Zdravím, prosím o kontrolu logu, ve správci úloh mám proces COM SURROGATE:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-02-2016
Ran by Admin (administrator) on DESKTOP-UDK52AP (28-02-2016 17:00:24)
Running from C:\Users\Admin\Desktop
Loaded Profiles: panpi & Admin (Available Profiles: panpi & Admin)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\SETC2B8.tmp
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
() C:\Windows\syswow64\PnkBstrA.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4926664 2016-02-23] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [804168 2016-02-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [14960 2016-02-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-12-11] (Raptr, Inc)
HKU\S-1-5-21-224741044-4063502500-3562541365-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-224741044-4063502500-3562541365-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-27] (Electronic Arts)
HKU\S-1-5-21-224741044-4063502500-3562541365-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{5bf4d3a8-a56c-4f63-8176-4040d0cad9b8}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Internet Explorer:
==================
HKU\S-1-5-21-224741044-4063502500-3562541365-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-224741044-4063502500-3562541365-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FireFox:
========
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-27] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-28]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-28]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-28]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-28]
CHR Extension: (Vyhledávání Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-28]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-28]
CHR Extension: (Avira Browser Safety) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-02-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-28]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-28]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2016-02-17] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1417592 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-27] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2016-02-26] ()
R2 SpeedupService; C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [24224 2016-02-01] (Avira Operations GmbH & Co. KG)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [23240 2016-02-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102400 2016-02-23] (Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2016-02-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146704 2016-02-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2016-02-17] (Avira Operations GmbH & Co. KG)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-28 17:00 - 2016-02-28 17:00 - 00010220 _____ C:\Users\Admin\Desktop\FRST.txt
2016-02-28 17:00 - 2016-02-28 17:00 - 00000000 ____D C:\FRST
2016-02-28 16:57 - 2016-02-28 16:57 - 00112640 _____ (forum.viry.cz) C:\Users\Admin\Downloads\Nepotvrzeno 861071.crdownload
2016-02-28 16:56 - 2016-02-28 16:59 - 02371072 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2016-02-28 16:56 - 2016-02-28 16:59 - 00112640 _____ (forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
2016-02-28 16:56 - 2016-02-28 16:56 - 02371072 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2016-02-28 16:28 - 2016-02-28 16:28 - 00000000 ____D C:\Users\Admin\AppData\Local\Steam
2016-02-28 16:28 - 2016-02-28 16:28 - 00000000 ____D C:\Users\Admin\AppData\Local\CEF
2016-02-28 16:22 - 2016-02-28 16:22 - 00000000 ____D C:\Users\Admin\AppData\Local\MicrosoftEdge
2016-02-28 16:21 - 2016-02-28 16:21 - 00016148 _____ C:\Windows\system32\DESKTOP-UDK52AP_Admin_HistoryPrediction.bin
2016-02-28 14:26 - 2016-02-28 14:26 - 00016148 _____ C:\Windows\system32\DESKTOP-UDK52AP_panpi_HistoryPrediction.bin
2016-02-28 14:03 - 2016-02-28 14:03 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2016-02-28 13:55 - 2016-02-28 13:55 - 00000000 ____D C:\Users\Admin\Documents\Battlefield 3
2016-02-28 13:55 - 2016-02-28 13:55 - 00000000 ____D C:\Users\Admin\AppData\Local\PunkBuster
2016-02-28 13:52 - 2016-02-28 13:52 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Avira
2016-02-28 13:48 - 2016-02-28 13:49 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Origin
2016-02-28 13:48 - 2016-02-28 13:49 - 00000000 ____D C:\Users\Admin\AppData\Local\Origin
2016-02-28 13:47 - 2016-02-28 13:47 - 00002387 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-28 13:47 - 2016-02-28 13:47 - 00000000 ___RD C:\Users\Admin\OneDrive
2016-02-28 13:47 - 2016-02-28 13:47 - 00000000 ____D C:\Users\Admin\AppData\Local\Avira
2016-02-28 13:46 - 2016-02-28 16:22 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Raptr
2016-02-28 13:46 - 2016-02-28 13:46 - 00003388 _____ C:\Windows\System32\Tasks\{129A8AD3-3612-4767-A1E8-2C73C5CEC891}
2016-02-28 13:46 - 2016-02-28 13:46 - 00000000 ____D C:\Users\Admin\AppData\Local\AMD
2016-02-28 13:45 - 2016-02-28 16:59 - 00000000 ____D C:\Users\Admin\AppData\Local\Google
2016-02-28 13:45 - 2016-02-28 16:21 - 00000000 ____D C:\Users\Admin
2016-02-28 13:45 - 2016-02-28 14:04 - 00000000 ____D C:\Users\Admin\AppData\Local\Packages
2016-02-28 13:45 - 2016-02-28 13:45 - 00000020 ___SH C:\Users\Admin\ntuser.ini
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Šablony
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Soubory cookie
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Poslední
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Okolní tiskárny
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Okolní síť
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Nabídka Start
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Dokumenty
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Documents\Obrázky
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Documents\Hudba
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Documents\Filmy
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\Data aplikací
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 _SHDL C:\Users\Admin\AppData\Local\Data aplikací
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\VirtualStore
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\TileDataLayer
2016-02-28 13:45 - 2016-02-28 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\Publishers
2016-02-28 13:20 - 2016-02-28 13:20 - 06837784 _____ (Piriform Ltd) C:\Users\panpi\Downloads\ccsetup515.exe
2016-02-28 13:20 - 2016-02-28 13:20 - 00002870 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-02-28 13:20 - 2016-02-28 13:20 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-02-28 13:20 - 2016-02-28 13:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-02-28 13:20 - 2016-02-28 13:20 - 00000000 ____D C:\Program Files\CCleaner
2016-02-27 20:36 - 2016-02-27 20:44 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-02-27 20:36 - 2016-02-27 20:36 - 02218504 _____ C:\Users\panpi\Downloads\instspeedfan451.exe
2016-02-27 20:36 - 2016-02-27 20:36 - 00001076 _____ C:\Users\panpi\Desktop\SpeedFan.lnk
2016-02-27 20:36 - 2016-02-27 20:36 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2016-02-27 20:36 - 2016-02-27 20:36 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-02-27 20:33 - 2016-02-27 20:59 - 00000000 ____D C:\Program Files (x86)\CPU Thermometer
2016-02-27 20:33 - 2016-02-27 20:33 - 00001155 _____ C:\Users\Public\Desktop\CPU Thermometer.lnk
2016-02-27 20:33 - 2016-02-27 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPU Thermometer
2016-02-27 20:32 - 2016-02-27 20:33 - 00669046 _____ (cputhermometer.com ) C:\Users\panpi\Downloads\cputhermometer_setup.exe
2016-02-27 19:38 - 2016-02-27 19:38 - 00495276 _____ C:\Users\panpi\Desktop\msinfo.txt
2016-02-27 19:37 - 2016-02-27 19:37 - 00072013 _____ C:\Users\panpi\Desktop\DxDiag.txt
2016-02-27 19:35 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-02-27 18:58 - 2016-02-27 18:58 - 00000008 _____ C:\Users\panpi\Desktop\case.txt
2016-02-27 18:34 - 2016-02-27 18:34 - 00000000 ____D C:\Users\panpi\AppData\LocalLow\Temp
2016-02-27 17:43 - 2016-02-27 17:43 - 00000000 ____D C:\Users\panpi\AppData\Local\VirtualStore
2016-02-27 17:37 - 2016-02-27 17:37 - 00388608 _____ (Trend Micro Inc.) C:\Users\panpi\Downloads\HijackThis.exe
2016-02-27 17:37 - 2016-02-27 17:37 - 00388608 _____ (Trend Micro Inc.) C:\Users\panpi\Desktop\HijackThis.exe
2016-02-27 17:23 - 2016-02-27 17:10 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-02-27 17:10 - 2016-02-27 17:21 - 00000000 ____D C:\zoek_backup
2016-02-27 17:09 - 2016-02-27 17:10 - 01309184 _____ C:\Users\panpi\Desktop\zoek.exe
2016-02-27 17:09 - 2016-02-27 17:09 - 01309184 _____ C:\Users\panpi\Downloads\zoek (1).exe
2016-02-27 17:09 - 2016-02-27 17:09 - 00001132 _____ C:\Users\panpi\Desktop\d.txt
2016-02-27 17:08 - 2016-02-27 17:08 - 01309184 _____ C:\Users\panpi\Downloads\zoek.exe
2016-02-27 16:58 - 2016-02-27 16:58 - 25169992 _____ C:\Users\panpi\Downloads\RogueKillerX64 (1).exe
2016-02-27 16:49 - 2016-02-27 16:49 - 00000000 ____D C:\Users\panpi\AppData\Local\Steam
2016-02-27 16:49 - 2016-02-27 16:49 - 00000000 ____D C:\Users\panpi\AppData\Local\CEF
2016-02-27 16:48 - 2016-02-28 13:21 - 00000000 ____D C:\Users\panpi\AppData\Local\CrashDumps
2016-02-27 05:11 - 2016-02-17 08:41 - 00146704 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-02-27 05:11 - 2016-02-17 08:41 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-02-27 05:11 - 2016-02-17 08:41 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-02-27 05:11 - 2016-02-17 08:41 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2016-02-27 05:10 - 2016-02-27 05:11 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-02-27 05:10 - 2016-02-26 21:24 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Origin
2016-02-27 05:10 - 2016-02-26 21:09 - 00000000 ____D C:\Users\panpi\AppData\Local\Origin
2016-02-27 05:09 - 2016-02-27 05:09 - 05404312 _____ (Avira Operations GmbH & Co. KG) C:\Users\panpi\Downloads\avira_en_av_56d0a2c1dc45c__ws1.exe
2016-02-27 05:09 - 2016-02-27 05:09 - 05404312 _____ (Avira Operations GmbH & Co. KG) C:\Users\panpi\Downloads\avira_en_av_56d0a2c1dc45c__ws1 (1).exe
2016-02-27 05:09 - 2016-02-27 05:09 - 00001279 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-02-27 05:09 - 2016-02-26 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-02-27 05:09 - 2016-02-26 20:14 - 00000000 ____D C:\ProgramData\Avira
2016-02-27 05:09 - 2016-02-26 20:14 - 00000000 ____D C:\Program Files (x86)\Avira
2016-02-27 05:08 - 2016-02-28 16:21 - 00000000 ____D C:\ProgramData\Origin
2016-02-27 05:08 - 2016-02-27 23:13 - 01762290 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-27 05:08 - 2016-02-27 05:10 - 00000000 ____D C:\Program Files (x86)\Origin
2016-02-27 05:08 - 2016-02-27 05:08 - 31335272 _____ (Electronic Arts, Inc.) C:\Users\panpi\Downloads\OriginThinSetup.exe
2016-02-27 05:08 - 2016-02-27 05:08 - 00001048 _____ C:\Users\Public\Desktop\Origin.lnk
2016-02-27 05:08 - 2016-02-27 05:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-02-27 05:08 - 2016-02-26 21:09 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-02-27 05:07 - 2016-02-28 16:28 - 00000000 ____D C:\Program Files (x86)\Steam
2016-02-27 05:07 - 2016-02-27 05:07 - 00001032 _____ C:\Users\Public\Desktop\Steam.lnk
2016-02-27 05:07 - 2016-02-27 05:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-27 05:07 - 2016-02-26 20:13 - 00004210 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BDECFB61-C6CA-426A-A75D-398DA6B1F5F8}
2016-02-27 05:06 - 2016-02-28 16:21 - 00000978 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-27 05:06 - 2016-02-28 14:26 - 00000000 ___RD C:\Users\panpi\OneDrive
2016-02-27 05:06 - 2016-02-28 14:11 - 00000982 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-27 05:06 - 2016-02-27 20:57 - 00000000 ____D C:\Users\panpi\AppData\Local\AMD
2016-02-27 05:06 - 2016-02-27 05:07 - 01380712 _____ C:\Users\panpi\Downloads\SteamSetup.exe
2016-02-27 05:06 - 2016-02-27 05:06 - 00987728 _____ (Google Inc.) C:\Users\panpi\Downloads\ChromeSetup.exe
2016-02-27 05:06 - 2016-02-27 05:06 - 00004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-27 05:06 - 2016-02-27 05:06 - 00003808 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-27 05:06 - 2016-02-27 05:06 - 00002387 _____ C:\Users\panpi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-27 05:06 - 2016-02-27 05:06 - 00002344 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-27 05:06 - 2016-02-27 05:06 - 00002332 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-27 05:06 - 2016-02-27 05:06 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Macromedia
2016-02-27 05:06 - 2016-02-27 05:06 - 00000000 ____D C:\Users\panpi\AppData\Roaming\ATI
2016-02-27 05:06 - 2016-02-27 05:06 - 00000000 ____D C:\Users\panpi\AppData\Local\ATI
2016-02-27 05:06 - 2016-02-27 05:06 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-27 05:06 - 2016-02-26 21:31 - 00000000 ____D C:\Users\panpi\AppData\Local\Google
2016-02-27 05:05 - 2016-02-27 05:06 - 00000000 ____D C:\Users\panpi\AppData\Local\MicrosoftEdge
2016-02-27 05:05 - 2016-02-27 05:05 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-02-27 05:04 - 2016-02-28 13:45 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-27 05:04 - 2016-02-27 05:06 - 00000000 ____D C:\Users\panpi\AppData\Local\Comms
2016-02-27 05:04 - 2016-02-27 05:04 - 00016148 _____ C:\Windows\system32\DESKTOP-UDK52AP_defaultuser0_HistoryPrediction.bin
2016-02-27 05:04 - 2016-02-27 05:04 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Adobe
2016-02-27 05:04 - 2016-02-27 05:04 - 00000000 ____D C:\Users\panpi\AppData\Local\TileDataLayer
2016-02-27 05:04 - 2016-02-27 05:04 - 00000000 ____D C:\Users\panpi\AppData\Local\Publishers
2016-02-27 05:04 - 2016-02-26 20:39 - 00000000 ____D C:\Users\panpi\AppData\Local\Packages
2016-02-27 05:03 - 2016-02-27 17:33 - 00000000 ____D C:\Users\panpi
2016-02-27 05:03 - 2016-02-27 05:03 - 00000020 ___SH C:\Users\panpi\ntuser.ini
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Šablony
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Soubory cookie
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Poslední
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Okolní tiskárny
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Okolní síť
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Nabídka Start
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Dokumenty
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Documents\Obrázky
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Documents\Hudba
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Documents\Filmy
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\Data aplikací
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-02-27 05:03 - 2016-02-27 05:03 - 00000000 _SHDL C:\Users\panpi\AppData\Local\Data aplikací
2016-02-27 05:01 - 2015-07-10 11:59 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2016-02-27 05:00 - 2016-02-27 05:00 - 00000000 ____D C:\ProgramData\USOShared
2016-02-27 04:59 - 2016-02-27 23:09 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Public\Documents\Obrázky
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Public\Documents\Hudba
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Public\Documents\Filmy
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Šablony
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Soubory cookie
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Poslední
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Okolní tiskárny
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Okolní síť
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Nabídka Start
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Dokumenty
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Documents\Obrázky
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Documents\Hudba
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Documents\Filmy
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\Data aplikací
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default User\Documents\Obrázky
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default User\Documents\Hudba
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default User\Documents\Filmy
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\Default User
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Users\All Users
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\ProgramData\Šablony
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\ProgramData\Plocha
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\ProgramData\Nabídka Start
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\ProgramData\Dokumenty
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\ProgramData\Data aplikací
2016-02-27 04:59 - 2016-02-27 04:59 - 00000000 _SHDL C:\Documents and Settings
2016-02-27 04:57 - 2016-02-27 04:57 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-02-27 04:57 - 2016-02-27 04:57 - 00000000 ____D C:\Windows\ServiceProfiles
2016-02-27 04:57 - 2016-02-27 04:57 - 00000000 ____D C:\Program Files\Realtek
2016-02-27 04:57 - 2016-02-27 04:57 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-02-27 04:57 - 2016-02-27 04:57 - 00000000 _____ C:\Windows\ativpsrm.bin
2016-02-27 04:57 - 2016-02-26 22:34 - 00189512 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-27 04:57 - 2016-02-26 20:52 - 00000000 ____D C:\Program Files\AMD
2016-02-27 04:57 - 2016-02-26 20:31 - 00000000 ____D C:\AMD
2016-02-26 23:02 - 2016-02-26 23:02 - 00711649 _____ C:\Users\panpi\Downloads\pbsetup.zip
2016-02-26 22:37 - 2016-02-26 22:37 - 00000000 ____D C:\Users\panpi\AppData\Local\Avira
2016-02-26 21:57 - 2016-02-27 16:59 - 00028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-02-26 21:57 - 2016-02-26 22:10 - 00000000 ____D C:\ProgramData\RogueKiller
2016-02-26 21:54 - 2016-02-26 21:57 - 25169992 _____ C:\Users\panpi\Desktop\RogueKillerX64.exe
2016-02-26 21:54 - 2016-02-26 21:54 - 25169992 _____ C:\Users\panpi\Downloads\RogueKillerX64.exe
2016-02-26 21:53 - 2016-02-26 21:53 - 00000628 _____ C:\Users\panpi\Desktop\JRT.txt
2016-02-26 21:50 - 2016-02-26 21:51 - 01609216 _____ (Malwarebytes) C:\Users\panpi\Desktop\JRT.exe
2016-02-26 21:50 - 2016-02-26 21:50 - 01609216 _____ (Malwarebytes) C:\Users\panpi\Downloads\JRT.exe
2016-02-26 21:10 - 2016-02-28 16:42 - 00348360 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2016-02-26 21:10 - 2016-02-26 21:10 - 00000000 ____D C:\Users\panpi\AppData\Local\PunkBuster
2016-02-26 21:09 - 2016-02-27 19:08 - 00000000 ____D C:\Users\panpi\Desktop\settings
2016-02-26 21:09 - 2016-02-26 23:06 - 00000000 ____D C:\ProgramData\EA Logs
2016-02-26 21:09 - 2016-02-26 21:09 - 00000000 ____D C:\ProgramData\EA Core
2016-02-26 21:02 - 2016-02-26 21:03 - 00000000 ____D C:\Windows\system32\MRT
2016-02-26 21:02 - 2016-02-26 21:02 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-26 20:59 - 2016-02-26 20:59 - 00000000 ___RD C:\Users\panpi\3D Objects
2016-02-26 20:59 - 2016-02-26 20:59 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-26 20:54 - 2016-02-26 20:54 - 00000000 ____D C:\Program Files (x86)\AMD
2016-02-26 20:52 - 2016-02-26 20:52 - 00000000 ____D C:\ProgramData\ATI
2016-02-26 20:38 - 2016-02-28 16:42 - 00348360 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-02-26 20:38 - 2016-02-28 16:30 - 00348360 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-02-26 20:38 - 2016-02-26 21:21 - 00076152 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2016-02-26 20:38 - 2016-02-26 20:38 - 00001243 _____ C:\Users\Public\Desktop\Battlefield 3.lnk
2016-02-26 20:38 - 2016-02-26 20:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
2016-02-26 20:38 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-02-26 20:38 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-02-26 20:38 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-02-26 20:38 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-02-26 20:38 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-02-26 20:38 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-02-26 20:38 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-26 20:38 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-26 20:38 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-26 20:38 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-26 20:38 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-26 20:38 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-26 20:38 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-26 20:38 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-26 20:38 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-26 20:38 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-26 20:38 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-26 20:38 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-26 20:38 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-26 20:38 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-26 20:38 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-26 20:38 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-26 20:38 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-26 20:38 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-26 20:38 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-26 20:38 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-26 20:38 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-26 20:38 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-26 20:38 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-26 20:38 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-26 20:38 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-26 20:38 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-26 20:38 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-02-26 20:38 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-26 20:38 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-26 20:38 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-26 20:38 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-26 20:38 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-26 20:38 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-26 20:38 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-26 20:38 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-26 20:38 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-26 20:38 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-26 20:38 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-26 20:37 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-26 20:37 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-02-26 20:37 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-02-26 20:37 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-02-26 20:37 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-02-26 20:37 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-02-26 20:37 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-02-26 20:37 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-02-26 20:37 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-02-26 20:37 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-02-26 20:37 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-02-26 20:37 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-02-26 20:37 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-02-26 20:37 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-02-26 20:37 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-02-26 20:37 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-02-26 20:37 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-02-26 20:37 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-02-26 20:37 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-02-26 20:37 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-02-26 20:37 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-02-26 20:37 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-02-26 20:37 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-02-26 20:37 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-02-26 20:37 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-02-26 20:37 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-02-26 20:37 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-02-26 20:37 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-02-26 20:37 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-02-26 20:37 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-02-26 20:37 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-02-26 20:37 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-02-26 20:37 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-02-26 20:37 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-02-26 20:37 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-02-26 20:37 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-02-26 20:37 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-02-26 20:37 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-02-26 20:37 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-02-26 20:37 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-02-26 20:37 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-02-26 20:37 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-02-26 20:37 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-02-26 20:37 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-02-26 20:37 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-02-26 20:37 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-02-26 20:37 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-02-26 20:37 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-02-26 20:37 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-02-26 20:37 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-02-26 20:37 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-02-26 20:37 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-02-26 20:37 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-02-26 20:37 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-02-26 20:37 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-02-26 20:37 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-02-26 20:37 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-02-26 20:37 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-02-26 20:37 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-02-26 20:37 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-02-26 20:37 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-02-26 20:37 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-02-26 20:37 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-02-26 20:37 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-02-26 20:37 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-02-26 20:37 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-02-26 20:37 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-02-26 20:37 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-02-26 20:37 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-02-26 20:37 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-02-26 20:37 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-02-26 20:37 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-02-26 20:37 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-02-26 20:37 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-02-26 20:37 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-02-26 20:37 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-02-26 20:37 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-02-26 20:37 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-02-26 20:37 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-02-26 20:37 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-02-26 20:37 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-02-26 20:37 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-02-26 20:37 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-02-26 20:37 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-02-26 20:37 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-02-26 20:37 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-02-26 20:37 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-02-26 20:37 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-02-26 20:37 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-02-26 20:37 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-02-26 20:37 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-02-26 20:37 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-02-26 20:37 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-02-26 20:37 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-02-26 20:37 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-02-26 20:37 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-02-26 20:37 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-02-26 20:37 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-02-26 20:37 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-02-26 20:37 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-02-26 20:37 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-02-26 20:37 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-02-26 20:37 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-02-26 20:37 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-02-26 20:37 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-02-26 20:37 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-02-26 20:31 - 2016-02-26 20:31 - 00004296 _____ C:\Windows\System32\Tasks\AMD Updater
2016-02-26 20:30 - 2016-02-26 20:31 - 329430592 _____ (AMD Inc.) C:\Users\panpi\Downloads\non-whql-64bit-radeon-software-crimson-16.2-win10-win8.1-win7-feb23.exe
2016-02-26 20:18 - 2016-02-28 12:36 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Raptr
2016-02-26 20:18 - 2016-02-26 20:18 - 00000000 ____D C:\Users\panpi\AppData\Roaming\library_dir
2016-02-26 20:18 - 2016-02-26 20:18 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Avira
2016-02-26 20:18 - 2016-02-26 20:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-02-26 20:18 - 2016-02-26 20:18 - 00000000 ____D C:\Program Files (x86)\Raptr
2016-02-26 20:17 - 2016-02-26 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2016-02-26 20:14 - 2016-02-28 16:21 - 00000000 ____D C:\Users\Public\Speedup Sessions
2016-02-26 20:14 - 2016-02-26 20:14 - 00001216 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\Users\panpi\AppData\Roaming\Mozilla
2016-02-26 19:55 - 2016-02-28 13:21 - 00000000 ___DC C:\Windows\Panther
2016-02-26 19:55 - 2016-02-26 19:56 - 00000000 ____D C:\Windows.old
2016-02-26 19:55 - 2016-02-26 19:55 - 00008192 __RSH C:\BOOTSECT.BAK
2016-02-26 19:55 - 2016-02-26 19:55 - 00008192 _____ C:\Windows\system32\config\userdiff
2016-02-26 19:55 - 2016-02-26 19:55 - 00000000 ____D C:\Windows\InfusedApps
2016-02-26 19:55 - 2015-07-10 12:00 - 00395268 __RSH C:\bootmgr
2016-02-26 19:55 - 2015-07-10 12:00 - 00000001 ___SH C:\BOOTNXT
2016-02-26 19:54 - 2016-02-26 19:54 - 00000000 ____D C:\Windows\Setup
2016-02-26 19:53 - 2016-02-27 23:13 - 00745406 _____ C:\Windows\system32\perfh005.dat
2016-02-26 19:53 - 2016-02-27 23:13 - 00149344 _____ C:\Windows\system32\perfc005.dat
2016-02-26 19:53 - 2016-02-26 19:53 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-02-26 19:53 - 2016-02-26 19:53 - 00000000 ____D C:\Windows\OCR
2016-02-26 19:53 - 2016-02-26 19:53 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-02-26 19:53 - 2016-02-26 19:53 - 00000000 ____D C:\Program Files\MSBuild
2016-02-26 19:53 - 2016-02-26 19:53 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-02-26 19:53 - 2016-02-26 19:53 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-26 19:53 - 2016-02-26 19:52 - 00296654 _____ C:\Windows\system32\perfi005.dat
2016-02-26 19:53 - 2016-02-26 19:52 - 00038682 _____ C:\Windows\system32\perfd005.dat
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\winrm
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\WCN
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\cs
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\0409
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\winrm
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\WCN
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\slmgr
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\cs
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\0409
2016-02-26 19:52 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\DigitalLocker
2016-02-26 19:50 - 2016-02-02 23:47 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-26 19:50 - 2016-02-02 23:47 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-02-26 19:49 - 2016-02-28 16:56 - 00000000 ____D C:\Windows\AppReadiness
2016-02-26 19:49 - 2016-02-28 12:37 - 00000000 ____D C:\Windows\appcompat
2016-02-26 19:49 - 2016-02-27 16:53 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-26 19:49 - 2016-02-27 05:08 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-26 19:49 - 2016-02-27 05:04 - 00000000 ___RD C:\Windows\PrintDialog
2016-02-26 19:49 - 2016-02-27 05:04 - 00000000 ___RD C:\Windows\MiracastView
2016-02-26 19:49 - 2016-02-27 05:01 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-02-26 19:49 - 2016-02-27 05:01 - 00000000 ____D C:\Windows\CSC
2016-02-26 19:49 - 2016-02-27 05:00 - 00000000 ____D C:\Windows\rescache
2016-02-26 19:49 - 2016-02-27 05:00 - 00000000 ____D C:\ProgramData\USOPrivate
2016-02-26 19:49 - 2016-02-27 04:59 - 00000000 ____D C:\Program Files\Windows NT
2016-02-26 19:49 - 2016-02-27 04:58 - 00000000 ____D C:\Windows\system32\Sysprep
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ___SD C:\Windows\SysWOW64\F12
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ___SD C:\Windows\system32\F12
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ___RD C:\Windows\DevicesFlow
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\SysWOW64\oobe
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\system32\oobe
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\system32\Dism
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\system32\appraiser
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\Provisioning
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Windows\L2Schemas
2016-02-26 19:49 - 2016-02-26 22:32 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-26 19:49 - 2016-02-26 19:56 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-02-26 19:49 - 2016-02-26 19:53 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-02-26 19:49 - 2016-02-26 19:53 - 00000000 ____D C:\Windows\system32\MUI
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ___SD C:\Windows\system32\dsc
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\setup
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\SysWOW64\Com
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\setup
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\migwiz
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\system32\Com
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\IME
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\Help
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-26 19:49 - 2016-02-26 19:52 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 __SHD C:\Windows\BitLockerDiscoveryVolumeContents
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 __RSD C:\Windows\Media
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 __RHD C:\Users\Public\Libraries
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___SD C:\Windows\SysWOW64\Nui
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___SD C:\Windows\SysWOW64\Configuration
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___SD C:\Windows\system32\Nui
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___SD C:\Windows\system32\Configuration
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___SD C:\Windows\Downloaded Program Files
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___RD C:\Windows\Offline Web Pages
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___RD C:\Windows\DesktopTileResources
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Web
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Vss
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\tracing
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\TAPI
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\WinMetadata
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\SMI
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\ras
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\NDF
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\MsDtc
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\Ipmi
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\InputMethod
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\IME
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\icsxml
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicyUsers
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\FxsTmp
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\downlevel
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\Bthprops
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\AppLocker
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SystemResources
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SystemApps
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\WinMetadata
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\winevt
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\spool
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\ras
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\ProximityToast
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\PointOfService
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\NDF
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\MsDtc
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\MailContactsCalendarSync
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\Macromed
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\Ipmi
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\InputMethod
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\inetsrv
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\IME
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\icsxml
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\ias
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\GroupPolicyUsers
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\downlevel
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\config\Journal
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\Bthprops
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\AppLocker
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\System
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SKB
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\schemas
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\SchCache
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\ShellNew
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\security
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Resources
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Registration
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\PLA
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Performance
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\ModemLogs
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\LiveKernelReports
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\InputMethod
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Globalization
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Cursors
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\Branding
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\addins
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Program Files\Common Files\Services
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-02-26 19:49 - 2016-02-26 19:49 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-02-26 19:49 - 2016-02-26 19:47 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2016-02-26 19:49 - 2016-02-26 19:47 - 00215943 _____ C:\Windows\SysWOW64\dssec.dat
2016-02-26 19:49 - 2016-02-26 19:47 - 00215943 _____ C:\Windows\system32\dssec.dat
2016-02-26 19:49 - 2016-02-26 19:47 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2016-02-26 19:49 - 2016-02-26 19:47 - 00017463 _____ C:\Windows\system32\Drivers\etc\services
2016-02-26 19:49 - 2016-02-26 19:47 - 00015462 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2016-02-26 19:49 - 2016-02-26 19:47 - 00008798 _____ C:\Windows\SysWOW64\icrav03.rat
2016-02-26 19:49 - 2016-02-26 19:47 - 00008798 _____ C:\Windows\system32\icrav03.rat
2016-02-26 19:49 - 2016-02-26 19:47 - 00003683 _____ C:\Windows\system32\Drivers\etc\lmhosts.sam
2016-02-26 19:49 - 2016-02-26 19:47 - 00001988 _____ C:\Windows\SysWOW64\ticrf.rat
2016-02-26 19:49 - 2016-02-26 19:47 - 00001988 _____ C:\Windows\system32\ticrf.rat
2016-02-26 19:49 - 2016-02-26 19:47 - 00001358 _____ C:\Windows\system32\Drivers\etc\protocol
2016-02-26 19:49 - 2016-02-26 19:47 - 00000858 _____ C:\Windows\system32\DefaultQuestions.json
2016-02-26 19:49 - 2016-02-26 19:47 - 00000741 _____ C:\Windows\SysWOW64\NOISE.DAT
2016-02-26 19:49 - 2016-02-26 19:47 - 00000741 _____ C:\Windows\system32\NOISE.DAT
2016-02-26 19:49 - 2016-02-26 19:47 - 00000407 _____ C:\Windows\system32\Drivers\etc\networks
2016-02-26 19:49 - 2016-02-26 19:47 - 00000389 _____ C:\Windows\system32\AutoWorkplace.exe.config
2016-02-26 19:49 - 2016-02-26 19:47 - 00000219 _____ C:\Windows\system.ini
2016-02-26 19:49 - 2016-02-26 19:47 - 00000092 _____ C:\Windows\win.ini
2016-02-26 19:47 - 2016-02-28 13:21 - 00000000 ____D C:\Windows\INF
2016-02-26 19:44 - 2016-02-26 21:03 - 00000000 ____D C:\Windows\CbsTemp
2016-02-26 19:38 - 2016-02-27 17:34 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-02-26 19:38 - 2016-02-27 04:59 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-02-26 19:38 - 2016-02-26 19:52 - 00000000 ____D C:\Windows\servicing
2016-02-26 19:38 - 2016-02-26 19:49 - 00000000 ____D C:\Windows\system32\SMI
2016-02-26 19:38 - 2015-07-10 10:11 - 00000164 _____ C:\Windows\system32\config\FP
2016-02-23 17:04 - 2016-02-23 17:04 - 01237712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00458472 _____ C:\Windows\system32\amdmiracast.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00141792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00133016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00120656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00118608 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00110344 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00102616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-02-23 17:04 - 2016-02-23 17:04 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-02-23 17:03 - 2016-02-23 17:03 - 11108696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2016-02-23 17:03 - 2016-02-23 17:03 - 09176928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2016-02-23 17:03 - 2016-02-23 17:03 - 09017808 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2016-02-23 17:03 - 2016-02-23 17:03 - 08089248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2016-02-23 17:02 - 2016-02-23 17:02 - 10963496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2016-02-23 16:56 - 2016-02-23 16:56 - 00296648 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-02-23 16:54 - 2016-02-23 16:54 - 00023240 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmafd.sys
2016-02-23 16:48 - 2016-02-23 16:48 - 49988096 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-02-23 16:48 - 2016-02-23 16:48 - 00235008 _____ C:\Windows\system32\clinfo.exe
2016-02-23 16:46 - 2016-02-23 16:46 - 41510400 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-02-23 16:45 - 2016-02-23 16:45 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-23 16:45 - 2016-02-23 16:45 - 00059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-02-23 16:44 - 2016-02-23 16:44 - 27596288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-02-23 16:44 - 2016-02-23 16:44 - 22348288 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-02-23 16:23 - 2016-02-23 16:23 - 00693248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-02-23 16:23 - 2016-02-23 16:23 - 00574464 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-02-23 16:22 - 2016-02-23 16:22 - 06644224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-02-23 16:22 - 2016-02-23 16:22 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-02-23 16:22 - 2016-02-23 16:22 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-02-23 16:17 - 2016-02-23 16:17 - 05223936 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-02-23 16:17 - 2016-02-23 16:17 - 00103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2016-02-23 16:15 - 2016-02-23 16:15 - 00134656 _____ C:\Windows\system32\amdhdl64.dll
2016-02-23 16:15 - 2016-02-23 16:15 - 00123392 _____ C:\Windows\SysWOW64\amdhdl32.dll
2016-02-23 16:14 - 2016-02-23 16:14 - 31378944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-02-23 16:14 - 2016-02-23 16:14 - 00096256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-02-23 16:13 - 2016-02-23 16:13 - 08008192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdxc32.dll
2016-02-23 16:13 - 2016-02-23 16:13 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-02-23 16:11 - 2016-02-23 16:11 - 09804288 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdxc64.dll
2016-02-23 16:11 - 2016-02-23 16:11 - 00686208 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-02-23 16:11 - 2016-02-23 16:11 - 00686208 _____ C:\Windows\system32\atiapfxx.blb
2016-02-23 16:11 - 2016-02-23 16:11 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-02-23 16:10 - 2016-02-23 16:10 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-02-23 16:10 - 2016-02-23 16:10 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-02-23 16:10 - 2016-02-23 16:10 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-02-23 16:10 - 2016-02-23 16:10 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-02-23 16:10 - 2016-02-23 16:10 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-02-23 16:09 - 2016-02-23 16:09 - 25841152 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-02-23 16:09 - 2016-02-23 16:09 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-02-23 16:08 - 2016-02-23 16:08 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-02-23 16:08 - 2016-02-23 16:08 - 00039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-02-23 16:06 - 2016-02-23 16:06 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-02-23 16:05 - 2016-02-23 16:05 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2016-02-23 16:05 - 2016-02-23 16:05 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2016-02-23 16:05 - 2016-02-23 16:05 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2016-02-23 16:05 - 2016-02-23 16:05 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2016-02-23 16:04 - 2016-02-23 16:04 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-02-23 16:04 - 2016-02-23 16:04 - 00224256 _____ C:\Windows\system32\dgtrayicon.exe
2016-02-23 16:04 - 2016-02-23 16:04 - 00209920 _____ C:\Windows\system32\GameManager64.dll
2016-02-23 16:04 - 2016-02-23 16:04 - 00204800 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-02-23 16:04 - 2016-02-23 16:04 - 00189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-02-23 16:04 - 2016-02-23 16:04 - 00186368 _____ C:\Windows\SysWOW64\SETDB35.tmp
2016-02-23 16:04 - 2016-02-23 16:04 - 00186368 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-02-23 16:04 - 2016-02-23 16:04 - 00162304 _____ C:\Windows\system32\atieah64.exe
2016-02-23 16:04 - 2016-02-23 16:04 - 00145408 _____ C:\Windows\SysWOW64\atieah32.exe
2016-02-23 16:04 - 2016-02-23 16:04 - 00078336 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-02-23 16:03 - 2016-02-23 16:03 - 00562688 _____ (AMD) C:\Windows\system32\SETC327.tmp
2016-02-23 16:03 - 2016-02-23 16:03 - 00562688 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-02-23 16:03 - 2016-02-23 16:03 - 00249344 _____ (AMD) C:\Windows\system32\SETC2B8.tmp
2016-02-23 16:03 - 2016-02-23 16:03 - 00249344 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-02-23 16:03 - 2016-02-23 16:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-02-23 16:02 - 2016-02-23 16:02 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-02-23 15:58 - 2016-02-23 15:58 - 01272832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\SETBE28.tmp
2016-02-23 15:58 - 2016-02-23 15:58 - 01272832 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00941568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00941568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00157696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00075776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-02-23 15:58 - 2016-02-23 15:58 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-02-23 15:57 - 2016-02-23 15:57 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-02-23 15:56 - 2016-02-23 15:56 - 00195072 _____ C:\Windows\system32\hsa-thunk64.dll
2016-02-23 15:56 - 2016-02-23 15:56 - 00174592 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-02-22 17:06 - 2016-02-23 17:04 - 01506512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETDF70.tmp
2016-02-22 17:06 - 2016-02-23 17:04 - 01506512 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2016-02-22 17:06 - 2016-02-23 17:04 - 00152056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETDEE0.tmp
2016-02-22 17:06 - 2016-02-23 17:04 - 00152056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2016-02-22 17:06 - 2016-02-23 17:03 - 13408208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\SETCFFC.tmp
2016-02-22 17:06 - 2016-02-23 17:03 - 13408208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2016-02-22 17:06 - 2016-02-23 16:53 - 23981568 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-02-22 17:06 - 2016-02-23 15:58 - 00674816 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\SETDE50.tmp
2016-02-22 17:06 - 2016-02-23 15:58 - 00674816 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-02-22 17:06 - 2016-02-22 17:06 - 01196032 _____ C:\Windows\system32\amdocl_as64.exe
2016-02-22 17:06 - 2016-02-22 17:06 - 01070592 _____ C:\Windows\system32\amdocl_ld64.exe
2016-02-22 17:06 - 2016-02-22 17:06 - 01004032 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2016-02-22 17:06 - 2016-02-22 17:06 - 00807424 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2016-02-14 17:36 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-14 17:36 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-14 17:36 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-14 17:36 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-14 17:36 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-02-14 17:36 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-14 17:36 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-14 17:36 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-14 17:36 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-14 17:36 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-02-14 17:36 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-14 17:36 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-14 17:36 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-14 17:36 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-02-14 17:36 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-02-14 17:36 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-14 17:36 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-14 17:36 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-02-14 17:36 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-02-14 17:36 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-02-14 17:36 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-14 17:36 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-14 17:36 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-14 17:36 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-14 17:36 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-14 17:36 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-14 17:36 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-14 17:36 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-14 17:36 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-14 17:36 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-02-14 17:36 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-02-14 17:36 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-14 17:36 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-14 17:36 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-14 17:36 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-14 17:36 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-14 17:36 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-14 17:36 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-14 17:35 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-14 17:35 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\IoTAssignedAccessLockFramework.dll
2016-02-14 17:35 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rasman.dll
2016-02-14 17:35 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-14 17:35 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-02-14 17:35 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-02-14 17:35 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-02-14 17:35 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-02-14 17:35 - 2016-01-31 06:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2016-02-14 17:35 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-14 17:35 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-14 17:35 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-14 17:35 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasman.dll
2016-02-14 17:35 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-14 17:35 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-14 17:35 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-14 17:35 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2016-02-14 17:35 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-14 17:35 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-14 17:35 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-01 08:19 - 2016-02-01 08:19 - 00853477 _____ C:\Windows\system32\amdicdxx.dat
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-02-26 19:56 - 2015-10-31 19:48 - 00000000 ___HD C:\$SysReset
2016-02-23 16:18 - 2015-05-28 06:00 - 00102400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdWT6.sys
2016-02-23 16:12 - 2015-12-16 20:41 - 00865280 _____ (AMD) C:\Windows\system32\SETFC07.tmp
2016-02-23 16:12 - 2015-12-16 20:41 - 00865280 _____ (AMD) C:\Windows\system32\coinst_15.30.dll
2016-02-22 16:44 - 2015-07-10 12:01 - 00027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2016-02-22 16:43 - 2015-07-10 11:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys
2016-02-22 16:42 - 2015-07-10 12:01 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
==================== Files in the root of some directories =======
Some files in TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\avgnt.exe
C:\Users\panpi\AppData\Local\Temp\avgnt.exe
C:\Users\panpi\AppData\Local\Temp\sfamcc00001.dll
C:\Users\panpi\AppData\Local\Temp\sfamcc00002.dll
C:\Users\panpi\AppData\Local\Temp\sfextra.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Admin\Desktop" je 2 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
COM SURROGATE
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
COM SURROGATE
- Přílohy
-
- addition.zip
- (7.12 KiB) Staženo 26 x
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: COM SURROGATE
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: COM SURROGATE
# AdwCleaner v5.037 - Logfile created 29/02/2016 at 15:09:35
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Admin - DESKTOP-UDK52AP
# Running from : C:\Users\Admin\Desktop\adwcleaner_5.037.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
C:\AdwCleaner\AdwCleaner[S1].txt - [604 bytes] - [29/02/2016 15:09:36]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [676 bytes] ##########
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Admin - DESKTOP-UDK52AP
# Running from : C:\Users\Admin\Desktop\adwcleaner_5.037.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
C:\AdwCleaner\AdwCleaner[S1].txt - [604 bytes] - [29/02/2016 15:09:36]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [676 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: COM SURROGATE
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\SysWOW64\SETDB35.tmp
C:\Windows\system32\SETDF70.tmp
C:\Windows\system32\SETDEE0.tmp
C:\Windows\system32\SETCFFC.tmp
C:\Windows\system32\Drivers\SETDE50.tmp
C:\Windows\system32\SETFC07.tmp
C:\Users\Admin\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: COM SURROGATE
Fix result of Farbar Recovery Scan Tool (x64) Version:27-02-2016
Ran by Admin (2016-02-29 20:46:30) Run:1
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: panpi & Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\SysWOW64\SETDB35.tmp
C:\Windows\system32\SETDF70.tmp
C:\Windows\system32\SETDEE0.tmp
C:\Windows\system32\SETCFFC.tmp
C:\Windows\system32\Drivers\SETDE50.tmp
C:\Windows\system32\SETFC07.tmp
C:\Users\Admin\AppData\Local\Temp
End
*****************
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"C:\Windows\SysWOW64\SETDB35.tmp" => not found.
"C:\Windows\system32\SETDF70.tmp" => not found.
"C:\Windows\system32\SETDEE0.tmp" => not found.
"C:\Windows\system32\SETCFFC.tmp" => not found.
"C:\Windows\system32\Drivers\SETDE50.tmp" => not found.
"C:\Windows\system32\SETFC07.tmp" => not found.
"C:\Users\Admin\AppData\Local\Temp" folder move:
Could not move "C:\Users\Admin\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-02-29 20:47:21)
C:\Users\Admin\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:47:22 ====
Ran by Admin (2016-02-29 20:46:30) Run:1
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: panpi & Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\SysWOW64\SETDB35.tmp
C:\Windows\system32\SETDF70.tmp
C:\Windows\system32\SETDEE0.tmp
C:\Windows\system32\SETCFFC.tmp
C:\Windows\system32\Drivers\SETDE50.tmp
C:\Windows\system32\SETFC07.tmp
C:\Users\Admin\AppData\Local\Temp
End
*****************
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"C:\Windows\SysWOW64\SETDB35.tmp" => not found.
"C:\Windows\system32\SETDF70.tmp" => not found.
"C:\Windows\system32\SETDEE0.tmp" => not found.
"C:\Windows\system32\SETCFFC.tmp" => not found.
"C:\Windows\system32\Drivers\SETDE50.tmp" => not found.
"C:\Windows\system32\SETFC07.tmp" => not found.
"C:\Users\Admin\AppData\Local\Temp" folder move:
Could not move "C:\Users\Admin\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-02-29 20:47:21)
C:\Users\Admin\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:47:22 ====
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: COM SURROGATE
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: COM SURROGATE
COM SURROGATE vidím pořád ale nijak to nezatěžuje proces ani paměť, tak nevím, je to vir?
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: COM SURROGATE
Tak být tam nemusí. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: COM SURROGATE
Už jsem to vyřešil, každopádně děkuji za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: COM SURROGATE
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?