nehlasi a celkove je pocitac rychlejsi.
- Přílohy
-
- Addition.rar
- (8.33 KiB) Staženo 32 x
Re: avast blazni co minutu
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Doma\Desktop" je 15991 MB.
Velikost plochy by nemela presahovat 200 - 300 MB! Brzdi to chod pc. Cili ji trosku uklidte a na plochu dejte jen zastupce. Jen pozor na obcasnou chybu, ze uzivatele maji na plose slozku, v ni dalsi a v ni dalsi a do te to schovaji. To je sice hezke, ale plochu to nezmensi, jen je to v jinem supliku Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
Start
CloseProcesses:
CreateRestorePoint:
ShellIconOverlayIdentifiers: [0PerformanceMonitor] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => No File
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
FF Extension: Record Page - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-20]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-26 81088]
2015-09-11 06:19 - 2015-09-11 06:43 - 00000000 ____D C:\Users\Doma\Desktop\mbar
2015-09-11 06:18 - 2015-09-11 06:19 - 16563304 _____ (Malwarebytes Corp.) C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe
2015-09-11 06:12 - 2015-09-11 06:12 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Doma\Desktop\tdsskiller.exe
2015-08-20 21:25 - 2015-09-11 05:52 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
Task: C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => C:\Program Files (x86)\Acer\Registration\GREG.exe
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: {35A1BE3F-F32D-440C-88BC-89C2D48133CC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {D65E11F7-17E3-4C39-97D0-AC19F7DD532A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Hosts:
EmptyTemp:
Reboot:
EndKliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
fixlog
Fix result of Farbar Recovery Scan Tool (x64) Version:15-09-2015
Ran by Doma (2015-09-15 18:17:26) Run:1
Running from C:\Users\Doma\Desktop
Loaded Profiles: Doma (Available Profiles: Doma)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
ShellIconOverlayIdentifiers: [0PerformanceMonitor] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => No File
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
FF Extension: Record Page - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-20]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-26 81088]
2015-09-11 06:19 - 2015-09-11 06:43 - 00000000 ____D C:\Users\Doma\Desktop\mbar
2015-09-11 06:18 - 2015-09-11 06:19 - 16563304 _____ (Malwarebytes Corp.) C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe
2015-09-11 06:12 - 2015-09-11 06:12 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Doma\Desktop\tdsskiller.exe
2015-08-20 21:25 - 2015-09-11 05:52 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
Task: C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => C:\Program Files (x86)\Acer\Registration\GREG.exe
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: {35A1BE3F-F32D-440C-88BC-89C2D48133CC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {D65E11F7-17E3-4C39-97D0-AC19F7DD532A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Error: (0) Failed to create a restore point.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\0PerformanceMonitor" => key removed successfully
HKCR\CLSID\{3B5B973C-92A4-4855-9D3F-0F3D23332208} => key not found.
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Search Page => value removed successfully
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value removed successfully
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} => value removed successfully
"HKCR\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}" => key removed successfully
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi => moved successfully
catchme => service removed successfully
AdobeARMservice => service removed successfully
C:\Users\Doma\Desktop\mbar => moved successfully
C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe => moved successfully
C:\Users\Doma\Desktop\tdsskiller.exe => moved successfully
C:\ProgramData\Spybot - Search & Destroy => moved successfully
C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => moved successfully
C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => moved successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35A1BE3F-F32D-440C-88BC-89C2D48133CC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35A1BE3F-F32D-440C-88BC-89C2D48133CC}" => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Scan the system" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D65E11F7-17E3-4C39-97D0-AC19F7DD532A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D65E11F7-17E3-4C39-97D0-AC19F7DD532A}" => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Refresh immunization" => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 460.3 MB temporary data Removed.
The system needed a reboot..
==== End of Fixlog 18:17:32 ====
Ran by Doma (2015-09-15 18:17:26) Run:1
Running from C:\Users\Doma\Desktop
Loaded Profiles: Doma (Available Profiles: Doma)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
ShellIconOverlayIdentifiers: [0PerformanceMonitor] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => No File
BootExecute: autocheck autochk * sdnclean64.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer.msn.com
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-06-07] (Microsoft Corporation.)
FF Extension: Record Page - C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-20]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-26 81088]
2015-09-11 06:19 - 2015-09-11 06:43 - 00000000 ____D C:\Users\Doma\Desktop\mbar
2015-09-11 06:18 - 2015-09-11 06:19 - 16563304 _____ (Malwarebytes Corp.) C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe
2015-09-11 06:12 - 2015-09-11 06:12 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\Doma\Desktop\tdsskiller.exe
2015-08-20 21:25 - 2015-09-11 05:52 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
Task: C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => C:\Program Files (x86)\Acer\Registration\GREG.exe
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_232_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: {35A1BE3F-F32D-440C-88BC-89C2D48133CC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {D65E11F7-17E3-4C39-97D0-AC19F7DD532A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Error: (0) Failed to create a restore point.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\0PerformanceMonitor" => key removed successfully
HKCR\CLSID\{3B5B973C-92A4-4855-9D3F-0F3D23332208} => key not found.
hklm\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-1907473733-2528761356-270282088-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Search Page => value removed successfully
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page => value removed successfully
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1907473733-2528761356-270282088-1001\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} => value removed successfully
"HKCR\Wow6432Node\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}" => key removed successfully
C:\Users\Doma\AppData\Roaming\Mozilla\Firefox\Profiles\kaxaiq0t.default\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi => moved successfully
catchme => service removed successfully
AdobeARMservice => service removed successfully
C:\Users\Doma\Desktop\mbar => moved successfully
C:\Users\Doma\Desktop\mbar-1.09.2.1008.exe => moved successfully
C:\Users\Doma\Desktop\tdsskiller.exe => moved successfully
C:\ProgramData\Spybot - Search & Destroy => moved successfully
C:\Windows\Tasks\Acer Registration - Reminder Recall task.job => moved successfully
C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => moved successfully
C:\Windows\Tasks\Adobe Flash Player Updater.job => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35A1BE3F-F32D-440C-88BC-89C2D48133CC}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35A1BE3F-F32D-440C-88BC-89C2D48133CC}" => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Scan the system" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D65E11F7-17E3-4C39-97D0-AC19F7DD532A}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D65E11F7-17E3-4C39-97D0-AC19F7DD532A}" => key removed successfully
C:\Windows\System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot - Search and Destroy\Refresh immunization" => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 460.3 MB temporary data Removed.
The system needed a reboot..
==== End of Fixlog 18:17:32 ====
Re: avast blazni co minutu
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat. vyosek píše:
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remove disinfection tools
- Kliknete na Run
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak to s pc vypada.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: avast blazni co minutu
No nevim ale ten DelFix me nesmazal nic na plose, ikdyz to tam bylo napsane v tom logu ze to smazal, 
tak jsem to zkusila jeste jednou a nic. Takze na plose mi zustalo adidition, FRST log, Rixlog, FRST64, RSIT64, adwcleaner, Malwarebyte.
Jeste cekam az se provede defragmentace
tak jsem to zkusila jeste jednou a nic. Takze na plose mi zustalo adidition, FRST log, Rixlog, FRST64, RSIT64, adwcleaner, Malwarebyte. Jeste cekam az se provede defragmentace
Přispějete na provoz fóra?