VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní kontrola

https://forum.viry.cz:443/viewtopic.php?t=144826

Stránka 1 z 1

Preventivní kontrola

Napsal: 13 čer 2015 10:18
od _Antti_
Dobrý den, chtěl bych pokud by bylo možno požádat o preventivní kontrolu.
Děkuji.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2015-06-13 11:08:58
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 151 GB (66%) free of 229 GB
Total RAM: 8130 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:09:05, on 13.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\APRP\aprp.exe
E:\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
E:\Steam\bin\steamwebhelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKLM\..\Run: [Aeria Ignite] "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_1F14D2380DB1DE09582B9D790BD95BA5] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Steam] "E:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User '?')
O4 - HKUS\S-1-5-21-4039964657-4026695215-2560059465-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Akamai NetSession Interface] "C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe" (User '?')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.aeriagames.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{1324317B-F886-480B-A3C7-0FC91E781F81}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{1324317B-F886-480B-A3C7-0FC91E781F81}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{1324317B-F886-480B-A3C7-0FC91E781F81}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

--
End of file - 10455 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Tablet\Wacom\WTabletServicePro.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
atieclxx
/QuitInfo:0000000000000168;0000000000000278; /AddRef;
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1792
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d209c360-4434-4bb5-a804-abb1e52b95d5 -SystemEventPortName:HostProcess-c0605b6b-c840-4552-8d2f-9fe877357087 -IoCancelEventPortName:HostProcess-2f65b1a4-dd64-454f-b31c-a0d873cc11c3 -NonStateChangingEventPortName:HostProcess-aa3e00f4-c27b-4464-b9c9-b56736b9fcab -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5ae3ea5e-230e-4a8d-965d-ff821cd92ec7 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
/QuitInfo:0000000000000504;0000000000000508; /AddRef;
/QuitInfo:00000000000001D8;000000000000051C;
"C:\Windows\system32\Dwm.exe"
/loadhooks /Parent:0000000000000790
C:\Windows\Explorer.EXE
taskeng.exe {77926E1E-EB7A-4CAF-8ADB-CB3B1674BF87}
"C:\Program Files (x86)\ASUS\APRP\aprp.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"E:\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe"
"C:\Program Files\Tablet\Wacom\WacomHost.exe" "C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe"
"C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe" -fromDriver
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
"E:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan\AppData\Local\Steam\htmlcache" -steampid 3364 -buildid 1433441724 -steamid "0" --disable-gpu-compositing --disable-gpu --enable-threaded-compositing --disable-pinch-virtual-viewport --process-per-tab --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3528.0.508270156\976212329" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x1002 --gpu-device-id=0x6798 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3528 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3528.2.1610282107\363601689" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3528 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3528.3.449367302\782697831" /prefetch:673131151
taskmgr.exe /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3528.25.59177604\1820796815" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3528 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3528.27.486480724\2046211788" /prefetch:673131151
"C:\Windows\System32\perfmon.exe" /res
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3528 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3528.29.1847424695\78066846" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowBelowNormalFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Enabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3528 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3528.33.1481811406\1635095309" /prefetch:673131151
"E:\Stažené soubory\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-10-22 7203032]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-05-15 5595848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_1F14D2380DB1DE09582B9D790BD95BA5"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-06-05 813896]
"Steam"=E:\Steam\steam.exe [2015-06-04 2892992]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-02 28785792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
C:\PROGRA~2\Raptr\raptrstub.exe [2015-05-05 55568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe -controlservice -slave []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk]
C:\PROGRA~1\COMODO\GEEKBU~1\launcher.exe unit_manager.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
"Aeria Ignite"=C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [2013-06-06 1925656]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-06-13 11:08:58 ----D---- C:\rsit
2015-06-13 11:08:58 ----D---- C:\Program Files\trend micro
2015-06-07 20:34:20 ----D---- C:\ProgramData\Skype
2015-06-06 13:24:36 ----D---- C:\Users\Jan\AppData\Roaming\Azureus
2015-06-05 18:16:27 ----D---- C:\Windows\cs
2015-06-05 18:16:10 ----D---- C:\Windows\PCHEALTH
2015-06-05 18:16:02 ----D---- C:\Program Files (x86)\Windows Live
2015-06-05 16:12:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2015-06-05 16:11:47 ----D---- C:\Program Files (x86)\MSI Afterburner
2015-06-03 06:25:46 ----D---- C:\Users\Jan\AppData\Roaming\RotMG.Production
2015-06-02 17:36:31 ----D---- C:\Windows\SYSWOW64\Wat
2015-06-02 17:36:31 ----D---- C:\Windows\system32\Wat
2015-06-02 16:23:19 ----D---- C:\Windows\system32\MRT
2015-06-02 16:23:18 ----A---- C:\Windows\system32\MRT.exe
2015-06-02 16:12:04 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-06-02 16:12:04 ----A---- C:\Windows\system32\wmi.dll
2015-06-02 16:12:04 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-06-02 16:09:44 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-06-02 16:09:44 ----A---- C:\Windows\system32\win32k.sys
2015-06-02 16:09:44 ----A---- C:\Windows\system32\FntCache.dll
2015-06-02 16:09:44 ----A---- C:\Windows\system32\DWrite.dll
2015-06-02 16:07:55 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-06-02 16:07:55 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-06-02 16:07:55 ----A---- C:\Windows\system32\d3d10warp.dll
2015-06-02 16:07:55 ----A---- C:\Windows\system32\d2d1.dll
2015-06-02 16:07:11 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-06-02 16:07:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-06-02 16:06:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-06-02 16:06:34 ----A---- C:\Windows\system32\WMPhoto.dll
2015-06-01 17:13:39 ----D---- C:\ProgramData\Aeria Games
2015-06-01 17:08:53 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2015-06-01 17:08:53 ----D---- C:\Program Files (x86)\Aeria Games
2015-06-01 15:46:44 ----D---- C:\AeriaGames
2015-05-30 12:49:58 ----D---- C:\Users\Jan\AppData\Roaming\Downloaded Installations
2015-05-30 09:55:05 ----D---- C:\Users\Jan\AppData\Roaming\Wargaming.net
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\xinput1_3.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\d3dx10.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\xinput1_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-05-30 09:54:30 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-05-30 09:54:30 ----A---- C:\Windows\system32\xinput1_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-05-30 09:54:29 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-05-30 09:54:29 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-05-30 09:54:28 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-05-30 09:54:28 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-05-30 09:54:28 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-05-30 09:54:28 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-05-30 09:54:28 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-05-30 09:54:28 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-05-30 09:54:27 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-05-30 09:54:27 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-05-30 09:54:27 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-05-30 09:54:27 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-05-30 09:50:43 ----D---- C:\Windows\SYSWOW64\directx
2015-05-24 20:20:25 ----D---- C:\Users\Jan\AppData\Roaming\Macromedia
2015-05-23 22:49:00 ----D---- C:\Users\Jan\AppData\Roaming\NuGet
2015-05-23 16:28:14 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 11.0
2015-05-23 16:27:45 ----D---- C:\Program Files (x86)\Windows Phone Silverlight Kits
2015-05-23 16:24:44 ----D---- C:\Program Files (x86)\Microsoft XDE
2015-05-23 16:23:04 ----D---- C:\Program Files (x86)\AppInsights
2015-05-23 16:20:52 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-23 16:20:16 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-05-23 16:20:16 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-05-23 16:18:20 ----D---- C:\Program Files\Application Verifier
2015-05-23 16:18:20 ----D---- C:\Program Files (x86)\Application Verifier
2015-05-23 16:18:11 ----D---- C:\ProgramData\Windows App Certification Kit
2015-05-23 16:14:11 ----D---- C:\ProgramData\PreEmptive Solutions
2015-05-23 16:13:38 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2015-05-23 16:13:06 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2015-05-23 16:12:38 ----D---- C:\Program Files\IIS Express
2015-05-23 16:12:38 ----D---- C:\Program Files (x86)\IIS Express
2015-05-23 16:12:28 ----D---- C:\ProgramData\NuGet
2015-05-23 16:12:28 ----D---- C:\Program Files (x86)\NuGet
2015-05-23 16:12:27 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2015-05-23 16:12:10 ----D---- C:\Program Files\IIS
2015-05-23 16:12:10 ----D---- C:\Program Files (x86)\IIS
2015-05-23 16:11:38 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-05-23 16:09:00 ----D---- C:\Program Files (x86)\Windows Phone Kits
2015-05-23 16:09:00 ----D---- C:\Program Files (x86)\Windows Kits
2015-05-23 16:08:51 ----D---- C:\Program Files (x86)\HTML Help Workshop
2015-05-23 16:08:43 ----D---- C:\Windows\symbols
2015-05-23 16:08:42 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2015-05-23 16:06:50 ----D---- C:\Windows\SYSWOW64\1033
2015-05-23 16:06:49 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2015-05-23 16:06:48 ----D---- C:\Program Files\Microsoft SQL Server
2015-05-23 15:59:50 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-05-23 15:59:34 ----D---- C:\Windows\system32\1033
2015-05-23 15:59:30 ----D---- C:\Program Files\Microsoft Visual Studio 12.0
2015-05-23 15:59:30 ----D---- C:\Program Files (x86)\Microsoft SDKs
2015-05-23 15:54:32 ----D---- C:\Windows\Migration
2015-05-23 15:52:12 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-05-23 14:07:40 ----D---- C:\Users\Jan\AppData\Roaming\HLSW
2015-05-19 18:56:47 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-05-19 18:56:18 ----D---- C:\ProgramData\Malwarebytes
2015-05-19 18:56:18 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-19 18:56:18 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-05-19 18:56:18 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-05-19 18:56:18 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-05-19 15:43:33 ----D---- C:\Users\Jan\AppData\Roaming\Adobe
2015-05-19 14:44:13 ----A---- C:\Windows\system32\IEUDINIT.EXE
2015-05-19 14:37:19 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2015-05-19 14:37:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-19 14:37:17 ----A---- C:\Windows\system32\elshyph.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\url.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\icardie.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\wininet.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\urlmon.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-05-19 14:37:15 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msrating.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msls31.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\mshtmler.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msfeedssync.exe
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jsIntl.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jscript9.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\ieui.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\iesysprep.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\iertutil.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\wextract.exe
2015-05-19 14:37:14 ----A---- C:\Windows\system32\webcheck.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\vbscript.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\url.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\licmgr10.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\inseng.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iexpress.exe
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iesetup.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iernonce.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ieframe.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ieapfltr.dat
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-19 14:37:14 ----A---- C:\Windows\system32\icardie.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\pngfilt.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\occache.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\mshtml.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\mshta.exe
2015-05-19 14:37:13 ----A---- C:\Windows\system32\jscript.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\imgutil.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-19 14:37:13 ----A---- C:\Windows\system32\iepeers.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-19 14:36:52 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-19 14:36:52 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-19 14:36:52 ----A---- C:\Windows\system32\tdh.dll
2015-05-19 14:36:52 ----A---- C:\Windows\system32\advapi32.dll
2015-05-19 14:36:42 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-05-19 14:36:42 ----A---- C:\Windows\system32\mswsock.dll
2015-05-19 14:36:36 ----A---- C:\Windows\system32\taskhost.exe
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-19 14:35:47 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\XpsPrint.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\UIAnimation.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\dxgi.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10level9.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10_1.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10.dll
2015-05-19 14:35:18 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-05-19 14:35:18 ----A---- C:\Windows\system32\d3d11.dll
2015-05-16 12:43:44 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2015-05-16 12:43:44 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2015-05-16 12:43:44 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2015-05-15 23:00:04 ----D---- C:\Windows\pss
2015-05-15 19:08:05 ----D---- C:\Program Files (x86)\TabletPlugins
2015-05-15 19:08:04 ----D---- C:\Program Files\TabletPlugins
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01009.dll
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\wachidrouter.sys
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\wacomrouterfilter.sys
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\hidkmdf.sys
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\Wintab32.dll
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\WacomMT.dll
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\Wacom_Touch_Tablet.dll
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\Wacom_Tablet.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\Wintab32.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\WacomMT.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\Wacom_Touch_Tablet.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\Wacom_Tablet.dll
2015-05-15 18:28:54 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2015-05-15 17:42:22 ----A---- C:\Windows\ntbtlog.txt
2015-05-15 16:07:47 ----D---- C:\ProgramData\ESET
2015-05-15 16:07:47 ----D---- C:\Program Files\ESET
2015-05-15 16:03:22 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2015-05-15 16:03:22 ----A---- C:\Windows\system32\drivers\avipbb.sys
2015-05-15 16:03:22 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2015-05-15 15:57:53 ----D---- C:\Users\Jan\AppData\Roaming\Mozilla
2015-05-15 15:55:58 ----D---- C:\ProgramData\Avira
2015-05-15 15:55:58 ----D---- C:\Program Files (x86)\Avira
2015-05-15 15:43:50 ----D---- C:\Program Files\Speccy
2015-05-14 21:24:50 ----D---- C:\Users\Jan\AppData\Roaming\Uninstaller Tool(Comodo Forums)
2015-05-14 20:32:29 ----A---- C:\ProgramData\ntuser.dat

======List of files/folders modified in the last 1 month======

2015-06-13 11:08:59 ----D---- C:\Windows\Temp
2015-06-13 11:08:58 ----RD---- C:\Program Files
2015-06-13 10:22:42 ----D---- C:\Users\Jan\AppData\Roaming\vlc
2015-06-13 09:59:46 ----D---- C:\Windows\System32
2015-06-13 09:59:46 ----D---- C:\Windows\inf
2015-06-13 09:59:46 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-06-13 09:56:04 ----D---- C:\Windows\system32\config
2015-06-13 09:55:52 ----D---- C:\Users\Jan\AppData\Roaming\Skype
2015-06-12 23:20:27 ----D---- C:\Users\Jan\AppData\Roaming\TS3Client
2015-06-09 06:35:26 ----SHD---- C:\$Recycle.Bin
2015-06-07 20:34:24 ----SHD---- C:\Windows\Installer
2015-06-07 20:34:22 ----RD---- C:\Program Files (x86)\Skype
2015-06-07 20:34:22 ----D---- C:\Program Files (x86)\Common Files
2015-06-07 20:34:20 ----HD---- C:\ProgramData
2015-06-07 13:15:57 ----SD---- C:\Users\Jan\AppData\Roaming\Microsoft
2015-06-06 19:30:41 ----D---- C:\Windows\system32\drivers
2015-06-06 14:24:24 ----SHD---- C:\System Volume Information
2015-06-06 12:24:39 ----D---- C:\Windows\winsxs
2015-06-06 12:23:26 ----D---- C:\Windows\system32\catroot2
2015-06-05 18:16:28 ----RSD---- C:\Windows\assembly
2015-06-05 18:16:27 ----D---- C:\Windows
2015-06-05 18:16:11 ----SD---- C:\ProgramData\Microsoft
2015-06-05 18:16:10 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-06-05 18:16:02 ----RD---- C:\Program Files (x86)
2015-06-05 18:15:58 ----D---- C:\Windows\SysWOW64
2015-06-05 16:12:19 ----D---- C:\Windows\Logs
2015-06-04 06:13:35 ----D---- C:\Windows\system32\wdi
2015-06-02 22:12:28 ----D---- C:\Windows\rescache
2015-06-02 18:02:36 ----D---- C:\Windows\Microsoft.NET
2015-06-02 17:36:34 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-06-02 17:36:34 ----D---- C:\Windows\system32\cs-CZ
2015-06-02 17:36:34 ----D---- C:\Windows\ehome
2015-06-02 17:36:34 ----D---- C:\Program Files\Windows Media Player
2015-06-02 17:36:34 ----D---- C:\Program Files\Common Files\System
2015-06-02 17:36:34 ----D---- C:\Program Files (x86)\Windows Media Player
2015-06-02 17:36:33 ----D---- C:\Windows\SYSWOW64\Dism
2015-06-02 17:36:33 ----D---- C:\Windows\system32\en-US
2015-06-02 17:36:33 ----D---- C:\Windows\system32\Dism
2015-06-02 17:36:33 ----D---- C:\Windows\system32\CodeIntegrity
2015-06-02 17:36:33 ----D---- C:\Windows\system32\Boot
2015-06-02 17:36:32 ----D---- C:\Windows\PolicyDefinitions
2015-06-02 17:36:32 ----D---- C:\Program Files\Windows Journal
2015-06-02 17:36:32 ----D---- C:\Program Files\Windows Defender
2015-06-02 17:36:32 ----D---- C:\Program Files (x86)\Windows Defender
2015-06-02 17:36:30 ----D---- C:\Windows\AppPatch
2015-06-02 17:36:25 ----D---- C:\Windows\system32\DriverStore
2015-06-02 16:33:12 ----D---- C:\Windows\system32\catroot
2015-06-02 16:28:34 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-06-02 16:23:19 ----D---- C:\Windows\debug
2015-05-31 13:59:51 ----D---- C:\Windows\LiveKernelReports
2015-05-30 20:32:07 ----D---- C:\Windows\system32\NDF
2015-05-30 09:50:43 ----D---- C:\Temp
2015-05-24 18:48:01 ----D---- C:\Program Files\COMODO
2015-05-23 16:30:33 ----D---- C:\ProgramData\Package Cache
2015-05-23 16:27:50 ----RSD---- C:\Windows\Fonts
2015-05-23 16:06:02 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-05-23 15:59:50 ----D---- C:\Program Files (x86)\MSBuild
2015-05-20 21:09:32 ----D---- C:\Windows\system32\LogFiles
2015-05-19 15:43:40 ----D---- C:\Windows\system32\Tasks
2015-05-19 15:43:40 ----D---- C:\ProgramData\Comodo
2015-05-19 15:42:31 ----D---- C:\Program Files\Internet Explorer
2015-05-19 15:42:31 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-19 15:42:30 ----D---- C:\Windows\SYSWOW64\migration
2015-05-19 15:42:30 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-19 15:42:30 ----D---- C:\Windows\system32\migration
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\it-IT
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\es-ES
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\el-GR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\de-DE
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\da-DK
2015-05-19 15:42:28 ----D---- C:\Windows\system32\zh-TW
2015-05-19 15:42:28 ----D---- C:\Windows\system32\zh-HK
2015-05-19 15:42:28 ----D---- C:\Windows\system32\zh-CN
2015-05-19 15:42:28 ----D---- C:\Windows\system32\tr-TR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\sv-SE
2015-05-19 15:42:28 ----D---- C:\Windows\system32\ru-RU
2015-05-19 15:42:28 ----D---- C:\Windows\system32\pt-PT
2015-05-19 15:42:28 ----D---- C:\Windows\system32\pt-BR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\pl-PL
2015-05-19 15:42:28 ----D---- C:\Windows\system32\nl-NL
2015-05-19 15:42:28 ----D---- C:\Windows\system32\nb-NO
2015-05-19 15:42:28 ----D---- C:\Windows\system32\ko-KR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\ja-JP
2015-05-19 15:42:28 ----D---- C:\Windows\system32\it-IT
2015-05-19 15:42:28 ----D---- C:\Windows\system32\hu-HU
2015-05-19 15:42:28 ----D---- C:\Windows\system32\fr-FR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\fi-FI
2015-05-19 15:42:28 ----D---- C:\Windows\system32\es-ES
2015-05-19 15:42:28 ----D---- C:\Windows\system32\el-GR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\de-DE
2015-05-19 15:42:28 ----D---- C:\Windows\system32\da-DK
2015-05-17 17:12:44 ----D---- C:\Windows\Tasks
2015-05-15 20:02:12 ----D---- C:\Program Files\WinRAR
2015-05-15 19:08:02 ----D---- C:\Program Files\Tablet
2015-05-15 18:14:20 ----D---- C:\Windows\Prefetch
2015-05-14 21:27:58 ----D---- C:\Windows\system32\wfp
2015-05-14 21:27:58 ----D---- C:\Windows\system32\wbem
2015-05-14 21:27:43 ----D---- C:\Windows\servicing
2015-05-14 21:27:42 ----D---- C:\Windows\AppCompat
2015-05-14 21:27:42 ----D---- C:\Users\Jan\AppData\Roaming\Raptr
2015-05-14 21:27:42 ----D---- C:\Program Files (x86)\Raptr
2015-05-14 21:27:40 ----D---- C:\Windows\registration
2015-05-14 21:22:15 ----D---- C:\Program Files (x86)\VideoLAN

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2015-05-15 246000]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2015-05-15 169792]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2015-05-15 152744]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2015-05-15 159480]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 hidkmdf;KMDF Driver; C:\Windows\system32\DRIVERS\hidkmdf.sys [2015-05-15 14136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-22 3692632]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-04-14 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-06-13 136408]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-08-27 883928]
R3 WacHidRouter;Wacom Hid Router; C:\Windows\system32\DRIVERS\wachidrouter.sys [2015-05-15 102200]
R3 wacomrouterfilter;Wacom Router Filter Driver; C:\Windows\system32\DRIVERS\wacomrouterfilter.sys [2015-05-15 15160]
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2013-01-25 23680]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-04-14 63704]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-05-27 13536]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 xhunter1;xhunter1; \??\C:\Windows\xhunter1.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2015-05-15 434424]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-07 936728]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-05-15 1349576]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-05-16 75136]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2014-02-21 134336]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R2 WTabletServicePro;Wacom Professional Service; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2015-05-15 649496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-04-14 1080120]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-05-19 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-07-22 89232]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-06-02 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Re: Preventivní kontrola

Napsal: 13 čer 2015 16:29
od Márty84
Zdravim :)

:!: Mate tam Nod a Aviru. Jeden musi pryc.

:arrow: Pokud nepouzivate, odinstalujte Akamai

:???: Jde ciste o prevenci, nebo je i nejaky problem?

:arrow: Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

:arrow: V logu vidim MBAM. Udelejte novou kontrolu. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Re: Preventivní kontrola

Napsal: 13 čer 2015 19:22
od _Antti_
Nevím, proč tam je stále avira, asi kvůli špatné odinstalaci. Jinak mělo by se jednat pouze o preventivní prohlídku, jelikož jediná podivnost co se objevila bylo to, že párkrát svchost.exe si bral asi 25% cpu.

# AdwCleaner v4.206 - Log vytvořen 13/06/2015 v 19:24:51
# Aktualizováno 01/06/2015 by Xplode
# Databáze : 2015-06-09.1 [Server]
# Operační system : Windows 7 Home Premium Service Pack 1 (x64)
# Uživatelské jméno : Jan - JAN-PC
# Spuštěno z : C:\Users\Jan\Desktop\adwcleaner_4.206.exe
# Nastavení : Čištění

***** [ Služby ] *****


***** [ Soubory / Složky ] *****

Soubor Smazáno : C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Soubor Smazáno : C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal

***** [ Naplánované úlohy ] *****


***** [ Zástupci ] *****


***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\GeekBuddyRSP
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17801


-\\ Mozilla Firefox v


-\\ Google Chrome v43.0.2357.124


*************************

AdwCleaner[R0].txt - [1199 bytů] - [13/06/2015 19:24:13]
AdwCleaner[S0].txt - [1120 bytů] - [13/06/2015 19:24:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1178 bytů] ##########

---------------------------------------------------------

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Datum skenování: 13.6.2015
Čas skenování: 19:32:44
Protokol: mbmam.txt
Správce: Ano

Verze: 2.01.6.1022
Databáze malwaru: v2015.06.13.04
Databáze rootkitů: v2015.06.02.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Jan

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 637243
Uplynulý čas: 32 min, 15 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 1
Trojan.Agent.AI, C:\Users\Jan\AppData\Local\Temp\Quarantine.exe, , [e35524969befb482db23432a9e6422de],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

Re: Preventivní kontrola

Napsal: 13 čer 2015 19:26
od Márty84
:arrow: Nalez MBAM nechte odstranit, pak muzete MBAM odinstalovat.

:arrow: Dejte novy log z RSIT

a k tomu

:arrow: Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach :)

Re: Preventivní kontrola

Napsal: 13 čer 2015 20:34
od _Antti_
Kvůli limitu znaků to budu muset rozdělit do více příspěvků.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2015-06-13 21:31:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 154 GB (67%) free of 229 GB
Total RAM: 8130 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:31:15, on 13.6.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17801)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\APRP\aprp.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
E:\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
E:\Steam\bin\steamwebhelper.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\notepad.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_1F14D2380DB1DE09582B9D790BD95BA5] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Steam] "E:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.aeriagames.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{1324317B-F886-480B-A3C7-0FC91E781F81}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{1324317B-F886-480B-A3C7-0FC91E781F81}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{1324317B-F886-480B-A3C7-0FC91E781F81}: NameServer = 8.8.8.8,8.8.4.4
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

--
End of file - 9385 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\Tablet\Wacom\WTabletServicePro.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe"
atieclxx
/QuitInfo:000000000000028C;0000000000000290; /AddRef;
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1364
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-121cbfc8-90f4-44f6-85a3-87d9ca8edc42 -SystemEventPortName:HostProcess-03293869-c13e-4ef4-833a-5b80777ac93e -IoCancelEventPortName:HostProcess-cb812b76-e6b1-432e-8e51-81d33a138a5f -NonStateChangingEventPortName:HostProcess-0490378d-693b-4d3e-833d-b51f3b03e16f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:be36e5a2-819e-4ebe-92f1-b2430df62407 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
/QuitInfo:0000000000000520;0000000000000430; /AddRef;
/QuitInfo:0000000000000508;0000000000000448;
/loadhooks /Parent:0000000000000BF8
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
taskeng.exe {C0C73366-AE36-4A04-A982-A54BA150FBDB}
"C:\Program Files (x86)\ASUS\APRP\aprp.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"E:\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3256.0.76300073\1467654904" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,21,44 --gpu-vendor-id=0x1002 --gpu-device-id=0x6798 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.501.1003.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AutofillEnabled/Default/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledTimeLossDetection/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3256 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3256.1.831694037\1951469430" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AutofillEnabled/Default/BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledTimeLossDetection/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3256 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3256.2.2102081746\385191814" /prefetch:673131151
"C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe"
"C:\Program Files\Tablet\Wacom\WacomHost.exe" "C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe"
"C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe" -fromDriver
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
"E:\Steam\bin\steamwebhelper.exe" -cefhost -cachedir "C:\Users\Jan\AppData\Local\Steam\htmlcache" -steampid 3288 -buildid 1433441724 -steamid "0" --disable-gpu-compositing --disable-gpu --enable-threaded-compositing --disable-pinch-virtual-viewport --process-per-tab --disable-spell-checking --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
C:\Windows\servicing\TrustedInstaller.exe

"E:\Vuze\Azureus.exe" "E:\Stažené soubory\[HorribleSubs] Highschool DxD BorN - 11 [720p].mkv.torrent"
taskmgr.exe /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledTimeLossDetection/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3256 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3256.13.1227326104\268995605" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledTimeLossDetection/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3256 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3256.14.1661417119\458021752" /prefetch:673131151
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
notepad FRST.txt
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledTimeLossDetection/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3256 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3256.32.1519934028\1921803715" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/*AutofillEnabled/Default/*BackgroundRendererProcesses/AllowIdleFromBrowser/*BrowserBlacklist/Enabled/*CTRequiredForEVTrial/RequirementEnforced/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*OmniboxBundledExperimentV1/Stable_NonMonotonicity_Experiment_PostPeriod/*PasswordGeneration/Disabled/PasswordLinkInSettings/Disabled/PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledTimeLossDetection/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group2/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_37/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_03/*UMA-Uniformity-Trial-5-Percent/group_08/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/*WebRTC-IPv6Default/Disabled/WebRTC-UDPSocketNonBlockingIO/Default/*Win32kLockdown/Enabled/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --font-cache-shared-mem-suffix=3256 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --use-image-texture-target=3553 --channel="3256.34.548518177\185950913" /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"E:\Stažené soubory\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-10-22 7203032]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2015-05-15 5595848]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"GoogleChromeAutoLaunch_1F14D2380DB1DE09582B9D790BD95BA5"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-06-05 813896]
"Steam"=E:\Steam\steam.exe [2015-06-04 2892992]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-02 28785792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
C:\PROGRA~2\Raptr\raptrstub.exe [2015-05-05 55568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe -controlservice -slave []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk]
C:\PROGRA~1\COMODO\GEEKBU~1\launcher.exe unit_manager.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-11-20 767176]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-06-13 21:27:35 ----D---- C:\FRST
2015-06-13 20:05:19 ----A---- C:\mbmam.txt
2015-06-13 19:24:11 ----D---- C:\AdwCleaner
2015-06-13 19:15:21 ----D---- C:\Program Files\Microsoft Silverlight
2015-06-13 19:15:21 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-06-13 11:08:58 ----D---- C:\rsit
2015-06-13 11:08:58 ----D---- C:\Program Files\trend micro
2015-06-07 20:34:20 ----D---- C:\ProgramData\Skype
2015-06-06 13:24:36 ----D---- C:\Users\Jan\AppData\Roaming\Azureus
2015-06-06 12:24:36 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2015-06-06 12:24:36 ----A---- C:\Windows\system32\msieftp.dll
2015-06-06 12:24:35 ----A---- C:\Windows\system32\wwansvc.dll
2015-06-06 12:24:35 ----A---- C:\Windows\system32\wwanprotdim.dll
2015-06-06 12:24:16 ----A---- C:\Windows\system32\drivers\ataport.sys
2015-06-06 12:24:15 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2015-06-06 12:24:15 ----A---- C:\Windows\SYSWOW64\credui.dll
2015-06-06 12:24:15 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2015-06-06 12:24:15 ----A---- C:\Windows\system32\credui.dll
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\secproc.dll
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2015-06-06 12:24:13 ----A---- C:\Windows\SYSWOW64\msdrm.dll
2015-06-06 12:24:13 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2015-06-06 12:24:13 ----A---- C:\Windows\system32\secproc_ssp.dll
2015-06-06 12:24:13 ----A---- C:\Windows\system32\secproc_isv.dll
2015-06-06 12:24:13 ----A---- C:\Windows\system32\secproc.dll
2015-06-06 12:24:13 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2015-06-06 12:24:13 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2015-06-06 12:24:13 ----A---- C:\Windows\system32\RMActivate_isv.exe
2015-06-06 12:24:13 ----A---- C:\Windows\system32\RMActivate.exe
2015-06-06 12:24:13 ----A---- C:\Windows\system32\msdrm.dll
2015-06-06 12:23:59 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-06-06 12:23:59 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-06-06 12:23:59 ----A---- C:\Windows\system32\WebClnt.dll
2015-06-06 12:23:59 ----A---- C:\Windows\system32\davclnt.dll
2015-06-06 12:23:45 ----A---- C:\Windows\SYSWOW64\iologmsg.dll
2015-06-06 12:23:45 ----A---- C:\Windows\system32\iologmsg.dll
2015-06-06 12:23:45 ----A---- C:\Windows\system32\drivers\storport.sys
2015-06-06 12:23:45 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2015-06-06 12:23:45 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2015-06-06 12:23:27 ----A---- C:\Windows\system32\drivers\fvevol.sys
2015-06-06 12:23:20 ----A---- C:\Windows\system32\scavengeui.dll
2015-06-05 18:16:27 ----D---- C:\Windows\cs
2015-06-05 18:16:10 ----D---- C:\Windows\PCHEALTH
2015-06-05 18:16:02 ----D---- C:\Program Files (x86)\Windows Live
2015-06-05 16:12:07 ----D---- C:\Program Files (x86)\RivaTuner Statistics Server
2015-06-05 16:11:47 ----D---- C:\Program Files (x86)\MSI Afterburner
2015-06-03 06:25:46 ----D---- C:\Users\Jan\AppData\Roaming\RotMG.Production
2015-06-02 17:36:31 ----D---- C:\Windows\SYSWOW64\Wat
2015-06-02 17:36:31 ----D---- C:\Windows\system32\Wat
2015-06-02 16:23:19 ----D---- C:\Windows\system32\MRT
2015-06-02 16:23:18 ----A---- C:\Windows\system32\MRT.exe
2015-06-02 16:12:04 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-06-02 16:12:04 ----A---- C:\Windows\system32\wmi.dll
2015-06-02 16:12:04 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-06-02 16:09:44 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-06-02 16:09:44 ----A---- C:\Windows\system32\win32k.sys
2015-06-02 16:09:44 ----A---- C:\Windows\system32\FntCache.dll
2015-06-02 16:09:44 ----A---- C:\Windows\system32\DWrite.dll
2015-06-02 16:07:55 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-06-02 16:07:55 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-06-02 16:07:55 ----A---- C:\Windows\system32\d3d10warp.dll
2015-06-02 16:07:55 ----A---- C:\Windows\system32\d2d1.dll
2015-06-02 16:07:11 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-06-02 16:07:11 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-06-02 16:06:34 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-06-02 16:06:34 ----A---- C:\Windows\system32\WMPhoto.dll
2015-06-01 17:13:39 ----D---- C:\ProgramData\Aeria Games
2015-06-01 17:08:53 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2015-06-01 15:46:44 ----D---- C:\AeriaGames
2015-05-30 12:49:58 ----D---- C:\Users\Jan\AppData\Roaming\Downloaded Installations
2015-05-30 09:55:05 ----D---- C:\Users\Jan\AppData\Roaming\Wargaming.net
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-05-30 09:54:42 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-05-30 09:54:41 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-05-30 09:54:41 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-05-30 09:54:40 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-05-30 09:54:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-05-30 09:54:39 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-05-30 09:54:38 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-05-30 09:54:38 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-05-30 09:54:37 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-05-30 09:54:36 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-05-30 09:54:35 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-05-30 09:54:34 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-05-30 09:54:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\xinput1_3.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-05-30 09:54:33 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-05-30 09:54:32 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-05-30 09:54:32 ----A---- C:\Windows\system32\d3dx10.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\xinput1_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-05-30 09:54:31 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-05-30 09:54:30 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-05-30 09:54:30 ----A---- C:\Windows\system32\xinput1_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-05-30 09:54:30 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-05-30 09:54:29 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-05-30 09:54:29 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-05-30 09:54:29 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-05-30 09:54:28 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-05-30 09:54:28 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-05-30 09:54:28 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-05-30 09:54:28 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-05-30 09:54:28 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-05-30 09:54:28 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-05-30 09:54:27 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-05-30 09:54:27 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-05-30 09:54:27 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-05-30 09:54:27 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-05-30 09:50:43 ----D---- C:\Windows\SYSWOW64\directx
2015-05-24 20:20:25 ----D---- C:\Users\Jan\AppData\Roaming\Macromedia
2015-05-23 22:49:00 ----D---- C:\Users\Jan\AppData\Roaming\NuGet
2015-05-23 16:28:14 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 11.0
2015-05-23 16:27:45 ----D---- C:\Program Files (x86)\Windows Phone Silverlight Kits
2015-05-23 16:24:44 ----D---- C:\Program Files (x86)\Microsoft XDE
2015-05-23 16:23:04 ----D---- C:\Program Files (x86)\AppInsights
2015-05-23 16:20:16 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2015-05-23 16:20:16 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-05-23 16:18:20 ----D---- C:\Program Files\Application Verifier
2015-05-23 16:18:20 ----D---- C:\Program Files (x86)\Application Verifier
2015-05-23 16:18:11 ----D---- C:\ProgramData\Windows App Certification Kit
2015-05-23 16:14:11 ----D---- C:\ProgramData\PreEmptive Solutions
2015-05-23 16:13:38 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2015-05-23 16:13:06 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2015-05-23 16:12:38 ----D---- C:\Program Files\IIS Express
2015-05-23 16:12:38 ----D---- C:\Program Files (x86)\IIS Express
2015-05-23 16:12:28 ----D---- C:\ProgramData\NuGet
2015-05-23 16:12:28 ----D---- C:\Program Files (x86)\NuGet
2015-05-23 16:12:27 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2015-05-23 16:12:10 ----D---- C:\Program Files\IIS
2015-05-23 16:12:10 ----D---- C:\Program Files (x86)\IIS
2015-05-23 16:11:38 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-05-23 16:09:00 ----D---- C:\Program Files (x86)\Windows Phone Kits
2015-05-23 16:09:00 ----D---- C:\Program Files (x86)\Windows Kits
2015-05-23 16:08:51 ----D---- C:\Program Files (x86)\HTML Help Workshop
2015-05-23 16:08:43 ----D---- C:\Windows\symbols
2015-05-23 16:08:42 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2015-05-23 16:06:50 ----D---- C:\Windows\SYSWOW64\1033
2015-05-23 16:06:49 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2015-05-23 16:06:48 ----D---- C:\Program Files\Microsoft SQL Server
2015-05-23 15:59:50 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-05-23 15:59:34 ----D---- C:\Windows\system32\1033
2015-05-23 15:59:30 ----D---- C:\Program Files\Microsoft Visual Studio 12.0
2015-05-23 15:59:30 ----D---- C:\Program Files (x86)\Microsoft SDKs
2015-05-23 15:54:32 ----D---- C:\Windows\Migration
2015-05-23 15:52:12 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-05-23 14:07:40 ----D---- C:\Users\Jan\AppData\Roaming\HLSW
2015-05-19 18:56:47 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-05-19 18:56:18 ----D---- C:\ProgramData\Malwarebytes
2015-05-19 18:56:18 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-19 18:56:18 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-05-19 18:56:18 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-05-19 18:56:18 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-05-19 15:43:33 ----D---- C:\Users\Jan\AppData\Roaming\Adobe
2015-05-19 14:44:13 ----A---- C:\Windows\system32\IEUDINIT.EXE
2015-05-19 14:37:19 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2015-05-19 14:37:19 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\msls31.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-05-19 14:37:17 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-05-19 14:37:17 ----A---- C:\Windows\system32\elshyph.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\wextract.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\url.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\inseng.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\icardie.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-05-19 14:37:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-05-19 14:37:15 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\wininet.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\urlmon.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2015-05-19 14:37:15 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msrating.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msls31.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\mshtmler.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msfeedssync.exe
2015-05-19 14:37:15 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jsIntl.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jscript9diag.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\jscript9.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\ieui.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\iesysprep.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\iertutil.dll
2015-05-19 14:37:15 ----A---- C:\Windows\system32\IEAdvpack.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\wextract.exe
2015-05-19 14:37:14 ----A---- C:\Windows\system32\webcheck.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\vbscript.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\url.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\mshtmled.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\msfeeds.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\licmgr10.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\inseng.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iexpress.exe
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iesetup.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iernonce.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ieframe.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\iedkcs32.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ieapfltr.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ieapfltr.dat
2015-05-19 14:37:14 ----A---- C:\Windows\system32\ie4uinit.exe
2015-05-19 14:37:14 ----A---- C:\Windows\system32\icardie.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\dxtrans.dll
2015-05-19 14:37:14 ----A---- C:\Windows\system32\dxtmsft.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\pngfilt.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\occache.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\mshtml.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\mshta.exe
2015-05-19 14:37:13 ----A---- C:\Windows\system32\jscript.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\imgutil.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieUnatt.exe
2015-05-19 14:37:13 ----A---- C:\Windows\system32\iepeers.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-05-19 14:37:13 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-05-19 14:36:52 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-05-19 14:36:52 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-05-19 14:36:52 ----A---- C:\Windows\system32\tdh.dll
2015-05-19 14:36:52 ----A---- C:\Windows\system32\advapi32.dll
2015-05-19 14:36:42 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-05-19 14:36:42 ----A---- C:\Windows\system32\mswsock.dll
2015-05-19 14:36:36 ----A---- C:\Windows\system32\taskhost.exe
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-19 14:35:48 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-19 14:35:47 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-05-19 14:35:47 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\XpsPrint.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\UIAnimation.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\dxgi.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10level9.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10_1.dll
2015-05-19 14:35:47 ----A---- C:\Windows\system32\d3d10.dll
2015-05-19 14:35:18 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-05-19 14:35:18 ----A---- C:\Windows\system32\d3d11.dll
2015-05-16 12:43:44 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2015-05-16 12:43:44 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2015-05-16 12:43:44 ----A---- C:\Windows\SYSWOW64\pbsvc.exe
2015-05-15 23:00:04 ----D---- C:\Windows\pss
2015-05-15 19:08:05 ----D---- C:\Program Files (x86)\TabletPlugins
2015-05-15 19:08:04 ----D---- C:\Program Files\TabletPlugins
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01009.dll
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\wachidrouter.sys
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\wacomrouterfilter.sys
2015-05-15 19:07:54 ----A---- C:\Windows\system32\drivers\hidkmdf.sys
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\Wintab32.dll
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\WacomMT.dll
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\Wacom_Touch_Tablet.dll
2015-05-15 19:07:47 ----A---- C:\Windows\SYSWOW64\Wacom_Tablet.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\Wintab32.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\WacomMT.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\Wacom_Touch_Tablet.dll
2015-05-15 19:07:47 ----A---- C:\Windows\system32\Wacom_Tablet.dll
2015-05-15 17:42:22 ----A---- C:\Windows\ntbtlog.txt
2015-05-15 16:07:47 ----D---- C:\ProgramData\ESET
2015-05-15 16:07:47 ----D---- C:\Program Files\ESET
2015-05-15 15:57:53 ----D---- C:\Users\Jan\AppData\Roaming\Mozilla
2015-05-15 15:43:50 ----D---- C:\Program Files\Speccy
2015-05-14 21:24:50 ----D---- C:\Users\Jan\AppData\Roaming\Uninstaller Tool(Comodo Forums)
2015-05-14 20:32:29 ----A---- C:\ProgramData\ntuser.dat

======List of files/folders modified in the last 1 month======

2015-06-13 21:31:14 ----D---- C:\Windows\Temp
2015-06-13 21:28:24 ----D---- C:\Windows
2015-06-13 21:08:16 ----D---- C:\Windows\system32\config
2015-06-13 20:59:44 ----D---- C:\Users\Jan\AppData\Roaming\Skype
2015-06-13 20:41:03 ----D---- C:\Windows\System32
2015-06-13 20:41:03 ----D---- C:\Windows\inf
2015-06-13 20:41:03 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-06-13 20:34:12 ----D---- C:\Users\Jan\AppData\Roaming\TS3Client
2015-06-13 20:23:23 ----D---- C:\Windows\SysWOW64
2015-06-13 20:23:23 ----D---- C:\Windows\system32\drivers
2015-06-13 20:18:27 ----D---- C:\Users\Jan\AppData\Roaming\vlc
2015-06-13 19:23:35 ----D---- C:\Windows\winsxs
2015-06-13 19:23:28 ----RD---- C:\Program Files (x86)
2015-06-13 19:23:28 ----HD---- C:\ProgramData
2015-06-13 19:23:09 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-06-13 19:23:09 ----D---- C:\Windows\system32\DriverStore
2015-06-13 19:23:09 ----D---- C:\Windows\system32\cs-CZ
2015-06-13 19:16:02 ----SHD---- C:\Windows\Installer
2015-06-13 19:15:21 ----RD---- C:\Program Files
2015-06-13 19:15:07 ----SHD---- C:\System Volume Information
2015-06-13 12:08:23 ----D---- C:\Windows\system32\NDF
2015-06-09 06:35:26 ----SHD---- C:\$Recycle.Bin
2015-06-07 20:34:22 ----RD---- C:\Program Files (x86)\Skype
2015-06-07 20:34:22 ----D---- C:\Program Files (x86)\Common Files
2015-06-07 13:15:57 ----SD---- C:\Users\Jan\AppData\Roaming\Microsoft
2015-06-06 12:23:26 ----D---- C:\Windows\system32\catroot2
2015-06-05 18:16:28 ----RSD---- C:\Windows\assembly
2015-06-05 18:16:11 ----SD---- C:\ProgramData\Microsoft
2015-06-05 18:16:10 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-06-05 16:12:19 ----D---- C:\Windows\Logs
2015-06-04 06:13:35 ----D---- C:\Windows\system32\wdi
2015-06-02 22:12:28 ----D---- C:\Windows\rescache
2015-06-02 18:02:36 ----D---- C:\Windows\Microsoft.NET
2015-06-02 17:36:34 ----D---- C:\Windows\ehome
2015-06-02 17:36:34 ----D---- C:\Program Files\Windows Media Player
2015-06-02 17:36:34 ----D---- C:\Program Files\Common Files\System
2015-06-02 17:36:34 ----D---- C:\Program Files (x86)\Windows Media Player
2015-06-02 17:36:33 ----D---- C:\Windows\SYSWOW64\Dism
2015-06-02 17:36:33 ----D---- C:\Windows\system32\en-US
2015-06-02 17:36:33 ----D---- C:\Windows\system32\Dism
2015-06-02 17:36:33 ----D---- C:\Windows\system32\CodeIntegrity
2015-06-02 17:36:33 ----D---- C:\Windows\system32\Boot
2015-06-02 17:36:32 ----D---- C:\Windows\PolicyDefinitions
2015-06-02 17:36:32 ----D---- C:\Program Files\Windows Journal
2015-06-02 17:36:32 ----D---- C:\Program Files\Windows Defender
2015-06-02 17:36:32 ----D---- C:\Program Files (x86)\Windows Defender
2015-06-02 17:36:30 ----D---- C:\Windows\AppPatch
2015-06-02 16:33:12 ----D---- C:\Windows\system32\catroot
2015-06-02 16:28:34 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-06-02 16:23:19 ----D---- C:\Windows\debug
2015-05-31 13:59:51 ----D---- C:\Windows\LiveKernelReports
2015-05-30 09:50:43 ----D---- C:\Temp
2015-05-24 18:48:01 ----D---- C:\Program Files\COMODO
2015-05-23 16:30:33 ----D---- C:\ProgramData\Package Cache
2015-05-23 16:27:50 ----RSD---- C:\Windows\Fonts
2015-05-23 16:06:02 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-05-23 15:59:50 ----D---- C:\Program Files (x86)\MSBuild
2015-05-20 21:09:32 ----D---- C:\Windows\system32\LogFiles
2015-05-19 15:43:40 ----D---- C:\Windows\system32\Tasks
2015-05-19 15:43:40 ----D---- C:\ProgramData\Comodo
2015-05-19 15:42:31 ----D---- C:\Program Files\Internet Explorer
2015-05-19 15:42:31 ----D---- C:\Program Files (x86)\Internet Explorer
2015-05-19 15:42:30 ----D---- C:\Windows\SYSWOW64\migration
2015-05-19 15:42:30 ----D---- C:\Windows\SYSWOW64\en-US
2015-05-19 15:42:30 ----D---- C:\Windows\system32\migration
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\it-IT
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\es-ES
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\el-GR
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\de-DE
2015-05-19 15:42:28 ----D---- C:\Windows\SYSWOW64\da-DK
2015-05-19 15:42:28 ----D---- C:\Windows\system32\zh-TW
2015-05-19 15:42:28 ----D---- C:\Windows\system32\zh-HK
2015-05-19 15:42:28 ----D---- C:\Windows\system32\zh-CN
2015-05-19 15:42:28 ----D---- C:\Windows\system32\tr-TR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\sv-SE
2015-05-19 15:42:28 ----D---- C:\Windows\system32\ru-RU
2015-05-19 15:42:28 ----D---- C:\Windows\system32\pt-PT
2015-05-19 15:42:28 ----D---- C:\Windows\system32\pt-BR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\pl-PL
2015-05-19 15:42:28 ----D---- C:\Windows\system32\nl-NL
2015-05-19 15:42:28 ----D---- C:\Windows\system32\nb-NO
2015-05-19 15:42:28 ----D---- C:\Windows\system32\ko-KR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\ja-JP
2015-05-19 15:42:28 ----D---- C:\Windows\system32\it-IT
2015-05-19 15:42:28 ----D---- C:\Windows\system32\hu-HU
2015-05-19 15:42:28 ----D---- C:\Windows\system32\fr-FR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\fi-FI
2015-05-19 15:42:28 ----D---- C:\Windows\system32\es-ES
2015-05-19 15:42:28 ----D---- C:\Windows\system32\el-GR
2015-05-19 15:42:28 ----D---- C:\Windows\system32\de-DE
2015-05-19 15:42:28 ----D---- C:\Windows\system32\da-DK
2015-05-17 17:12:44 ----D---- C:\Windows\Tasks
2015-05-15 20:02:12 ----D---- C:\Program Files\WinRAR
2015-05-15 19:08:02 ----D---- C:\Program Files\Tablet
2015-05-15 18:14:20 ----D---- C:\Windows\Prefetch
2015-05-14 21:27:58 ----D---- C:\Windows\system32\wfp
2015-05-14 21:27:58 ----D---- C:\Windows\system32\wbem
2015-05-14 21:27:43 ----D---- C:\Windows\servicing
2015-05-14 21:27:42 ----D---- C:\Windows\AppCompat
2015-05-14 21:27:42 ----D---- C:\Users\Jan\AppData\Roaming\Raptr
2015-05-14 21:27:42 ----D---- C:\Program Files (x86)\Raptr
2015-05-14 21:27:40 ----D---- C:\Windows\registration
2015-05-14 21:22:15 ----D---- C:\Program Files (x86)\VideoLAN

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2015-05-15 246000]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2015-05-15 169792]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2015-05-15 159480]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-11-21 18959360]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-11-21 589312]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2014-06-21 94720]
R3 hidkmdf;KMDF Driver; C:\Windows\system32\DRIVERS\hidkmdf.sys [2015-05-15 14136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-22 3692632]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-04-14 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-08-27 883928]
R3 WacHidRouter;Wacom Hid Router; C:\Windows\system32\DRIVERS\wachidrouter.sys [2015-05-15 102200]
R3 wacomrouterfilter;Wacom Router Filter Driver; C:\Windows\system32\DRIVERS\wacomrouterfilter.sys [2015-05-15 15160]
R4 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2013-01-25 23680]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-04-14 63704]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [2015-05-27 13536]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 xhunter1;xhunter1; \??\C:\Windows\xhunter1.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-11-21 244736]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [2013-05-07 936728]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2015-05-15 1349576]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 IpOverUsbSvc;Windows Phone IP over USB Transport (IpOverUsbSvc); C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [2014-10-15 22744]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2015-05-16 75136]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2014-02-21 134336]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R2 WTabletServicePro;Wacom Professional Service; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2015-05-15 649496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-04 837312]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-04-14 1080120]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [2014-02-20 142336]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-05-19 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-22 119808]
S3 VsEtwService120;Visual Studio ETW Event Collection Service; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [2014-07-22 89232]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-06-02 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Re: Preventivní kontrola

Napsal: 13 čer 2015 20:35
od _Antti_
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015
Ran by Jan (administrator) on JAN-PC on 13-06-2015 21:28:08
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan (Available Profiles: Jan)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) E:\Steam\Steam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) E:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Azureus Software, Inc) E:\Vuze\Azureus.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Jan\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7203032 2013-10-22] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-05-15] (ESET)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ROCCAT Savu Gaming Mouse] => C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [872048 2012-09-10] (ROCCAT GmbH)
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [GoogleChromeAutoLaunch_1F14D2380DB1DE09582B9D790BD95BA5] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896 2015-06-05] (Google Inc.)
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Steam] => E:\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\MountPoints2: {cb81e66e-f8e6-11e4-a985-806e6f6e6963} - D:\Bin\ASSETUP.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Pomocná služba pro přihlášení k účtu Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{1324317B-F886-480B-A3C7-0FC91E781F81}: [NameServer] 8.8.8.8,8.8.4.4

FireFox:
========
FF ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\sE3ctb9Z.default
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-05-13] (Nexon)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Extension: Avira Browser Safety - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\sE3ctb9Z.default\Extensions\abs@avira.com [2015-05-15]

Chrome:
=======
CHR Profile: C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-12]
CHR Extension: (Google Docs) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-12]
CHR Extension: (Google Drive) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-12]
CHR Extension: (YouTube) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-12]
CHR Extension: (Google Search) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-12]
CHR Extension: (Google Sheets) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-12]
CHR Extension: (AdBlock) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-15]
CHR Extension: (Google Wallet) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-15]
CHR Extension: (Gmail) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-12]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] ()
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2015-05-15] (ESET)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22744 2014-10-15] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2015-05-16] ()
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [649496 2015-05-15] (Wacom Technology, Corp.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [246000 2015-05-15] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241880 2015-05-15] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169792 2015-05-15] (ESET)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [159480 2015-05-15] (ESET)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2013-01-25] (ASUSTeK Computer Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-27] ()
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-13 21:28 - 2015-06-13 21:28 - 00014601 _____ C:\Users\Jan\Desktop\FRST.txt
2015-06-13 21:27 - 2015-06-13 21:28 - 00000000 ____D C:\FRST
2015-06-13 21:23 - 2015-06-13 21:27 - 00112640 _____ (forum.viry.cz) C:\Users\Jan\Desktop\FRSTLauncher.exe
2015-06-13 21:23 - 2015-06-13 21:23 - 02109952 _____ (Farbar) C:\Users\Jan\Desktop\FRST64.exe
2015-06-13 20:05 - 2015-06-13 20:05 - 00001221 _____ C:\mbmam.txt
2015-06-13 19:24 - 2015-06-13 19:24 - 00000000 ____D C:\AdwCleaner
2015-06-13 19:23 - 2015-06-13 19:22 - 02231296 _____ C:\Users\Jan\Desktop\adwcleaner_4.206.exe
2015-06-13 19:16 - 2015-06-13 19:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-06-13 19:15 - 2015-06-13 19:15 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-06-13 19:15 - 2015-06-13 19:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-06-13 11:08 - 2015-06-13 11:09 - 00000000 ____D C:\rsit
2015-06-13 11:08 - 2015-06-13 11:09 - 00000000 ____D C:\Program Files\trend micro
2015-06-07 20:35 - 2015-06-07 20:35 - 00054363 _____ C:\Users\Jan\Documents\asas.wma
2015-06-07 20:34 - 2015-06-07 20:34 - 00002731 _____ C:\Users\Public\Desktop\Skype.lnk
2015-06-07 20:34 - 2015-06-07 20:34 - 00000000 ____D C:\ProgramData\Skype
2015-06-07 20:34 - 2015-06-07 20:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-06-06 13:25 - 2015-06-06 13:25 - 00000000 ____D C:\Users\Jan\.swt
2015-06-06 13:24 - 2015-06-13 21:24 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Azureus
2015-06-06 13:24 - 2015-06-06 13:24 - 00000566 _____ C:\Users\Public\Desktop\Vuze.lnk
2015-06-06 13:24 - 2015-06-06 13:24 - 00000566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
2015-06-06 12:24 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-06-06 12:24 - 2014-01-01 01:05 - 00420008 _____ C:\Windows\SysWOW64\locale.nls
2015-06-06 12:24 - 2014-01-01 01:04 - 00420008 _____ C:\Windows\system32\locale.nls
2015-06-06 12:24 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-06-06 12:24 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-06-06 12:24 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2015-06-06 12:24 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2015-06-06 12:24 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-06-06 12:24 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2015-06-06 12:24 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2015-06-06 12:24 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2015-06-06 12:24 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2015-06-06 12:24 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2015-06-06 12:24 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2015-06-06 12:24 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2015-06-06 12:24 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2015-06-06 12:24 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-06-06 12:24 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2015-06-06 12:24 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2015-06-06 12:24 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2015-06-06 12:24 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2015-06-06 12:24 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-06-06 12:24 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-06-06 12:24 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-06-06 12:24 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-06-06 12:24 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-06-06 12:24 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-06-06 12:24 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2015-06-06 12:24 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2015-06-06 12:23 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-06-06 12:23 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-06-06 12:23 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-06-06 12:23 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-06-06 12:23 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2015-06-06 12:23 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2015-06-06 12:23 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-06-06 12:23 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-06-06 12:23 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-06-06 12:23 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-06-06 12:23 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-06-05 18:16 - 2015-06-05 18:16 - 00001374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-06-05 18:16 - 2015-06-05 18:16 - 00001305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-06-05 18:16 - 2015-06-05 18:16 - 00000000 ____D C:\Windows\PCHEALTH
2015-06-05 18:16 - 2015-06-05 18:16 - 00000000 ____D C:\Windows\cs
2015-06-05 18:16 - 2015-06-05 18:16 - 00000000 ____D C:\Program Files (x86)\Windows Live
2015-06-05 18:15 - 2015-06-05 18:16 - 00000000 ____D C:\Users\Jan\AppData\Local\Windows Live
2015-06-05 16:12 - 2015-06-05 16:23 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2015-06-05 16:11 - 2015-06-05 16:16 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2015-06-05 16:11 - 2015-06-05 16:11 - 00001090 _____ C:\Users\Jan\Desktop\MSI Afterburner.lnk
2015-06-05 16:11 - 2015-06-05 16:11 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2015-06-03 06:25 - 2015-06-03 06:25 - 00000202 _____ C:\Users\Jan\Desktop\Realm of the Mad God.url
2015-06-03 06:25 - 2015-06-03 06:25 - 00000000 ____D C:\Users\Jan\AppData\Roaming\RotMG.Production
2015-06-02 16:23 - 2015-06-02 16:26 - 00000000 ____D C:\Windows\system32\MRT
2015-06-02 16:23 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-02 16:12 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2015-06-02 16:12 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2015-06-02 16:12 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2015-06-02 16:09 - 2015-04-20 05:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-06-02 16:09 - 2015-04-20 05:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-06-02 16:09 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-06-02 16:09 - 2015-04-20 04:11 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-02 16:07 - 2015-02-03 05:31 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-06-02 16:07 - 2015-02-03 05:12 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-06-02 16:07 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-06-02 16:07 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-06-02 16:07 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-06-02 16:07 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-06-02 16:06 - 2015-02-04 05:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-06-02 16:06 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-06-01 17:13 - 2015-06-01 17:13 - 00000000 ____D C:\Users\Jan\AppData\Local\Aeria Games
2015-06-01 17:13 - 2015-06-01 17:13 - 00000000 ____D C:\ProgramData\Aeria Games
2015-06-01 17:12 - 2015-06-13 11:54 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2015-06-01 17:10 - 2015-06-01 17:10 - 00000000 ____D C:\Users\Jan\AppData\Local\ESET
2015-06-01 17:08 - 2015-06-13 11:55 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-06-01 15:46 - 2015-06-01 15:46 - 00000000 ____D C:\AeriaGames
2015-05-30 12:49 - 2015-05-30 12:49 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Downloaded Installations
2015-05-30 09:55 - 2015-05-30 09:55 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Wargaming.net
2015-05-30 09:54 - 2015-06-05 18:15 - 00010291 _____ C:\Windows\DirectX.log
2015-05-30 09:54 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-05-30 09:54 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-05-30 09:54 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-05-30 09:54 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-05-30 09:54 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-05-30 09:54 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-05-30 09:54 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-05-30 09:54 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-05-30 09:54 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-05-30 09:54 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-05-30 09:54 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-05-30 09:54 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-05-30 09:54 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-05-30 09:54 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-05-30 09:54 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-05-30 09:54 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-05-30 09:54 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-05-30 09:54 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-05-30 09:54 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-05-30 09:54 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-05-30 09:54 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-05-30 09:54 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-05-30 09:54 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-05-30 09:54 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-05-30 09:54 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-05-30 09:54 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-05-30 09:54 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-05-30 09:54 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-05-30 09:54 - 2008-10-10 04:52 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-05-30 09:54 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-05-30 09:54 - 2008-10-10 04:52 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-05-30 09:54 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-05-30 09:54 - 2008-10-10 04:52 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-05-30 09:54 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-05-30 09:54 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-05-30 09:54 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-05-30 09:54 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-05-30 09:54 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-05-30 09:54 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-05-30 09:54 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-05-30 09:54 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-05-30 09:54 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-05-30 09:54 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-05-30 09:54 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-05-30 09:54 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-05-30 09:54 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-05-30 09:54 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-05-30 09:54 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-05-30 09:54 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-05-30 09:54 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-05-30 09:54 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-05-30 09:54 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-05-30 09:54 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-05-30 09:54 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-05-30 09:54 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-05-30 09:54 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-05-30 09:54 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-05-30 09:54 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-05-30 09:54 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-05-30 09:54 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-05-30 09:54 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-05-30 09:54 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-05-30 09:54 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-05-30 09:54 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-05-30 09:54 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-05-30 09:54 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-05-30 09:54 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-05-30 09:54 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-05-30 09:54 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-05-30 09:54 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-05-30 09:54 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-05-30 09:54 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-05-30 09:54 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-05-30 09:54 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-05-30 09:54 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-05-30 09:54 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-05-30 09:54 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-05-30 09:54 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-05-30 09:54 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-05-30 09:54 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-05-30 09:54 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-05-30 09:54 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-05-30 09:54 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-05-30 09:54 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-05-30 09:54 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-05-30 09:54 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-05-30 09:54 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-05-30 09:54 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-05-30 09:54 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-05-30 09:54 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-05-30 09:54 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-05-30 09:54 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-05-30 09:54 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-05-30 09:54 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-05-30 09:54 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-05-30 09:54 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-05-30 09:54 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-05-30 09:54 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-05-30 09:54 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-05-30 09:54 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-05-30 09:54 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-05-30 09:54 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-05-30 09:54 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-05-30 09:54 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-05-30 09:54 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-05-30 09:54 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-05-30 09:54 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-05-30 09:54 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-05-30 09:54 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-05-30 09:54 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-05-30 09:54 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-05-30 09:54 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-05-30 09:54 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-05-30 09:54 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-05-30 09:54 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-05-30 09:54 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-05-30 09:54 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-05-30 09:54 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-05-30 09:54 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-05-30 09:54 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-05-30 09:54 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-05-30 09:54 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-05-30 09:54 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-05-30 09:54 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-05-30 09:54 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-05-30 09:54 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-05-30 09:54 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-05-30 09:54 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-05-30 09:54 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-05-30 09:54 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-05-30 09:54 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-05-30 09:54 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-05-30 09:54 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-05-30 09:54 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-05-30 09:54 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-05-30 09:54 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-05-30 09:54 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-05-30 09:54 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-05-30 09:54 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-05-30 09:54 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-05-30 09:54 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-05-30 09:54 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-05-30 09:54 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-05-30 09:54 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-05-30 09:54 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-05-30 09:54 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-05-30 09:54 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-05-30 09:54 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-05-30 09:54 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-05-30 09:54 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-05-30 09:50 - 2015-06-05 16:12 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-05-29 19:44 - 2015-05-29 19:44 - 00000533 _____ C:\Users\Jan\Desktop\World of Tanks.lnk
2015-05-29 19:44 - 2015-05-29 19:44 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Tanks
2015-05-26 18:57 - 2015-05-26 18:57 - 11247792 _____ (Adobe Systems, Inc.) C:\Users\Jan\Desktop\flashplayer_17_sa (1).exe
2015-05-26 18:50 - 2015-05-29 16:56 - 00000000 ____D C:\Users\Jan\Desktop\rotmg
2015-05-25 19:44 - 2015-05-25 19:44 - 00002840 _____ C:\Users\Jan\Unigine_Heaven_Benchmark_4.0_20150525_1944.html
2015-05-25 19:38 - 2015-05-25 19:44 - 00000000 ____D C:\Users\Jan\Heaven
2015-05-25 19:37 - 2015-05-25 19:38 - 01065984 _____ C:\Users\Jan\AppData\Local\file__0.localstorage
2015-05-25 19:37 - 2015-05-25 19:37 - 00000679 _____ C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk
2015-05-25 19:37 - 2015-05-25 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine
2015-05-25 19:31 - 2015-05-25 19:34 - 258728440 ____R (Unigine Corp. ) C:\Users\Jan\Downloads\Unigine_Heaven-4.0.exe
2015-05-25 19:31 - 2015-05-25 19:31 - 00000000 ____D C:\Users\Jan\AppData\Local\Steam
2015-05-25 19:29 - 2015-05-25 19:29 - 00000523 _____ C:\Users\Public\Desktop\Steam.lnk
2015-05-25 19:29 - 2015-05-25 19:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-05-24 20:20 - 2015-05-24 20:20 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Macromedia
2015-05-23 22:49 - 2015-05-23 22:49 - 00000000 ____D C:\Users\Jan\AppData\Roaming\NuGet
2015-05-23 19:47 - 2015-05-23 19:54 - 468522813 _____ C:\Users\Jan\Downloads\[HorribleSubs] Highschool DxD BorN - 08 [720p].mkv
2015-05-23 16:28 - 2015-05-23 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
2015-05-23 16:28 - 2015-05-23 16:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2015-05-23 16:27 - 2015-05-23 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone SDK 8.1
2015-05-23 16:27 - 2015-05-23 16:27 - 00000000 ____D C:\Program Files (x86)\Windows Phone Silverlight Kits
2015-05-23 16:24 - 2015-06-03 20:51 - 00000000 ____D C:\Users\Jan\Documents\Visual Studio 2013
2015-05-23 16:24 - 2015-05-23 16:24 - 00000000 ____D C:\Program Files (x86)\Microsoft XDE
2015-05-23 16:23 - 2015-05-23 16:23 - 00000000 ____D C:\Program Files (x86)\AppInsights
2015-05-23 16:20 - 2015-06-05 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-05-23 16:20 - 2015-05-23 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK
2015-05-23 16:20 - 2015-05-23 16:20 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-05-23 16:18 - 2015-05-23 16:23 - 00000000 ____D C:\ProgramData\Windows App Certification Kit
2015-05-23 16:18 - 2015-05-23 16:18 - 00000000 ____D C:\Program Files\Application Verifier
2015-05-23 16:18 - 2015-05-23 16:18 - 00000000 ____D C:\Program Files (x86)\Application Verifier
2015-05-23 16:16 - 2015-05-23 16:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2015-05-23 16:14 - 2015-05-23 16:14 - 00000000 ____D C:\ProgramData\PreEmptive Solutions
2015-05-23 16:13 - 2015-05-23 16:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools
2015-05-23 16:13 - 2015-05-23 16:13 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET
2015-05-23 16:12 - 2015-05-23 16:23 - 00000000 ____D C:\Program Files\IIS Express
2015-05-23 16:12 - 2015-05-23 16:23 - 00000000 ____D C:\Program Files (x86)\IIS Express
2015-05-23 16:12 - 2015-05-23 16:12 - 00000000 ____D C:\ProgramData\NuGet
2015-05-23 16:12 - 2015-05-23 16:12 - 00000000 ____D C:\Program Files\IIS
2015-05-23 16:12 - 2015-05-23 16:12 - 00000000 ____D C:\Program Files (x86)\NuGet
2015-05-23 16:12 - 2015-05-23 16:12 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services
2015-05-23 16:12 - 2015-05-23 16:12 - 00000000 ____D C:\Program Files (x86)\IIS
2015-05-23 16:11 - 2015-05-23 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2015-05-23 16:11 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-05-23 16:09 - 2015-05-23 16:11 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2015-05-23 16:09 - 2015-05-23 16:09 - 00000000 ____D C:\Program Files (x86)\Windows Phone Kits
2015-05-23 16:08 - 2015-05-23 16:08 - 00000000 ____D C:\Windows\symbols
2015-05-23 16:08 - 2015-05-23 16:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2015-05-23 16:08 - 2015-05-23 16:08 - 00000000 ____D C:\Program Files (x86)\HTML Help Workshop
2015-05-23 16:06 - 2015-05-23 16:30 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-05-23 16:06 - 2015-05-23 16:29 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-05-23 16:06 - 2015-05-23 16:11 - 00000000 ____D C:\Windows\SysWOW64\1033
2015-05-23 16:06 - 2015-05-23 16:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2013
2015-05-23 15:59 - 2015-05-23 16:24 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs
2015-05-23 15:59 - 2015-05-23 16:21 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2015-05-23 15:59 - 2015-05-23 16:07 - 00000000 ____D C:\Windows\system32\1033
2015-05-23 15:59 - 2015-05-23 15:59 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 12.0
2015-05-23 14:07 - 2015-06-01 14:23 - 00000000 ____D C:\Users\Jan\AppData\Roaming\HLSW
2015-05-23 14:07 - 2015-05-23 14:07 - 00000515 _____ C:\Users\Jan\Desktop\HLSW.lnk
2015-05-23 14:07 - 2015-05-23 14:07 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HLSW
2015-05-19 22:23 - 2015-05-19 22:23 - 00000000 __SHD C:\Users\Jan\AppData\Local\EmieUserList
2015-05-19 22:23 - 2015-05-19 22:23 - 00000000 __SHD C:\Users\Jan\AppData\Local\EmieSiteList
2015-05-19 22:23 - 2015-05-19 22:23 - 00000000 __SHD C:\Users\Jan\AppData\Local\EmieBrowserModeList
2015-05-19 18:56 - 2015-06-13 19:32 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-19 18:56 - 2015-05-19 18:56 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-19 18:56 - 2015-05-19 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-19 18:56 - 2015-05-19 18:56 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-05-19 18:56 - 2015-05-19 18:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-19 18:56 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-19 18:56 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-19 18:56 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-19 15:43 - 2015-05-19 15:43 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Adobe
2015-05-19 14:44 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2015-05-19 14:37 - 2015-05-19 14:37 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-19 14:37 - 2015-05-19 14:37 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-19 14:37 - 2015-05-19 14:37 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-19 14:37 - 2015-05-19 14:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-19 14:37 - 2015-05-19 14:37 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-05-19 14:37 - 2015-05-19 14:37 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-05-19 14:37 - 2015-05-19 14:37 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-19 14:37 - 2015-05-19 14:37 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-19 14:37 - 2015-05-19 14:37 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-05-19 14:37 - 2015-05-19 14:37 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-05-19 14:37 - 2015-05-19 14:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-05-19 14:37 - 2015-05-19 14:37 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-05-19 14:37 - 2015-05-19 14:37 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-05-19 14:36 - 2015-05-19 14:36 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-05-19 14:35 - 2015-05-19 14:35 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-19 14:35 - 2015-05-19 14:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-05-19 14:34 - 2015-05-19 14:44 - 00015539 _____ C:\Windows\IE11_main.log
2015-05-17 18:56 - 2015-05-17 19:06 - 00000000 ____D C:\Users\Jan\Downloads\Grimm.S04E22.720p.HDTV.X264-DIMENSION
2015-05-16 16:57 - 2015-06-05 16:13 - 00268952 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2015-05-16 12:43 - 2015-06-05 16:13 - 00268952 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-05-16 12:43 - 2015-05-30 20:33 - 00268952 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-05-16 12:43 - 2015-05-16 16:44 - 00075136 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2015-05-16 12:43 - 2015-05-16 12:43 - 00682280 _____ C:\Windows\SysWOW64\pbsvc.exe
2015-05-16 12:43 - 2015-05-16 12:43 - 00000896 _____ C:\Users\Jan\Desktop\Enemy Territory.lnk
2015-05-16 12:43 - 2015-05-16 12:43 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wolfenstein - Enemy Territory
2015-05-16 12:40 - 2015-05-16 12:40 - 00000000 ____D C:\Users\Jan\Desktop\kbcertifikat
2015-05-16 12:40 - 2014-10-18 01:21 - 00001251 _____ C:\Users\Jan\Desktop\Antticonfig.cfg
2015-05-15 23:00 - 2015-05-15 23:00 - 00000000 ____D C:\Windows\pss
2015-05-15 20:02 - 2015-05-15 20:02 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-15 20:02 - 2015-05-15 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-15 19:11 - 2015-05-15 19:11 - 00000000 ____D C:\Users\Jan\.android
2015-05-15 19:08 - 2015-05-15 19:08 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2015-05-15 19:08 - 2015-05-15 19:08 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_wacomrouterfilter_01009.Wdf
2015-05-15 19:08 - 2015-05-15 19:08 - 00000000 ____D C:\Program Files\TabletPlugins
2015-05-15 19:08 - 2015-05-15 19:08 - 00000000 ____D C:\Program Files (x86)\TabletPlugins
2015-05-15 19:07 - 2015-05-15 19:07 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wdfcoinstaller01009.dll
2015-05-15 19:07 - 2015-05-15 19:07 - 00102200 _____ (Wacom Technology) C:\Windows\system32\Drivers\wachidrouter.sys
2015-05-15 19:07 - 2015-05-15 19:07 - 00015160 _____ (Wacom Technology) C:\Windows\system32\Drivers\wacomrouterfilter.sys
2015-05-15 19:07 - 2015-05-15 19:07 - 00014136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2015-05-15 19:07 - 2015-05-15 19:07 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_wachidrouter_01009.Wdf
2015-05-15 19:07 - 2014-10-27 23:38 - 02005784 _____ (Wacom Technology, Corp.) C:\Windows\system32\WacomMT.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01989912 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01983256 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01856792 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wintab32.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01613080 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01608984 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\WacomMT.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01605912 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll
2015-05-15 19:07 - 2014-10-27 23:38 - 01492248 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wintab32.dll
2015-05-15 19:06 - 2015-05-15 19:06 - 109275864 _____ C:\Users\Jan\Desktop\WacomTablet_6.3.9w5.exe
2015-05-15 19:06 - 2015-05-15 19:06 - 00000000 ____D C:\Users\Jan\Desktop\Replays
2015-05-15 19:00 - 2015-06-07 14:02 - 00000946 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2015-05-15 19:00 - 2015-06-07 14:02 - 00000938 _____ C:\Users\Jan\Desktop\osu!.lnk
2015-05-15 16:07 - 2015-05-15 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-05-15 16:07 - 2015-05-15 16:07 - 00000000 ____D C:\ProgramData\ESET
2015-05-15 16:07 - 2015-05-15 16:07 - 00000000 ____D C:\Program Files\ESET
2015-05-15 16:05 - 2015-05-22 21:11 - 00002038 _____ C:\Users\Jan\Desktop\Rkill.txt
2015-05-15 15:57 - 2015-05-15 15:57 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Mozilla
2015-05-15 15:43 - 2015-05-15 15:43 - 00000796 _____ C:\Users\Public\Desktop\Speccy.lnk
2015-05-15 15:43 - 2015-05-15 15:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2015-05-15 15:43 - 2015-05-15 15:43 - 00000000 ____D C:\Program Files\Speccy
2015-05-15 06:24 - 2015-05-24 18:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2015-05-14 21:34 - 2015-05-14 21:34 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-05-14 21:34 - 2015-05-14 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-05-14 21:34 - 2015-05-14 21:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roccat
2015-05-14 21:24 - 2015-05-14 21:27 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Uninstaller Tool(Comodo Forums)

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-13 21:22 - 2015-05-13 07:48 - 00007583 _____ C:\Users\Jan\AppData\Local\Resmon.ResmonCfg
2015-06-13 21:17 - 2015-05-12 23:03 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-13 21:09 - 2015-05-12 22:43 - 01641409 _____ C:\Windows\WindowsUpdate.log
2015-06-13 20:59 - 2015-05-13 14:07 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Skype
2015-06-13 20:44 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-13 20:44 - 2009-07-14 06:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-13 20:41 - 2011-04-12 10:34 - 00800624 _____ C:\Windows\system32\perfh005.dat
2015-06-13 20:41 - 2011-04-12 10:34 - 00183276 _____ C:\Windows\system32\perfc005.dat
2015-06-13 20:41 - 2009-07-14 07:13 - 01761166 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-13 20:37 - 2015-05-12 23:03 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-13 20:36 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-13 20:36 - 2009-07-14 06:51 - 00049427 _____ C:\Windows\setupact.log
2015-06-13 20:34 - 2015-05-13 07:17 - 00000000 ____D C:\Users\Jan\AppData\Roaming\TS3Client
2015-06-13 20:34 - 2010-11-21 05:47 - 00106736 _____ C:\Windows\PFRO.log
2015-06-13 20:18 - 2015-05-13 21:04 - 00000000 ____D C:\Users\Jan\AppData\Roaming\vlc
2015-06-13 19:55 - 2015-05-13 17:12 - 00000000 ____D C:\Users\Jan\AppData\Local\osu!
2015-06-13 12:08 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-06-09 16:19 - 2015-05-12 23:04 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-07 20:34 - 2015-05-13 14:06 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-06-06 19:29 - 2015-05-13 13:34 - 00000000 ____D C:\Users\Jan\AppData\Local\NXEPassportClient
2015-06-06 13:25 - 2015-05-12 22:43 - 00000000 ____D C:\Users\Jan
2015-06-05 18:16 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-06-05 16:23 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-02 22:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-06-02 17:37 - 2009-07-14 06:45 - 00288848 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-02 17:36 - 2011-04-12 10:45 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-02 17:36 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2015-06-02 17:36 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-06-02 17:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-06-02 17:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2015-06-02 17:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-02 17:36 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-02 16:28 - 2015-05-12 22:54 - 01736112 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-05-31 13:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-05-30 09:50 - 2015-05-12 22:59 - 00000000 ____D C:\Temp
2015-05-24 18:48 - 2015-05-13 15:25 - 00000000 ____D C:\Program Files\COMODO
2015-05-23 16:31 - 2015-05-12 22:54 - 00062640 _____ C:\Users\Jan\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-23 16:30 - 2015-05-12 23:11 - 00000000 ____D C:\ProgramData\Package Cache
2015-05-23 15:59 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-05-23 10:32 - 2009-07-14 07:08 - 00028228 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-19 15:43 - 2015-05-13 15:12 - 00000000 ____D C:\ProgramData\Comodo
2015-05-19 15:43 - 2015-05-12 22:44 - 00001397 _____ C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-19 15:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2015-05-19 15:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-05-19 15:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2015-05-19 15:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2015-05-17 17:12 - 2015-05-12 23:03 - 00003948 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-17 17:12 - 2015-05-12 23:03 - 00003696 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-15 20:02 - 2015-05-13 17:20 - 00000000 ____D C:\Program Files\WinRAR
2015-05-15 19:08 - 2015-05-13 17:45 - 00000000 ____D C:\Program Files\Tablet
2015-05-15 16:08 - 2015-03-10 17:24 - 00246000 _____ (ESET) C:\Windows\system32\Drivers\eamonm.sys
2015-05-15 16:08 - 2015-03-10 17:24 - 00241880 _____ (ESET) C:\Windows\system32\Drivers\edevmon.sys
2015-05-15 16:08 - 2015-03-10 17:24 - 00169792 _____ (ESET) C:\Windows\system32\Drivers\ehdrv.sys
2015-05-15 16:08 - 2015-03-10 17:24 - 00159480 _____ (ESET) C:\Windows\system32\Drivers\epfwwfpr.sys
2015-05-14 21:27 - 2015-05-12 23:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2015-05-14 21:27 - 2015-05-12 23:12 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Raptr
2015-05-14 21:27 - 2015-05-12 23:12 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-05-14 21:27 - 2011-04-12 10:45 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-05-14 21:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
2015-05-14 21:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2015-05-14 21:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2015-05-14 21:22 - 2015-05-13 21:04 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2015-05-14 21:22 - 2015-05-13 16:09 - 00000000 ____D C:\Users\Jan\AppData\Local\Punkbuster
2015-05-14 21:22 - 2015-05-13 15:25 - 00000000 ____D C:\Users\Jan\AppData\Local\Comodo

==================== Files in the root of some directories =======

2015-05-25 19:37 - 2015-05-25 19:38 - 1065984 _____ () C:\Users\Jan\AppData\Local\file__0.localstorage
2015-05-13 07:48 - 2015-06-13 21:22 - 0007583 _____ () C:\Users\Jan\AppData\Local\Resmon.ResmonCfg
2015-05-12 22:50 - 2015-05-12 22:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Jan\AppData\Local\Temp\20d1b5a2d87fcd3d92e68f67d5005b1a.dll
C:\Users\Jan\AppData\Local\Temp\amd-catalyst-omega-14.12-with-dotnet45-win7-64bit.exe
C:\Users\Jan\AppData\Local\Temp\AutoDetectUtilApp.exe
C:\Users\Jan\AppData\Local\Temp\d4f5d244a0909d75573750c06e9db24d.dll
C:\Users\Jan\AppData\Local\Temp\i4jdel0.exe
C:\Users\Jan\AppData\Local\Temp\InstHelper.exe
C:\Users\Jan\AppData\Local\Temp\NGMDll.dll
C:\Users\Jan\AppData\Local\Temp\NGMResource.dll
C:\Users\Jan\AppData\Local\Temp\raptrpatch.exe
C:\Users\Jan\AppData\Local\Temp\raptr_stub.exe
C:\Users\Jan\AppData\Local\Temp\sqlite3.dll
C:\Users\Jan\AppData\Local\Temp\unicows.dll
C:\Users\Jan\AppData\Local\Temp\_is70DB.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-03 21:55




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:223.47 GB) (Free:150.46 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:931.51 GB) (Free:857.96 GB) NTFS

Available physical RAM: 5582.21 MB
Total physical RAM: 8130.13 MB
Percentage of memory in use: 31%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 0C6DFB3A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 64327130)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Windows\SysWOW64\pbsvc.exe:$CmdTcID
AlternateDataStreams: C:\Windows\SysWOW64\PnkBstrA.exe:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\eamonm.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\edevmon.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\ehdrv.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\epfwwfpr.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\hidkmdf.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wachidrouter.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wacomrouterfilter.sys:$CmdTcID
AlternateDataStreams: C:\Windows\system32\Drivers\wdfcoinstaller01009.dll:$CmdTcID
AlternateDataStreams: C:\Users\Jan\Desktop\WacomTablet_6.3.9w5.exe:$CmdTcID

==================== Security Center ==================

AV: ESET NOD32 Antivirus 8.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jan\Desktop" je 121 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr
C:\PROGRA~2\Raptr\raptrstub.exe --startup [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol
"C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk
C:\PROGRA~1\COMODO\GEEKBU~1\launcher.exe "unit_manager.exe" [x]


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Re: Preventivní kontrola

Napsal: 14 čer 2015 06:24
od Márty84
:arrow: Vypnete trvale Windows Defender.



:arrow: Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Steam] => E:\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)

FF Extension: Avira Browser Safety - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\sE3ctb9Z.default\Extensions\abs@avira.com [2015-05-15]

S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk" /f

Hosts:
EmptyTemp:
Reboot:
End
Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

Re: Preventivní kontrola

Napsal: 14 čer 2015 13:14
od _Antti_
Log:
Fix result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Jan at 2015-06-14 14:10:55 Run:1
Running from C:\Users\Jan\Desktop
Loaded Profiles: Jan (Available Profiles: Jan)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Akamai NetSession Interface] => "C:\Users\Jan\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Steam] => E:\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)

FF Extension: Avira Browser Safety - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\sE3ctb9Z.default\Extensions\abs@avira.com [2015-05-15]

S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-12 107848]

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk" /f

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Restore point was successfully created.
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface => value removed successfully
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Steam => value removed successfully
HKU\S-1-5-21-4039964657-4026695215-2560059465-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Skype => value removed successfully
C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\sE3ctb9Z.default\Extensions\abs@avira.com => moved successfully.
EagleX64 => Service removed successfully
xhunter1 => Service removed successfully
gupdate => Service removed successfully
SkypeUpdate => Service removed successfully
gupdatem => Service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully.

========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========


========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk" /f =========

Operace byla dokonźena ŁspŘçnŘ.



========= End of Reg: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully.
Hosts restored successfully.
EmptyTemp: => 2.4 GB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 14:11:03 ====

Re: Preventivní kontrola

Napsal: 14 čer 2015 13:59
od Márty84
:!: Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

:arrow:
vyosek píše: :arrow: DelFix https://toolslib.net/downloads/finish/2/
  • Stahnete a spustte
  • Ponechte zatrzitkou pouze u volby Remove disinfection tools
  • Kliknete na Run
:arrow: Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

:arrow: Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




:arrow: Pak napiste, jak je na tom pc.

Re: Preventivní kontrola

Napsal: 22 čer 2015 20:08
od _Antti_
Omlouvám se, jelikož jsem z pracovních důvodů neměl čas se tady tomuto věnovat.

Jinak pc se chová normálně, jako vždy.

Re: Preventivní kontrola

Napsal: 23 čer 2015 00:03
od Márty84
Pokud tedy vse bezi jak ma, mame hotovo :)

Mejte se a treba zase nekdy :bye:

:closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz