Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:27-09-2015 01
Ran by Barunka (administrator) on BARUNKA-PC (29-09-2015 19:08:02)
Running from C:\Users\Barunka\Desktop
Loaded Profiles: Barunka (Available Profiles: UpdatusUser & Barunka & Administrator)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 13 Organizer\PhotoshopElementsFileAgent.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel) C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
() C:\Program Files (x86)\Lenovo\MotionControl\MotionControl.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Mister Group) C:\Program Files (x86)\System Explorer\SystemExplorer.exe
(Mister Group) C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13265480 2013-01-10] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1273416 2013-01-15] (Realtek Semiconductor)
HKLM\...\Run: [SynLenovoGestureMgr] => C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [657920 2012-11-06] (Synaptics)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-08-06] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2013-08-06] (Lenovo(beijing) Limited)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2960896 2012-11-06] (Synaptics Incorporated)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [548864 2012-05-02] (Vimicro)
HKLM-x32\...\Run: [Smart Update] => C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update.exe [1706576 2012-08-02] (Lenovo)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [91432 2012-03-29] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-09-04] (AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => C:\Program Files (x86)\System Explorer\SystemExplorer.exe [3389160 2015-08-19] (Mister Group)
HKU\S-1-5-21-624853748-3753726421-486992314-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe"
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [184048 2013-12-26] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156256 2013-12-26] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-04] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Motion Control.lnk [2013-08-06]
ShortcutTarget: Motion Control.lnk -> C:\Program Files (x86)\Lenovo\MotionControl\MotionControl.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{915C120F-B202-4C92-8642-BFAB0879D9CF}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-624853748-3753726421-486992314-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-04] (AVAST Software)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-04] (AVAST Software)
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-04]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-09-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-04]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeActiveFileMonitor13.0; C:\Program Files\Adobe\Elements 13 Organizer\PhotoshopElementsFileAgent.exe [231120 2015-01-30] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [1846464 2015-09-10] (Adobe Systems, Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-04] (AVAST Software)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-03-30] (Diskeeper Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [193576 2012-07-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 Lenovo Smart Update Service; C:\Program Files (x86)\Lenovo\Lenovo Smart Update\Lenovo Smart Update Service.exe [66640 2012-07-18] (Lenovo)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [272176 2012-09-24] ()
R3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Mister Group)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-09-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-09-11] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [1153840 2012-09-24] (Intel® Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-09-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-09-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-09-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-04] (AVAST Software)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-09-11] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [32768 2014-11-21] (Microsoft Corporation)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-21] (Microsoft Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-03-30] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [95024 2012-03-30] (Diskeeper Corporation)
R3 irstrtdv; C:\Windows\System32\drivers\irstrtdv.sys [43800 2012-07-20] (Intel Corporation)
R3 LAD; C:\Windows\System32\drivers\LAD.sys [8704 2012-06-08] (TODO: <Company name>)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [4309032 2012-10-10] (Intel Corporation)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [36864 2012-11-06] (Synaptics Incorporated)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-10] (Windows (R) Win 7 DDK provider)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [975104 2012-08-24] (Vimicro Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-09-11] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-09-11] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-09-11] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-10] (Windows (R) Win 7 DDK provider)
S3 btmhsf; \SystemRoot\system32\DRIVERS\btmhsf.sys [X]
S3 iBtFltCoex; \SystemRoot\system32\DRIVERS\iBtFltCoex.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-09-29 16:47 - 2015-09-29 16:47 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-09-28 23:55 - 2015-09-29 19:08 - 00016330 _____ C:\Users\Barunka\Desktop\FRST.txt
2015-09-28 23:55 - 2015-09-29 19:08 - 00000000 ____D C:\FRST
2015-09-28 23:53 - 2015-09-28 23:54 - 02192384 _____ (Farbar) C:\Users\Barunka\Desktop\FRST64.exe
2015-09-27 20:06 - 2015-09-27 20:07 - 05636489 _____ (Swearware) C:\Users\Barunka\Desktop\ComboFix.exe
2015-09-27 10:00 - 2015-09-27 10:01 - 00000000 ____D C:\ProgramData\SystemExplorer
2015-09-27 10:00 - 2015-09-27 10:00 - 00001109 _____ C:\Users\Public\Desktop\System Explorer.lnk
2015-09-27 10:00 - 2015-09-27 10:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2015-09-27 10:00 - 2015-09-27 10:00 - 00000000 ____D C:\Program Files (x86)\System Explorer
2015-09-27 09:29 - 2015-09-27 09:30 - 00000000 ____D C:\Users\Barunka\Documents\Youcam
2015-09-27 09:29 - 2015-09-27 09:29 - 00000000 ____D C:\Users\Barunka\Documents\Avatar
2015-09-27 09:29 - 2015-09-27 09:29 - 00000000 ____D C:\Users\Barunka\AppData\Roaming\CyberLink
2015-09-27 09:29 - 2015-09-27 09:29 - 00000000 ____D C:\Users\Barunka\AppData\Local\CyberLink
2015-09-27 09:00 - 2015-09-27 09:01 - 00000431 _____ C:\Users\Barunka\Desktop\DiskInfo.ini
2015-09-27 09:00 - 2015-09-27 09:00 - 00000000 ____D C:\Users\Barunka\Desktop\Smart
2015-09-27 09:00 - 2015-09-27 09:00 - 00000000 ____D C:\Users\Barunka\Desktop\License
2015-09-27 09:00 - 2015-09-27 09:00 - 00000000 ____D C:\Users\Barunka\Desktop\CdiResource
2015-09-26 20:31 - 2015-09-26 20:31 - 00000000 ____D C:\Users\Barunka\AppData\Local\CrashDumps
2015-09-26 20:30 - 2015-09-26 20:30 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-09-26 20:10 - 2015-09-26 20:10 - 00004978 _____ C:\Users\Barunka\Desktop\hijackthis.log
2015-09-26 20:03 - 2015-09-26 19:49 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-09-26 19:50 - 2015-09-26 20:08 - 00006773 _____ C:\zoek-results.log
2015-09-26 19:49 - 2015-09-26 20:02 - 00000000 ____D C:\zoek_backup
2015-09-26 19:49 - 2015-09-26 19:49 - 01308672 _____ C:\Users\Barunka\Desktop\zoek.exe
2015-09-25 21:36 - 2015-09-25 21:36 - 00000606 _____ C:\Users\Barunka\Desktop\JRT.txt
2015-09-24 21:02 - 2015-09-24 21:02 - 00001141 _____ C:\Users\Barunka\Desktop\malwar.txt
2015-09-24 20:45 - 2015-09-26 19:39 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-09-24 20:45 - 2015-09-24 20:55 - 00000000 ____D C:\ProgramData\RogueKiller
2015-09-24 20:43 - 2015-09-24 20:45 - 22748744 _____ C:\Users\Barunka\Desktop\RogueKillerX64.exe
2015-09-24 20:36 - 2015-09-24 20:36 - 01800512 _____ (Malwarebytes) C:\Users\Barunka\Desktop\JRT.exe
2015-09-24 20:00 - 2015-09-24 20:55 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-24 20:00 - 2015-09-24 20:00 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-24 20:00 - 2015-09-24 20:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-24 20:00 - 2015-09-24 20:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-24 20:00 - 2015-09-24 20:00 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-24 20:00 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-24 20:00 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-24 20:00 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-24 19:58 - 2015-09-24 19:58 - 00000782 _____ C:\Users\Barunka\Desktop\AdwCleaner[S1].txt
2015-09-24 19:57 - 2015-09-25 21:29 - 00000000 ____D C:\AdwCleaner
2015-09-24 19:56 - 2015-09-29 16:46 - 00000000 ____D C:\Users\Barunka\AppData\Local\Adobe
2015-09-24 19:55 - 2015-09-29 16:45 - 00000000 ____D C:\Users\Barunka\AppData\Local\ClassicShell
2015-09-24 19:50 - 2015-09-24 19:54 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Barunka\Desktop\mbam-setup-2.1.8.1057.exe
2015-09-24 19:50 - 2015-09-24 19:50 - 01662976 _____ C:\Users\Barunka\Desktop\AdwCleaner.exe
2015-09-24 19:48 - 2015-09-24 19:48 - 00448512 _____ (OldTimer Tools) C:\Users\Barunka\Desktop\TFC.exe
2015-09-24 19:46 - 2015-09-24 19:46 - 00050688 _____ (Atribune.org) C:\Users\Barunka\Desktop\ATF-Cleaner.exe
2015-09-24 19:24 - 2015-09-24 19:24 - 00388608 _____ (Trend Micro Inc.) C:\Users\Barunka\Desktop\hijackthis.exe
2015-09-23 21:19 - 2015-09-23 21:19 - 00007602 _____ C:\Users\Barunka\AppData\Local\Resmon.ResmonCfg
2015-09-23 21:10 - 2015-09-23 21:10 - 00028030 _____ C:\Users\Barunka\Documents\cc_20150923_211006.reg
2015-09-23 20:34 - 2015-09-23 20:34 - 00001569 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2015-09-23 18:16 - 2015-09-23 18:16 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-09-23 18:08 - 2015-09-23 21:07 - 00000000 ____D C:\Users\Barunka\Downloads\Nejdelsi jizda 2015 720p BluRay x264 AC3 CZ dabing
2015-09-23 18:07 - 2015-09-23 18:07 - 00000000 ____D C:\Users\Barunka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-09-23 18:05 - 2015-09-23 21:06 - 00000000 ____D C:\Users\Barunka\AppData\Local\JDownloader v2.0
2015-09-22 20:01 - 2015-09-22 20:01 - 00000000 ____D C:\Users\Barunka\AppData\Roaming\KC Softwares
2015-09-22 19:32 - 2015-09-22 19:32 - 00000000 ____D C:\Users\Barunka\AppData\Roaming\AVG
2015-09-22 19:30 - 2015-09-23 17:34 - 00000000 ____D C:\ProgramData\MFAData
2015-09-22 19:30 - 2015-09-22 19:30 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-09-22 19:30 - 2015-09-22 19:30 - 00000000 ____D C:\Users\Barunka\AppData\Local\MFAData
2015-09-22 18:27 - 2015-09-26 20:08 - 00016150 _____ C:\WINDOWS\PFRO.log
2015-09-21 20:39 - 2015-09-21 20:39 - 00003930 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-09-20 21:25 - 2015-09-21 21:32 - 00001846 _____ C:\Users\Barunka\Desktop\Photomatix Pro 5.0.1 (64-bit).lnk
2015-09-20 21:25 - 2015-09-20 21:25 - 00000000 ____D C:\Users\Barunka\AppData\Roaming\HDRsoft
2015-09-20 21:25 - 2015-09-20 21:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photomatix Pro 5.0
2015-09-20 21:25 - 2015-09-20 21:25 - 00000000 ____D C:\Program Files\PhotomatixPro5
2015-09-20 20:47 - 2015-09-20 20:47 - 00000791 _____ C:\Users\Public\Desktop\PTGui.lnk
2015-09-20 20:47 - 2015-09-20 20:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PTGui
2015-09-20 20:47 - 2015-09-20 20:47 - 00000000 ____D C:\Program Files\PTGui
2015-09-17 17:48 - 2015-09-17 17:48 - 00004562 _____ C:\WINDOWS\DPINST.LOG
2015-09-17 17:48 - 2015-09-17 17:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
2015-09-17 17:48 - 2015-09-17 17:48 - 00000000 ____D C:\Program Files (x86)\Cisco
2015-09-13 21:28 - 2015-09-29 16:46 - 00003986 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1BA6A83F-B4E6-4738-8DC0-0DBE5F31F95F}
2015-09-13 21:26 - 2015-09-20 18:45 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-09-13 21:26 - 2015-09-13 21:26 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-09-13 20:02 - 2015-09-29 19:07 - 01460326 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-13 20:02 - 2015-09-29 19:07 - 00020655 _____ C:\WINDOWS\setupact.log
2015-09-13 20:02 - 2015-09-13 20:02 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-13 14:29 - 2015-09-13 14:29 - 00000000 ____D C:\Users\Barunka\AppData\Local\GWX
2015-09-12 09:18 - 2015-09-12 09:18 - 00000000 ____D C:\iBTWU
2015-09-12 09:16 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-09-12 09:16 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-09-12 09:15 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-09-12 09:15 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-09-12 09:15 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-09-12 09:15 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-09-12 09:14 - 2015-06-10 00:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2015-09-12 09:14 - 2015-06-10 00:39 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2015-09-12 09:14 - 2015-06-10 00:38 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-09-12 09:14 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2015-09-12 09:14 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-09-12 09:14 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2015-09-12 09:04 - 2015-09-12 09:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-12 08:21 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-09-12 08:21 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-09-12 08:12 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-09-12 08:12 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-09-12 08:11 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-09-12 08:11 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-09-12 08:11 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-09-12 08:11 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-09-12 08:11 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-09-12 08:11 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-09-12 08:11 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-12 08:11 - 2015-06-27 01:21 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-09-12 08:11 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-09-12 08:08 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-09-12 08:07 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-09-12 08:03 - 2015-09-28 23:58 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-624853748-3753726421-486992314-1002
2015-09-12 07:56 - 2015-09-26 20:36 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-09-12 07:56 - 2015-09-12 07:56 - 00001433 _____ C:\Users\Barunka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-12 07:56 - 2015-09-12 07:56 - 00000020 ___SH C:\Users\Barunka\ntuser.ini
2015-09-11 22:03 - 2015-09-13 19:45 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-11 21:54 - 2015-09-11 21:54 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-09-11 21:54 - 2015-09-11 21:54 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-09-11 21:54 - 2015-09-11 21:54 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-09-11 21:54 - 2015-09-11 21:54 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-09-11 21:54 - 2015-09-11 21:54 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-09-11 21:54 - 2015-09-11 21:54 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-09-11 21:53 - 2015-09-11 21:53 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-09-11 21:53 - 2015-09-11 21:53 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-09-11 21:53 - 2015-09-11 21:53 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-09-11 21:53 - 2015-09-11 21:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-09-11 21:53 - 2015-09-11 21:53 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-09-11 21:53 - 2015-09-11 21:53 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-09-11 21:53 - 2015-09-11 21:53 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-09-11 21:53 - 2015-09-11 21:53 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-09-11 21:53 - 2015-09-11 21:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-09-11 21:46 - 2015-09-11 21:46 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-09-11 21:46 - 2015-09-11 21:46 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-09-11 21:46 - 2015-09-11 21:46 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-09-11 21:46 - 2015-09-11 21:46 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
