Re: winsvchost.exe 100% zatížení CPU
Napsal: 03 pro 2013 18:51
OK, v pohode...
Jak se chova PC???
Jak se chova PC???
VIRY.CZ
Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/
winsvchost.exe 100% zatížení CPU
Stránka 2 z 3
Re: winsvchost.exe 100% zatížení CPU
Napsal: 03 pro 2013 19:00
chová se tak jak se choval celou dobu.. ten winsvchost.exe tam furt je a pořád běží procák na 100%... viz. obrázek.. už nwm co s tim a leze mi to krutě na nervy
Re: winsvchost.exe 100% zatížení CPU
Napsal: 03 pro 2013 19:05
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
- Provedte aktualizaci
- Provedte uplny sken - nic nemazte
- MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 07:09
byla dokončená ÚPLNÁ kontrola systému, tady je log:
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.12.03.06
Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16438
Martin :: MÁRTY-PC [administrátor]
Ochrana: Povolena
3. 12. 2013 19:48:22
MBAM-log-2013-12-04 (07-07-25).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 565657
Uplynulý čas: 2 hodin, 53 minut, 25 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 1
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 26
C:\AdwCleaner\Quarantine\C\ProgramData\DSearchLink\DSearchLink.exe.vir (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Users\Martin\AppData\Roaming\file scout\filescout.exe.vir (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\150.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\17473.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\37999.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\38514.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\40085.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\40865.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\4160.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\48439.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\54117.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\69398.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\78781.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\84444.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\AdobeX2\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Resident Evil 6\steam_api.dll (Trojan.VirTool) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000001 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\00\00000000 (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\00\00000002 (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\AdobeX2[1].exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Temp\50501.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Temp\82494.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Roaming\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Windows\Installer\5e07e.msi (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
(konec)
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.12.03.06
Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16438
Martin :: MÁRTY-PC [administrátor]
Ochrana: Povolena
3. 12. 2013 19:48:22
MBAM-log-2013-12-04 (07-07-25).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 565657
Uplynulý čas: 2 hodin, 53 minut, 25 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 1
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 26
C:\AdwCleaner\Quarantine\C\ProgramData\DSearchLink\DSearchLink.exe.vir (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Users\Martin\AppData\Roaming\file scout\filescout.exe.vir (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\150.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\17473.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\37999.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\38514.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\40085.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\40865.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\4160.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\48439.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\54117.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\69398.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\78781.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\84444.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\AdobeX2\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\Resident Evil 6\steam_api.dll (Trojan.VirTool) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000001 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\00\00000000 (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\File System\003\t\00\00000002 (PUP.Optional.OneClickDownloader.A) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\AdobeX2[1].exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Temp\50501.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Local\Temp\82494.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Users\Martin\AppData\Roaming\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\Windows\Installer\5e07e.msi (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
(konec)
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 07:19
Z nalezu MBAMu smazte vse krome
C:\AdwCleaner\Quarantine\C\ProgramData\DSearchLink\DSearchLink.exe.vir (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
C:\AdwCleaner\Quarantine\C\Users\Martin\AppData\Roaming\file scout\filescout.exe.vir (PUP.Optional.FileScout.A) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\150.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\17473.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\37999.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\38514.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\40085.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\40865.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\4160.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\48439.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\54117.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\69398.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\78781.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\84444.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
C:\FRST\Quarantine\AdobeX2\AdobeX2\ssvchost.exe (PUP.Riskware.Bitminer) -> Nebyla provedena žádná instrukce.
Udelejte HitmanPro dle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=101984Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 07:26
takže všechno co je ve vaší "citaci" tam mám nechat?
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 07:32
Aaaano, to nechte, jsou to nalezy v karantena = jiz smazane a neskodne
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 14:25
tak sem provedl kontrolu, s pomocí programu HitmanPro.. tady je log:
Kód: Vybrat vše
HitmanPro 3.7.8.208
www.hitmanpro.com
Computer name . . . . : MÁRTY-PC
Windows . . . . . . . : 6.3.0.9600.X64/4
User name . . . . . . : MÁRTY-PC\Martin
UAC . . . . . . . . . : Enabled
License . . . . . . . : Free
Scan date . . . . . . : 2013-12-04 14:16:04
Scan mode . . . . . . : Normal
Scan duration . . . . : 6m 37s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No
Threats . . . . . . . : 14
Traces . . . . . . . : 34
Objects scanned . . . : 1 888 334
Files scanned . . . . : 25 748
Remnants scanned . . : 721 688 files / 1 140 898 keys
Malware _____________________________________________________________________
C:\FRST\Quarantine\150.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.7 days (2013-12-02 22:18:57)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
C:\FRST\Quarantine\17473.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.7 days (2013-12-02 22:13:01)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
C:\FRST\Quarantine\37999.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 2.0 days (2013-12-02 14:32:51)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
0.0s C:\FRST\Quarantine\37999.exe
3.0s C:\Windows\Prefetch\40865.EXE-DD143BFA.pf
28.6s C:\Windows\Prefetch\37999.EXE-E2DA8110.pf
C:\FRST\Quarantine\38514.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.7 days (2013-12-02 20:19:27)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
-2.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\1FXQROZ3\frame[1].htm
-2.8s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\M5EG1EGD\ui-light[1].css
-2.3s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5FTSONA0\base[1].js
-2.3s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5FTSONA0\ui[1].js
-2.2s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5FTSONA0\wol.contentinstrumentation.logging[1].js
-2.2s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5FTSONA0\WinStore[1].js
-2.1s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\5FTSONA0\reviewer[1].jpg
-1.7s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\2X3L0M1F\WinStore[1].css
0.0s C:\FRST\Quarantine\38514.exe
1.0s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\1FXQROZ3\ClientBISettings[2].js
1.3s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\Cache\4\4-https∺∯∯wscont.apps.microsoft.com∯winstore∯A43F8337-2B31-4735-A006-9328167C3098∯6.3∯776∯WW∯cs-cz∯0∯146∯Home.htm.dat
1.4s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\M5EG1EGD\WinStore[2].appcache
1.4s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\
1.5s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\container.dat
1.5s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\appcache[1].man
1.6s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\wol.contentinstrumentation.logging[1].js
1.6s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\base[1].js
1.7s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\ui-light[1].css
1.7s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\ui[1].js
2.2s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\Frame[1].htm
2.2s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\WinStore[1].css
2.3s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\WinStore[1].js
2.5s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\features[1].json
2.5s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\frame[2].htm
2.6s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\AppCache\XD05SW1R\2\reviewer[1].jpg
2.6s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\2X3L0M1F\features[1].json
2.6s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\2X3L0M1F\osUpgrade[1].json
7.3s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\Kernel_141_e77cc6dc95624186932e9b4d43d4c8a979a9ca_00000000_cab_15a64e26\
7.3s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\Kernel_141_e77cc6dc95624186932e9b4d43d4c8a979a9ca_00000000_cab_15a64e26\Report.wer
9.2s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\Kernel_117_7fe581a51c247f47d13c3412b5cd91276adc5ebe_00000000_cab_09ae55a8\
9.2s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\Kernel_117_7fe581a51c247f47d13c3412b5cd91276adc5ebe_00000000_cab_09ae55a8\Report.wer
10.5s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\Cache\4\4-https∺∯∯wscont.apps.microsoft.com∯winstore∯A43F8337-2B31-4735-A006-9328167C3098∯6.3∯776∯WW∯cs-cz∯0∯146∯Updates.htm.dat
11.0s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\1FXQROZ3\trans_pixel[3].gif
12.8s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\M5EG1EGD\trans_pixel[3].gif
15.3s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{4cdae958-8baf-41f4-9cb1-aff4a0cfce1e}\
15.3s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{4cdae958-8baf-41f4-9cb1-aff4a0cfce1e}\snapshot.etl
35.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\1FXQROZ3\Icon.210229[1].png
35.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\M5EG1EGD\Icon.215891[1].png
35.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\2X3L0M1F\Icon.213803[1].png
35.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\1FXQROZ3\Icon.209257[1].png
35.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\M5EG1EGD\Icon.246213[1].jpg
36.0s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\M5EG1EGD\Icon.250021[1].png
36.5s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\2X3L0M1F\trans_pixel[3].gif
39.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\cf317822-d092-42e8-8066-4cda958a8f7f.txt
39.9s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\64a79953-cf0b-44f9-b5c4-ee5df3a15c63.txt
39.9s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\AC\INetCache\1FXQROZ3\trans_pixel[4].gif
40.0s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\5e19cc61-8994-4797-bdc7-c21263f6282b.txt
40.0s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\ffc158e5-74d6-4878-8ace-8f0df45083c1.txt
40.0s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\60d82dc7-9037-4295-90e2-1dff4293995a.txt
40.1s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\98bc0b52-5e5c-4097-b58e-e8e859e1829f.txt
40.1s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Checkpoints\eaaf2ce3-d5a3-4a59-ae31-276fbc44a7cd.txt
41.4s C:\ProgramData\Intel\Intel Extreme Tuning Utility\Logs\XtuCore.20131202-2020094071.log
44.2s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯60d82dc7-9037-4295-90e2-1dff4293995a.dat
44.2s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯cf317822-d092-42e8-8066-4cda958a8f7f.dat
44.2s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯ffc158e5-74d6-4878-8ace-8f0df45083c1.dat
44.2s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯5e19cc61-8994-4797-bdc7-c21263f6282b.dat
44.2s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯eaaf2ce3-d5a3-4a59-ae31-276fbc44a7cd.dat
44.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯98bc0b52-5e5c-4097-b58e-e8e859e1829f.dat
44.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\0\0-ProductTileExtendedByProductGuid-https∺∯∯next-services.apps.microsoft.com∯browse∯6.3.9600-0∯776∯en-US_cs-CZ∯c∯CZ∯cp∯10012072∯Apps∯64a79953-cf0b-44f9-b5c4-ee5df3a15c63.dat
46.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯d40cf3a2-6fc2-4b4b-a8c9-dafea79d4d95∯Icon.215891.png.dat
46.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯4cce6e93-2e05-46c3-b462-29bd4d3b3667∯Icon.208695.png.dat
46.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯d40cf3a2-6fc2-4b4b-a8c9-dafea79d4d95∯AppTile.3.215891.215765.png.dat
46.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯b17eedfd-4192-4e10-8881-25a86c1608f0∯Icon.213803.png.dat
46.3s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯4cce6e93-2e05-46c3-b462-29bd4d3b3667∯AppTile.3.208695.208193.png.dat
46.4s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯4af5bdd5-0f9b-44b5-a66b-4dd029854464∯Icon.250021.png.dat
46.4s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯4cce6e93-2e05-46c3-b462-29bd4d3b3667∯AppTile.1.208695.208193.png.dat
46.6s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯b17eedfd-4192-4e10-8881-25a86c1608f0∯AppTile.3.213803.213639.png.dat
46.7s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯b17eedfd-4192-4e10-8881-25a86c1608f0∯AppTile.1.213803.213639.png.dat
46.7s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯d40cf3a2-6fc2-4b4b-a8c9-dafea79d4d95∯AppTile.1.215891.215765.png.dat
46.7s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯AppTile.3.210229.209783.png.dat
46.7s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯4af5bdd5-0f9b-44b5-a66b-4dd029854464∯AppTile.1.250021.250733.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯81dd0427-e94d-4f21-b2c9-c364e69cd1a4∯Icon.246213.jpg.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯4af5bdd5-0f9b-44b5-a66b-4dd029854464∯AppTile.3.250021.250733.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯Icon.210229.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯AppTile.1.210229.209783.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯81dd0427-e94d-4f21-b2c9-c364e69cd1a4∯AppTile.3.246213.246908.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯AppTile.3.210229.209784.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯AppTile.1.210229.209784.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯AppTile.3.210229.209785.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯da56205e-4383-49d1-9021-1fdabda630f2∯AppTile.1.210229.209785.png.dat
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont2.apps.microsoft.com∯winstore∯1x∯ae948ae2-a3b1-4795-a7da-733d1301923b∯Icon.209257.png.dat
46.9s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont1.apps.microsoft.com∯winstore∯1x∯81dd0427-e94d-4f21-b2c9-c364e69cd1a4∯AppTile.1.246213.246908.jpg.dat
47.0s C:\Users\Martin\AppData\Local\Microsoft\Windows Store\Cache\4\4-http∺∯∯wscont2.apps.microsoft.com∯winstore∯1x∯ae948ae2-a3b1-4795-a7da-733d1301923b∯AppTile.1.209257.208760.png.dat
47.8s C:\Users\Martin\AppData\Local\Packages\WinStore_cw5n1h2txyewy\LocalState\Cache\4\4-https∺∯∯wscont.apps.microsoft.com∯winstore∯A43F8337-2B31-4735-A006-9328167C3098∯6.3∯776∯WW∯cs-cz∯0∯146∯Installs.htm.dat
C:\FRST\Quarantine\40085.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.0 days (2013-12-03 14:19:07)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
0.0s C:\FRST\Quarantine\40085.exe
3.4s C:\FRST\Quarantine\IObit\Advanced SystemCare 6\Update\Update.ini
C:\FRST\Quarantine\40865.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 2.0 days (2013-12-02 14:32:17)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
C:\FRST\Quarantine\4160.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.7 days (2013-12-02 20:48:57)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
0.0s C:\FRST\Quarantine\4160.exe
1.2s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache\
4.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\
4.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index
4.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0
4.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
4.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2
4.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3
C:\FRST\Quarantine\48439.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.8 days (2013-12-02 19:49:49)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
-3.0s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{bdbc0452-723a-4af0-9382-8691903f9d11}\
-3.0s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{bdbc0452-723a-4af0-9382-8691903f9d11}\snapshot.etl
0.0s C:\FRST\Quarantine\48439.exe
C:\FRST\Quarantine\54117.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.7 days (2013-12-02 22:23:32)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
C:\FRST\Quarantine\69398.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 2.0 days (2013-12-02 14:29:49)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
-6.8s C:\Users\Martin\AppData\Local\Packages\Microsoft.BingTravel_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\UsageLogs\backgroundTaskHost.exe.log
-6.8s C:\Users\Martin\AppData\Local\Packages\Microsoft.BingWeather_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\UsageLogs\backgroundTaskHost.exe.log
-5.8s C:\Windows\System32\wdi\{ffc42108-4920-4acf-a4fc-8abdcc68ada4}\{04f6c3f3-4d8d-40d0-b43f-441d6723b89c}\
-5.8s C:\Windows\System32\wdi\{533a67eb-9fb5-473d-b884-958cf4b9c4a3}\{fad84bcb-f2dc-49a5-8ed9-e24eca985fc9}\
-2.4s C:\Users\Martin\AppData\Local\Packages\Microsoft.BingFinance_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\UsageLogs\backgroundTaskHost.exe.log
-0.2s C:\Windows\System32\wdi\{ffc42108-4920-4acf-a4fc-8abdcc68ada4}\{04f6c3f3-4d8d-40d0-b43f-441d6723b89c}\snapshot.etl
-0.2s C:\Windows\System32\wdi\{533a67eb-9fb5-473d-b884-958cf4b9c4a3}\{fad84bcb-f2dc-49a5-8ed9-e24eca985fc9}\snapshot.etl
0.0s C:\FRST\Quarantine\69398.exe
3.5s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_7.9.9600.16422_7f54a7f6dcf52929e57123827f86f19539aeaf_00000000_237d212a\
3.5s C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_7.9.9600.16422_7f54a7f6dcf52929e57123827f86f19539aeaf_00000000_237d212a\Report.wer
C:\FRST\Quarantine\78781.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.0 days (2013-12-03 15:05:58)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
-7.6s C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\21982dade69f78d8.customDestinations-ms
-6.5s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0022\opr015D1.tmp
-6.5s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0022\opr015D2.tmp
-4.6s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\global_history.dat
0.0s C:\FRST\Quarantine\78781.exe
1.2s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\typed_history.xml
C:\FRST\Quarantine\84444.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 1.7 days (2013-12-02 20:41:18)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
0.0s C:\FRST\Quarantine\84444.exe
3.2s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{246f820b-43e7-487b-a76c-2008445523e0}\
3.3s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{246f820b-43e7-487b-a76c-2008445523e0}\snapshot.etl
C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\AdobeX2[1].exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 0.0 days (2013-12-04 14:08:51)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 116.0
Forensic Cluster
-83.5s C:\Users\Martin\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl
-81.6s C:\Windows\Prefetch\MBAMGUI.EXE-61969F2F.pf
-81.6s C:\Windows\Prefetch\RUNDLL32.EXE-98561691.pf
-81.1s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\backend.log
-80.7s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.jour.dat.bak
-80.7s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.main.xml.bak
-80.7s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.main.xml
-80.7s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.jour.dat
-79.2s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{7CB6D0E1-6F36-47AB-A6ED-B52FC697D09F}
-78.5s C:\Windows\Prefetch\NVTRAY.EXE-F66DB52A.pf
-77.9s C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\f8223f9c82c305715237163085030739_70c3af41-d4e2-4f2a-a1a2-58cfc878595f
-75.9s C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\daf4242fa5f437c2b5b90800d29b5d7e_70c3af41-d4e2-4f2a-a1a2-58cfc878595f
-69.9s C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\
-68.7s C:\Windows\Prefetch\WMIPRVSE.EXE-8DDA8D43.pf
-63.0s C:\Windows\Prefetch\SEARCHINDEXER.EXE-C215DBE0.pf
-61.7s C:\Users\Martin\AppData\Local\Microsoft\Windows\SkyDrive\logs\SyncEngine-2013-12-04.1407.5108-1.etl
-56.6s C:\Windows\Prefetch\IGFXTRAY.EXE-507AEBDD.pf
-55.8s C:\Windows\Prefetch\SKYDRIVE.EXE-3C7833DC.pf
-55.8s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{36BF6257-88E9-4F89-8A66-F4BA26992EE2}
-54.6s C:\Windows\Prefetch\RUNDLL32.EXE-00F4C79D.pf
-52.9s C:\Windows\Prefetch\NVBACKEND.EXE-22AE13FB.pf
-52.3s C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-B94F1CA4.pf
-51.2s C:\Windows\Prefetch\HKCMD.EXE-C9BBDB22.pf
-50.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{A5B4A00C-DD46-427B-9BDC-CC1BF804054F}
-50.4s C:\Windows\Prefetch\IGFXPERS.EXE-B1848267.pf
-48.6s C:\Windows\Prefetch\DLLHOST.EXE-6FC4F289.pf
-47.6s C:\Windows\Prefetch\TASKKILL.EXE-1B91EAB2.pf
-47.0s C:\Windows\Prefetch\REG.EXE-2BDCBF7D.pf
-46.2s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{39CECC69-F3ED-445C-A6CB-2528C52DD355}
-45.2s C:\Windows\Prefetch\RAVCPL64.EXE-35BEA30A.pf
-44.2s C:\Windows\Prefetch\RAVBG64.EXE-EDE47E64.pf
-43.7s C:\Users\Martin\AppData\Local\Microsoft\Windows\SkyDrive\settings\a7f3207a0b72eab0.ini
-42.9s C:\Windows\Prefetch\FMAPP.EXE-E7B5C8AC.pf
-42.1s C:\Windows\Prefetch\IASTORICONLAUNCH.EXE-EF0849CE.pf
-41.6s C:\Users\Martin\AppData\Local\Microsoft\Windows\SkyDrive\settings\a7f3207a0b72eab0.dat
-40.9s C:\Windows\Prefetch\MFCMIFC.EXE-029680D6.pf
-36.8s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{F0A36A90-E7F8-4398-85F8-A389154C0C9E}
-36.7s C:\Windows\Prefetch\WINSVCHOST.EXE-E54A0154.pf
-35.0s C:\Users\Martin\AppData\Local\Microsoft\SmartScreen\ARC8C0.tmp
-27.3s C:\Windows\Prefetch\NAPSNAP.EXE-0C37B622.pf
-19.0s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\speeddial.ini
-18.3s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IP.tmp
-16.5s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\e203e98e4c606735cf56db84a002fd22.ico
-16.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\d7c109af143b7d573d189fda3ece7443.ico
-16.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\ee6905a1e190730d9be770d701b4f52e.ico
-16.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\daf01c7e07c21cda9a7dee4510f8ef4d.ico
-12.5s C:\Windows\Prefetch\REG.EXE-8D6C46C1.pf
-12.5s C:\Windows\Prefetch\CMD.EXE-F0053CFF.pf
-11.4s C:\Windows\System32\Tasks\MSIAfterburner
-11.1s C:\Windows\System32\LogFiles\Scm\b91d3b7c-cb81-42c6-85c4-86bd6aed95bf
-8.2s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IQ.tmp
-8.2s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IR.tmp
-8.2s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IW.tmp
-7.5s C:\Windows\Prefetch\ReadyBoot\Trace4.fx
-7.1s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{351a4494-f228-4a3f-83fc-451efe0f2009}\
-7.1s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{351a4494-f228-4a3f-83fc-451efe0f2009}\snapshot.etl
-6.3s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{33DA5550-0EF5-42A1-827C-ADC6437D7BFB}
-3.0s C:\Windows\Prefetch\APPLAUNCH.EXE-7042E45B.pf
-2.2s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{C7E711AE-1EA8-478F-A01C-82A7B9A92B67}
-2.1s C:\Users\Martin\AppData\Local\Opera\Opera x64\pstorage\00\08\00000003
-1.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{D69EB1F9-86DF-45CA-9900-E60E6772581E}
-1.3s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\sessions\autosave.win
-1.2s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\operaprefs.ini
-0.9s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\tips.ini
0.0s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\AdobeX2[1].exe
0.2s C:\Users\Martin\AppData\Local\Temp\10183.exe
0.7s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\cookies4.dat
1.1s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\vlink4.dat
1.3s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\revocation\vlink4.dat
1.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\application_cache\mcache\vlink4.dat
1.5s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\spdysett.dat
3.2s C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-DA9BF56E.pf
4.1s C:\Windows\Prefetch\DELEGATE_EXECUTE.EXE-10BDC566.pf
4.2s C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrc.idx
6.4s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\lockfile
6.6s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
6.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\001252.log
6.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-001251
7.3s C:\Windows\Prefetch\JHI_SERVICE.EXE-34AB53D0.pf
8.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
9.1s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Current Session
9.2s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{45594A4A-86E3-4451-9EE5-2F0AA4EC20F0}
11.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
12.0s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension State\001646.log
12.0s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-001644
12.1s C:\Windows\Prefetch\SPPSVC.EXE-6025096A.pf
13.3s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{B6E290DE-2590-4907-A7B0-25908B272233}
14.0s C:\Users\Martin\AppData\Local\Temp\etilqs_Nx30bunyacG2UYA
14.1s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c7
14.7s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
15.2s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002297.ldb
15.3s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002298.log
15.3s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-002296
16.8s C:\ProgramData\Intel\Intel Extreme Tuning Utility\Logs\XtuCore.20131204-1409082731.log
18.0s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c8
18.8s C:\Windows\Prefetch\IASTORICON.EXE-526B9CA7.pf
19.1s C:\ProgramData\Intel\Intel Extreme Tuning Utility\AuxWatchdog
22.6s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{EB8184BD-3731-47C4-A263-D84BBFCC784E}
22.8s C:\Windows\Prefetch\XTUSERVICE.EXE-92CEB569.pf
23.0s C:\Users\Martin\AppData\Roaming\AdobeX2\ssvchost.exe
24.8s C:\Windows\Prefetch\10183.EXE-7414E448.pf
25.4s C:\Windows\Prefetch\TASKKILL.EXE-6C471CD6.pf
37.6s C:\Windows\Prefetch\WMPNETWK.EXE-30C0D75E.pf
47.0s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\H1H94WCG\suggestions[4].htm
48.9s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCookies\7PJHD0ZU.txt
48.9s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\suggestions[1].htm
59.9s C:\Windows\Prefetch\DLLHOST.EXE-E618712D.pf
C:\Users\Martin\AppData\Local\Temp\10183.exe
Size . . . . . . . : 1 830 850 bytes
Age . . . . . . . : 0.0 days (2013-12-04 14:08:51)
Entropy . . . . . : 8.0
SHA-256 . . . . . : 277696885FBEE5E299ECA08EADE6F7450C5B9F1B533A944E90128AF26442A321
Source URL . . . . : hxxp://198.98.113.2/~gbebnvxp/AdobeX2.exe
> Kaspersky . . . . : Trojan.Win32.Agent.adaqt
Fuzzy . . . . . . : 119.0
Forensic Cluster
-83.7s C:\Users\Martin\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveCommLast.etl
-81.9s C:\Windows\Prefetch\MBAMGUI.EXE-61969F2F.pf
-81.9s C:\Windows\Prefetch\RUNDLL32.EXE-98561691.pf
-81.3s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\backend.log
-80.9s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.jour.dat.bak
-80.9s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.main.xml.bak
-80.9s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.main.xml
-80.9s C:\Users\Martin\AppData\Local\NVIDIA\NvBackend\journalBS.jour.dat
-79.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{7CB6D0E1-6F36-47AB-A6ED-B52FC697D09F}
-78.7s C:\Windows\Prefetch\NVTRAY.EXE-F66DB52A.pf
-78.1s C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\f8223f9c82c305715237163085030739_70c3af41-d4e2-4f2a-a1a2-58cfc878595f
-76.1s C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\daf4242fa5f437c2b5b90800d29b5d7e_70c3af41-d4e2-4f2a-a1a2-58cfc878595f
-70.1s C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\
-68.9s C:\Windows\Prefetch\WMIPRVSE.EXE-8DDA8D43.pf
-63.2s C:\Windows\Prefetch\SEARCHINDEXER.EXE-C215DBE0.pf
-61.9s C:\Users\Martin\AppData\Local\Microsoft\Windows\SkyDrive\logs\SyncEngine-2013-12-04.1407.5108-1.etl
-56.8s C:\Windows\Prefetch\IGFXTRAY.EXE-507AEBDD.pf
-56.0s C:\Windows\Prefetch\SKYDRIVE.EXE-3C7833DC.pf
-56.0s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{36BF6257-88E9-4F89-8A66-F4BA26992EE2}
-54.8s C:\Windows\Prefetch\RUNDLL32.EXE-00F4C79D.pf
-53.1s C:\Windows\Prefetch\NVBACKEND.EXE-22AE13FB.pf
-52.5s C:\Windows\Prefetch\SETTINGSYNCHOST.EXE-B94F1CA4.pf
-51.4s C:\Windows\Prefetch\HKCMD.EXE-C9BBDB22.pf
-50.6s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{A5B4A00C-DD46-427B-9BDC-CC1BF804054F}
-50.6s C:\Windows\Prefetch\IGFXPERS.EXE-B1848267.pf
-48.8s C:\Windows\Prefetch\DLLHOST.EXE-6FC4F289.pf
-47.8s C:\Windows\Prefetch\TASKKILL.EXE-1B91EAB2.pf
-47.2s C:\Windows\Prefetch\REG.EXE-2BDCBF7D.pf
-46.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{39CECC69-F3ED-445C-A6CB-2528C52DD355}
-45.4s C:\Windows\Prefetch\RAVCPL64.EXE-35BEA30A.pf
-44.4s C:\Windows\Prefetch\RAVBG64.EXE-EDE47E64.pf
-43.9s C:\Users\Martin\AppData\Local\Microsoft\Windows\SkyDrive\settings\a7f3207a0b72eab0.ini
-43.1s C:\Windows\Prefetch\FMAPP.EXE-E7B5C8AC.pf
-42.3s C:\Windows\Prefetch\IASTORICONLAUNCH.EXE-EF0849CE.pf
-41.8s C:\Users\Martin\AppData\Local\Microsoft\Windows\SkyDrive\settings\a7f3207a0b72eab0.dat
-41.1s C:\Windows\Prefetch\MFCMIFC.EXE-029680D6.pf
-37.0s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{F0A36A90-E7F8-4398-85F8-A389154C0C9E}
-36.9s C:\Windows\Prefetch\WINSVCHOST.EXE-E54A0154.pf
-35.2s C:\Users\Martin\AppData\Local\Microsoft\SmartScreen\ARC8C0.tmp
-27.5s C:\Windows\Prefetch\NAPSNAP.EXE-0C37B622.pf
-19.2s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\speeddial.ini
-18.5s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IP.tmp
-16.7s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\e203e98e4c606735cf56db84a002fd22.ico
-16.6s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\d7c109af143b7d573d189fda3ece7443.ico
-16.6s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\ee6905a1e190730d9be770d701b4f52e.ico
-16.6s C:\Users\Martin\AppData\Local\Opera\Opera x64\jumplist_icon_cache\daf01c7e07c21cda9a7dee4510f8ef4d.ico
-12.7s C:\Windows\Prefetch\REG.EXE-8D6C46C1.pf
-12.7s C:\Windows\Prefetch\CMD.EXE-F0053CFF.pf
-11.6s C:\Windows\System32\Tasks\MSIAfterburner
-11.3s C:\Windows\System32\LogFiles\Scm\b91d3b7c-cb81-42c6-85c4-86bd6aed95bf
-8.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IQ.tmp
-8.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IR.tmp
-8.4s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\g_0042\opr018IW.tmp
-7.7s C:\Windows\Prefetch\ReadyBoot\Trace4.fx
-7.3s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{351a4494-f228-4a3f-83fc-451efe0f2009}\
-7.3s C:\Windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\{351a4494-f228-4a3f-83fc-451efe0f2009}\snapshot.etl
-6.5s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{33DA5550-0EF5-42A1-827C-ADC6437D7BFB}
-3.2s C:\Windows\Prefetch\APPLAUNCH.EXE-7042E45B.pf
-2.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{C7E711AE-1EA8-478F-A01C-82A7B9A92B67}
-2.3s C:\Users\Martin\AppData\Local\Opera\Opera x64\pstorage\00\08\00000003
-1.6s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{D69EB1F9-86DF-45CA-9900-E60E6772581E}
-1.5s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\sessions\autosave.win
-1.4s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\operaprefs.ini
-1.1s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\tips.ini
-0.2s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\AdobeX2[1].exe
0.0s C:\Users\Martin\AppData\Local\Temp\10183.exe
0.5s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\cookies4.dat
0.9s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\vlink4.dat
1.1s C:\Users\Martin\AppData\Local\Opera\Opera x64\cache\revocation\vlink4.dat
1.2s C:\Users\Martin\AppData\Local\Opera\Opera x64\application_cache\mcache\vlink4.dat
1.3s C:\Users\Martin\AppData\Roaming\Opera\Opera x64\spdysett.dat
3.0s C:\Windows\Prefetch\IASTORDATAMGRSVC.EXE-DA9BF56E.pf
3.9s C:\Windows\Prefetch\DELEGATE_EXECUTE.EXE-10BDC566.pf
4.0s C:\ProgramData\Microsoft\Windows\DeviceMetadataCache\dmrc.idx
6.2s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\lockfile
6.4s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
6.6s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\001252.log
6.6s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-001251
7.1s C:\Windows\Prefetch\JHI_SERVICE.EXE-34AB53D0.pf
8.7s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
8.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Current Session
9.0s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{45594A4A-86E3-4451-9EE5-2F0AA4EC20F0}
11.7s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
11.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension State\001646.log
11.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-001644
11.9s C:\Windows\Prefetch\SPPSVC.EXE-6025096A.pf
13.1s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{B6E290DE-2590-4907-A7B0-25908B272233}
13.8s C:\Users\Martin\AppData\Local\Temp\etilqs_Nx30bunyacG2UYA
13.9s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c7
14.5s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
15.0s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002297.ldb
15.1s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\002298.log
15.1s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-002296
16.6s C:\ProgramData\Intel\Intel Extreme Tuning Utility\Logs\XtuCore.20131204-1409082731.log
17.8s C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cache\f_0000c8
18.6s C:\Windows\Prefetch\IASTORICON.EXE-526B9CA7.pf
18.9s C:\ProgramData\Intel\Intel Extreme Tuning Utility\AuxWatchdog
22.4s C:\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Resource\{EB8184BD-3731-47C4-A263-D84BBFCC784E}
22.6s C:\Windows\Prefetch\XTUSERVICE.EXE-92CEB569.pf
22.8s C:\Users\Martin\AppData\Roaming\AdobeX2\ssvchost.exe
24.6s C:\Windows\Prefetch\10183.EXE-7414E448.pf
25.2s C:\Windows\Prefetch\TASKKILL.EXE-6C471CD6.pf
37.4s C:\Windows\Prefetch\WMPNETWK.EXE-30C0D75E.pf
46.8s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\H1H94WCG\suggestions[4].htm
48.7s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCookies\7PJHD0ZU.txt
48.7s C:\Users\Martin\AppData\Local\Microsoft\Windows\INetCache\IE\PUTEEZQL\suggestions[1].htm
59.7s C:\Windows\Prefetch\DLLHOST.EXE-E618712D.pf
Suspicious files ____________________________________________________________
C:\Users\Martin\AppData\Local\PunkBuster\BF4\pb\pbcl.dll
Size . . . . . . . : 963 808 bytes
Age . . . . . . . : 32.1 days (2013-11-02 11:53:18)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 606BF35587821588DF7788E9265CEA593E832F8F048BDAD480E8BFF45E52A60D
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : 22.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
Program is code signed with a valid Authenticode certificate.
C:\Users\Martin\AppData\Local\PunkBuster\BF4\pb\pbcls.dll
Size . . . . . . . : 963 808 bytes
Age . . . . . . . : 32.1 days (2013-11-02 11:53:18)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 606BF35587821588DF7788E9265CEA593E832F8F048BDAD480E8BFF45E52A60D
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : 22.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
Program is code signed with a valid Authenticode certificate.
C:\Users\Martin\AppData\Local\PunkBuster\FC3\pb\pbcl.dll
Size . . . . . . . : 953 886 bytes
Age . . . . . . . : 331.9 days (2013-01-06 17:42:40)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 6D5E2CD4A7A43EB00B600BA783AD3BEE6B817C030A40600D40367173A6ECEB13
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
C:\Users\Martin\AppData\Local\PunkBuster\FC3\pb\pbcls.dll
Size . . . . . . . : 953 886 bytes
Age . . . . . . . : 331.9 days (2013-01-06 17:42:40)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 6D5E2CD4A7A43EB00B600BA783AD3BEE6B817C030A40600D40367173A6ECEB13
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
C:\Users\Martin\AppData\Local\PunkBuster\FC3\pb\PnkBstrK.sys
Size . . . . . . . : 138 032 bytes
Age . . . . . . . : 331.9 days (2013-01-06 17:42:52)
Entropy . . . . . : 7.8
SHA-256 . . . . . : ABAF3FACF01E10E4C685F79C3B9E5D2118B3CF8629C4277EBE035B2A10474148
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : 22.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
The file is a device driver. Device drivers run as trusted (highly privileged) code.
Program is code signed with a valid Authenticode certificate.
C:\Users\Martin\AppData\Local\PunkBuster\GRFS\pb\PnkBstrK.sys
Size . . . . . . . : 139 752 bytes
Age . . . . . . . : 332.9 days (2013-01-05 15:49:13)
Entropy . . . . . : 7.8
SHA-256 . . . . . : 190F16E9E5087FB75ADFDE73CF658FE493193DCFE2191172F1639C9FE658CA20
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : 22.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
The file is a device driver. Device drivers run as trusted (highly privileged) code.
Program is code signed with a valid Authenticode certificate.
C:\Users\Martin\AppData\Local\PunkBuster\WF\pb\pbcl.dll
Size . . . . . . . : 951 565 bytes
Age . . . . . . . : 332.7 days (2013-01-05 20:25:08)
Entropy . . . . . : 7.6
SHA-256 . . . . . : 28FDCBC64DEB82D8A64A4770F2B616CE5E95B4751BBE6FA459DD2B64A12298CF
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
C:\Users\Martin\AppData\Local\PunkBuster\WF\pb\PnkBstrK.sys
Size . . . . . . . : 139 128 bytes
Age . . . . . . . : 332.7 days (2013-01-05 20:25:19)
Entropy . . . . . : 7.7
SHA-256 . . . . . : DD1DC609F49E1D61C5269CEBAA7603EFD9BDD5234A3D1C46A2F34EE637A6061D
RSA Key Size . . . : 2048
Authenticode . . . : Valid
Fuzzy . . . . . . : 22.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
The file is a device driver. Device drivers run as trusted (highly privileged) code.
Program is code signed with a valid Authenticode certificate.
C:\Users\Martin\AppData\Roaming\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\pb\dll\wc002278.dll
Size . . . . . . . : 972 501 bytes
Age . . . . . . . : 161.8 days (2013-06-25 20:06:28)
Entropy . . . . . : 7.6
SHA-256 . . . . . : CCD4FD05B76D1C64855930E0B24365B4C9ABA3F3319DACEE5D06A565D5CC78F9
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
C:\Users\Martin\AppData\Roaming\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\pb\dll\wc002289.dll
Size . . . . . . . : 972 501 bytes
Age . . . . . . . : 333.0 days (2013-01-05 15:00:07)
Entropy . . . . . : 7.6
SHA-256 . . . . . : CCD4FD05B76D1C64855930E0B24365B4C9ABA3F3319DACEE5D06A565D5CC78F9
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
C:\Users\Martin\AppData\Roaming\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\pb\pbcl.dll
Size . . . . . . . : 972 501 bytes
Age . . . . . . . : 161.8 days (2013-06-25 20:06:29)
Entropy . . . . . : 7.6
SHA-256 . . . . . : CCD4FD05B76D1C64855930E0B24365B4C9ABA3F3319DACEE5D06A565D5CC78F9
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
C:\Users\Martin\AppData\Roaming\Ubisoft\Tom Clancy's Ghost Recon Future Soldier\pb\pbcls.dll
Size . . . . . . . : 972 501 bytes
Age . . . . . . . : 161.8 days (2013-06-25 20:06:29)
Entropy . . . . . : 7.6
SHA-256 . . . . . : CCD4FD05B76D1C64855930E0B24365B4C9ABA3F3319DACEE5D06A565D5CC78F9
Fuzzy . . . . . . : 29.0
The .reloc (relocation) section in this program contains code. This is an indication of malware infection.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Program contains PE structure anomalies. This is not typical for most programs.
Potential Unwanted Programs _________________________________________________
HKU\.DEFAULT\Software\BabSolution\ (SpeedUpMyPC)
HKU\S-1-5-18\Software\BabSolution\ (SpeedUpMyPC)
Cookies _____________________________________________________________________
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cookies:ads.p161.net
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cookies:advertstream.com
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cookies:atdmt.com
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cookies:sex-vztahy.doktorka.cz
C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Cookies:track.adform.net
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 19:22
Poprosim o novy log z FRSTLauncheru
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 19:50
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-12-2013
Ran by Martin (administrator) on MÁRTY-PC on 04-12-2013 19:45:46
Running from C:\Users\Martin\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
() C:\Users\Martin\Videos\napsnap.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
() C:\Users\Martin\Videos\mfcmifc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Martin\AppData\Roaming\AdobeX2\winsvchost.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [SynLenovoGestureMgr] - C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-08-27] (Synaptics)
HKLM\...\Run: [OnekeyStudio] - C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-08-10] (Lenovo)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2013-11-12] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [193008 2013-11-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-27] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [AdobeUpdate] - C:\Users\Martin\AppData\Roaming\AdobeX2\invis.vbs [78 2012-07-02] ()
HKCU\...\RunOnce: [MFC Managed Interfaces Library] - C:\Users\Martin\Videos\mfcmifc.exe [16896 2013-12-04] ()
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-08-16] (Intel Corporation)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [139792 2012-11-08] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-11-08] (CyberLink Corp.)
==================== Internet (Whitelisted) ====================
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 8.8.8.8
Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp
CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp"
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A35 ... 2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Nokia Suite Enabler Plugin) - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll No File
CHR Extension: (Google Docs) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Into The Mist) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgihmkgobaljfehcadcckdggpeojaadh\1_0
CHR Extension: (Google Wallet) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
==================== Services (Whitelisted) =================
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2227992 2013-10-12] (Broadcom Corporation.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-08] (Intel Corporation)
S4 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241016 2012-12-26] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218320 2012-12-26] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [182312 2012-12-26] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-07-18] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\SysWow64\PnkBstrA.exe [76888 2013-11-06] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [18384 2013-09-04] (Intel(R) Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2699568 2012-07-18] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx64.sys [46368 2013-11-20] (AVG Technologies)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-12-26] (McAfee, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-11-01] (Disc Soft Ltd)
S3 GPU-Z; No ImagePath
R3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [32512 2013-12-04] ()
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-12] (Microsoft Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [26328 2013-07-23] (Intel Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [44544 2013-01-15] (ManyCam LLC)
S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-07-26] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [178840 2012-12-26] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309400 2012-12-26] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69168 2012-12-26] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515528 2012-12-26] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771096 2012-12-26] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-12-26] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [339776 2012-12-26] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8222736 2012-06-15] (Realtek Semiconductor Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2013-05-22] ()
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-12] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
U4 AdvancedSystemCareService6;
U4 Application Updater;
S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [x]
U4 vToolbarUpdater17.1.3;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-04 19:45 - 2013-12-04 19:46 - 00016184 _____ C:\Users\Martin\Desktop\FRST.txt
2013-12-04 19:44 - 2013-12-04 19:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-12-04 19:43 - 2013-12-04 19:43 - 01959766 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-12-04 15:14 - 2013-12-04 15:13 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-12-04 15:13 - 2013-12-04 15:13 - 00000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log
2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro
2013-12-04 14:14 - 2013-12-04 14:16 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-04 14:12 - 2013-12-04 14:14 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
2013-12-04 14:08 - 2013-12-04 14:08 - 00003024 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2013-12-03 23:55 - 2013-12-04 19:00 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 23:55 - 2013-12-04 14:07 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 20:46 - 2013-11-29 17:56 - 01096480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-03 20:44 - 2013-12-03 20:44 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-03 20:43 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-03 20:43 - 2013-10-30 18:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-03 20:43 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-12-03 20:42 - 2013-12-03 20:44 - 00000039 _____ C:\WINDOWS\setupact.log
2013-12-03 20:42 - 2013-12-03 20:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-03 19:47 - 2013-12-04 14:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-03 19:47 - 2013-12-03 19:47 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Malwarebytes
2013-12-03 18:27 - 2013-12-04 14:09 - 00000000 ____D C:\Users\Martin\AppData\Roaming\AdobeX2
2013-12-03 18:27 - 2013-12-03 18:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Adobe
2013-12-03 16:35 - 2013-12-03 18:14 - 00000000 ____D C:\FRST
2013-12-03 14:27 - 2013-12-03 14:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-03 14:15 - 2013-12-04 14:06 - 00003894 _____ C:\WINDOWS\PFRO.log
2013-12-03 14:04 - 2013-12-03 14:07 - 00000000 ____D C:\AdwCleaner
2013-12-03 13:40 - 2013-12-03 13:48 - 00000000 ____D C:\rsit
2013-12-03 13:40 - 2013-12-03 13:48 - 00000000 ____D C:\Program Files\trend micro
2013-11-30 09:29 - 2013-11-30 09:29 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-11-27 18:51 - 2013-11-27 18:51 - 00000896 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-11-23 10:45 - 2013-11-23 10:45 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-21 22:02 - 2013-11-21 22:02 - 00001505 _____ C:\Users\Martin\Desktop\Battlefield 4.lnk
2013-11-20 16:50 - 2013-11-20 16:50 - 00000902 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\system32\NV
2013-11-20 00:01 - 2013-11-11 16:01 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-11-20 00:01 - 2013-11-11 16:01 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-19 23:59 - 2013-11-20 00:00 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-11-19 23:58 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 15218504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-11-19 23:58 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 03069608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 02697248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01436528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01242400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00357152 _____ C:\WINDOWS\system32\NvIFROpenGL.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00314656 _____ C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2013-11-19 23:58 - 2013-11-14 12:58 - 00023754 _____ C:\WINDOWS\system32\nvinfo.pb
2013-11-19 17:48 - 2013-12-02 21:43 - 00028160 ___SH C:\Users\Martin\Downloads\Thumbs.db
2013-11-18 23:31 - 2013-11-18 23:31 - 00001590 _____ C:\Users\Martin\Desktop\Need For Speed Rivals.lnk
2013-11-18 23:20 - 2013-11-18 23:20 - 00000000 ____D C:\Users\Martin\Documents\Ghost Games
2013-11-16 20:47 - 2013-11-05 17:20 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-16 20:46 - 2013-11-05 21:21 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-16 20:46 - 2013-11-05 19:51 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-16 20:46 - 2013-11-05 17:11 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-16 20:46 - 2013-11-05 15:30 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-16 20:46 - 2013-11-05 15:29 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-16 20:46 - 2013-10-10 12:26 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-16 20:46 - 2013-10-10 12:05 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-16 20:46 - 2013-10-10 11:34 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-16 20:46 - 2013-10-10 11:27 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-15 22:08 - 2013-12-01 10:28 - 00000000 ____D C:\Program Files (x86)\Need for Speed(TM) Rivals-SG
2013-11-14 17:50 - 2013-11-14 18:48 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-14 17:50 - 2013-11-14 17:50 - 00001164 _____ C:\Users\Martin\Desktop\Assassins Creed IV Black Flag.lnk
2013-11-13 21:35 - 2013-12-03 18:59 - 00117248 ___SH C:\Users\Martin\Desktop\Thumbs.db
2013-11-13 20:52 - 2013-11-13 22:44 - 00004608 _____ C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-13 18:44 - 2013-12-01 11:06 - 00000000 ____D C:\Program Files (x86)\Assassin's Creed IV Black Flag Gold Edition
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Realtek
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2013-11-12 23:54 - 2013-08-27 20:37 - 03613528 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2013-11-12 23:54 - 2013-08-27 19:23 - 00638209 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2013-11-12 23:54 - 2013-08-27 17:07 - 05680680 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2013-11-12 23:54 - 2013-08-27 15:25 - 00147672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2013-11-12 23:54 - 2013-08-27 14:08 - 32358400 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2013-11-12 23:54 - 2013-08-26 14:29 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2013-11-12 23:54 - 2013-08-20 20:17 - 02809048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2013-11-12 23:54 - 2013-08-06 09:47 - 00947248 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2013-11-12 23:54 - 2013-08-02 20:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2013-11-12 23:54 - 2013-07-26 14:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2013-11-12 23:54 - 2013-07-23 15:40 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2013-11-12 23:54 - 2013-04-24 17:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2013-11-12 23:54 - 2013-02-20 18:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2013-11-12 23:54 - 2012-11-14 11:41 - 00378000 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkGuiCompLib.dll
2013-11-12 23:54 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2013-11-12 23:54 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2013-11-12 23:54 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2013-11-12 23:54 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2013-11-12 23:54 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2013-11-12 23:54 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2013-11-12 23:54 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2013-11-12 23:53 - 2013-08-14 16:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2013-11-12 23:53 - 2013-08-14 16:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2013-11-12 23:53 - 2013-08-07 17:41 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 06219096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 01908568 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 00312152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2013-11-12 23:53 - 2013-08-05 18:11 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2013-11-12 23:53 - 2013-07-24 10:07 - 02032896 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2013-11-12 23:53 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2013-11-12 23:53 - 2013-07-23 15:39 - 01916672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2013-11-12 23:53 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2013-11-12 23:53 - 2013-06-05 21:42 - 00208072 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2013-11-12 23:53 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2013-11-12 23:53 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2013-11-12 23:53 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2013-11-12 23:52 - 2013-08-08 19:57 - 02080472 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2013-11-12 23:36 - 2013-11-12 23:36 - 02356592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01011.dll
2013-11-12 23:36 - 2013-11-12 23:36 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00035600 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00019872 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2013-11-12 23:28 - 2013-11-12 23:28 - 00000000 ____D C:\Users\Martin\AppData\Local\LSC
2013-11-12 23:27 - 2013-11-23 10:22 - 00000000 ____D C:\ldiag
2013-11-12 23:27 - 2013-11-13 00:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2013-11-12 23:27 - 2013-11-13 00:00 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-12 23:27 - 2013-11-12 23:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Lenovo
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-12 23:14 - 2013-11-20 15:31 - 00046368 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx64.sys
2013-11-12 23:00 - 2013-11-12 23:00 - 00000000 ____D C:\Program Files\CPUID
2013-11-12 22:48 - 2013-11-12 22:48 - 00000000 ____D C:\Users\Martin\Documents\Network Monitor 3
2013-11-12 22:42 - 2013-12-04 19:36 - 02038526 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-12 22:41 - 2013-11-12 22:26 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-12 22:41 - 2013-11-12 22:26 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-12 22:31 - 2013-11-12 22:31 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00371032 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-12 22:31 - 2013-11-12 22:31 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-11-12 22:26 - 2013-11-12 22:26 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-12 22:25 - 2013-11-12 22:25 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-12 22:25 - 2013-11-12 22:25 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-12 18:20 - 2013-11-29 17:56 - 00979744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-11-12 00:02 - 2013-12-03 20:46 - 00000000 ____D C:\Users\Martin\AppData\Local\NVIDIA Corporation
2013-11-11 23:59 - 2013-11-11 16:01 - 01065248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-11-10 21:39 - 2013-11-10 22:08 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-08 00:37 - 2013-11-08 00:37 - 00001304 _____ C:\Users\Public\Desktop\Batman Arkham Origins.lnk
2013-11-06 19:09 - 2013-11-21 21:54 - 00000000 ____D C:\Program Files (x86)\Battlefield 4
2013-11-06 18:56 - 2013-11-06 18:56 - 00000000 ____D C:\ProgramData\EA Core
2013-11-06 14:10 - 2013-11-06 14:10 - 00000000 ___SH C:\Users\Martin\AppData\Local\LumaEmu
==================== One Month Modified Files and Folders =======
2013-12-04 19:46 - 2013-12-04 19:45 - 00016184 _____ C:\Users\Martin\Desktop\FRST.txt
2013-12-04 19:44 - 2013-12-04 19:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-12-04 19:43 - 2013-12-04 19:43 - 01959766 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-12-04 19:36 - 2013-11-12 22:42 - 02038526 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-04 19:00 - 2013-12-03 23:55 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-04 19:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-04 15:35 - 2013-01-04 16:24 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3418796237-2015644284-3891413543-1002
2013-12-04 15:13 - 2013-12-04 15:14 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-12-04 15:13 - 2013-12-04 15:13 - 00000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2013-12-04 15:13 - 2013-01-05 15:49 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log
2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-04 14:16 - 2013-12-04 14:14 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro
2013-12-04 14:14 - 2013-12-04 14:12 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
2013-12-04 14:11 - 2013-11-01 14:36 - 00003974 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3D9E36DE-C026-4630-8B36-9AE148AEDA9D}
2013-12-04 14:10 - 2013-12-03 19:47 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-04 14:09 - 2013-12-03 18:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\AdobeX2
2013-12-04 14:08 - 2013-12-04 14:08 - 00003024 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2013-12-04 14:08 - 2013-02-17 10:30 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-04 14:07 - 2013-12-03 23:55 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-04 14:07 - 2013-10-30 23:13 - 00000000 ___RD C:\Users\Martin\SkyDrive
2013-12-04 14:06 - 2013-12-03 14:15 - 00003894 _____ C:\WINDOWS\PFRO.log
2013-12-04 14:06 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-04 14:05 - 2013-08-22 14:25 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2013-12-03 23:55 - 2013-02-17 10:29 - 00003950 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-03 23:55 - 2013-02-17 10:29 - 00003714 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-03 20:47 - 2013-01-24 22:35 - 00000000 ____D C:\Users\Martin\AppData\Local\NVIDIA
2013-12-03 20:46 - 2013-11-12 00:02 - 00000000 ____D C:\Users\Martin\AppData\Local\NVIDIA Corporation
2013-12-03 20:46 - 2013-10-30 22:33 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-03 20:46 - 2013-10-30 22:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-03 20:44 - 2013-12-03 20:44 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-03 20:44 - 2013-12-03 20:42 - 00000039 _____ C:\WINDOWS\setupact.log
2013-12-03 20:44 - 2013-10-30 22:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-03 20:44 - 2013-10-30 22:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-03 20:42 - 2013-12-03 20:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-03 19:47 - 2013-12-03 19:47 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Malwarebytes
2013-12-03 18:59 - 2013-11-13 21:35 - 00117248 ___SH C:\Users\Martin\Desktop\Thumbs.db
2013-12-03 18:27 - 2013-12-03 18:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Adobe
2013-12-03 18:14 - 2013-12-03 16:35 - 00000000 ____D C:\FRST
2013-12-03 14:55 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SchCache
2013-12-03 14:27 - 2013-12-03 14:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-03 14:09 - 2013-10-30 22:40 - 00000000 ____D C:\Users\Martin
2013-12-03 14:07 - 2013-12-03 14:04 - 00000000 ____D C:\AdwCleaner
2013-12-03 13:48 - 2013-12-03 13:40 - 00000000 ____D C:\rsit
2013-12-03 13:48 - 2013-12-03 13:40 - 00000000 ____D C:\Program Files\trend micro
2013-12-02 22:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-02 22:13 - 2013-01-04 21:03 - 00000000 ____D C:\Users\Martin\AppData\Roaming\uTorrent
2013-12-02 22:09 - 2013-11-02 00:00 - 00000000 ____D C:\Program Files (x86)\Sniper Elite Nazi Zombie Army 2
2013-12-02 21:43 - 2013-11-19 17:48 - 00028160 ___SH C:\Users\Martin\Downloads\Thumbs.db
2013-12-02 20:59 - 2013-01-04 01:13 - 00000000 ____D C:\Users\Martin\AppData\Local\Packages
2013-12-01 11:06 - 2013-11-13 18:44 - 00000000 ____D C:\Program Files (x86)\Assassin's Creed IV Black Flag Gold Edition
2013-12-01 11:01 - 2013-01-06 17:41 - 00000000 ____D C:\ProgramData\Orbit
2013-12-01 10:28 - 2013-11-15 22:08 - 00000000 ____D C:\Program Files (x86)\Need for Speed(TM) Rivals-SG
2013-12-01 09:55 - 2013-01-05 20:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-30 11:16 - 2013-01-04 21:38 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-30 09:29 - 2013-11-30 09:29 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-11-29 22:53 - 2013-06-24 12:39 - 00000000 ____D C:\Program Files (x86)\SleepingDogs
2013-11-29 17:56 - 2013-12-03 20:46 - 01096480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-11-29 17:56 - 2013-11-12 18:20 - 00979744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-11-27 18:51 - 2013-11-27 18:51 - 00000896 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-11-23 10:45 - 2013-11-23 10:45 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-23 10:45 - 2013-07-17 10:22 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2013-11-23 10:22 - 2013-11-12 23:27 - 00000000 ____D C:\ldiag
2013-11-23 10:22 - 2013-02-21 16:01 - 00000000 ____D C:\Program Files (x86)\Crysis3.Digital.Deluxe
2013-11-21 23:01 - 2013-01-05 14:56 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-21 22:15 - 2013-01-29 16:50 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Origin
2013-11-21 22:02 - 2013-11-21 22:02 - 00001505 _____ C:\Users\Martin\Desktop\Battlefield 4.lnk
2013-11-21 21:54 - 2013-11-06 19:09 - 00000000 ____D C:\Program Files (x86)\Battlefield 4
2013-11-20 16:50 - 2013-11-20 16:50 - 00000902 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk
2013-11-20 15:31 - 2013-11-12 23:14 - 00046368 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx64.sys
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\system32\NV
2013-11-20 00:00 - 2013-11-19 23:59 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-11-19 11:30 - 2013-10-04 22:26 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-11-19 10:22 - 2013-10-30 22:56 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-19 10:22 - 2013-09-30 04:56 - 00740962 _____ C:\WINDOWS\system32\perfh005.dat
2013-11-19 10:22 - 2013-09-30 04:56 - 00152146 _____ C:\WINDOWS\system32\perfc005.dat
2013-11-19 10:07 - 2013-02-23 17:46 - 00000000 ___RD C:\Users\Martin\Desktop\Filmy Hudba Tapety
2013-11-18 23:31 - 2013-11-18 23:31 - 00001590 _____ C:\Users\Martin\Desktop\Need For Speed Rivals.lnk
2013-11-18 23:20 - 2013-11-18 23:20 - 00000000 ____D C:\Users\Martin\Documents\Ghost Games
2013-11-18 07:18 - 2013-01-04 01:14 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-18 07:18 - 2013-01-04 01:14 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-18 07:14 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-11-16 10:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-11-16 00:45 - 2013-01-18 17:38 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2013-11-14 18:48 - 2013-11-14 17:50 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-14 17:50 - 2013-11-14 17:50 - 00001164 _____ C:\Users\Martin\Desktop\Assassins Creed IV Black Flag.lnk
2013-11-14 12:58 - 2013-11-19 23:58 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 18293608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 18208624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 15218504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-19 23:58 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 03069608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 02697248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01436528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01242400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00357152 _____ C:\WINDOWS\system32\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00314656 _____ C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2013-11-19 23:58 - 00023754 _____ C:\WINDOWS\system32\nvinfo.pb
2013-11-13 22:44 - 2013-11-13 20:52 - 00004608 _____ C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-13 19:18 - 2013-01-16 14:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 19:17 - 2013-08-21 13:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-13 19:07 - 2013-01-05 12:39 - 82896128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-13 00:14 - 2013-11-12 23:27 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2013-11-13 00:14 - 2012-11-15 00:51 - 00000000 ____D C:\Program Files\Lenovo
2013-11-13 00:00 - 2013-11-12 23:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Realtek
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2013-11-12 23:55 - 2013-10-30 22:33 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-11-12 23:37 - 2013-10-30 22:32 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-12 23:36 - 2013-11-12 23:36 - 02356592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01011.dll
2013-11-12 23:36 - 2013-11-12 23:36 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00035600 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00019872 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2013-11-12 23:35 - 2012-11-15 01:19 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-11-12 23:28 - 2013-11-12 23:28 - 00000000 ____D C:\Users\Martin\AppData\Local\LSC
2013-11-12 23:27 - 2013-11-12 23:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Lenovo
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-12 23:26 - 2013-01-04 16:46 - 00000000 ____D C:\ProgramData\Adobe
2013-11-12 23:00 - 2013-11-12 23:00 - 00000000 ____D C:\Program Files\CPUID
2013-11-12 22:48 - 2013-11-12 22:48 - 00000000 ____D C:\Users\Martin\Documents\Network Monitor 3
2013-11-12 22:40 - 2013-08-22 15:44 - 00482112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-12 22:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-11-12 22:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-11-12 22:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-11-12 22:31 - 2013-11-12 22:31 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-12 22:31 - 2013-11-12 22:31 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00371032 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-12 22:31 - 2013-11-12 22:31 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-11-12 22:26 - 2013-11-12 22:41 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-12 22:26 - 2013-11-12 22:41 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-12 22:26 - 2013-11-12 22:26 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-12 22:25 - 2013-11-12 22:25 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-12 22:25 - 2013-11-12 22:25 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-12 00:02 - 2013-10-21 20:23 - 00001394 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-11-11 22:22 - 2013-01-04 21:08 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Theta
2013-11-11 16:02 - 2013-10-30 22:33 - 06674208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-11-11 16:02 - 2013-10-30 22:33 - 03490080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-11-11 16:01 - 2013-11-20 00:01 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-11-11 16:01 - 2013-11-20 00:01 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-11 16:01 - 2013-11-11 23:59 - 01065248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-11-11 16:01 - 2013-10-30 22:33 - 03467927 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-11-11 16:01 - 2013-10-30 22:33 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-11-11 16:01 - 2013-10-30 22:33 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-11-11 16:01 - 2013-10-30 22:33 - 00598304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2013-11-11 16:01 - 2013-10-30 22:33 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-11-10 22:08 - 2013-11-10 21:39 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-10 22:08 - 2013-10-30 22:29 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-10 22:08 - 2006-03-09 08:06 - 00000000 ___HD C:\Users\Martin\AppData\Roaming\B0F48396
2013-11-09 12:56 - 2013-02-01 15:50 - 00000000 ____D C:\Users\Martin\Documents\Youcam
2013-11-08 00:37 - 2013-11-08 00:37 - 00001304 _____ C:\Users\Public\Desktop\Batman Arkham Origins.lnk
2013-11-08 00:37 - 2013-10-30 10:24 - 00000000 ____D C:\Program Files (x86)\Batman Arkham Origins
2013-11-07 00:54 - 2013-08-07 18:22 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2013-11-07 00:54 - 2013-01-06 17:18 - 00000000 ____D C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
2013-11-06 20:11 - 2013-11-01 07:36 - 00000000 ____D C:\Users\Martin\Documents\Battlefield 4
2013-11-06 19:59 - 2013-01-05 15:09 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2013-11-06 18:56 - 2013-11-06 18:56 - 00000000 ____D C:\ProgramData\EA Core
2013-11-06 18:56 - 2013-01-29 16:47 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-11-06 17:01 - 2013-11-03 20:27 - 00000000 ____D C:\Program Files (x86)\Huntsman - The Orphanage
2013-11-06 14:10 - 2013-11-06 14:10 - 00000000 ___SH C:\Users\Martin\AppData\Local\LumaEmu
2013-11-05 21:21 - 2013-11-16 20:46 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-05 19:51 - 2013-11-16 20:46 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-05 17:20 - 2013-11-16 20:47 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-05 17:11 - 2013-11-16 20:46 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-05 15:30 - 2013-11-16 20:46 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-05 15:29 - 2013-11-16 20:46 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-05 14:40 - 2013-02-04 15:13 - 00000000 ____D C:\Program Files (x86)\Dead Space 3 Limited Edition FULL-MULTI
2013-11-04 19:44 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
Some content of TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\10183.exe
C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-04 15:35
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Windows8_OS) (Fixed) (Total:688.53 GB) (Free:118.95 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Lenovo) (Fixed) (Total:220.31 GB) (Free:81.72 GB) NTFS
Available physical RAM: 3697.06 MB
Total physical RAM: 8057.77 MB
Percentage of memory in use: 54%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 932 GB) (Disk ID: 07E9FD9D)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\Martin\SkyDrive:ms-properties
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martin\Desktop" je 45672 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Ran by Martin (administrator) on MÁRTY-PC on 04-12-2013 19:45:46
Running from C:\Users\Martin\Desktop
Windows 8.1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
() C:\Users\Martin\Videos\napsnap.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
() C:\Users\Martin\Videos\mfcmifc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Martin\AppData\Roaming\AdobeX2\winsvchost.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - "C:\WINDOWS\system32\hkcmd.exe"
HKLM\...\Run: [SynLenovoGestureMgr] - C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-08-27] (Synaptics)
HKLM\...\Run: [OnekeyStudio] - C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-08-10] (Lenovo)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2013-11-12] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [193008 2013-11-12] (Lenovo(beijing) Limited)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2916152 2012-08-27] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-07] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [AdobeUpdate] - C:\Users\Martin\AppData\Roaming\AdobeX2\invis.vbs [78 2012-07-02] ()
HKCU\...\RunOnce: [MFC Managed Interfaces Library] - C:\Users\Martin\Videos\mfcmifc.exe [16896 2013-12-04] ()
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-08-16] (Intel Corporation)
HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [139792 2012-11-08] (CyberLink)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-11-08] (CyberLink Corp.)
==================== Internet (Whitelisted) ====================
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 8.8.8.8
Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp
CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp"
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A35 ... 2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll ()
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel\u00AE Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Nokia Suite Enabler Plugin) - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll No File
CHR Extension: (Google Docs) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Into The Mist) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgihmkgobaljfehcadcckdggpeojaadh\1_0
CHR Extension: (Google Wallet) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
==================== Services (Whitelisted) =================
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2227992 2013-10-12] (Broadcom Corporation.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-08] (Intel Corporation)
S4 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [241016 2012-12-26] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218320 2012-12-26] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [182312 2012-12-26] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-07-18] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\SysWow64\PnkBstrA.exe [76888 2013-11-06] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [18384 2013-09-04] (Intel(R) Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2699568 2012-07-18] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx64.sys [46368 2013-11-20] (AVG Technologies)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-12-26] (McAfee, Inc.)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2013-11-01] (Disc Soft Ltd)
S3 GPU-Z; No ImagePath
R3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [32512 2013-12-04] ()
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-12] (Microsoft Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [26328 2013-07-23] (Intel Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [44544 2013-01-15] (ManyCam LLC)
S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-07-26] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [178840 2012-12-26] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [309400 2012-12-26] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69168 2012-12-26] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [515528 2012-12-26] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771096 2012-12-26] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-12-26] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [339776 2012-12-26] (McAfee, Inc.)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8222736 2012-06-15] (Realtek Semiconductor Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2013-05-22] ()
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-08-27] (Synaptics Incorporated)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-12] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 WinRing0_1_2_0; No ImagePath
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
U4 AdvancedSystemCareService6;
U4 Application Updater;
S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [x]
U4 vToolbarUpdater17.1.3;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-04 19:45 - 2013-12-04 19:46 - 00016184 _____ C:\Users\Martin\Desktop\FRST.txt
2013-12-04 19:44 - 2013-12-04 19:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-12-04 19:43 - 2013-12-04 19:43 - 01959766 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-12-04 15:14 - 2013-12-04 15:13 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-12-04 15:13 - 2013-12-04 15:13 - 00000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log
2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro
2013-12-04 14:14 - 2013-12-04 14:16 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-04 14:12 - 2013-12-04 14:14 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
2013-12-04 14:08 - 2013-12-04 14:08 - 00003024 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2013-12-03 23:55 - 2013-12-04 19:00 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-03 23:55 - 2013-12-04 14:07 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-03 20:46 - 2013-11-29 17:56 - 01096480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-03 20:44 - 2013-12-03 20:44 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-03 20:43 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-03 20:43 - 2013-10-30 18:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-03 20:43 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-12-03 20:42 - 2013-12-03 20:44 - 00000039 _____ C:\WINDOWS\setupact.log
2013-12-03 20:42 - 2013-12-03 20:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-03 19:47 - 2013-12-04 14:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-03 19:47 - 2013-12-03 19:47 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Malwarebytes
2013-12-03 18:27 - 2013-12-04 14:09 - 00000000 ____D C:\Users\Martin\AppData\Roaming\AdobeX2
2013-12-03 18:27 - 2013-12-03 18:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Adobe
2013-12-03 16:35 - 2013-12-03 18:14 - 00000000 ____D C:\FRST
2013-12-03 14:27 - 2013-12-03 14:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-03 14:15 - 2013-12-04 14:06 - 00003894 _____ C:\WINDOWS\PFRO.log
2013-12-03 14:04 - 2013-12-03 14:07 - 00000000 ____D C:\AdwCleaner
2013-12-03 13:40 - 2013-12-03 13:48 - 00000000 ____D C:\rsit
2013-12-03 13:40 - 2013-12-03 13:48 - 00000000 ____D C:\Program Files\trend micro
2013-11-30 09:29 - 2013-11-30 09:29 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-11-27 18:51 - 2013-11-27 18:51 - 00000896 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-11-23 10:45 - 2013-11-23 10:45 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-21 22:02 - 2013-11-21 22:02 - 00001505 _____ C:\Users\Martin\Desktop\Battlefield 4.lnk
2013-11-20 16:50 - 2013-11-20 16:50 - 00000902 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\system32\NV
2013-11-20 00:01 - 2013-11-11 16:01 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-11-20 00:01 - 2013-11-11 16:01 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-19 23:59 - 2013-11-20 00:00 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-11-19 23:58 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 15218504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-11-19 23:58 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 03069608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 02697248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01436528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 01242400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00357152 _____ C:\WINDOWS\system32\NvIFROpenGL.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00314656 _____ C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-11-19 23:58 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2013-11-19 23:58 - 2013-11-14 12:58 - 00023754 _____ C:\WINDOWS\system32\nvinfo.pb
2013-11-19 17:48 - 2013-12-02 21:43 - 00028160 ___SH C:\Users\Martin\Downloads\Thumbs.db
2013-11-18 23:31 - 2013-11-18 23:31 - 00001590 _____ C:\Users\Martin\Desktop\Need For Speed Rivals.lnk
2013-11-18 23:20 - 2013-11-18 23:20 - 00000000 ____D C:\Users\Martin\Documents\Ghost Games
2013-11-16 20:47 - 2013-11-05 17:20 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-16 20:46 - 2013-11-05 21:21 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-16 20:46 - 2013-11-05 19:51 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-16 20:46 - 2013-11-05 17:11 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-16 20:46 - 2013-11-05 15:30 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-16 20:46 - 2013-11-05 15:29 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-16 20:46 - 2013-10-10 12:26 - 02801664 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-11-16 20:46 - 2013-10-10 12:05 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-11-16 20:46 - 2013-10-10 11:34 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-11-16 20:46 - 2013-10-10 11:27 - 00869888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-11-15 22:08 - 2013-12-01 10:28 - 00000000 ____D C:\Program Files (x86)\Need for Speed(TM) Rivals-SG
2013-11-14 17:50 - 2013-11-14 18:48 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-14 17:50 - 2013-11-14 17:50 - 00001164 _____ C:\Users\Martin\Desktop\Assassins Creed IV Black Flag.lnk
2013-11-13 21:35 - 2013-12-03 18:59 - 00117248 ___SH C:\Users\Martin\Desktop\Thumbs.db
2013-11-13 20:52 - 2013-11-13 22:44 - 00004608 _____ C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-13 18:44 - 2013-12-01 11:06 - 00000000 ____D C:\Program Files (x86)\Assassin's Creed IV Black Flag Gold Edition
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Realtek
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2013-11-12 23:54 - 2013-08-27 20:37 - 03613528 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2013-11-12 23:54 - 2013-08-27 19:23 - 00638209 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2013-11-12 23:54 - 2013-08-27 17:07 - 05680680 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2013-11-12 23:54 - 2013-08-27 15:25 - 00147672 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2013-11-12 23:54 - 2013-08-27 14:08 - 32358400 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2013-11-12 23:54 - 2013-08-26 14:29 - 02585816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2013-11-12 23:54 - 2013-08-20 20:17 - 02809048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2013-11-12 23:54 - 2013-08-06 09:47 - 00947248 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2013-11-12 23:54 - 2013-08-02 20:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2013-11-12 23:54 - 2013-07-26 14:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2013-11-12 23:54 - 2013-07-23 15:40 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2013-11-12 23:54 - 2013-04-24 17:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2013-11-12 23:54 - 2013-02-20 18:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2013-11-12 23:54 - 2012-11-14 11:41 - 00378000 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkGuiCompLib.dll
2013-11-12 23:54 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2013-11-12 23:54 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2013-11-12 23:54 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2013-11-12 23:54 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2013-11-12 23:54 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2013-11-12 23:54 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2013-11-12 23:54 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2013-11-12 23:54 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2013-11-12 23:54 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2013-11-12 23:53 - 2013-08-14 16:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2013-11-12 23:53 - 2013-08-14 16:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2013-11-12 23:53 - 2013-08-07 17:41 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 06219096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 01908568 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 00312152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2013-11-12 23:53 - 2013-08-06 04:56 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2013-11-12 23:53 - 2013-08-05 18:11 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2013-11-12 23:53 - 2013-07-24 10:07 - 02032896 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2013-11-12 23:53 - 2013-07-23 15:39 - 14048512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2013-11-12 23:53 - 2013-07-23 15:39 - 01916672 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2013-11-12 23:53 - 2013-07-23 15:39 - 00922880 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2013-11-12 23:53 - 2013-06-05 21:42 - 00208072 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2013-11-12 23:53 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2013-11-12 23:53 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2013-11-12 23:53 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2013-11-12 23:53 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2013-11-12 23:53 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2013-11-12 23:52 - 2013-08-08 19:57 - 02080472 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2013-11-12 23:36 - 2013-11-12 23:36 - 02356592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01011.dll
2013-11-12 23:36 - 2013-11-12 23:36 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00035600 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00019872 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2013-11-12 23:28 - 2013-11-12 23:28 - 00000000 ____D C:\Users\Martin\AppData\Local\LSC
2013-11-12 23:27 - 2013-11-23 10:22 - 00000000 ____D C:\ldiag
2013-11-12 23:27 - 2013-11-13 00:14 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2013-11-12 23:27 - 2013-11-13 00:00 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-12 23:27 - 2013-11-12 23:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Lenovo
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-12 23:14 - 2013-11-20 15:31 - 00046368 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx64.sys
2013-11-12 23:00 - 2013-11-12 23:00 - 00000000 ____D C:\Program Files\CPUID
2013-11-12 22:48 - 2013-11-12 22:48 - 00000000 ____D C:\Users\Martin\Documents\Network Monitor 3
2013-11-12 22:42 - 2013-12-04 19:36 - 02038526 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-12 22:41 - 2013-11-12 22:26 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-12 22:41 - 2013-11-12 22:26 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-12 22:31 - 2013-11-12 22:31 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00371032 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-12 22:31 - 2013-11-12 22:31 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-11-12 22:26 - 2013-11-12 22:26 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-12 22:25 - 2013-11-12 22:25 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-12 22:25 - 2013-11-12 22:25 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-12 18:20 - 2013-11-29 17:56 - 00979744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-11-12 00:02 - 2013-12-03 20:46 - 00000000 ____D C:\Users\Martin\AppData\Local\NVIDIA Corporation
2013-11-11 23:59 - 2013-11-11 16:01 - 01065248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-11-10 21:39 - 2013-11-10 22:08 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-08 00:37 - 2013-11-08 00:37 - 00001304 _____ C:\Users\Public\Desktop\Batman Arkham Origins.lnk
2013-11-06 19:09 - 2013-11-21 21:54 - 00000000 ____D C:\Program Files (x86)\Battlefield 4
2013-11-06 18:56 - 2013-11-06 18:56 - 00000000 ____D C:\ProgramData\EA Core
2013-11-06 14:10 - 2013-11-06 14:10 - 00000000 ___SH C:\Users\Martin\AppData\Local\LumaEmu
==================== One Month Modified Files and Folders =======
2013-12-04 19:46 - 2013-12-04 19:45 - 00016184 _____ C:\Users\Martin\Desktop\FRST.txt
2013-12-04 19:44 - 2013-12-04 19:44 - 00112640 _____ (forum.viry.cz) C:\Users\Martin\Desktop\FRSTLauncher.exe
2013-12-04 19:43 - 2013-12-04 19:43 - 01959766 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2013-12-04 19:36 - 2013-11-12 22:42 - 02038526 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-04 19:00 - 2013-12-03 23:55 - 00000978 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-04 19:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-04 15:35 - 2013-01-04 16:24 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3418796237-2015644284-3891413543-1002
2013-12-04 15:13 - 2013-12-04 15:14 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2013-12-04 15:13 - 2013-12-04 15:13 - 00000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2013-12-04 15:13 - 2013-01-05 15:49 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log
2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-04 14:16 - 2013-12-04 14:14 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro
2013-12-04 14:14 - 2013-12-04 14:12 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
2013-12-04 14:11 - 2013-11-01 14:36 - 00003974 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3D9E36DE-C026-4630-8B36-9AE148AEDA9D}
2013-12-04 14:10 - 2013-12-03 19:47 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-04 14:09 - 2013-12-03 18:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\AdobeX2
2013-12-04 14:08 - 2013-12-04 14:08 - 00003024 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2013-12-04 14:08 - 2013-02-17 10:30 - 00002214 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-12-04 14:07 - 2013-12-03 23:55 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-04 14:07 - 2013-10-30 23:13 - 00000000 ___RD C:\Users\Martin\SkyDrive
2013-12-04 14:06 - 2013-12-03 14:15 - 00003894 _____ C:\WINDOWS\PFRO.log
2013-12-04 14:06 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-04 14:05 - 2013-08-22 14:25 - 01048576 ___SH C:\WINDOWS\system32\config\BBI
2013-12-03 23:55 - 2013-02-17 10:29 - 00003950 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-03 23:55 - 2013-02-17 10:29 - 00003714 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-03 20:47 - 2013-01-24 22:35 - 00000000 ____D C:\Users\Martin\AppData\Local\NVIDIA
2013-12-03 20:46 - 2013-11-12 00:02 - 00000000 ____D C:\Users\Martin\AppData\Local\NVIDIA Corporation
2013-12-03 20:46 - 2013-10-30 22:33 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-03 20:46 - 2013-10-30 22:32 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-03 20:44 - 2013-12-03 20:44 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-03 20:44 - 2013-12-03 20:42 - 00000039 _____ C:\WINDOWS\setupact.log
2013-12-03 20:44 - 2013-10-30 22:32 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-03 20:44 - 2013-10-30 22:32 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-03 20:42 - 2013-12-03 20:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-03 19:47 - 2013-12-03 19:47 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Malwarebytes
2013-12-03 18:59 - 2013-11-13 21:35 - 00117248 ___SH C:\Users\Martin\Desktop\Thumbs.db
2013-12-03 18:27 - 2013-12-03 18:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Adobe
2013-12-03 18:14 - 2013-12-03 16:35 - 00000000 ____D C:\FRST
2013-12-03 14:55 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SchCache
2013-12-03 14:27 - 2013-12-03 14:27 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-03 14:09 - 2013-10-30 22:40 - 00000000 ____D C:\Users\Martin
2013-12-03 14:07 - 2013-12-03 14:04 - 00000000 ____D C:\AdwCleaner
2013-12-03 13:48 - 2013-12-03 13:40 - 00000000 ____D C:\rsit
2013-12-03 13:48 - 2013-12-03 13:40 - 00000000 ____D C:\Program Files\trend micro
2013-12-02 22:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-02 22:13 - 2013-01-04 21:03 - 00000000 ____D C:\Users\Martin\AppData\Roaming\uTorrent
2013-12-02 22:09 - 2013-11-02 00:00 - 00000000 ____D C:\Program Files (x86)\Sniper Elite Nazi Zombie Army 2
2013-12-02 21:43 - 2013-11-19 17:48 - 00028160 ___SH C:\Users\Martin\Downloads\Thumbs.db
2013-12-02 20:59 - 2013-01-04 01:13 - 00000000 ____D C:\Users\Martin\AppData\Local\Packages
2013-12-01 11:06 - 2013-11-13 18:44 - 00000000 ____D C:\Program Files (x86)\Assassin's Creed IV Black Flag Gold Edition
2013-12-01 11:01 - 2013-01-06 17:41 - 00000000 ____D C:\ProgramData\Orbit
2013-12-01 10:28 - 2013-11-15 22:08 - 00000000 ____D C:\Program Files (x86)\Need for Speed(TM) Rivals-SG
2013-12-01 09:55 - 2013-01-05 20:24 - 00000000 ____D C:\ProgramData\Origin
2013-11-30 11:16 - 2013-01-04 21:38 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-30 09:29 - 2013-11-30 09:29 - 00281688 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2013-11-29 22:53 - 2013-06-24 12:39 - 00000000 ____D C:\Program Files (x86)\SleepingDogs
2013-11-29 17:56 - 2013-12-03 20:46 - 01096480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-11-29 17:56 - 2013-11-12 18:20 - 00979744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-11-27 18:51 - 2013-11-27 18:51 - 00000896 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2013-11-23 10:45 - 2013-11-23 10:45 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-11-23 10:45 - 2013-07-17 10:22 - 00000000 ____D C:\Users\Martin\AppData\Local\Adobe
2013-11-23 10:22 - 2013-11-12 23:27 - 00000000 ____D C:\ldiag
2013-11-23 10:22 - 2013-02-21 16:01 - 00000000 ____D C:\Program Files (x86)\Crysis3.Digital.Deluxe
2013-11-21 23:01 - 2013-01-05 14:56 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-21 22:15 - 2013-01-29 16:50 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Origin
2013-11-21 22:02 - 2013-11-21 22:02 - 00001505 _____ C:\Users\Martin\Desktop\Battlefield 4.lnk
2013-11-21 21:54 - 2013-11-06 19:09 - 00000000 ____D C:\Program Files (x86)\Battlefield 4
2013-11-20 16:50 - 2013-11-20 16:50 - 00000902 _____ C:\Users\Public\Desktop\Call of Duty Ghosts.lnk
2013-11-20 15:31 - 2013-11-12 23:14 - 00046368 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx64.sys
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2013-11-20 00:05 - 2013-11-20 00:05 - 00000000 ____D C:\WINDOWS\system32\NV
2013-11-20 00:00 - 2013-11-19 23:59 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-11-19 11:30 - 2013-10-04 22:26 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-11-19 10:22 - 2013-10-30 22:56 - 01749406 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-19 10:22 - 2013-09-30 04:56 - 00740962 _____ C:\WINDOWS\system32\perfh005.dat
2013-11-19 10:22 - 2013-09-30 04:56 - 00152146 _____ C:\WINDOWS\system32\perfc005.dat
2013-11-19 10:07 - 2013-02-23 17:46 - 00000000 ___RD C:\Users\Martin\Desktop\Filmy Hudba Tapety
2013-11-18 23:31 - 2013-11-18 23:31 - 00001590 _____ C:\Users\Martin\Desktop\Need For Speed Rivals.lnk
2013-11-18 23:20 - 2013-11-18 23:20 - 00000000 ____D C:\Users\Martin\Documents\Ghost Games
2013-11-18 07:18 - 2013-01-04 01:14 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-18 07:18 - 2013-01-04 01:14 - 00000000 ___RD C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-11-18 07:14 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-11-16 10:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-11-16 00:45 - 2013-01-18 17:38 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2013-11-14 18:48 - 2013-11-14 17:50 - 00000000 ____D C:\Users\Martin\Documents\Assassin's Creed IV Black Flag
2013-11-14 17:50 - 2013-11-14 17:50 - 00001164 _____ C:\Users\Martin\Desktop\Assassins Creed IV Black Flag.lnk
2013-11-14 12:58 - 2013-11-19 23:58 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 18293608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 18208624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 15218504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-11-14 12:58 - 2013-11-19 23:58 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 03069608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 02697248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01436528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 01242400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00357152 _____ C:\WINDOWS\system32\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00314656 _____ C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-11-14 12:58 - 2013-11-19 23:58 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2013-11-14 12:58 - 2013-11-19 23:58 - 00023754 _____ C:\WINDOWS\system32\nvinfo.pb
2013-11-13 22:44 - 2013-11-13 20:52 - 00004608 _____ C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-13 19:18 - 2013-01-16 14:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 19:17 - 2013-08-21 13:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-13 19:07 - 2013-01-05 12:39 - 82896128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-13 00:14 - 2013-11-12 23:27 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2013-11-13 00:14 - 2012-11-15 00:51 - 00000000 ____D C:\Program Files\Lenovo
2013-11-13 00:00 - 2013-11-12 23:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\LSC
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Realtek
2013-11-12 23:55 - 2013-11-12 23:55 - 00000000 ____D C:\Program Files\Dolby Digital Plus
2013-11-12 23:55 - 2013-10-30 22:33 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2013-11-12 23:37 - 2013-10-30 22:32 - 00000000 ____D C:\Program Files (x86)\Intel
2013-11-12 23:36 - 2013-11-12 23:36 - 02356592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WudfUpdate_01011.dll
2013-11-12 23:36 - 2013-11-12 23:36 - 00039008 _____ (Lenovo.) C:\WINDOWS\system32\Drivers\LhdX64.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00035600 _____ (Lenovo Corporation) C:\WINDOWS\system32\Drivers\AcpiVpc.sys
2013-11-12 23:36 - 2013-11-12 23:36 - 00019872 _____ (Lenovo (Beijing) Limited) C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2013-11-12 23:35 - 2012-11-15 01:19 - 00000000 ____D C:\ProgramData\Downloaded Installations
2013-11-12 23:28 - 2013-11-12 23:28 - 00000000 ____D C:\Users\Martin\AppData\Local\LSC
2013-11-12 23:27 - 2013-11-12 23:27 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Lenovo
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-11-12 23:26 - 2013-11-12 23:26 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-11-12 23:26 - 2013-01-04 16:46 - 00000000 ____D C:\ProgramData\Adobe
2013-11-12 23:00 - 2013-11-12 23:00 - 00000000 ____D C:\Program Files\CPUID
2013-11-12 22:48 - 2013-11-12 22:48 - 00000000 ____D C:\Users\Martin\Documents\Network Monitor 3
2013-11-12 22:40 - 2013-08-22 15:44 - 00482112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-12 22:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-11-12 22:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-11-12 22:37 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-11-12 22:31 - 2013-11-12 22:31 - 23212544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 17142784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 12995584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 11220992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 06639616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04599808 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 04104704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03934208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03532288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02328872 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 02065448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 01993728 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2013-11-12 22:31 - 2013-11-12 22:31 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01704448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01394176 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01373872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01287064 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01156608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00830464 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00708616 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00700928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00631296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00523096 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00481392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00465960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-11-12 22:31 - 2013-11-12 22:31 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00380656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00371032 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-11-12 22:31 - 2013-11-12 22:31 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00317616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00270848 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00235960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00155480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00104320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00088272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00057176 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2013-11-12 22:31 - 2013-11-12 22:31 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2013-11-12 22:31 - 2013-11-12 22:31 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-11-12 22:31 - 2013-11-12 22:31 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-11-12 22:30 - 2013-11-12 22:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-11-12 22:26 - 2013-11-12 22:41 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-12 22:26 - 2013-11-12 22:41 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-12 22:26 - 2013-11-12 22:26 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-11-12 22:26 - 2013-11-12 22:26 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-11-12 22:26 - 2013-11-12 22:26 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-11-12 22:25 - 2013-11-12 22:25 - 01341288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-11-12 22:25 - 2013-11-12 22:25 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-11-12 00:02 - 2013-10-21 20:23 - 00001394 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-11-11 22:22 - 2013-01-04 21:08 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Theta
2013-11-11 16:02 - 2013-10-30 22:33 - 06674208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-11-11 16:02 - 2013-10-30 22:33 - 03490080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-11-11 16:01 - 2013-11-20 00:01 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2013-11-11 16:01 - 2013-11-20 00:01 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-11-11 16:01 - 2013-11-11 23:59 - 01065248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2013-11-11 16:01 - 2013-10-30 22:33 - 03467927 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-11-11 16:01 - 2013-10-30 22:33 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-11-11 16:01 - 2013-10-30 22:33 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-11-11 16:01 - 2013-10-30 22:33 - 00598304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2013-11-11 16:01 - 2013-10-30 22:33 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-11-10 22:08 - 2013-11-10 21:39 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-10 22:08 - 2013-10-30 22:29 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-10 22:08 - 2006-03-09 08:06 - 00000000 ___HD C:\Users\Martin\AppData\Roaming\B0F48396
2013-11-09 12:56 - 2013-02-01 15:50 - 00000000 ____D C:\Users\Martin\Documents\Youcam
2013-11-08 00:37 - 2013-11-08 00:37 - 00001304 _____ C:\Users\Public\Desktop\Batman Arkham Origins.lnk
2013-11-08 00:37 - 2013-10-30 10:24 - 00000000 ____D C:\Program Files (x86)\Batman Arkham Origins
2013-11-07 00:54 - 2013-08-07 18:22 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2013-11-07 00:54 - 2013-01-06 17:18 - 00000000 ____D C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
2013-11-06 20:11 - 2013-11-01 07:36 - 00000000 ____D C:\Users\Martin\Documents\Battlefield 4
2013-11-06 19:59 - 2013-01-05 15:09 - 00076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2013-11-06 18:56 - 2013-11-06 18:56 - 00000000 ____D C:\ProgramData\EA Core
2013-11-06 18:56 - 2013-01-29 16:47 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-11-06 17:01 - 2013-11-03 20:27 - 00000000 ____D C:\Program Files (x86)\Huntsman - The Orphanage
2013-11-06 14:10 - 2013-11-06 14:10 - 00000000 ___SH C:\Users\Martin\AppData\Local\LumaEmu
2013-11-05 21:21 - 2013-11-16 20:46 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-11-05 19:51 - 2013-11-16 20:46 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-11-05 17:20 - 2013-11-16 20:47 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-11-05 17:11 - 2013-11-16 20:46 - 18577408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-05 15:30 - 2013-11-16 20:46 - 11674112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-11-05 15:29 - 2013-11-16 20:46 - 13176320 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-11-05 14:40 - 2013-02-04 15:13 - 00000000 ____D C:\Program Files (x86)\Dead Space 3 Limited Edition FULL-MULTI
2013-11-04 19:44 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
Some content of TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\10183.exe
C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-04 15:35
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Windows8_OS) (Fixed) (Total:688.53 GB) (Free:118.95 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Lenovo) (Fixed) (Total:220.31 GB) (Free:81.72 GB) NTFS
Available physical RAM: 3697.06 MB
Total physical RAM: 8057.77 MB
Percentage of memory in use: 54%
==================== MBR and Partition Table ==================
Disk: 0 (Size: 932 GB) (Disk ID: 07E9FD9D)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\Martin\SkyDrive:ms-properties
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Martin\Desktop" je 45672 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 19:58
Tvorba fixlistu pro FRST
- Spustte poznamkovy blok (Start-spustit-notepad)
- Zkopirujte skript nize
Kód: Vybrat vše
Start Folder: C:\Users\Martin\Videos CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp" CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms} CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1 U4 AdvancedSystemCareService6; U4 Application Updater; S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [x] U4 vToolbarUpdater17.1.3; HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation) HKCU\...\Run: [AdobeUpdate] - C:\Users\Martin\AppData\Roaming\AdobeX2\invis.vbs [78 2012-07-02] () HKCU\...\RunOnce: [MFC Managed Interfaces Library] - C:\Users\Martin\Videos\mfcmifc.exe [16896 2013-12-04] () C:\Users\Martin\AppData\Local\Temp\10183.exe C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe C:\Users\Martin\AppData\Roaming\AdobeX2 C:\Users\Martin\Videos\napsnap.exe C:\Users\Martin\Videos\mfcmifc.exe 2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log 2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys 2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro 2013-12-04 14:14 - 2013-12-04 14:16 - 00000000 ____D C:\ProgramData\HitmanPro 2013-12-04 14:12 - 2013-12-04 14:14 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe Hosts: CMD: shutdown /r /f /t 2 End- Ulozte vytvoreny TXT jako fixlist.txt
- Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
- Kliknete na Fix
- Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtRe: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 20:06
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-12-2013
Ran by Martin at 2013-12-04 20:02:19 Run:3
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
Folder: C:\Users\Martin\Videos
CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp
CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp"
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A35 ... 2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1
U4 AdvancedSystemCareService6;
U4 Application Updater;
S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [x]
U4 vToolbarUpdater17.1.3;
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKCU\...\Run: [AdobeUpdate] - C:\Users\Martin\AppData\Roaming\AdobeX2\invis.vbs [78 2012-07-02] ()
HKCU\...\RunOnce: [MFC Managed Interfaces Library] - C:\Users\Martin\Videos\mfcmifc.exe [16896 2013-12-04] ()
C:\Users\Martin\AppData\Local\Temp\10183.exe
C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe
C:\Users\Martin\AppData\Roaming\AdobeX2
C:\Users\Martin\Videos\napsnap.exe
C:\Users\Martin\Videos\mfcmifc.exe
2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log
2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro
2013-12-04 14:14 - 2013-12-04 14:16 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-04 14:12 - 2013-12-04 14:14 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
========================= Folder: C:\Users\Martin\Videos ========================
2013-01-04 01:14 - 2013-11-18 07:18 - 0000504 __ASH () C:\Users\Martin\Videos\desktop.ini
2013-12-01 10:23 - 2013-12-04 14:08 - 0016896 ____A () C:\Users\Martin\Videos\mfcmifc.exe
2013-12-01 10:23 - 2013-12-01 10:23 - 0280064 ____A () C:\Users\Martin\Videos\napsnap.exe
====== End of Folder: ======
CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp ==> The Chrome "Settings" can be used to fix the entry.
CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp" ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A35 ... 2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1 ==> The Chrome "Settings" can be used to fix the entry.
AdvancedSystemCareService6 => Service deleted successfully.
Application Updater => Service deleted successfully.
iwdbus => Service deleted successfully.
vToolbarUpdater17.1.3 => Service deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeUpdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\\MFC Managed Interfaces Library => Value deleted successfully.
C:\Users\Martin\AppData\Local\Temp\10183.exe => Moved successfully.
C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe => Moved successfully.
C:\Users\Martin\AppData\Roaming\AdobeX2 => Moved successfully.
C:\Users\Martin\Videos\napsnap.exe => Moved successfully.
C:\Users\Martin\Videos\mfcmifc.exe => Moved successfully.
C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log => Moved successfully.
C:\WINDOWS\system32\Drivers\hitmanpro37.sys => Moved successfully.
C:\Program Files\HitmanPro => Moved successfully.
C:\ProgramData\HitmanPro => Moved successfully.
C:\Users\Martin\Desktop\HitmanPro_x64.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
The system needs a manual reboot.
==== End of Fixlog ====
Ran by Martin at 2013-12-04 20:02:19 Run:3
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
Folder: C:\Users\Martin\Videos
CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp
CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp"
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A35 ... 2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1
U4 AdvancedSystemCareService6;
U4 Application Updater;
S3 iwdbus; \SystemRoot\System32\drivers\iwdbus.sys [x]
U4 vToolbarUpdater17.1.3;
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKCU\...\Run: [AdobeUpdate] - C:\Users\Martin\AppData\Roaming\AdobeX2\invis.vbs [78 2012-07-02] ()
HKCU\...\RunOnce: [MFC Managed Interfaces Library] - C:\Users\Martin\Videos\mfcmifc.exe [16896 2013-12-04] ()
C:\Users\Martin\AppData\Local\Temp\10183.exe
C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe
C:\Users\Martin\AppData\Roaming\AdobeX2
C:\Users\Martin\Videos\napsnap.exe
C:\Users\Martin\Videos\mfcmifc.exe
2013-12-04 14:23 - 2013-12-04 14:23 - 00109206 _____ C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log
2013-12-04 14:16 - 2013-12-04 14:16 - 00032512 _____ C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2013-12-04 14:15 - 2013-12-04 14:15 - 00000000 ____D C:\Program Files\HitmanPro
2013-12-04 14:14 - 2013-12-04 14:16 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-04 14:12 - 2013-12-04 14:14 - 10264904 _____ (SurfRight B.V.) C:\Users\Martin\Desktop\HitmanPro_x64.exe
Hosts:
CMD: shutdown /r /f /t 2
End
*****************
========================= Folder: C:\Users\Martin\Videos ========================
2013-01-04 01:14 - 2013-11-18 07:18 - 0000504 __ASH () C:\Users\Martin\Videos\desktop.ini
2013-12-01 10:23 - 2013-12-04 14:08 - 0016896 ____A () C:\Users\Martin\Videos\mfcmifc.exe
2013-12-01 10:23 - 2013-12-01 10:23 - 0280064 ____A () C:\Users\Martin\Videos\napsnap.exe
====== End of Folder: ======
CHR HomePage: hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp ==> The Chrome "Settings" can be used to fix the entry.
CHR RestoreOnStartup: "hxxp://mysearch.avg.com?cid={A3568B72-5CE1-4EF9-B676-715D693BE730}&mid=1b49e8297dfa47d39cdbf121db79d400-670c1230df9e6ba5e3784b1bdee5d5aab5771a50&lang=en&ds=es011&coid=avgtbdises&pr=sa&d=2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=hp" ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: (AVG Secure Search) - http://mysearch.avg.com/search?cid={A35 ... 2013-11-12 23:14:52&v=17.1.2.1&pid=safeguard&sg=0&sap=dsp&q={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSuggestURL: (AVG Secure Search) - http://toolbar.avg.com/acp?q={searchTerms}&o=1 ==> The Chrome "Settings" can be used to fix the entry.
AdvancedSystemCareService6 => Service deleted successfully.
Application Updater => Service deleted successfully.
iwdbus => Service deleted successfully.
vToolbarUpdater17.1.3 => Service deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NvBackend => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeUpdate => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\\MFC Managed Interfaces Library => Value deleted successfully.
C:\Users\Martin\AppData\Local\Temp\10183.exe => Moved successfully.
C:\Users\Martin\AppData\Local\Temp\NEwBSDynDNS3.exe => Moved successfully.
C:\Users\Martin\AppData\Roaming\AdobeX2 => Moved successfully.
C:\Users\Martin\Videos\napsnap.exe => Moved successfully.
C:\Users\Martin\Videos\mfcmifc.exe => Moved successfully.
C:\Users\Martin\Desktop\HitmanPro_20131204_1423.log => Moved successfully.
C:\WINDOWS\system32\Drivers\hitmanpro37.sys => Moved successfully.
C:\Program Files\HitmanPro => Moved successfully.
C:\ProgramData\HitmanPro => Moved successfully.
C:\Users\Martin\Desktop\HitmanPro_x64.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
========= shutdown /r /f /t 2 =========
========= End of CMD: =========
The system needs a manual reboot.
==== End of Fixlog ====
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 20:09
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 20:15
Pc vypadá že je v nejlepším pořádku 
Log:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-12-2013
Ran by Martin at 2013-12-04 20:11:11 Run:4
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
C:\Users\Martin\Videos
End
*****************
C:\Users\Martin\Videos => Moved successfully.
==== End of Fixlog ====
Log:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-12-2013
Ran by Martin at 2013-12-04 20:11:11 Run:4
Running from C:\Users\Martin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
C:\Users\Martin\Videos
End
*****************
C:\Users\Martin\Videos => Moved successfully.
==== End of Fixlog ====
Re: winsvchost.exe 100% zatížení CPU
Napsal: 04 pro 2013 20:17
Tak jeste uklidime 
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
A pokud nejsou problemy ci dotazy, je to z me strany vse 
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
A pokud nejsou problemy ci dotazy, je to z me strany vse