Možný keylogger, nebo něco podobného

[_Antti_]

Dobrý večer, chtěl bych Vás požádat o kontrolu. Dnes mi přišla informace o tom, že se mi u jedné služby změnil email z mojí původní adresy na nějakou z ruska.
PC byl nedávno přeinstalován a nepamatuji si, že bych stahoval něco neznámého. Ale je fakt, že jsem si stahoval několik věcí z původních flash disků.

Děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jan at 2015-12-29 18:32:15
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 181 GB (79%) free of 229 GB
Total RAM: 8130 MB (76% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:32:16, on 29.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.19058)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
D:\Steam\Steam.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe
C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
D:\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jan.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [ROCCAT Savu Gaming Mouse] "C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [Corsair Utility Engine] "C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe" --autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O17 - HKLM\System\CCS\Services\Tcpip\..\{713B8C17-F71C-46E8-A13D-D799CA2D46CC}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{713B8C17-F71C-46E8-A13D-D799CA2D46CC}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{713B8C17-F71C-46E8-A13D-D799CA2D46CC}: NameServer = 8.8.8.8,8.8.4.4
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - D:\hamachi\hamachi-2.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

--
End of file - 8394 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Program Files\Tablet\Wacom\WTabletServicePro.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
/QuitInfo:0000000000000284;000000000000028C; /AddRef;
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
D:\hamachi\hamachi-2.exe -s
D:\hamachi\LMIGuardianSvc /escort 1940 /CUSTOM Hamachi
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-98085180-f0ba-463f-afa6-8c2a75d9f43f -SystemEventPortName:HostProcess-bc7e7a1f-c9d9-4345-b0eb-c7868ff6b7c2 -IoCancelEventPortName:HostProcess-2ba8ed4b-a2f7-4572-948f-b0cda8e4f5e3 -NonStateChangingEventPortName:HostProcess-9f9f9a4f-ed9b-4ec1-8ed3-c02e72f58925 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:c52b86db-fc69-4ded-97b2-eca6700cf31b -DeviceGroupId:
"taskhost.exe"
/QuitInfo:000000000000050C;00000000000005A0; /AddRef;
/QuitInfo:0000000000000518;0000000000000588;
"C:\Windows\system32\Dwm.exe"
/loadhooks /Parent:000000000000051C
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"D:\Steam\Steam.exe" -silent
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe" /Automation
"C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe" --autorun
"C:\Program Files\Tablet\Wacom\WacomHost.exe" "C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
"C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe"
"C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe" au
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe" -fromDriver
"D:\Steam\bin\steamwebhelper.exe" -cachedir="C:\Users\Jan\AppData\Local\Steam\htmlcache" -steampid=3572 -buildid=1450127196 -steamid="0" --disable-gpu-compositing --disable-gpu --process-per-tab --enable-system-flash --disable-spell-checking --enable-widevine-cdm --enable-direct-write
"C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5720.0.1846863002\219121310" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,23,51 --gpu-vendor-id=0x1002 --gpu-device-id=0x6798 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.300.1025.1001 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5720.12.1007918389\40170568" --font-cache-shared-handle=4036 /prefetch:673131151
"D:\Downloads\RSITx64.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5720.99.676564998\158714655" --font-cache-shared-handle=2220 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5720.102.767781539\492970543" --font-cache-shared-handle=7316 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5720.104.1940358312\58528849" --font-cache-shared-handle=7420 /prefetch:673131151

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5720.105.1396897381\763321945" --font-cache-shared-handle=6044 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=AffiliationBasedMatching/Enabled/AppBannerTriggering/Aggressive/AsyncSetAsDefault/Enabled/AudioProcessing48kHzSupport/Default/*AutomaticTabDiscarding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/ChromeDashboard/Default/*ChromeSuggestions/Default/*ClientSideDetectionModel/Model0/*CrossDevicePromo/7DaySingleProfile/*DomRel-Enable/enable/EnableGoogleCachedCopyTextExperiment/Button/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/InstanceID/Enabled/*IntelligentSessionRestore/Enabled2/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Disabled/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingReportPhishingErrorLink/Enabled/SafeBrowsingSocialEngineeringStrings/Enabled/SafeBrowsingUnverifiedDownloads/DisableByParameterExe/*SafeBrowsingUpdateFrequency/Default/SessionRestoreBackgroundLoading/Restore/SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*VarationsServiceControl/Interval_30min/VoiceTrigger/Install/WebRTC-PeerConnectionDTLS1.2/Control/ --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --device-scale-factor=1 --num-raster-threads=2 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --channel="5720.106.1634696410\930532954" --font-cache-shared-handle=4992 /prefetch:673131151
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-27 885152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-27 664184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-10-22 7203032]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"StartCN"=C:\Program Files\AMD\CNext\CNext\cnext.exe [2015-12-04 4867784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Steam"=D:\Steam\steam.exe [2015-12-14 3013712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
D:\hamachi\hamachi-2-ui.exe [2015-11-12 5565448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Raptr]
C:\PROGRA~2\Raptr\raptrstub.exe [2015-12-11 56080]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-04-26 292848]
"ROCCAT Savu Gaming Mouse"=C:\Program Files (x86)\ROCCAT\Savu Mouse\Savu Monitor.exe [2012-09-10 872048]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-27 7021880]
"Corsair Utility Engine"=C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe [2015-11-25 13532992]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

[_Antti_]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-12-29 18:23:16 ----D---- C:\rsit
2015-12-29 18:23:16 ----D---- C:\Program Files\trend micro
2015-12-29 18:06:39 ----D---- C:\Users\Jan\AppData\Roaming\ATI
2015-12-29 18:06:39 ----D---- C:\ProgramData\ATI
2015-12-28 20:17:50 ----D---- C:\Program Files (x86)\ElcomSoft
2015-12-28 20:12:08 ----D---- C:\Users\Jan\AppData\Roaming\JetBrains
2015-12-28 20:10:11 ----D---- C:\Users\Jan\AppData\Roaming\NuGet
2015-12-28 19:57:17 ----A---- C:\Windows\system32\drivers\TrueSight.sys
2015-12-28 19:57:15 ----D---- C:\ProgramData\RogueKiller
2015-12-28 19:56:58 ----D---- C:\Program Files\RogueKiller
2015-12-28 19:03:16 ----A---- C:\Windows\AsTaskSched.dll
2015-12-28 18:48:15 ----D---- C:\ProgramData\ASUS
2015-12-28 18:37:39 ----D---- C:\Program Files\HitmanPro
2015-12-28 18:37:20 ----D---- C:\ProgramData\HitmanPro
2015-12-28 18:37:15 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-12-28 18:37:07 ----D---- C:\ProgramData\Malwarebytes
2015-12-28 18:37:07 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-28 18:37:07 ----A---- C:\Windows\system32\drivers\mwac.sys
2015-12-28 18:37:07 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2015-12-28 18:37:07 ----A---- C:\Windows\system32\drivers\mbam.sys
2015-12-28 16:22:50 ----D---- C:\Users\Jan\AppData\Roaming\WTablet
2015-12-28 14:30:03 ----D---- C:\Program Files\TabletPlugins
2015-12-28 14:30:03 ----D---- C:\Program Files (x86)\TabletPlugins
2015-12-28 14:29:52 ----A---- C:\Windows\system32\drivers\wacomrouterfilter.sys
2015-12-28 14:29:49 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01009.dll
2015-12-28 14:29:49 ----A---- C:\Windows\system32\drivers\wachidrouter.sys
2015-12-28 14:29:49 ----A---- C:\Windows\system32\drivers\hidkmdf.sys
2015-12-28 14:29:43 ----A---- C:\Windows\SYSWOW64\Wintab32.dll
2015-12-28 14:29:43 ----A---- C:\Windows\SYSWOW64\WacomMT.dll
2015-12-28 14:29:43 ----A---- C:\Windows\SYSWOW64\Wacom_Touch_Tablet.dll
2015-12-28 14:29:43 ----A---- C:\Windows\SYSWOW64\Wacom_Tablet.dll
2015-12-28 14:29:43 ----A---- C:\Windows\system32\Wintab32.dll
2015-12-28 14:29:43 ----A---- C:\Windows\system32\WacomMT.dll
2015-12-28 14:29:43 ----A---- C:\Windows\system32\Wacom_Touch_Tablet.dll
2015-12-28 14:29:43 ----A---- C:\Windows\system32\Wacom_Tablet.dll
2015-12-28 14:29:41 ----D---- C:\Program Files\Tablet
2015-12-27 19:02:34 ----D---- C:\Users\Jan\AppData\Roaming\Corsair
2015-12-27 19:02:22 ----D---- C:\Program Files (x86)\Corsair
2015-12-27 18:21:32 ----A---- C:\Windows\system32\aswBoot.exe
2015-12-27 18:21:18 ----D---- C:\Users\Jan\AppData\Roaming\AVAST Software
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2015-12-27 18:21:01 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-12-27 18:21:00 ----A---- C:\Windows\avastSS.scr
2015-12-27 18:20:47 ----D---- C:\Program Files\AVAST Software
2015-12-27 17:04:34 ----SD---- C:\Windows\SYSWOW64\Microsoft
2015-12-27 17:03:15 ----D---- C:\Program Files\Common Files\AV
2015-12-27 17:02:39 ----D---- C:\ProgramData\AVAST Software
2015-12-27 16:08:37 ----D---- C:\Program Files (x86)\ROCCAT
2015-12-27 16:08:24 ----D---- C:\Users\Jan\AppData\Roaming\WinRAR
2015-12-27 13:40:27 ----D---- C:\Windows\SYSWOW64\Wat
2015-12-27 13:40:27 ----D---- C:\Windows\system32\Wat
2015-12-27 13:39:16 ----A---- C:\Windows\SYSWOW64\tdh.dll
2015-12-27 13:39:16 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2015-12-27 13:39:16 ----A---- C:\Windows\system32\tdh.dll
2015-12-27 13:39:16 ----A---- C:\Windows\system32\advapi32.dll
2015-12-27 13:38:37 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2015-12-27 13:38:37 ----A---- C:\Windows\system32\mswsock.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2015-12-27 13:35:58 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2015-12-27 13:35:58 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\XpsPrint.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\WMPhoto.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\UIAnimation.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\FntCache.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\dxgi.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\DWrite.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d3d10warp.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d3d10level9.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d3d10core.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d3d10_1core.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d3d10_1.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d3d10.dll
2015-12-27 13:35:58 ----A---- C:\Windows\system32\d2d1.dll
2015-12-27 13:35:09 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2015-12-27 13:35:09 ----A---- C:\Windows\system32\d3d11.dll
2015-12-27 13:03:14 ----A---- C:\Windows\SYSWOW64\wmi.dll
2015-12-27 13:03:14 ----A---- C:\Windows\system32\wmi.dll
2015-12-27 13:03:14 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2015-12-27 12:59:20 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2015-12-27 12:59:20 ----A---- C:\Windows\SYSWOW64\icardres.dll
2015-12-27 12:59:20 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2015-12-27 12:59:20 ----A---- C:\Windows\system32\infocardapi.dll
2015-12-27 12:59:20 ----A---- C:\Windows\system32\icardres.dll
2015-12-27 12:59:20 ----A---- C:\Windows\system32\icardagt.exe
2015-12-27 12:59:19 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2015-12-27 12:59:19 ----A---- C:\Windows\system32\TsWpfWrp.exe
2015-12-27 12:52:39 ----D---- C:\Program Files\WinRAR
2015-12-27 12:42:00 ----A---- C:\Windows\system32\sysmain.dll
2015-12-27 12:42:00 ----A---- C:\Windows\system32\msmmsp.dll
2015-12-27 12:42:00 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2015-12-27 12:41:58 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-12-27 12:41:58 ----A---- C:\Windows\SYSWOW64\sbe.dll
2015-12-27 12:41:58 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-12-27 12:41:58 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2015-12-27 12:41:58 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2015-12-27 12:41:58 ----A---- C:\Windows\system32\tsgqec.dll
2015-12-27 12:41:58 ----A---- C:\Windows\system32\sbe.dll
2015-12-27 12:41:58 ----A---- C:\Windows\system32\mstscax.dll
2015-12-27 12:41:58 ----A---- C:\Windows\system32\CPFilters.dll
2015-12-27 12:41:58 ----A---- C:\Windows\system32\aaclient.dll
2015-12-27 12:41:57 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-12-27 12:41:57 ----A---- C:\Windows\system32\shell32.dll
2015-12-27 12:41:56 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2015-12-27 12:41:56 ----A---- C:\Windows\system32\ExplorerFrame.dll
2015-12-27 12:41:55 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-12-27 12:41:55 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-12-27 12:41:55 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-12-27 12:41:55 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-12-27 12:41:55 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-12-27 12:41:55 ----A---- C:\Windows\SYSWOW64\usp10.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wuwebv.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wups2.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wups.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wudriver.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wucltux.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wuaueng.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wuauclt.exe
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wuapp.exe
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wuapi.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-12-27 12:41:55 ----A---- C:\Windows\system32\usp10.dll
2015-12-27 12:41:52 ----A---- C:\Windows\SYSWOW64\webio.dll
2015-12-27 12:41:52 ----A---- C:\Windows\system32\webio.dll
2015-12-27 12:41:50 ----A---- C:\Windows\SYSWOW64\mscories.dll
2015-12-27 12:41:50 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2015-12-27 12:41:50 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2015-12-27 12:41:50 ----A---- C:\Windows\system32\profsvc.dll
2015-12-27 12:41:50 ----A---- C:\Windows\system32\mscories.dll
2015-12-27 12:41:50 ----A---- C:\Windows\system32\mscorier.dll
2015-12-27 12:41:50 ----A---- C:\Windows\system32\drivers\ntfs.sys
2015-12-27 12:41:50 ----A---- C:\Windows\system32\dfshim.dll
2015-12-27 12:41:48 ----A---- C:\Windows\SYSWOW64\wer.dll
2015-12-27 12:41:48 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2015-12-27 12:41:48 ----A---- C:\Windows\system32\wer.dll
2015-12-27 12:41:48 ----A---- C:\Windows\system32\imagehlp.dll
2015-12-27 12:41:48 ----A---- C:\Windows\system32\drivers\tcpip.sys
2015-12-27 12:41:48 ----A---- C:\Windows\system32\drivers\netio.sys
2015-12-27 12:41:48 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2015-12-27 12:41:45 ----A---- C:\Windows\system32\termsrv.dll
2015-12-27 12:41:43 ----A---- C:\Windows\system32\basesrv.dll
2015-12-27 12:41:40 ----A---- C:\Windows\SYSWOW64\osk.exe
2015-12-27 12:41:40 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-12-27 12:41:40 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-12-27 12:41:40 ----A---- C:\Windows\system32\osk.exe
2015-12-27 12:41:40 ----A---- C:\Windows\system32\nlasvc.dll
2015-12-27 12:41:40 ----A---- C:\Windows\system32\nlaapi.dll
2015-12-27 12:41:40 ----A---- C:\Windows\system32\ncsi.dll
2015-12-27 12:41:39 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-12-27 12:41:39 ----A---- C:\Windows\system32\ubpm.dll
2015-12-27 12:41:39 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-12-27 12:41:38 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2015-12-27 12:41:38 ----A---- C:\Windows\SYSWOW64\user32.dll
2015-12-27 12:41:38 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2015-12-27 12:41:38 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2015-12-27 12:41:38 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2015-12-27 12:41:38 ----A---- C:\Windows\system32\win32k.sys
2015-12-27 12:41:38 ----A---- C:\Windows\system32\WebClnt.dll
2015-12-27 12:41:38 ----A---- C:\Windows\system32\user32.dll
2015-12-27 12:41:38 ----A---- C:\Windows\system32\mfc42u.dll
2015-12-27 12:41:38 ----A---- C:\Windows\system32\mfc42.dll
2015-12-27 12:41:38 ----A---- C:\Windows\system32\davclnt.dll
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\qedit.dll
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\msxml6r.dll
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2015-12-27 12:41:37 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2015-12-27 12:41:37 ----A---- C:\Windows\system32\WMVDECOD.DLL
2015-12-27 12:41:37 ----A---- C:\Windows\system32\qedit.dll
2015-12-27 12:41:37 ----A---- C:\Windows\system32\msxml6r.dll
2015-12-27 12:41:37 ----A---- C:\Windows\system32\msxml6.dll
2015-12-27 12:41:37 ----A---- C:\Windows\system32\msxml3r.dll
2015-12-27 12:41:37 ----A---- C:\Windows\system32\msxml3.dll
2015-12-27 12:41:37 ----A---- C:\Windows\system32\gdi32.dll
2015-12-27 12:41:36 ----A---- C:\Windows\SYSWOW64\wshrm.dll
2015-12-27 12:41:36 ----A---- C:\Windows\SYSWOW64\ole32.dll
2015-12-27 12:41:36 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2015-12-27 12:41:36 ----A---- C:\Windows\system32\wshrm.dll
2015-12-27 12:41:36 ----A---- C:\Windows\system32\ole32.dll
2015-12-27 12:41:36 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2015-12-27 12:41:36 ----A---- C:\Windows\system32\drivers\usb8023.sys
2015-12-27 12:41:36 ----A---- C:\Windows\system32\drivers\rmcast.sys
2015-12-27 12:41:36 ----A---- C:\Windows\system32\comctl32.dll
2015-12-27 12:41:34 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2015-12-27 12:41:34 ----A---- C:\Windows\system32\setbcdlocale.dll
2015-12-27 12:41:34 ----A---- C:\Windows\system32\drivers\appid.sys
2015-12-27 12:41:34 ----A---- C:\Windows\system32\appidsvc.dll
2015-12-27 12:41:34 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2015-12-27 12:41:34 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2015-12-27 12:41:34 ----A---- C:\Windows\system32\appidapi.dll
2015-12-27 12:41:33 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2015-12-27 12:41:33 ----A---- C:\Windows\system32\comsvcs.dll
2015-12-27 12:41:33 ----A---- C:\Windows\system32\catsrvut.dll
2015-12-27 12:41:32 ----A---- C:\Windows\SYSWOW64\catsrvut.dll
2015-12-27 12:41:32 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-12-27 12:41:32 ----A---- C:\Windows\system32\ntdll.dll
2015-12-27 12:41:32 ----A---- C:\Windows\system32\lsasrv.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-12-27 12:41:31 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\wow64win.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\wow64.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\winsrv.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\wdigest.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\TSpkg.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\sspicli.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\srcore.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\srclient.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\smss.exe
2015-12-27 12:41:31 ----A---- C:\Windows\system32\schannel.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\secur32.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\rstrui.exe
2015-12-27 12:41:31 ----A---- C:\Windows\system32\rpcrt4.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\ntvdm64.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\ncrypt.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\msv1_0.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\lsass.exe
2015-12-27 12:41:31 ----A---- C:\Windows\system32\KernelBase.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\kernel32.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\kerberos.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-12-27 12:41:31 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-12-27 12:41:31 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-12-27 12:41:31 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-12-27 12:41:31 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-12-27 12:41:31 ----A---- C:\Windows\system32\drivers\cng.sys
2015-12-27 12:41:31 ----A---- C:\Windows\system32\csrsrv.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\cryptbase.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\credssp.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\conhost.exe
2015-12-27 12:41:31 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-12-27 12:41:31 ----A---- C:\Windows\system32\auditpol.exe
2015-12-27 12:41:31 ----A---- C:\Windows\system32\adtschema.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-12-27 12:41:30 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\user.exe
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-12-27 12:41:30 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-12-27 12:41:30 ----A---- C:\Windows\system32\wow64cpu.dll
2015-12-27 12:41:30 ----A---- C:\Windows\system32\sspisrv.dll
2015-12-27 12:41:30 ----A---- C:\Windows\system32\msobjs.dll
2015-12-27 12:41:30 ----A---- C:\Windows\system32\msaudite.dll
2015-12-27 12:41:30 ----A---- C:\Windows\system32\apisetschema.dll
2015-12-27 12:41:28 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2015-12-27 12:41:28 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2015-12-27 12:41:28 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-12-27 12:41:28 ----A---- C:\Windows\system32\drivers\afd.sys
2015-12-27 12:41:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2015-12-27 12:41:28 ----A---- C:\Windows\system32\dnscacheugc.exe
2015-12-27 12:41:28 ----A---- C:\Windows\system32\dnsapi.dll
2015-12-27 12:41:25 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2015-12-27 12:41:25 ----A---- C:\Windows\system32\dpnet.dll
2015-12-27 12:41:24 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2015-12-27 12:41:24 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2015-12-27 12:41:24 ----A---- C:\Windows\SYSWOW64\msiexec.exe
2015-12-27 12:41:24 ----A---- C:\Windows\SYSWOW64\msi.dll
2015-12-27 12:41:24 ----A---- C:\Windows\SYSWOW64\authui.dll
2015-12-27 12:41:24 ----A---- C:\Windows\system32\msimsg.dll
2015-12-27 12:41:24 ----A---- C:\Windows\system32\msihnd.dll
2015-12-27 12:41:24 ----A---- C:\Windows\system32\msiexec.exe
2015-12-27 12:41:24 ----A---- C:\Windows\system32\msi.dll
2015-12-27 12:41:24 ----A---- C:\Windows\system32\consent.exe
2015-12-27 12:41:24 ----A---- C:\Windows\system32\authui.dll
2015-12-27 12:41:24 ----A---- C:\Windows\system32\appinfo.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\objsel.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\wincredprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\objsel.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\dpapiprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\dimsroam.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\cngprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\capiprovider.dll
2015-12-27 12:41:22 ----A---- C:\Windows\system32\adprovider.dll
2015-12-27 12:41:16 ----A---- C:\Windows\SYSWOW64\notepad.exe
2015-12-27 12:41:16 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2015-12-27 12:41:16 ----A---- C:\Windows\system32\notepad.exe
2015-12-27 12:41:16 ----A---- C:\Windows\system32\IMJP10K.DLL
2015-12-27 12:41:16 ----A---- C:\Windows\system32\drivers\srvnet.sys
2015-12-27 12:41:16 ----A---- C:\Windows\system32\drivers\srv2.sys
2015-12-27 12:41:16 ----A---- C:\Windows\system32\drivers\srv.sys
2015-12-27 12:41:16 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2015-12-27 12:41:16 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2015-12-27 12:41:16 ----A---- C:\Windows\system32\cdd.dll
2015-12-27 12:41:16 ----A---- C:\Windows\notepad.exe
2015-12-27 12:41:15 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2015-12-27 12:41:15 ----A---- C:\Windows\system32\psisdecd.dll
2015-12-27 12:41:12 ----A---- C:\Windows\system32\drivers\partmgr.sys
2015-12-27 12:41:11 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2015-12-27 12:41:11 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2015-12-27 12:41:11 ----A---- C:\Windows\system32\poqexec.exe
2015-12-27 12:41:11 ----A---- C:\Windows\system32\pku2u.dll
2015-12-27 12:41:10 ----A---- C:\Windows\system32\drivers\http.sys
2015-12-27 12:41:09 ----A---- C:\Windows\SYSWOW64\synceng.dll
2015-12-27 12:41:09 ----A---- C:\Windows\system32\synceng.dll
2015-12-27 12:41:09 ----A---- C:\Windows\system32\kdusb.dll
2015-12-27 12:41:09 ----A---- C:\Windows\system32\kdcom.dll
2015-12-27 12:41:09 ----A---- C:\Windows\system32\kd1394.dll
2015-12-27 12:41:08 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2015-12-27 12:41:08 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-12-27 12:41:08 ----A---- C:\Windows\system32\shdocvw.dll
2015-12-27 12:41:08 ----A---- C:\Windows\system32\msctf.dll
2015-12-27 12:41:07 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2015-12-27 12:41:07 ----A---- C:\Windows\SYSWOW64\rastls.dll
2015-12-27 12:41:07 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2015-12-27 12:41:07 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2015-12-27 12:41:07 ----A---- C:\Windows\SYSWOW64\devobj.dll
2015-12-27 12:41:07 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2015-12-27 12:41:07 ----A---- C:\Windows\system32\win32spl.dll
2015-12-27 12:41:07 ----A---- C:\Windows\system32\umpnpmgr.dll
2015-12-27 12:41:07 ----A---- C:\Windows\system32\taskhost.exe
2015-12-27 12:41:07 ----A---- C:\Windows\system32\rastls.dll
2015-12-27 12:41:04 ----A---- C:\Windows\SYSWOW64\packager.dll
2015-12-27 12:41:04 ----A---- C:\Windows\system32\packager.dll
2015-12-27 12:41:04 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-12-27 12:41:03 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-12-27 12:41:03 ----A---- C:\Windows\system32\winlogon.exe
2015-12-27 12:41:03 ----A---- C:\Windows\system32\mstsc.exe
2015-12-27 12:41:02 ----A---- C:\Windows\SYSWOW64\winsta.dll
2015-12-27 12:41:02 ----A---- C:\Windows\system32\winsta.dll
2015-12-27 12:41:02 ----A---- C:\Windows\system32\rdrmemptylst.exe
2015-12-27 12:41:02 ----A---- C:\Windows\system32\rdpwsx.dll
2015-12-27 12:41:02 ----A---- C:\Windows\system32\rdpcorekmts.dll
2015-12-27 12:41:02 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2015-12-27 12:41:02 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2015-12-27 12:41:00 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2015-12-27 12:41:00 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2015-12-27 12:41:00 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-12-27 12:41:00 ----A---- C:\Windows\SYSWOW64\browcli.dll
2015-12-27 12:41:00 ----A---- C:\Windows\system32\netapi32.dll
2015-12-27 12:41:00 ----A---- C:\Windows\system32\msvcrt.dll
2015-12-27 12:41:00 ----A---- C:\Windows\system32\inetcomm.dll
2015-12-27 12:41:00 ----A---- C:\Windows\system32\FXSCOVER.exe
2015-12-27 12:41:00 ----A---- C:\Windows\system32\browser.dll
2015-12-27 12:41:00 ----A---- C:\Windows\system32\browcli.dll
2015-12-27 12:40:59 ----A---- C:\Windows\SYSWOW64\scesrv.dll
2015-12-27 12:40:59 ----A---- C:\Windows\SYSWOW64\els.dll
2015-12-27 12:40:59 ----A---- C:\Windows\SYSWOW64\certutil.exe
2015-12-27 12:40:59 ----A---- C:\Windows\SYSWOW64\certenc.dll
2015-12-27 12:40:59 ----A---- C:\Windows\system32\scesrv.dll
2015-12-27 12:40:59 ----A---- C:\Windows\system32\els.dll
2015-12-27 12:40:59 ----A---- C:\Windows\system32\certutil.exe
2015-12-27 12:40:59 ----A---- C:\Windows\system32\certenc.dll
2015-12-27 12:40:58 ----A---- C:\Windows\system32\mshtml.dll
2015-12-27 12:40:57 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-12-27 12:40:57 ----A---- C:\Windows\system32\jscript.dll
2015-12-27 12:40:57 ----A---- C:\Windows\system32\iertutil.dll
2015-12-27 12:40:57 ----A---- C:\Windows\system32\ieframe.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\mstime.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\mshta.exe
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-12-27 12:40:56 ----A---- C:\Windows\SYSWOW64\corpol.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\wininet.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\webcheck.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\vbscript.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\urlmon.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\occache.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\mstime.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\msrating.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\mshtmled.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\mshta.exe
2015-12-27 12:40:56 ----A---- C:\Windows\system32\msfeedssync.exe
2015-12-27 12:40:56 ----A---- C:\Windows\system32\msfeeds.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\ieUnatt.exe
2015-12-27 12:40:56 ----A---- C:\Windows\system32\iedkcs32.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\dxtrans.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\dxtmsft.dll
2015-12-27 12:40:56 ----A---- C:\Windows\system32\corpol.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\wscript.exe
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\url.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-12-27 12:40:55 ----A---- C:\Windows\SYSWOW64\cscript.exe
2015-12-27 12:40:55 ----A---- C:\Windows\system32\wscript.exe
2015-12-27 12:40:55 ----A---- C:\Windows\system32\url.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\scrrun.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\licmgr10.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\jsproxy.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\ieui.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\iepeers.dll
2015-12-27 12:40:55 ----A---- C:\Windows\system32\cscript.exe
2015-12-27 12:40:54 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2015-12-27 12:40:54 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-12-27 12:40:54 ----A---- C:\Windows\system32\oleacc.dll
2015-12-27 12:40:54 ----A---- C:\Windows\system32\localspl.dll
2015-12-27 12:40:54 ----A---- C:\Windows\system32\jnwmon.dll
2015-12-27 12:40:54 ----A---- C:\Windows\system32\InkEd.dll
2015-12-27 12:40:54 ----A---- C:\Windows\system32\drivers\bowser.sys
2015-12-27 12:40:53 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2015-12-27 12:40:53 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2015-12-27 12:40:53 ----A---- C:\Windows\SYSWOW64\clfsw32.dll
2015-12-27 12:40:53 ----A---- C:\Windows\system32\oleaut32.dll
2015-12-27 12:40:53 ----A---- C:\Windows\system32\EncDec.dll
2015-12-27 12:40:53 ----A---- C:\Windows\system32\clfsw32.dll
2015-12-27 12:40:53 ----A---- C:\Windows\system32\clfs.sys
2015-12-27 12:40:52 ----A---- C:\Windows\SYSWOW64\lpk.dll
2015-12-27 12:40:52 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2015-12-27 12:40:52 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2015-12-27 12:40:52 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2015-12-27 12:40:52 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-12-27 12:40:52 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-12-27 12:40:52 ----A---- C:\Windows\system32\lpk.dll
2015-12-27 12:40:52 ----A---- C:\Windows\system32\fontsub.dll
2015-12-27 12:40:52 ----A---- C:\Windows\system32\dciman32.dll
2015-12-27 12:40:52 ----A---- C:\Windows\system32\cdosys.dll
2015-12-27 12:40:52 ----A---- C:\Windows\system32\atmlib.dll
2015-12-27 12:40:52 ----A---- C:\Windows\system32\atmfd.dll
2015-12-27 12:40:51 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2015-12-27 12:40:51 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2015-12-27 12:40:51 ----A---- C:\Windows\system32\nshwfp.dll
2015-12-27 12:40:51 ----A---- C:\Windows\system32\IKEEXT.DLL
2015-12-27 12:40:51 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2015-12-27 12:35:58 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2015-12-27 12:35:58 ----A---- C:\Windows\system32\rdpcore.dll
2015-12-27 12:35:58 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2015-12-27 12:18:22 ----D---- C:\ProgramData\Stardock
2015-12-27 12:18:22 ----D---- C:\ProgramData\Ironclad Games
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\XAudio2_7.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\xactengine3_7.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\D3DX9_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\d3dx11_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\d3dx10_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\d3dcsx_43.dll
2015-12-27 12:18:21 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\XAudio2_6.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\XAudio2_5.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\xactengine3_6.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\xactengine3_5.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\D3DX9_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\d3dx11_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\d3dx10_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\d3dx10_41.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\d3dcsx_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2015-12-27 12:18:20 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2015-12-27 12:18:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\XAudio2_4.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\XAudio2_3.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\XAudio2_2.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\xactengine3_4.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\xactengine3_3.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\xactengine3_2.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\D3DX9_41.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\D3DX9_40.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\d3dx10_40.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\d3dx10_39.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2015-12-27 12:18:19 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2015-12-27 12:18:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\XAudio2_1.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\XAudio2_0.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\xactengine3_1.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\xactengine3_0.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\D3DX9_39.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\D3DX9_38.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\d3dx10_38.dll
2015-12-27 12:18:18 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2015-12-27 12:18:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\xactengine2_9.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\xactengine2_10.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\D3DX9_37.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\d3dx9_36.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\d3dx10_37.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\d3dx10_36.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\d3dx10_35.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2015-12-27 12:18:17 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2015-12-27 12:18:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\xinput1_3.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\xactengine2_8.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\xactengine2_7.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\xactengine2_6.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\d3dx9_35.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\d3dx9_34.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\d3dx9_33.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\d3dx10_34.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\d3dx10_33.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2015-12-27 12:18:16 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2015-12-27 12:18:15 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xinput1_2.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xinput1_1.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xactengine2_5.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xactengine2_4.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xactengine2_3.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xactengine2_2.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\xactengine2_1.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\x3daudio1_1.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\d3dx9_32.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\d3dx9_31.dll
2015-12-27 12:18:15 ----A---- C:\Windows\system32\d3dx10.dll
2015-12-27 12:18:14 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2015-12-27 12:18:14 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2015-12-27 12:18:14 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2015-12-27 12:18:14 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2015-12-27 12:18:14 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2015-12-27 12:18:14 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2015-12-27 12:18:14 ----A---- C:\Windows\system32\xactengine2_0.dll
2015-12-27 12:18:14 ----A---- C:\Windows\system32\x3daudio1_0.dll
2015-12-27 12:18:14 ----A---- C:\Windows\system32\d3dx9_30.dll
2015-12-27 12:18:14 ----A---- C:\Windows\system32\d3dx9_29.dll
2015-12-27 12:18:14 ----A---- C:\Windows\system32\d3dx9_28.dll
2015-12-27 12:18:14 ----A---- C:\Windows\system32\d3dx9_27.dll
2015-12-27 12:18:13 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2015-12-27 12:18:13 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2015-12-27 12:18:13 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2015-12-27 12:18:13 ----A---- C:\Windows\system32\d3dx9_26.dll
2015-12-27 12:18:13 ----A---- C:\Windows\system32\d3dx9_25.dll
2015-12-27 12:18:13 ----A---- C:\Windows\system32\d3dx9_24.dll
2015-12-27 12:01:27 ----D---- C:\Users\Jan\AppData\Roaming\TS3Client
2015-12-27 12:01:26 ----D---- C:\Program Files\TeamSpeak 3 Client
2015-12-27 11:57:37 ----A---- C:\Windows\system32\winresume.exe
2015-12-27 11:57:36 ----A---- C:\Windows\SYSWOW64\spwmp.dll
2015-12-27 11:57:36 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2015-12-27 11:57:36 ----A---- C:\Windows\SYSWOW64\msnetobj.dll
2015-12-27 11:57:36 ----A---- C:\Windows\SYSWOW64\evr.dll
2015-12-27 11:57:36 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\spwmp.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\qdvd.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\pcasvc.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\pcaevts.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\pcadm.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\msnetobj.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\evr.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\EncDump.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\cryptsp.dll
2015-12-27 11:57:36 ----A---- C:\Windows\system32\cryptnet.dll
2015-12-27 11:57:35 ----A---- C:\Windows\SYSWOW64\quartz.dll
2015-12-27 11:57:35 ----A---- C:\Windows\SYSWOW64\cryptsp.dll
2015-12-27 11:57:35 ----A---- C:\Windows\system32\winload.exe
2015-12-27 11:57:35 ----A---- C:\Windows\system32\quartz.dll
2015-12-27 11:57:35 ----A---- C:\Windows\system32\pcawrk.exe
2015-12-27 11:57:35 ----A---- C:\Windows\system32\pcalua.exe
2015-12-27 11:57:35 ----A---- C:\Windows\system32\audiodg.exe
2015-12-27 11:57:34 ----A---- C:\Windows\SYSWOW64\mferror.dll
2015-12-27 11:57:34 ----A---- C:\Windows\SYSWOW64\cryptui.dll
2015-12-27 11:57:34 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2015-12-27 11:57:34 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\rrinstaller.exe
2015-12-27 11:57:34 ----A---- C:\Windows\system32\msscp.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\mfpmp.exe
2015-12-27 11:57:34 ----A---- C:\Windows\system32\mferror.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\drmmgrtn.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2015-12-27 11:57:34 ----A---- C:\Windows\system32\cryptui.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\cryptsvc.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\ci.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\AUDIOKSE.dll
2015-12-27 11:57:34 ----A---- C:\Windows\system32\AudioEng.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\msscp.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\mf.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\dxmasf.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\drmmgrtn.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2015-12-27 11:57:33 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\wmdrmsdk.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\wintrust.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\mfplat.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\dxmasf.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\drmv2clt.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\crypt32.dll
2015-12-27 11:57:33 ----A---- C:\Windows\system32\blackbox.dll
2015-12-27 11:57:32 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2015-12-27 11:57:32 ----A---- C:\Windows\SYSWOW64\wmdrmsdk.dll
2015-12-27 11:57:32 ----A---- C:\Windows\SYSWOW64\mfps.dll
2015-12-27 11:57:32 ----A---- C:\Windows\SYSWOW64\drmv2clt.dll
2015-12-27 11:57:32 ----A---- C:\Windows\SYSWOW64\blackbox.dll
2015-12-27 11:57:32 ----A---- C:\Windows\system32\wmploc.DLL
2015-12-27 11:57:32 ----A---- C:\Windows\system32\mfps.dll
2015-12-27 11:57:32 ----A---- C:\Windows\system32\mf.dll
2015-12-27 11:57:32 ----A---- C:\Windows\system32\audiosrv.dll
2015-12-27 11:57:32 ----A---- C:\Windows\system32\AudioSes.dll
2015-12-27 11:57:31 ----A---- C:\Windows\SYSWOW64\wmp.dll
2015-12-27 11:57:30 ----A---- C:\Windows\system32\wmp.dll
2015-12-27 11:46:09 ----D---- C:\Users\Jan\AppData\Roaming\library_dir
2015-12-27 11:45:56 ----D---- C:\Users\Jan\AppData\Roaming\Raptr
2015-12-27 11:45:56 ----D---- C:\Program Files (x86)\Raptr
2015-12-27 11:45:51 ----D---- C:\Program Files (x86)\AMD
2015-12-27 11:45:33 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-12-27 11:45:23 ----D---- C:\ProgramData\Package Cache
2015-12-27 11:44:11 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-12-27 11:43:59 ----D---- C:\Program Files\AMD
2015-12-27 11:42:32 ----D---- C:\AMD
2015-12-27 11:39:53 ----D---- C:\Program Files (x86)\Google
2015-12-27 11:36:59 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys
2015-12-27 11:36:53 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys
2015-12-27 11:36:53 ----A---- C:\Windows\system32\drivers\iusb3hub.sys
2015-12-27 11:36:42 ----D---- C:\Temp
2015-12-27 11:31:13 ----D---- C:\Users\Jan\AppData\Roaming\Intel Corporation
2015-12-27 11:31:13 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-12-27 11:30:50 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll
2015-12-27 11:30:47 ----D---- C:\ProgramData\Intel
2015-12-27 11:30:22 ----D---- C:\Program Files\Intel
2015-12-27 11:30:03 ----SHD---- C:\Windows\Installer
2015-12-27 11:29:50 ----A---- C:\Windows\system32\Wdfres.dll
2015-12-27 11:29:50 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2015-12-27 11:29:46 ----A---- C:\Windows\system32\WdfCoInstaller01011.dll
2015-12-27 11:29:46 ----A---- C:\Windows\system32\drivers\TeeDriverx64.sys
2015-12-27 11:29:33 ----D---- C:\Users\Jan\AppData\Roaming\InstallShield
2015-12-27 11:28:44 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2015-12-27 11:28:43 ----A---- C:\Windows\system32\RTNUninst64.dll
2015-12-27 11:28:43 ----A---- C:\Windows\system32\RtNicProp64.dll
2015-12-27 11:27:56 ----D---- C:\Windows\SYSWOW64\RTCOM
2015-12-27 11:27:56 ----D---- C:\Program Files\Realtek
2015-12-27 11:27:45 ----A---- C:\Windows\system32\tossaeapo64.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\toseaeapo64.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\tosasfapo64.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\tosade.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\tepeqapo64.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\tadefxapo264.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\tadefxapo.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\sltech64.dll
2015-12-27 11:27:45 ----A---- C:\Windows\system32\slprp64.dll
2015-12-27 11:27:44 ----A---- C:\Windows\system32\slcnt64.dll
2015-12-27 11:27:44 ----A---- C:\Windows\system32\sl3apo64.dll
2015-12-27 11:27:43 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2015-12-27 11:27:42 ----A---- C:\Windows\system32\audioLibVc.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\WavesGUILib64.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\SRSWOW64.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\SRSTSX64.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\SRSTSH64.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\SRSHP64.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\SFSS_APO.dll
2015-12-27 11:27:41 ----A---- C:\Windows\system32\SFNHK64.dll
2015-12-27 11:27:40 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2015-12-27 11:27:40 ----A---- C:\Windows\system32\SFCOM64.dll
2015-12-27 11:27:40 ----A---- C:\Windows\system32\SFAPO64.dll
2015-12-27 11:27:40 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2015-12-27 11:27:39 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2015-12-27 11:27:39 ----A---- C:\Windows\system32\RtkCfg64.dll
2015-12-27 11:27:39 ----A---- C:\Windows\system32\RtkApi64.dll
2015-12-27 11:27:38 ----A---- C:\Windows\system32\RtPgEx64.dll
2015-12-27 11:27:38 ----A---- C:\Windows\system32\RtkAPO64.dll
2015-12-27 11:27:37 ----A---- C:\Windows\system32\RtDataProc64.dll
2015-12-27 11:27:37 ----A---- C:\Windows\system32\RTCOM64.dll
2015-12-27 11:27:36 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RTKSMSettingsIPC.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RTKSMlfx.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RTEEP64A.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RTEEL64A.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RTEEG64A.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RTEED64A.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RP3DHT64.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RP3DAA64.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\RCoInstII64.dll
2015-12-27 11:27:35 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2015-12-27 11:27:28 ----A---- C:\Windows\system32\RCoRes64.dat
2015-12-27 11:27:24 ----A---- C:\Windows\system32\R4EEP64A.dll
2015-12-27 11:27:24 ----A---- C:\Windows\system32\R4EEL64A.dll
2015-12-27 11:27:24 ----A---- C:\Windows\system32\R4EEG64A.dll
2015-12-27 11:27:24 ----A---- C:\Windows\system32\R4EED64A.dll
2015-12-27 11:27:24 ----A---- C:\Windows\system32\R4EEA64A.dll
2015-12-27 11:27:24 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-12-27 11:27:24 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2015-12-27 11:27:23 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2015-12-27 11:27:22 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2015-12-27 11:27:17 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2015-12-27 11:27:14 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2015-12-27 11:27:13 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2015-12-27 11:27:12 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2015-12-27 11:27:11 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2015-12-27 11:27:11 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-12-27 11:27:11 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2015-12-27 11:27:10 ----A---- C:\Windows\system32\MISS_APO.dll
2015-12-27 11:27:10 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2015-12-27 11:27:10 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2015-12-27 11:27:10 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2015-12-27 11:27:09 ----A---- C:\Windows\system32\KAAPORT64.dll
2015-12-27 11:27:04 ----A---- C:\Windows\system32\FMAPO64.dll
2015-12-27 11:27:03 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-12-27 11:27:03 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2015-12-27 11:27:03 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2015-12-27 11:27:03 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2015-12-27 11:27:03 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2015-12-27 11:27:03 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2015-12-27 11:27:02 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-12-27 11:27:01 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2015-12-27 11:27:01 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-12-27 11:27:00 ----A---- C:\Windows\system32\DDPP64A.dll
2015-12-27 11:27:00 ----A---- C:\Windows\system32\DDPO64A.dll
2015-12-27 11:27:00 ----A---- C:\Windows\system32\DDPD64A.dll
2015-12-27 11:27:00 ----A---- C:\Windows\system32\DDPA64.dll
2015-12-27 11:27:00 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-12-27 11:26:58 ----D---- C:\Program Files (x86)\Realtek
2015-12-27 11:26:58 ----A---- C:\Windows\system32\AERTAR64.dll
2015-12-27 11:26:58 ----A---- C:\Windows\system32\AERTAC64.dll
2015-12-27 11:26:58 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2015-12-27 11:26:57 ----HD---- C:\Program Files (x86)\Temp
2015-12-27 11:26:57 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-12-27 11:26:56 ----R---- C:\Windows\RtlExUpd.dll
2015-12-27 11:26:02 ----RA---- C:\Windows\SYSWOW64\CSVer.dll
2015-12-27 11:26:01 ----D---- C:\Program Files (x86)\Intel
2015-12-27 11:25:52 ----D---- C:\Intel
2015-12-27 11:25:05 ----D---- C:\Windows\AsusInstAll
2015-12-27 11:25:01 ----A---- C:\Windows\system32\drivers\volsnap.sys
2015-12-27 11:24:47 ----D---- C:\Program Files (x86)\ASUS
2015-12-27 11:24:47 ----A---- C:\Windows\SYSWOW64\drivers\AsIO.sys
2015-12-27 11:24:47 ----A---- C:\Windows\SYSWOW64\AsIO.dll
2015-12-27 11:24:44 ----A---- C:\Windows\system32\WUDFx.dll
2015-12-27 11:24:44 ----A---- C:\Windows\system32\WUDFSvc.dll
2015-12-27 11:24:44 ----A---- C:\Windows\system32\WUDFPlatform.dll
2015-12-27 11:24:44 ----A---- C:\Windows\system32\WUDFHost.exe
2015-12-27 11:24:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2015-12-27 11:24:44 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2015-12-27 11:24:44 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2015-12-27 11:24:42 ----D---- C:\Program Files\ASUS
2015-12-27 11:24:42 ----A---- C:\Windows\system32\WudfUpdate_01011.dll
2015-12-27 11:24:20 ----A---- C:\Windows\scd.ini
2015-12-27 11:24:19 ----A---- C:\Windows\Ascd_log.ini
2015-12-27 11:24:19 ----A---- C:\Windows\Ascd_err.ini
2015-12-27 11:24:05 ----A---- C:\Windows\Language_trs.ini
2015-12-27 11:23:22 ----A---- C:\Windows\Ascd_tmp.ini
2015-12-27 11:21:50 ----D---- C:\Users\Jan\AppData\Roaming\Identities
2015-12-27 11:21:46 ----SD---- C:\Users\Jan\AppData\Roaming\Microsoft
2015-12-27 11:21:46 ----D---- C:\Users\Jan\AppData\Roaming\Media Center Programs
2015-12-27 11:21:45 ----SHD---- C:\Recovery
2015-12-27 11:21:45 ----SHD---- C:\ProgramData\Šablony
2015-12-27 11:21:45 ----SHD---- C:\ProgramData\Plocha
2015-12-27 11:21:45 ----SHD---- C:\ProgramData\Oblíbené položky
2015-12-27 11:21:45 ----SHD---- C:\ProgramData\Nabídka Start
2015-12-27 11:21:45 ----SHD---- C:\ProgramData\Dokumenty
2015-12-27 11:21:45 ----SHD---- C:\ProgramData\Data aplikací
2015-12-27 11:21:43 ----D---- C:\Windows\SoftwareDistribution
2015-12-27 11:13:57 ----D---- C:\Windows\Prefetch
2015-12-27 11:13:49 ----SHD---- C:\System Volume Information
2015-12-27 11:13:49 ----ASH---- C:\pagefile.sys
2015-12-27 11:13:49 ----ASH---- C:\hiberfil.sys
2015-12-27 11:13:27 ----D---- C:\Windows\Panther
2015-12-04 18:45:46 ----A---- C:\Windows\system32\amdave64.dll
2015-12-04 18:45:44 ----A---- C:\Windows\SYSWOW64\amdave32.dll
2015-12-04 18:45:38 ----A---- C:\Windows\system32\amdhcp64.dll
2015-12-04 18:45:36 ----A---- C:\Windows\SYSWOW64\amdhcp32.dll
2015-12-04 18:45:34 ----A---- C:\Windows\system32\atimpc64.dll
2015-12-04 18:45:34 ----A---- C:\Windows\system32\amdpcom64.dll
2015-12-04 18:45:32 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2015-12-04 18:45:32 ----A---- C:\Windows\SYSWOW64\amdpcom32.dll
2015-12-04 18:45:20 ----A---- C:\Windows\system32\atiuxp64.dll
2015-12-04 18:45:18 ----A---- C:\Windows\SYSWOW64\atiuxpag.dll
2015-12-04 18:45:16 ----A---- C:\Windows\system32\atiu9p64.dll
2015-12-04 18:45:14 ----A---- C:\Windows\SYSWOW64\atiu9pag.dll
2015-12-04 18:45:12 ----A---- C:\Windows\system32\aticfx64.dll
2015-12-04 18:45:08 ----A---- C:\Windows\SYSWOW64\aticfx32.dll
2015-12-04 18:45:00 ----A---- C:\Windows\system32\atidxx64.dll
2015-12-04 18:44:56 ----A---- C:\Windows\SYSWOW64\atidxx32.dll
2015-12-04 18:44:48 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2015-12-04 18:44:40 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2015-12-04 18:44:32 ----A---- C:\Windows\system32\atiumd6a.dll
2015-12-04 18:44:26 ----A---- C:\Windows\system32\atiumd64.dll
2015-12-04 18:41:48 ----A---- C:\Windows\system32\drivers\amdacpksd.sys
2015-12-04 18:38:22 ----A---- C:\Windows\system32\drivers\atikmdag.sys
2015-12-04 18:33:06 ----A---- C:\Windows\system32\clinfo.exe
2015-12-04 18:33:02 ----A---- C:\Windows\system32\amdocl64.dll
2015-12-04 18:31:48 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2015-12-04 18:30:42 ----A---- C:\Windows\system32\OpenCL.dll
2015-12-04 18:30:40 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2015-12-04 18:29:14 ----A---- C:\Windows\system32\amdocl12cl64.dll
2015-12-04 18:29:08 ----A---- C:\Windows\SYSWOW64\amdocl12cl.dll
2015-12-04 18:08:28 ----A---- C:\Windows\system32\amdlvr64.dll
2015-12-04 18:08:14 ----A---- C:\Windows\SYSWOW64\amdlvr32.dll
2015-12-04 18:08:00 ----A---- C:\Windows\system32\mantle64.dll
2015-12-04 18:07:56 ----A---- C:\Windows\SYSWOW64\mantle32.dll
2015-12-04 18:07:50 ----A---- C:\Windows\system32\amdmantle64.dll
2015-12-04 18:03:02 ----A---- C:\Windows\SYSWOW64\amdmantle32.dll
2015-12-04 17:59:28 ----A---- C:\Windows\system32\atio6axx.dll
2015-12-04 17:59:10 ----A---- C:\Windows\system32\mantleaxl64.dll
2015-12-04 17:59:06 ----A---- C:\Windows\SYSWOW64\mantleaxl32.dll
2015-12-04 17:57:06 ----A---- C:\Windows\system32\coinst_15.30.dll
2015-12-04 17:53:42 ----A---- C:\Windows\system32\amdmmcl6.dll
2015-12-04 17:53:38 ----A---- C:\Windows\SYSWOW64\amdmmcl.dll
2015-12-04 17:53:36 ----A---- C:\Windows\SYSWOW64\atioglxx.dll
2015-12-04 17:51:46 ----A---- C:\Windows\system32\atiapfxx.exe
2015-12-04 17:51:44 ----A---- C:\Windows\system32\aticalrt64.dll
2015-12-04 17:51:42 ----A---- C:\Windows\SYSWOW64\aticalrt.dll
2015-12-04 17:51:40 ----A---- C:\Windows\SYSWOW64\aticalcl.dll
2015-12-04 17:51:40 ----A---- C:\Windows\system32\aticalcl64.dll
2015-12-04 17:51:34 ----A---- C:\Windows\system32\aticaldd64.dll
2015-12-04 17:50:44 ----A---- C:\Windows\SYSWOW64\aticaldd.dll
2015-12-04 17:50:36 ----A---- C:\Windows\SYSWOW64\ativvsvl.dat
2015-12-04 17:50:36 ----A---- C:\Windows\SYSWOW64\ativvsva.dat
2015-12-04 17:50:36 ----A---- C:\Windows\system32\ativvsvl.dat
2015-12-04 17:50:36 ----A---- C:\Windows\system32\ativvsva.dat
2015-12-04 17:47:26 ----A---- C:\Windows\system32\atidemgy.dll
2015-12-04 17:47:24 ----A---- C:\Windows\system32\dgtrayicon.exe
2015-12-04 17:47:20 ----A---- C:\Windows\SYSWOW64\atieah32.exe
2015-12-04 17:47:20 ----A---- C:\Windows\system32\atieah64.exe
2015-12-04 17:47:18 ----A---- C:\Windows\SYSWOW64\amdgfxinfo32.dll
2015-12-04 17:47:18 ----A---- C:\Windows\system32\amdgfxinfo64.dll
2015-12-04 17:47:16 ----A---- C:\Windows\system32\atimuixx.dll
2015-12-04 17:47:14 ----A---- C:\Windows\system32\atieclxx.exe
2015-12-04 17:47:06 ----A---- C:\Windows\system32\atiesrxx.exe
2015-12-04 17:46:54 ----A---- C:\Windows\system32\atitmm64.dll
2015-12-04 17:43:32 ----A---- C:\Windows\system32\atisamu64.dll
2015-12-04 17:43:30 ----A---- C:\Windows\SYSWOW64\atisamu32.dll
2015-12-04 17:43:12 ----A---- C:\Windows\system32\atiadlxx.dll
2015-12-04 17:43:10 ----A---- C:\Windows\SYSWOW64\atiadlxy.dll
2015-12-04 17:43:10 ----A---- C:\Windows\SYSWOW64\atiadlxx.dll
2015-12-04 17:43:06 ----A---- C:\Windows\system32\atig6pxx.dll
2015-12-04 17:43:04 ----A---- C:\Windows\SYSWOW64\atiglpxx.dll
2015-12-04 17:43:04 ----A---- C:\Windows\system32\atiglpxx.dll
2015-12-04 17:43:04 ----A---- C:\Windows\system32\atig6txx.dll
2015-12-04 17:43:00 ----A---- C:\Windows\SYSWOW64\atigktxx.dll
2015-12-04 17:42:56 ----A---- C:\Windows\system32\drivers\atikmpag.sys
2015-12-04 17:42:32 ----A---- C:\Windows\system32\drivers\ati2erec.dll
2015-12-04 17:41:56 ----A---- C:\Windows\system32\hsa-thunk64.dll
2015-12-04 17:41:54 ----A---- C:\Windows\SYSWOW64\hsa-thunk.dll

======List of files/folders modified in the last 1 month======

2015-12-29 18:32:16 ----D---- C:\Windows\Temp
2015-12-29 18:23:16 ----RD---- C:\Program Files
2015-12-29 18:06:39 ----HD---- C:\ProgramData
2015-12-29 17:08:39 ----D---- C:\Windows\System32
2015-12-29 17:08:39 ----D---- C:\Windows\inf
2015-12-29 17:08:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-29 13:05:00 ----D---- C:\Windows\system32\drivers
2015-12-29 01:42:47 ----SD---- C:\ProgramData\Microsoft
2015-12-29 01:42:45 ----D---- C:\Windows\system32\drivers\UMDF
2015-12-28 20:17:50 ----RD---- C:\Program Files (x86)
2015-12-28 19:03:16 ----D---- C:\Windows\system32\Tasks
2015-12-28 19:03:16 ----D---- C:\Windows
2015-12-28 16:21:46 ----D---- C:\Windows\system32\wdi
2015-12-28 14:30:02 ----D---- C:\Windows\system32\DriverStore
2015-12-28 14:29:43 ----D---- C:\Windows\SysWOW64
2015-12-28 01:09:19 ----D---- C:\Windows\system32\NDF
2015-12-27 18:47:54 ----D---- C:\Windows\Microsoft.NET
2015-12-27 18:45:23 ----RSD---- C:\Windows\assembly
2015-12-27 18:20:00 ----D---- C:\Windows\system32\config
2015-12-27 17:18:48 ----SD---- C:\Windows\system32\Microsoft
2015-12-27 17:03:15 ----D---- C:\Program Files\Common Files
2015-12-27 17:03:15 ----D---- C:\Program Files (x86)\Common Files
2015-12-27 17:02:57 ----D---- C:\Windows\winsxs
2015-12-27 16:20:28 ----D---- C:\Windows\system32\catroot2
2015-12-27 13:40:32 ----RSD---- C:\Windows\Fonts
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\zh-TW
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\zh-HK
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\zh-CN
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\tr-TR
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\sv-SE
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\ru-RU
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\pt-PT
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\pt-BR
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\pl-PL
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\nl-NL
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\nb-NO
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\ko-KR
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\ja-JP
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\it-IT
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\hu-HU
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\fr-FR
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\fi-FI
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\es-ES
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\en-US
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\el-GR
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\de-DE
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\da-DK
2015-12-27 13:40:32 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-12-27 13:40:32 ----D---- C:\Windows\system32\zh-HK
2015-12-27 13:40:32 ----D---- C:\Windows\system32\pt-PT
2015-12-27 13:40:32 ----D---- C:\Windows\system32\pt-BR
2015-12-27 13:40:32 ----D---- C:\Windows\system32\pl-PL
2015-12-27 13:40:32 ----D---- C:\Windows\system32\nl-NL
2015-12-27 13:40:32 ----D---- C:\Windows\system32\ko-KR
2015-12-27 13:40:32 ----D---- C:\Windows\system32\it-IT
2015-12-27 13:40:32 ----D---- C:\Windows\system32\hu-HU
2015-12-27 13:40:32 ----D---- C:\Windows\system32\fr-FR
2015-12-27 13:40:32 ----D---- C:\Windows\system32\el-GR
2015-12-27 13:40:31 ----D---- C:\Windows\system32\zh-TW
2015-12-27 13:40:31 ----D---- C:\Windows\system32\zh-CN
2015-12-27 13:40:31 ----D---- C:\Windows\system32\tr-TR
2015-12-27 13:40:31 ----D---- C:\Windows\system32\sv-SE
2015-12-27 13:40:31 ----D---- C:\Windows\system32\ru-RU
2015-12-27 13:40:31 ----D---- C:\Windows\system32\nb-NO
2015-12-27 13:40:31 ----D---- C:\Windows\system32\ja-JP
2015-12-27 13:40:31 ----D---- C:\Windows\system32\fi-FI
2015-12-27 13:40:31 ----D---- C:\Windows\system32\es-ES
2015-12-27 13:40:31 ----D---- C:\Windows\system32\en-US
2015-12-27 13:40:31 ----D---- C:\Windows\system32\drivers\cs-CZ
2015-12-27 13:40:31 ----D---- C:\Windows\system32\de-DE
2015-12-27 13:40:31 ----D---- C:\Windows\system32\da-DK
2015-12-27 13:40:31 ----D---- C:\Windows\system32\cs-CZ
2015-12-27 13:40:31 ----D---- C:\Windows\PolicyDefinitions
2015-12-27 13:40:31 ----D---- C:\Windows\ehome
2015-12-27 13:40:28 ----D---- C:\Windows\system32\CodeIntegrity
2015-12-27 13:40:28 ----D---- C:\Windows\system32\Boot
2015-12-27 13:40:28 ----D---- C:\Program Files\Windows Defender
2015-12-27 13:40:28 ----D---- C:\Program Files (x86)\Windows Defender
2015-12-27 13:40:27 ----D---- C:\Windows\AppPatch
2015-12-27 13:40:24 ----D---- C:\Windows\SYSWOW64\migration
2015-12-27 13:40:24 ----D---- C:\Windows\system32\migration
2015-12-27 13:40:24 ----D---- C:\Program Files\Internet Explorer
2015-12-27 13:40:24 ----D---- C:\Program Files (x86)\Internet Explorer
2015-12-27 13:40:23 ----D---- C:\Program Files\Windows Journal
2015-12-27 13:39:40 ----D---- C:\Windows\Logs
2015-12-27 12:16:08 ----D---- C:\Windows\system32\LogFiles
2015-12-27 11:58:04 ----D---- C:\Windows\SYSWOW64\Dism
2015-12-27 11:58:04 ----D---- C:\Program Files\Windows Media Player
2015-12-27 11:58:04 ----D---- C:\Program Files (x86)\Windows Media Player
2015-12-27 11:58:03 ----D---- C:\Windows\system32\Dism
2015-12-27 11:57:49 ----D---- C:\Windows\system32\catroot
2015-12-27 11:39:53 ----D---- C:\Windows\Tasks
2015-12-27 11:38:40 ----D---- C:\Windows\system32\wbem
2015-12-27 11:30:19 ----D---- C:\Program Files\Common Files\Microsoft Shared
2015-12-27 11:24:58 ----D---- C:\Windows\system32\restore
2015-12-27 11:24:47 ----D---- C:\Windows\SYSWOW64\drivers
2015-12-27 11:21:49 ----SHD---- C:\$Recycle.Bin
2015-12-27 11:21:46 ----RD---- C:\Users
2015-12-27 11:21:45 ----D---- C:\Program Files\Windows NT
2015-12-27 11:19:37 ----D---- C:\Windows\rescache
2015-12-27 11:19:36 ----D---- C:\Windows\debug
2015-12-27 11:15:26 ----D---- C:\Windows\system32\sysprep

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-12-27 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-12-27 273784]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 28008]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-04-26 20464]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-12-27 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-12-27 1055560]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-12-27 451040]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-12-27 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-12-27 97648]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-12-27 155304]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2015-12-04 23961088]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2015-12-04 671232]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2015-09-18 96256]
R3 CorsairVBusDriver;Corsair Bus; C:\Windows\system32\DRIVERS\CorsairVBusDriver.sys [2015-10-30 47840]
R3 CorsairVHidDriver;Corsair virtual device; C:\Windows\system32\DRIVERS\CorsairVHidDriver.sys [2015-10-30 21728]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2015-11-12 34720]
R3 hidkmdf;KMDF Driver; C:\Windows\system32\DRIVERS\hidkmdf.sys [2014-08-06 14136]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-10-22 3692632]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-04-26 368112]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-04-26 786416]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2015-10-05 25816]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-08-27 883928]
R3 WacHidRouter;Wacom Hid Router; C:\Windows\system32\DRIVERS\wachidrouter.sys [2014-08-06 102200]
R3 wacomrouterfilter;Wacom Router Filter Driver; C:\Windows\system32\DRIVERS\wacomrouterfilter.sys [2014-08-06 15160]
S3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\Windows\system32\drivers\mwac.sys [2015-10-05 63704]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2015-12-04 246272]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [2014-09-09 936728]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-27 226440]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; D:\hamachi\hamachi-2.exe [2015-11-12 2546184]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 WTabletServicePro;Wacom Professional Service; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [2014-10-27 649496]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-12-14 836176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-27 144200]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-10-05 1135416]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-27 144200]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2015-12-27 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spustte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[_Antti_]

# AdwCleaner v5.026 - Logfile created 29/12/2015 at 19:38:11
# Updated 21/12/2015 by Xplode
# Database : 2015-12-29.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Jan - JAN-PC
# Running from : D:\Downloads\adwcleaner_5.026.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [666 bytes] ##########

[Rudy]

Toto je OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT. Žádný keylogger sken neukázal.

[_Antti_]

Dobrý den, omlouvám se, ale poslední měsíc jsem měl moc práce a nemohl jsem se dostat k tomu, abych zde pokračoval.
Chtěl bych se tedy zeptat, zda je to stále možné?

Děkuji

[Rudy]

Jistě.