Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu z RSIT

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
o2t2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 20 led 2015 06:58

Kontrola logu z RSIT

#1 Příspěvek od o2t2 »

Dobrý den,
prosím o kontrolu logu z RSIT, mám problém se samovolně se otvírajícími okny.

Předem děkuji.

Logfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2015-01-19 18:54:50
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 739 GB (79%) free of 934 GB
Total RAM: 7906 MB (48% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:54:55, on 19.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\XTab\cmdshell.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\XTab\HPNotify.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe
C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files\trend micro\ThinkPad.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... HD4LYHD4LY
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... HD4LYHD4LY
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hppp ... HD4LYHD4LY
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: ???????? ??????? - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\Elements\bartabhost.dll (file missing)
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [PWMTRV] rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
O4 - HKLM\..\Run: [Fastboot] "C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1421689713
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1818161986-407533905-1561043468-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1818161986-407533905-1561043468-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: ThinkPad OneLink Dock Management.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Condusiv Technologies - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: IHProtect Service - XTab system - C:\Program Files (x86)\XTab\ProtectService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Small Business Advantage (intelsba) - Intel Corporation - C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: Lenovo Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: lnvDiscoveryWinSvc - Lenovo - C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Power Manager Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe
O23 - Service: Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 15007 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-02555fb3-fd6f-470c-93f8-9a2541c703c7 -SystemEventPortName:HostProcess-dfa4c206-442a-41b2-88b5-7e077236ce7c -IoCancelEventPortName:HostProcess-b9e877c3-a0d6-4ccf-8e6b-0a67c28a8c3c -NonStateChangingEventPortName:HostProcess-8bd7164f-c5a8-454a-8b9a-649f511e08bc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:aa88a427-4869-4ba7-bbf3-d531e07cb56c -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 11299872
\??\C:\Windows\system32\conhost.exe "-1980766901546753011-66291139-1054018233153099703214315104761965513073-1680045192
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
taskeng.exe {73880888-A496-466F-8A3E-03B212589360}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\XTab\ProtectService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\XTab\cmdshell.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe"
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files\Lenovo Fingerprint Reader\SwipeMonitor.exe" ytidilav
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
\??\C:\Windows\system32\conhost.exe "9086077-1582021948-8350387584177886041821776503-436079077362146749-516172462
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9a51ffd5-5380-427c-93db-bad475c1460e -SystemEventPortName:HostProcess-19083f2a-038e-4e5b-8d1c-1508aa9a0f02 -IoCancelEventPortName:HostProcess-ee828c3c-1581-41df-a4d1-8a7f23daf36b -NonStateChangingEventPortName:HostProcess-98cb0a56-203d-403f-bf5d-a671a7e0d084 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f2ce9f24-6f69-41be-a5c6-dac414734aeb -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\Skdaemon.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe" 1.08.26
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
HPNotify.exe -run
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
\??\C:\Windows\system32\conhost.exe "18716622951201142590134653352417980745481902389242-1016894409-19717206573046939
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
taskeng.exe {E8B08E7C-8351-4622-AABB-4D7721AE9CFC}
"C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe" Hidden
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files\Internet Explorer\iexplore.exe" http://www.mystartsearch.com/?type=sc&t ... HD4LYHD4LY
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5260 CREDAT:267521 /prefetch:2
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
C:\Windows\system32\wbem\WmiApSrv.exe
"C:\Users\ThinkPad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VXTLDR26\RSITx64.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-12-25 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-12-25 194504]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Элементы Яндекса - C:\Program Files (x86)\Yandex\Elements\bartabhost.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-08-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-08-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-08-20 444400]
"Enhanced Performance Keyboard"=C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\SKDaemon.exe [2012-08-08 335360]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-03-26 7825720]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2014-02-18 384344]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2014-05-29 295768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-04-07 2810608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Adobe Speed Launcher"=1421689713 []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-05-16 134616]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-10-21 292848]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2013-05-14 552960]
"PWMTRV"=rundll32 C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Lenovo Registration"=C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [2011-06-01 4315872]
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2013-08-15 733936]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-03 1021128]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-12-13 3838800]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-18 5227112]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ThinkPad OneLink Dock Management.lnk - C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-08-08 441344]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-19 18:54:50 ----D---- C:\rsit
2015-01-19 18:54:50 ----D---- C:\Program Files\trend micro
2015-01-18 18:10:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-18 18:02:20 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-01-18 18:02:20 ----A---- C:\Windows\system32\rdpcorets.dll
2015-01-18 18:02:00 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-01-18 18:02:00 ----A---- C:\Windows\system32\mstscax.dll
2015-01-18 17:17:31 ----D---- C:\Users\ThinkPad\AppData\Roaming\Dropbox
2015-01-18 17:12:01 ----D---- C:\Users\ThinkPad\AppData\Roaming\AVAST Software
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswmonflt.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-01-18 17:11:18 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-01-18 17:11:18 ----A---- C:\Windows\system32\aswBoot.exe
2015-01-18 17:11:17 ----A---- C:\Windows\avastSS.scr
2015-01-18 17:08:31 ----D---- C:\Program Files\AVAST Software
2015-01-18 17:07:42 ----D---- C:\ProgramData\AVAST Software
2015-01-18 16:58:45 ----D---- C:\ProgramData\c3942881000012e0
2015-01-18 16:45:16 ----D---- C:\Windows\system32\appmgmt
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\tsgqec.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\wksprtPS.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\wksprt.exe
2015-01-18 16:43:00 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\mstsc.exe
2015-01-18 16:43:00 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2015-01-18 16:42:40 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2015-01-18 16:42:40 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-01-18 16:42:38 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2015-01-18 16:42:38 ----A---- C:\Windows\system32\rdpudd.dll
2015-01-18 16:42:38 ----A---- C:\Windows\system32\rdpendp_winip.dll
2015-01-18 16:38:56 ----D---- C:\Windows\system32\MRT
2015-01-18 16:38:52 ----A---- C:\Windows\system32\MRT.exe
2015-01-15 20:51:44 ----D---- C:\ProgramData\janibfkliljmheimcjllcnpkncbipkaa
2015-01-15 18:33:37 ----D---- C:\Program Files (x86)\unisaales
2015-01-15 18:33:33 ----D---- C:\ProgramData\enmngljdhibbfhaedpdddpbkceomoode
2015-01-13 19:46:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-13 19:46:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\profsvc.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-01-13 19:46:42 ----A---- C:\Windows\system32\srcore.dll
2015-01-13 19:46:42 ----A---- C:\Windows\system32\srclient.dll
2015-01-13 19:46:42 ----A---- C:\Windows\system32\rstrui.exe
2015-01-13 19:46:42 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-01-13 07:15:59 ----D---- C:\Users\ThinkPad\AppData\Roaming\WebApp
2015-01-13 07:15:50 ----D---- C:\Users\ThinkPad\AppData\Roaming\CyberLink
2015-01-13 06:58:25 ----D---- C:\ProgramData\IHProtectUpDate
2015-01-13 06:58:24 ----D---- C:\Program Files (x86)\XTab
2015-01-13 06:57:07 ----D---- C:\Program Files (x86)\DeltaFix
2015-01-13 06:55:53 ----D---- C:\Program Files (x86)\uniusales
2015-01-13 06:55:44 ----D---- C:\ProgramData\17855933362529060354
2015-01-13 06:55:44 ----D---- C:\Program Files (x86)\uuNiisales
2015-01-13 06:55:33 ----D---- C:\ProgramData\pcihmblonlbmlddgmcgegbhkkjepcdcg
2015-01-13 06:55:00 ----D---- C:\Users\ThinkPad\AppData\Roaming\OpenOffice
2015-01-13 06:54:08 ----D---- C:\Program Files (x86)\OpenOffice 4
2015-01-09 18:30:40 ----D---- C:\Users\ThinkPad\AppData\Roaming\Opera Software
2015-01-09 18:30:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Mozilla
2015-01-09 18:30:38 ----D---- C:\Users\ThinkPad\AppData\Roaming\Yandex
2015-01-09 18:29:56 ----D---- C:\Users\ThinkPad\AppData\Roaming\ImperiaOnline
2015-01-09 14:47:43 ----A---- C:\IFRToolLog.txt
2015-01-08 06:56:24 ----D---- C:\ProgramData\APN
2015-01-08 06:54:23 ----D---- C:\ProgramData\Sun
2015-01-08 06:54:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-01-08 06:54:12 ----D---- C:\ProgramData\Oracle
2015-01-08 06:54:11 ----D---- C:\Program Files (x86)\Java
2015-01-07 21:22:04 ----AH---- C:\Windows\system32\hamachi.sys
2015-01-07 21:22:02 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-01-07 21:21:57 ----D---- C:\ProgramData\LogMeIn
2015-01-02 14:17:27 ----D---- C:\Videa Camtasia 8
2015-01-02 13:12:07 ----D---- C:\Users\ThinkPad\AppData\Roaming\TechSmith
2015-01-02 13:10:57 ----D---- C:\ProgramData\regid.1995-08.com.techsmith
2015-01-02 13:10:56 ----D---- C:\Program Files (x86)\QuickTime
2015-01-02 13:10:47 ----D---- C:\ProgramData\TechSmith
2015-01-02 13:10:47 ----D---- C:\Program Files (x86)\TechSmith
2015-01-01 19:27:06 ----D---- C:\Windows\SYSWOW64\Adobe
2015-01-01 16:06:17 ----D---- C:\Program Files (x86)\Steam
2014-12-28 07:50:38 ----D---- C:\Windows\Minidump
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-12-26 21:25:37 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-12-26 21:25:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-12-26 21:25:37 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-12-26 21:25:37 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-12-26 21:25:36 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-12-26 21:25:36 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-12-26 21:25:36 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-12-26 21:25:36 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-12-26 21:25:35 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-12-26 21:25:34 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-12-26 21:25:30 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-12-26 21:25:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-12-26 21:25:30 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-12-26 21:25:30 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-12-26 21:25:29 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-12-26 21:25:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-12-26 21:25:29 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-12-26 21:25:29 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-12-26 21:25:28 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-12-26 21:25:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-12-26 21:25:28 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-12-26 21:25:28 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-12-26 21:25:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-12-26 21:25:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\xinput1_3.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\d3dx10.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xinput1_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xinput1_1.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-12-26 21:25:16 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-12-26 21:25:16 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-12-26 21:25:14 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-12-26 21:25:14 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-12-26 21:25:12 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-12-26 21:25:12 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-12-26 21:23:31 ----D---- C:\Program Files (x86)\Ubisoft
2014-12-26 19:12:15 ----SHD---- C:\found.000
2014-12-25 17:05:22 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2014-12-25 17:05:21 ----D---- C:\Program Files\Garmin GPS Plugin
2014-12-25 17:05:03 ----D---- C:\Users\ThinkPad\AppData\Roaming\Garmin
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDRU.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-12-25 16:10:26 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-25 16:10:26 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-24 21:48:59 ----D---- C:\Program Files\Google
2014-12-24 21:48:56 ----D---- C:\ProgramData\Google
2014-12-24 21:48:52 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-24 21:48:51 ----D---- C:\Windows\SYSWOW64\Macromed
2014-12-24 21:48:50 ----D---- C:\Windows\system32\Macromed
2014-12-24 21:36:20 ----D---- C:\Games
2014-12-24 20:38:47 ----SD---- C:\Windows\system32\CompatTel
2014-12-24 20:38:47 ----D---- C:\Windows\system32\appraiser
2014-12-24 20:38:37 ----D---- C:\Windows\SYSWOW64\Wat
2014-12-24 20:38:37 ----D---- C:\Windows\system32\Wat
2014-12-24 20:32:05 ----D---- C:\Windows\Migration
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-24 20:07:40 ----A---- C:\Windows\system32\rrinstaller.exe
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mfps.dll
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mfpmp.exe
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mferror.dll
2014-12-24 20:07:39 ----A---- C:\Windows\system32\mf.dll
2014-12-24 20:01:15 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-12-24 20:01:15 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-12-24 19:58:11 ----A---- C:\Windows\system32\infocardapi.dll
2014-12-24 19:58:11 ----A---- C:\Windows\system32\icardres.dll
2014-12-24 19:58:11 ----A---- C:\Windows\system32\icardagt.exe
2014-12-24 19:58:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-12-24 19:58:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-12-24 18:32:22 ----D---- C:\Users\ThinkPad\AppData\Roaming\NVIDIA
2014-12-24 18:30:00 ----D---- C:\Users\ThinkPad\AppData\Roaming\java
2014-12-24 18:29:58 ----D---- C:\Users\ThinkPad\AppData\Roaming\.minecraft
2014-12-24 18:26:41 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-12-24 18:26:41 ----A---- C:\Windows\system32\poqexec.exe
2014-12-24 18:22:11 ----A---- C:\Windows\system32\invagent.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\generaltel.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\devinv.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\appraiser.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aepic.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aeinv.dll
2014-12-24 18:22:10 ----A---- C:\Windows\system32\aepdu.dll
2014-12-24 18:22:05 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-12-24 18:22:05 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-12-24 18:22:05 ----A---- C:\Windows\system32\webio.dll
2014-12-24 18:22:05 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\mscories.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\mscorier.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\dfshim.dll
2014-12-24 18:21:52 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-12-24 18:21:52 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\termsrv.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\msaudite.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\adtschema.dll
2014-12-24 18:21:50 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-12-24 18:21:50 ----A---- C:\Windows\system32\d3d10warp.dll
2014-12-24 18:21:48 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-24 18:21:48 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-24 18:21:47 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-12-24 18:21:47 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\msxml3r.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\msxml3.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-12-24 18:21:45 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\iernonce.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\urlmon.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-24 18:21:43 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-24 18:21:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\iesetup.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\iertutil.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\ieui.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\ieframe.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\wininet.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\vbscript.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\jscript9.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\msrating.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\mshtml.dll
2014-12-24 18:20:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-12-24 18:20:26 ----A---- C:\Windows\system32\d2d1.dll
2014-12-24 18:20:23 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-12-24 18:20:23 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-12-24 18:20:23 ----A---- C:\Windows\system32\qdvd.dll
2014-12-24 18:20:23 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-12-24 18:20:23 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\pku2u.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\lsasrv.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\kerberos.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-12-24 18:20:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-12-24 18:20:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-12-24 18:20:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-12-24 18:20:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\EncDump.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\audiosrv.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\AudioEng.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-24 18:20:05 ----A---- C:\Windows\system32\shell32.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\rastls.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\charmap.exe
2014-12-24 18:20:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-12-24 18:20:01 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-24 18:20:01 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-24 18:20:00 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-24 18:20:00 ----A---- C:\Windows\system32\tzres.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\wdigest.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\TSpkg.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\schannel.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\ncrypt.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\msv1_0.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\credssp.dll
2014-12-24 18:19:56 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-12-24 18:19:56 ----A---- C:\Windows\system32\packager.dll
2014-12-24 18:19:55 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\winsta.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\winlogon.exe
2014-12-24 18:19:55 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-12-24 18:19:55 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-12-24 18:19:52 ----A---- C:\Windows\system32\win32k.sys
2014-12-24 18:19:51 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-12-24 18:19:51 ----A---- C:\Windows\system32\msi.dll
2014-12-24 18:19:51 ----A---- C:\Windows\system32\authui.dll
2014-12-24 18:19:50 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-12-24 18:19:50 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-12-24 18:19:50 ----A---- C:\Windows\system32\msihnd.dll
2014-12-24 18:19:50 ----A---- C:\Windows\system32\consent.exe
2014-12-24 18:18:54 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\oleaut32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\gdi32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-12-24 18:18:47 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-12-24 18:18:47 ----A---- C:\Windows\system32\rpcrt4.dll
2014-12-24 18:11:14 ----D---- C:\Users\ThinkPad\AppData\Roaming\LSC
2014-12-24 18:10:34 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-12-24 18:10:34 ----A---- C:\Windows\system32\rdpcore.dll
2014-12-24 18:10:34 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wups2.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wucltux.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wuaueng.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wuauclt.exe
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wups.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wudriver.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wuapi.dll
2014-12-24 18:04:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-12-24 18:04:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-12-24 18:04:16 ----A---- C:\Windows\system32\wuwebv.dll
2014-12-24 18:04:16 ----A---- C:\Windows\system32\wuapp.exe
2014-12-24 18:01:13 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype

======List of files/folders modified in the last 1 month======

2015-01-19 18:54:52 ----D---- C:\Windows\Temp
2015-01-19 18:54:50 ----RD---- C:\Program Files
2015-01-19 18:53:05 ----D---- C:\Windows\System32
2015-01-19 18:53:05 ----D---- C:\Windows\inf
2015-01-19 18:53:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-19 18:48:32 ----D---- C:\Windows\SysWOW64
2015-01-19 18:48:31 ----D---- C:\Windows\system32\config
2015-01-19 18:48:20 ----D---- C:\Windows\system32\Tasks
2015-01-19 18:48:08 ----D---- C:\ProgramData\Validity
2015-01-18 18:13:15 ----D---- C:\Windows\winsxs
2015-01-18 18:13:14 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-01-18 18:13:14 ----D---- C:\Windows\system32\cs-CZ
2015-01-18 18:12:53 ----SHD---- C:\System Volume Information
2015-01-18 18:04:23 ----RD---- C:\Program Files (x86)
2015-01-18 18:01:57 ----D---- C:\Windows\system32\catroot2
2015-01-18 18:01:57 ----D---- C:\Windows\system32\catroot
2015-01-18 17:57:53 ----D---- C:\Windows\system32\drivers
2015-01-18 17:57:53 ----D---- C:\ProgramData\Norton
2015-01-18 17:57:50 ----D---- C:\Windows\Tasks
2015-01-18 17:11:18 ----D---- C:\Windows
2015-01-18 17:07:42 ----HD---- C:\ProgramData
2015-01-18 17:03:20 ----D---- C:\Program Files\Lenovo
2015-01-18 16:48:44 ----D---- C:\Windows\SYSWOW64\wbem
2015-01-18 16:48:44 ----D---- C:\Windows\SYSWOW64\en-US
2015-01-18 16:48:44 ----D---- C:\Windows\system32\wbem
2015-01-18 16:48:44 ----D---- C:\Windows\system32\drivers\en-US
2015-01-18 16:48:43 ----D---- C:\Windows\system32\en-US
2015-01-18 16:48:43 ----D---- C:\Windows\system32\DriverStore
2015-01-18 16:48:43 ----D---- C:\Windows\PolicyDefinitions
2015-01-18 16:45:16 ----SHD---- C:\Windows\Installer
2015-01-18 16:43:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-01-18 16:38:56 ----D---- C:\Windows\debug
2015-01-18 16:20:21 ----D---- C:\Windows\Microsoft.NET
2015-01-16 20:25:11 ----SD---- C:\Users\ThinkPad\AppData\Roaming\Microsoft
2015-01-16 17:10:01 ----D---- C:\Windows\Prefetch
2015-01-13 07:15:54 ----D---- C:\ProgramData\CyberLink
2015-01-13 06:54:37 ----RSD---- C:\Windows\assembly
2015-01-13 06:54:13 ----RSD---- C:\Windows\Fonts
2015-01-12 14:28:46 ----D---- C:\Users\ThinkPad\AppData\Roaming\Adobe
2015-01-09 18:38:38 ----D---- C:\Program Files (x86)\Common Files
2015-01-08 09:55:52 ----N---- C:\Windows\system32\MpSigStub.exe
2015-01-03 09:09:33 ----D---- C:\Windows\system32\drivers\UMDF
2015-01-01 19:27:08 ----D---- C:\Windows\Downloaded Program Files
2014-12-27 16:18:39 ----D---- C:\Windows\LiveKernelReports
2014-12-27 07:33:06 ----D---- C:\ProgramData\Adobe
2014-12-26 21:23:36 ----D---- C:\Windows\Logs
2014-12-26 07:47:24 ----D---- C:\Windows\rescache
2014-12-25 22:20:02 ----D---- C:\Program Files\Windows Sidebar
2014-12-25 22:20:02 ----D---- C:\Program Files\Windows Mail
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Media Player
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Mail
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Defender
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\winrm
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\slmgr
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\migwiz
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\en
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-12-25 22:20:01 ----D---- C:\Windows\servicing
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Photo Viewer
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Media Player
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Journal
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Defender
2014-12-25 22:20:01 ----D---- C:\Program Files\DVD Maker
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\WCN
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\Dism
2014-12-25 22:19:59 ----D---- C:\Windows\en-US
2014-12-25 22:19:57 ----D---- C:\Windows\system32\winrm
2014-12-25 22:19:57 ----D---- C:\Windows\system32\slmgr
2014-12-25 22:19:57 ----D---- C:\Windows\system32\migwiz
2014-12-25 22:19:57 ----D---- C:\Windows\system32\en
2014-12-25 22:19:57 ----D---- C:\Windows\system32\Boot
2014-12-25 22:19:54 ----D---- C:\Windows\system32\WCN
2014-12-25 22:19:54 ----D---- C:\Windows\system32\Dism
2014-12-25 22:19:53 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-12-25 22:19:53 ----D---- C:\Windows\Speech
2014-12-25 11:55:29 ----D---- C:\Windows\system32\wdi
2014-12-25 11:24:13 ----D---- C:\Windows\system32\LogFiles
2014-12-24 21:48:59 ----D---- C:\Program Files (x86)\Google
2014-12-24 20:38:47 ----SD---- C:\ProgramData\Microsoft
2014-12-24 20:38:47 ----D---- C:\Windows\ehome
2014-12-24 20:38:47 ----D---- C:\Windows\AppCompat
2014-12-24 20:38:47 ----D---- C:\Program Files\Common Files\System
2014-12-24 20:38:38 ----D---- C:\Program Files\Internet Explorer
2014-12-24 20:38:37 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-24 19:58:49 ----D---- C:\Windows\SoftwareDistribution
2014-12-24 18:46:06 ----D---- C:\ProgramData\Skype
2014-12-24 18:46:05 ----RD---- C:\Program Files (x86)\Skype
2014-12-24 18:44:22 ----D---- C:\Program Files (x86)\Lenovo
2014-12-24 18:43:10 ----D---- C:\Windows\Downloaded Installations
2014-12-24 18:06:25 ----D---- C:\ProgramData\Intel
2014-12-24 18:04:06 ----D---- C:\Windows\system32\restore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 excsd;ExpressCache Storage Filter Driver; C:\Windows\system32\DRIVERS\excsd.sys [2013-11-18 117488]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-02 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-02 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-10-21 20464]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-10-31 32544]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2014-01-29 152888]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2014-01-29 29496]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 excfs;ExpressCache File System Filter Driver; C:\Windows\system32\DRIVERS\excfs.sys [2013-11-18 25840]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2014-03-06 20736]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 87912]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-03-26 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-04-19 1423160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2013-11-19 1689304]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 ibtusb;Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-05-30 192456]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-08-08 4448800]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-10-21 368624]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-10-21 790000]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2013-11-12 25528]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-05-16 64624]
R3 NETwNs64;___ Intel(R) Wireless Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw02.sys [2014-04-16 3434976]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-06-24 418008]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-04-07 31472]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-04-07 554224]
R3 usb3Hub;UoIP Hub; C:\Windows\system32\DRIVERS\usb3Hub.sys [2013-06-21 206744]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2013-09-11 1065344]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [2013-08-15 54000]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-11-12 35256]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-08-08 452088]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-03-26 1206648]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-03-26 1706360]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-03-26 1165688]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2014-04-01 9954096]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-18 632048]
R2 ExpressCache;ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [2013-11-18 828656]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2013-08-15 140016]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-12-13 2530640]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 IHProtect Service;IHProtect Service; C:\Program Files (x86)\XTab\ProtectService.exe [2014-12-29 158864]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2014-05-29 59224]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2014-05-29 73048]
R2 LENOVO.TVTVCAM;Lenovo Virtual Camera Controller; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2014-05-29 197464]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-12-02 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
R2 lnvDiscoveryWinSvc;lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [2014-02-21 21552]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-29 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-31 1364256]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-18 154864]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 ValBioService;ValBioService; C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe [2014-07-21 22872]
R2 valWBFPolicyService;Synaptics FP WBF Policy Service; C:\Windows\system32\valWBFPolicyService.exe [2014-07-21 49040]
R3 Power Manager DBC Service;Power Manager Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2014-03-06 1669976]
R3 QuickControlService;Lenovo QuickControl Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2014-06-12 316400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-12 116648]
S2 QuickControlMasterSvc;Lenovo QuickControl Master Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2014-06-12 61936]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-13 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-20 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-12 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-24 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 intelsba;Intel(R) Small Business Advantage; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [2013-04-10 48832]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-16 272776]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-18 284912]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2014-03-06 1664856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2014-06-03 24560]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2014-01-29 49976]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-12-24 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119679
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola logu z RSIT

#2 Příspěvek od Rudy »

Zdravím!
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
o2t2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 20 led 2015 06:58

Re: Kontrola logu z RSIT

#3 Příspěvek od o2t2 »

# AdwCleaner v4.108 - Report created 20/01/2015 at 19:05:58
# Updated 17/01/2015 by Xplode
# Database : 2015-01-18.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : ThinkPad - THINKPAD-PC
# Running from : C:\Users\ThinkPad\Desktop\adwcleaner_4.108.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : IHProtect Service

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\IHProtectUpDate
Folder Deleted : C:\ProgramData\17855933362529060354
Folder Deleted : C:\ProgramData\c3942881000012e0
Folder Deleted : C:\Program Files (x86)\DeltaFix
Folder Deleted : C:\Program Files (x86)\XTab
Folder Deleted : C:\Windows\Util
Folder Deleted : C:\Users\ThinkPad\AppData\Local\Temp\apn
File Deleted : C:\Users\ThinkPad\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\WebSearch.xml

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Imperia Online\Imperia Online.lnk
Shortcut Disinfected : C:\Users\ThinkPad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\ThinkPad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\ThinkPad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{91397D20-1446-11D4-8AF4-0040CA1127B6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{91397D20-1446-11D4-8AF4-0040CA1127B6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D5FEC983-01DB-414A-9456-AF95AC9ED7B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{91397D20-1446-11D4-8AF4-0040CA1127B6}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{91397D20-1446-11D4-8AF4-0040CA1127B6}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{91397D20-1446-11D4-8AF4-0040CA1127B6}]
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9A839D02-9322-4AE6-AD69-80AC80C1AC67}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\CoinisRS
Key Deleted : HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\mystartsearchSoftware
Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
Key Deleted : HKLM\SOFTWARE\IHProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\XTab
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\mystartsearch.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.mystartsearch.com

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v

[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename", "WebSearch");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine", "WebSearch");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://websearch.thesearchpage.info/?pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1", "WebSearch");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.order.1,S", "WebSearch");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.defaultenginename,S", "WebSearch");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("keyword.URL", "hxxp://websearch.thesearchpage.info/?pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74&l=1&q=");
[nahd6ha2.default\prefs.js] - Line Deleted : user_pref("browser.search.defaulturl", "hxxp://websearch.thesearchpage.info/?pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74&l=1&q=");

-\\ Google Chrome v39.0.2171.95

[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Homepage] : hxxp://websearch.thesearchpage.info/?pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74

-\\ Chromium v

[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}

-\\ Opera v0.0.0.0

[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=20981&r=2015/01/15&hid=5106762162565480361&lg=EN&cc=CZ&unqvl=74
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}
[C:\Users\ThinkPad\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.mystartsearch.com/web/?type=dspp&ts ... earchTerms}

*************************

AdwCleaner[R0].txt - [9820 octets] - [20/01/2015 19:04:49]
AdwCleaner[S0].txt - [10746 octets] - [20/01/2015 19:05:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10807 octets] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119679
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola logu z RSIT

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
o2t2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 20 led 2015 06:58

Re: Kontrola logu z RSIT

#5 Příspěvek od o2t2 »

aLogfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2015-01-20 19:50:05
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 739 GB (79%) free of 934 GB
Total RAM: 7906 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:50:07, on 20.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\ThinkPad.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [PWMTRV] rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
O4 - HKLM\..\Run: [Fastboot] "C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1421777213
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1818161986-407533905-1561043468-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1818161986-407533905-1561043468-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: ThinkPad OneLink Dock Management.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Condusiv Technologies - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Small Business Advantage (intelsba) - Intel Corporation - C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: Lenovo Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: lnvDiscoveryWinSvc - Lenovo - C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Power Manager Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe
O23 - Service: Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 13406 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c6a85b19-0feb-4ee9-a879-eec0a5722b87 -SystemEventPortName:HostProcess-1dc85372-a19f-4f3d-bf98-5fce32fa74eb -IoCancelEventPortName:HostProcess-5b79a1fe-1a72-49c9-8080-c72511b3663e -NonStateChangingEventPortName:HostProcess-822e40a8-aa57-44f5-bd54-9d2d81608dca -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:83847db3-7be1-4deb-b878-2cad09cc364e -DeviceGroupId:
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 19695392
\??\C:\Windows\system32\conhost.exe "-2773746752033349443184653674-679756513-646789021998967693-777461743-753616635
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe"
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files\Lenovo Fingerprint Reader\SwipeMonitor.exe" ytidilav
\??\C:\Windows\system32\conhost.exe "-6985902311291677466-1845937174-1594269961-1571355808-11148303221785668836-1308862575
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-e87eb2c0-61bb-4a25-9b7d-4ccbc2a5199f -SystemEventPortName:HostProcess-742c2c17-49bd-4f3a-91cc-cacf60942111 -IoCancelEventPortName:HostProcess-9a249ac6-43ad-4fbc-a681-a1d298c94902 -NonStateChangingEventPortName:HostProcess-7722e8be-07d5-4dce-ae14-8a170d156c85 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:35dfdfc4-b6fe-4dfc-be1f-2e1169f2dc81 -DeviceGroupId:WpdFsGroup
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Windows\System32\hkcmd.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\Skdaemon.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe" 1.08.26
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe"
\??\C:\Windows\system32\conhost.exe "8606835910162552569884585914706119161112194709-1075290461-996605499453960916
taskeng.exe {A2FDE5FF-4A8E-409C-B59E-8F9C072F894E}
"C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe" Hidden
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7400 CREDAT:267521 /prefetch:2
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
"C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe" /start
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
taskeng.exe {B60DB39E-0656-4631-9A0E-72C3AC5F4B45}
C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "0x1f44_0x10b8_0x53554f2e"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7400 CREDAT:3609986 /prefetch:2

"C:\Users\ThinkPad\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9GOGCDYD\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-12-25 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-12-25 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-08-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-08-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-08-20 444400]
"Enhanced Performance Keyboard"=C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\SKDaemon.exe [2012-08-08 335360]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-03-26 7825720]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2014-02-18 384344]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2014-05-29 295768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-04-07 2810608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Adobe Speed Launcher"=1421777213 []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-05-16 134616]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-10-21 292848]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2013-05-14 552960]
"PWMTRV"=rundll32 C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Lenovo Registration"=C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [2011-06-01 4315872]
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2013-08-15 733936]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-03 1021128]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-12-13 3838800]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-10-07 507776]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-18 5227112]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ThinkPad OneLink Dock Management.lnk - C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-08-08 441344]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-20 19:04:45 ----D---- C:\AdwCleaner
2015-01-19 18:59:12 ----D---- C:\Program Files\7-Zip
2015-01-19 18:54:50 ----D---- C:\rsit
2015-01-19 18:54:50 ----D---- C:\Program Files\trend micro
2015-01-18 18:10:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-18 18:02:20 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-01-18 18:02:20 ----A---- C:\Windows\system32\rdpcorets.dll
2015-01-18 18:02:00 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-01-18 18:02:00 ----A---- C:\Windows\system32\mstscax.dll
2015-01-18 17:17:31 ----D---- C:\Users\ThinkPad\AppData\Roaming\Dropbox
2015-01-18 17:12:01 ----D---- C:\Users\ThinkPad\AppData\Roaming\AVAST Software
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswmonflt.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-01-18 17:11:18 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-01-18 17:11:18 ----A---- C:\Windows\system32\aswBoot.exe
2015-01-18 17:11:17 ----A---- C:\Windows\avastSS.scr
2015-01-18 17:08:31 ----D---- C:\Program Files\AVAST Software
2015-01-18 17:07:42 ----D---- C:\ProgramData\AVAST Software
2015-01-18 16:45:16 ----D---- C:\Windows\system32\appmgmt
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\tsgqec.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\wksprtPS.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\wksprt.exe
2015-01-18 16:43:00 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\mstsc.exe
2015-01-18 16:43:00 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2015-01-18 16:42:40 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2015-01-18 16:42:40 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-01-18 16:42:38 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2015-01-18 16:42:38 ----A---- C:\Windows\system32\rdpudd.dll
2015-01-18 16:42:38 ----A---- C:\Windows\system32\rdpendp_winip.dll
2015-01-18 16:38:56 ----D---- C:\Windows\system32\MRT
2015-01-18 16:38:52 ----A---- C:\Windows\system32\MRT.exe
2015-01-15 20:51:44 ----D---- C:\ProgramData\janibfkliljmheimcjllcnpkncbipkaa
2015-01-15 18:33:37 ----D---- C:\Program Files (x86)\unisaales
2015-01-15 18:33:33 ----D---- C:\ProgramData\enmngljdhibbfhaedpdddpbkceomoode
2015-01-13 19:46:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-13 19:46:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\profsvc.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-01-13 19:46:42 ----A---- C:\Windows\system32\srcore.dll
2015-01-13 19:46:42 ----A---- C:\Windows\system32\srclient.dll
2015-01-13 19:46:42 ----A---- C:\Windows\system32\rstrui.exe
2015-01-13 19:46:42 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-01-13 07:15:59 ----D---- C:\Users\ThinkPad\AppData\Roaming\WebApp
2015-01-13 07:15:50 ----D---- C:\Users\ThinkPad\AppData\Roaming\CyberLink
2015-01-13 06:55:53 ----D---- C:\Program Files (x86)\uniusales
2015-01-13 06:55:44 ----D---- C:\Program Files (x86)\uuNiisales
2015-01-13 06:55:33 ----D---- C:\ProgramData\pcihmblonlbmlddgmcgegbhkkjepcdcg
2015-01-13 06:55:00 ----D---- C:\Users\ThinkPad\AppData\Roaming\OpenOffice
2015-01-13 06:54:08 ----D---- C:\Program Files (x86)\OpenOffice 4
2015-01-09 18:30:40 ----D---- C:\Users\ThinkPad\AppData\Roaming\Opera Software
2015-01-09 18:30:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Mozilla
2015-01-09 18:30:38 ----D---- C:\Users\ThinkPad\AppData\Roaming\Yandex
2015-01-09 18:29:56 ----D---- C:\Users\ThinkPad\AppData\Roaming\ImperiaOnline
2015-01-09 14:47:43 ----A---- C:\IFRToolLog.txt
2015-01-08 06:54:23 ----D---- C:\ProgramData\Sun
2015-01-08 06:54:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-01-08 06:54:12 ----D---- C:\ProgramData\Oracle
2015-01-08 06:54:11 ----D---- C:\Program Files (x86)\Java
2015-01-07 21:22:04 ----AH---- C:\Windows\system32\hamachi.sys
2015-01-07 21:22:02 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-01-07 21:21:57 ----D---- C:\ProgramData\LogMeIn
2015-01-02 14:17:27 ----D---- C:\Videa Camtasia 8
2015-01-02 13:12:07 ----D---- C:\Users\ThinkPad\AppData\Roaming\TechSmith
2015-01-02 13:10:57 ----D---- C:\ProgramData\regid.1995-08.com.techsmith
2015-01-02 13:10:56 ----D---- C:\Program Files (x86)\QuickTime
2015-01-02 13:10:47 ----D---- C:\ProgramData\TechSmith
2015-01-02 13:10:47 ----D---- C:\Program Files (x86)\TechSmith
2015-01-01 19:27:06 ----D---- C:\Windows\SYSWOW64\Adobe
2015-01-01 16:06:17 ----D---- C:\Program Files (x86)\Steam
2014-12-28 07:50:38 ----D---- C:\Windows\Minidump
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-12-26 21:25:37 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-12-26 21:25:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-12-26 21:25:37 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-12-26 21:25:37 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-12-26 21:25:36 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-12-26 21:25:36 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-12-26 21:25:36 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-12-26 21:25:36 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-12-26 21:25:35 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-12-26 21:25:34 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-12-26 21:25:30 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-12-26 21:25:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-12-26 21:25:30 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-12-26 21:25:30 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-12-26 21:25:29 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-12-26 21:25:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-12-26 21:25:29 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-12-26 21:25:29 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-12-26 21:25:28 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-12-26 21:25:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-12-26 21:25:28 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-12-26 21:25:28 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-12-26 21:25:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-12-26 21:25:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\xinput1_3.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\d3dx10.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xinput1_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xinput1_1.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-12-26 21:25:16 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-12-26 21:25:16 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-12-26 21:25:14 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-12-26 21:25:14 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-12-26 21:25:12 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-12-26 21:25:12 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-12-26 21:23:31 ----D---- C:\Program Files (x86)\Ubisoft
2014-12-26 19:12:15 ----SHD---- C:\found.000
2014-12-25 17:05:22 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2014-12-25 17:05:21 ----D---- C:\Program Files\Garmin GPS Plugin
2014-12-25 17:05:03 ----D---- C:\Users\ThinkPad\AppData\Roaming\Garmin
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDRU.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-12-25 16:10:26 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-25 16:10:26 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-24 21:48:59 ----D---- C:\Program Files\Google
2014-12-24 21:48:56 ----D---- C:\ProgramData\Google
2014-12-24 21:48:52 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-24 21:48:51 ----D---- C:\Windows\SYSWOW64\Macromed
2014-12-24 21:48:50 ----D---- C:\Windows\system32\Macromed
2014-12-24 21:36:20 ----D---- C:\Games
2014-12-24 20:38:47 ----SD---- C:\Windows\system32\CompatTel
2014-12-24 20:38:47 ----D---- C:\Windows\system32\appraiser
2014-12-24 20:38:37 ----D---- C:\Windows\SYSWOW64\Wat
2014-12-24 20:38:37 ----D---- C:\Windows\system32\Wat
2014-12-24 20:32:05 ----D---- C:\Windows\Migration
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-24 20:07:40 ----A---- C:\Windows\system32\rrinstaller.exe
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mfps.dll
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mfpmp.exe
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mferror.dll
2014-12-24 20:07:39 ----A---- C:\Windows\system32\mf.dll
2014-12-24 20:01:15 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-12-24 20:01:15 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-12-24 19:58:11 ----A---- C:\Windows\system32\infocardapi.dll
2014-12-24 19:58:11 ----A---- C:\Windows\system32\icardres.dll
2014-12-24 19:58:11 ----A---- C:\Windows\system32\icardagt.exe
2014-12-24 19:58:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-12-24 19:58:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-12-24 18:32:22 ----D---- C:\Users\ThinkPad\AppData\Roaming\NVIDIA
2014-12-24 18:30:00 ----D---- C:\Users\ThinkPad\AppData\Roaming\java
2014-12-24 18:29:58 ----D---- C:\Users\ThinkPad\AppData\Roaming\.minecraft
2014-12-24 18:26:41 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-12-24 18:26:41 ----A---- C:\Windows\system32\poqexec.exe
2014-12-24 18:22:11 ----A---- C:\Windows\system32\invagent.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\generaltel.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\devinv.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\appraiser.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aepic.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aeinv.dll
2014-12-24 18:22:10 ----A---- C:\Windows\system32\aepdu.dll
2014-12-24 18:22:05 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-12-24 18:22:05 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-12-24 18:22:05 ----A---- C:\Windows\system32\webio.dll
2014-12-24 18:22:05 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\mscories.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\mscorier.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\dfshim.dll
2014-12-24 18:21:52 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-12-24 18:21:52 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\termsrv.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\msaudite.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\adtschema.dll
2014-12-24 18:21:50 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-12-24 18:21:50 ----A---- C:\Windows\system32\d3d10warp.dll
2014-12-24 18:21:48 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-24 18:21:48 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-24 18:21:47 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-12-24 18:21:47 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\msxml3r.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\msxml3.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-12-24 18:21:45 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\iernonce.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\urlmon.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-24 18:21:43 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-24 18:21:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\iesetup.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\iertutil.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\ieui.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\ieframe.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\wininet.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\vbscript.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\jscript9.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\msrating.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\mshtml.dll
2014-12-24 18:20:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-12-24 18:20:26 ----A---- C:\Windows\system32\d2d1.dll
2014-12-24 18:20:23 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-12-24 18:20:23 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-12-24 18:20:23 ----A---- C:\Windows\system32\qdvd.dll
2014-12-24 18:20:23 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-12-24 18:20:23 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\pku2u.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\lsasrv.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\kerberos.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-12-24 18:20:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-12-24 18:20:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-12-24 18:20:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-12-24 18:20:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\EncDump.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\audiosrv.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\AudioEng.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-24 18:20:05 ----A---- C:\Windows\system32\shell32.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\rastls.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\charmap.exe
2014-12-24 18:20:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-12-24 18:20:01 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-24 18:20:01 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-24 18:20:00 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-24 18:20:00 ----A---- C:\Windows\system32\tzres.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\wdigest.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\TSpkg.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\schannel.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\ncrypt.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\msv1_0.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\credssp.dll
2014-12-24 18:19:56 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-12-24 18:19:56 ----A---- C:\Windows\system32\packager.dll
2014-12-24 18:19:55 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\winsta.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\winlogon.exe
2014-12-24 18:19:55 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-12-24 18:19:55 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-12-24 18:19:52 ----A---- C:\Windows\system32\win32k.sys
2014-12-24 18:19:51 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-12-24 18:19:51 ----A---- C:\Windows\system32\msi.dll
2014-12-24 18:19:51 ----A---- C:\Windows\system32\authui.dll
2014-12-24 18:19:50 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-12-24 18:19:50 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-12-24 18:19:50 ----A---- C:\Windows\system32\msihnd.dll
2014-12-24 18:19:50 ----A---- C:\Windows\system32\consent.exe
2014-12-24 18:18:54 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\oleaut32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\gdi32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-12-24 18:18:47 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-12-24 18:18:47 ----A---- C:\Windows\system32\rpcrt4.dll
2014-12-24 18:11:14 ----D---- C:\Users\ThinkPad\AppData\Roaming\LSC
2014-12-24 18:10:34 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-12-24 18:10:34 ----A---- C:\Windows\system32\rdpcore.dll
2014-12-24 18:10:34 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wups2.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wucltux.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wuaueng.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wuauclt.exe
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wups.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wudriver.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wuapi.dll
2014-12-24 18:04:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-12-24 18:04:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-12-24 18:04:16 ----A---- C:\Windows\system32\wuwebv.dll
2014-12-24 18:04:16 ----A---- C:\Windows\system32\wuapp.exe
2014-12-24 18:01:13 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype

======List of files/folders modified in the last 1 month======

2015-01-20 19:50:07 ----D---- C:\Windows\Prefetch
2015-01-20 19:50:06 ----D---- C:\Windows\Temp
2015-01-20 19:24:43 ----D---- C:\Windows\System32
2015-01-20 19:24:43 ----D---- C:\Windows\inf
2015-01-20 19:24:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-20 19:19:57 ----D---- C:\Windows\system32\config
2015-01-20 19:06:45 ----D---- C:\ProgramData\Validity
2015-01-20 19:05:58 ----RD---- C:\Program Files (x86)
2015-01-20 19:05:58 ----HD---- C:\ProgramData
2015-01-20 19:05:58 ----D---- C:\Windows
2015-01-20 19:00:47 ----D---- C:\Windows\SysWOW64
2015-01-20 06:59:05 ----D---- C:\Windows\system32\wdi
2015-01-19 19:50:19 ----D---- C:\Windows\Microsoft.NET
2015-01-19 18:59:36 ----SHD---- C:\Windows\Installer
2015-01-19 18:59:12 ----RD---- C:\Program Files
2015-01-19 18:48:20 ----D---- C:\Windows\system32\Tasks
2015-01-18 18:13:15 ----D---- C:\Windows\winsxs
2015-01-18 18:13:14 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-01-18 18:13:14 ----D---- C:\Windows\system32\cs-CZ
2015-01-18 18:12:53 ----SHD---- C:\System Volume Information
2015-01-18 18:01:57 ----D---- C:\Windows\system32\catroot2
2015-01-18 18:01:57 ----D---- C:\Windows\system32\catroot
2015-01-18 17:57:53 ----D---- C:\Windows\system32\drivers
2015-01-18 17:57:53 ----D---- C:\ProgramData\Norton
2015-01-18 17:57:50 ----D---- C:\Windows\Tasks
2015-01-18 17:03:20 ----D---- C:\Program Files\Lenovo
2015-01-18 16:48:44 ----D---- C:\Windows\SYSWOW64\wbem
2015-01-18 16:48:44 ----D---- C:\Windows\SYSWOW64\en-US
2015-01-18 16:48:44 ----D---- C:\Windows\system32\wbem
2015-01-18 16:48:44 ----D---- C:\Windows\system32\drivers\en-US
2015-01-18 16:48:43 ----D---- C:\Windows\system32\en-US
2015-01-18 16:48:43 ----D---- C:\Windows\system32\DriverStore
2015-01-18 16:48:43 ----D---- C:\Windows\PolicyDefinitions
2015-01-18 16:43:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-01-18 16:38:56 ----D---- C:\Windows\debug
2015-01-16 20:25:11 ----SD---- C:\Users\ThinkPad\AppData\Roaming\Microsoft
2015-01-13 07:15:54 ----D---- C:\ProgramData\CyberLink
2015-01-13 06:54:37 ----RSD---- C:\Windows\assembly
2015-01-13 06:54:13 ----RSD---- C:\Windows\Fonts
2015-01-12 14:28:46 ----D---- C:\Users\ThinkPad\AppData\Roaming\Adobe
2015-01-09 18:38:38 ----D---- C:\Program Files (x86)\Common Files
2015-01-08 09:55:52 ----N---- C:\Windows\system32\MpSigStub.exe
2015-01-03 09:09:33 ----D---- C:\Windows\system32\drivers\UMDF
2015-01-01 19:27:08 ----D---- C:\Windows\Downloaded Program Files
2014-12-27 16:18:39 ----D---- C:\Windows\LiveKernelReports
2014-12-27 07:33:06 ----D---- C:\ProgramData\Adobe
2014-12-26 21:23:36 ----D---- C:\Windows\Logs
2014-12-26 07:47:24 ----D---- C:\Windows\rescache
2014-12-25 22:20:02 ----D---- C:\Program Files\Windows Sidebar
2014-12-25 22:20:02 ----D---- C:\Program Files\Windows Mail
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Media Player
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Mail
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Defender
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\winrm
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\slmgr
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\migwiz
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\en
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-12-25 22:20:01 ----D---- C:\Windows\servicing
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Photo Viewer
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Media Player
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Journal
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Defender
2014-12-25 22:20:01 ----D---- C:\Program Files\DVD Maker
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\WCN
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\Dism
2014-12-25 22:19:59 ----D---- C:\Windows\en-US
2014-12-25 22:19:57 ----D---- C:\Windows\system32\winrm
2014-12-25 22:19:57 ----D---- C:\Windows\system32\slmgr
2014-12-25 22:19:57 ----D---- C:\Windows\system32\migwiz
2014-12-25 22:19:57 ----D---- C:\Windows\system32\en
2014-12-25 22:19:57 ----D---- C:\Windows\system32\Boot
2014-12-25 22:19:54 ----D---- C:\Windows\system32\WCN
2014-12-25 22:19:54 ----D---- C:\Windows\system32\Dism
2014-12-25 22:19:53 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-12-25 22:19:53 ----D---- C:\Windows\Speech
2014-12-25 11:24:13 ----D---- C:\Windows\system32\LogFiles
2014-12-24 21:48:59 ----D---- C:\Program Files (x86)\Google
2014-12-24 20:38:47 ----SD---- C:\ProgramData\Microsoft
2014-12-24 20:38:47 ----D---- C:\Windows\ehome
2014-12-24 20:38:47 ----D---- C:\Windows\AppCompat
2014-12-24 20:38:47 ----D---- C:\Program Files\Common Files\System
2014-12-24 20:38:38 ----D---- C:\Program Files\Internet Explorer
2014-12-24 20:38:37 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-24 19:58:49 ----D---- C:\Windows\SoftwareDistribution
2014-12-24 18:46:06 ----D---- C:\ProgramData\Skype
2014-12-24 18:46:05 ----RD---- C:\Program Files (x86)\Skype
2014-12-24 18:44:22 ----D---- C:\Program Files (x86)\Lenovo
2014-12-24 18:43:10 ----D---- C:\Windows\Downloaded Installations
2014-12-24 18:06:25 ----D---- C:\ProgramData\Intel
2014-12-24 18:04:06 ----D---- C:\Windows\system32\restore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 excsd;ExpressCache Storage Filter Driver; C:\Windows\system32\DRIVERS\excsd.sys [2013-11-18 117488]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-02 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-02 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-10-21 20464]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-10-31 32544]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2014-01-29 152888]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2014-01-29 29496]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 excfs;ExpressCache File System Filter Driver; C:\Windows\system32\DRIVERS\excfs.sys [2013-11-18 25840]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2014-03-06 20736]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 87912]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-03-26 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-04-19 1423160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2013-11-19 1689304]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 ibtusb;Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-05-30 192456]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-08-08 4448800]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-10-21 368624]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-10-21 790000]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2013-11-12 25528]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-05-16 64624]
R3 NETwNs64;___ Intel(R) Wireless Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw02.sys [2014-04-16 3434976]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-06-24 418008]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-04-07 31472]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-04-07 554224]
R3 usb3Hub;UoIP Hub; C:\Windows\system32\DRIVERS\usb3Hub.sys [2013-06-21 206744]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2013-09-11 1065344]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [2013-08-15 54000]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-11-12 35256]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-08-08 452088]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-03-26 1206648]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-03-26 1706360]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-03-26 1165688]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2014-04-01 9954096]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-18 632048]
R2 ExpressCache;ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [2013-11-18 828656]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2013-08-15 140016]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-12-13 2530640]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2014-05-29 59224]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2014-05-29 73048]
R2 LENOVO.TVTVCAM;Lenovo Virtual Camera Controller; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2014-05-29 197464]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-12-02 417552]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
R2 lnvDiscoveryWinSvc;lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [2014-02-21 21552]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-29 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-31 1364256]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-18 154864]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 ValBioService;ValBioService; C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe [2014-07-21 22872]
R2 valWBFPolicyService;Synaptics FP WBF Policy Service; C:\Windows\system32\valWBFPolicyService.exe [2014-07-21 49040]
R3 Power Manager DBC Service;Power Manager Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2014-03-06 1669976]
R3 QuickControlService;Lenovo QuickControl Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2014-06-12 316400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-12 116648]
S2 QuickControlMasterSvc;Lenovo QuickControl Master Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2014-06-12 61936]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-13 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-20 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-12 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-24 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 intelsba;Intel(R) Small Business Advantage; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [2013-04-10 48832]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-16 272776]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-18 284912]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2014-03-06 1664856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2014-06-03 24560]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2014-01-29 49976]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-12-24 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119679
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola logu z RSIT

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files (x86)\Google\Google Toolbar
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]/64
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
o2t2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 20 led 2015 06:58

Re: Kontrola logu z RSIT

#7 Příspěvek od o2t2 »

Logfile of random's system information tool 1.10 (written by random/random)
Run by ThinkPad at 2015-01-20 20:45:57
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 739 GB (79%) free of 934 GB
Total RAM: 7906 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:46:00, on 20.1.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17496)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
C:\Program Files\trend micro\ThinkPad.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [331BigDog] "C:\Program Files (x86)\USB Camera\VM331STI.EXE"
O4 - HKLM\..\Run: [PWMTRV] rundll32 "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
O4 - HKLM\..\Run: [Fastboot] "C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe" /analysis
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1421783096
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: ThinkPad OneLink Dock Management.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: DisplayLinkManager (DisplayLinkService) - DisplayLink Corp. - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Condusiv Technologies - C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
O23 - Service: FastbootService - Lenovo - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Small Business Advantage (intelsba) - Intel Corporation - C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
O23 - Service: Intel(R) Update Manager (iumsvc) - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: Lenovo Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: lnvDiscoveryWinSvc - Lenovo - C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Power Manager Service (Power Manager DBC Service) - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Lenovo QuickControl Master Service (QuickControlMasterSvc) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe
O23 - Service: Lenovo QuickControl Service (QuickControlService) - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: ValBioService - Validity Sensors, Inc. - C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe
O23 - Service: Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\Windows\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 12782 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
winlogon.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ab42e5c3-6840-4716-b940-59a681d752d4 -SystemEventPortName:HostProcess-8370fcea-8965-468d-804f-2811c766f4b7 -IoCancelEventPortName:HostProcess-bc9e837f-9da2-450d-86e8-dcd9b88eddbb -NonStateChangingEventPortName:HostProcess-98ca9e3b-ba8a-4d88-afc4-38d01ceadf66 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:75c806ea-8644-46c9-a42e-c07680f9d8f4 -DeviceGroupId:
"C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 4028224
\??\C:\Windows\system32\conhost.exe "-1948130617-1196233627-1821985432369469044533529475497336511823660806-1653943710
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
taskeng.exe {342C65CB-31A8-4998-8E84-D3B889585714}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe"
"C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe"
C:\Windows\system32\valWBFPolicyService.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files\Lenovo Fingerprint Reader\SwipeMonitor.exe" ytidilav
\??\C:\Windows\system32\conhost.exe "37429965911932256761631098402-968361256-13174814081767520429-10567694911989018206
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-451db757-f3eb-49ea-9fc3-ca22bb25d744 -SystemEventPortName:HostProcess-e24bc475-696e-45b8-a7f7-504d26c1dfd9 -IoCancelEventPortName:HostProcess-a9de62ec-cda0-41c5-9e59-ebb6e5e3651e -NonStateChangingEventPortName:HostProcess-9b5bf923-0e1d-4368-8103-487c5932cab0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4db116dc-c842-4bf4-88c4-b034a5d1e394 -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe"
"C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe"
\??\C:\Windows\system32\conhost.exe "-612652405-197106802117298072521664985965-1130186066-14571225782082709107-290180989
taskeng.exe {C27D9CCF-2232-436A-A79F-534B2AAEF6DD}
"C:\PROGRAM FILES (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files\Lenovo\QuickDisplay\QuickDisplayAgent.exe" Hidden
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 552 556 564 65536 560
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\01202015_204223.log
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\igfxsrvc.exe" -Embedding
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\Skdaemon.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe" 1.08.26
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\USB Camera\VM331STI.EXE"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL",PwrMgrBkGndMonitor
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7156 CREDAT:267521 /prefetch:2
"C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe" /showasync
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\ThinkPad\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-01-18 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-18 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2013-08-20 165872]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2013-08-20 407536]
"Persistence"=C:\Windows\system32\igfxpers.exe [2013-08-20 444400]
"Enhanced Performance Keyboard"=C:\Program Files\Lenovo\USB Enhanced Performance Keyboard\SKDaemon.exe [2012-08-08 335360]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll [2014-03-26 7825720]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2014-02-18 384344]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2014-05-29 295768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-04-07 2810608]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Adobe Speed Launcher"=1421783096 []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2013-05-16 134616]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-10-21 292848]
"331BigDog"=C:\Program Files (x86)\USB Camera\VM331STI.EXE [2013-05-14 552960]
"PWMTRV"=rundll32 C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Lenovo Registration"=C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe [2011-06-01 4315872]
"Fastboot"=C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe [2013-08-15 733936]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-03 1021128]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2014-12-13 3838800]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-18 5227112]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ThinkPad OneLink Dock Management.lnk - C:\Program Files (x86)\Lenovo\OneLink Dock\onelinkpromgn.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2013-08-08 441344]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-01-20 20:42:23 ----D---- C:\_OTM
2015-01-20 19:04:45 ----D---- C:\AdwCleaner
2015-01-19 18:59:12 ----D---- C:\Program Files\7-Zip
2015-01-19 18:54:50 ----D---- C:\rsit
2015-01-19 18:54:50 ----D---- C:\Program Files\trend micro
2015-01-18 18:10:09 ----A---- C:\Windows\system32\TSWbPrxy.exe
2015-01-18 18:02:20 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-01-18 18:02:20 ----A---- C:\Windows\system32\rdpcorets.dll
2015-01-18 18:02:00 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2015-01-18 18:02:00 ----A---- C:\Windows\system32\mstscax.dll
2015-01-18 17:17:31 ----D---- C:\Users\ThinkPad\AppData\Roaming\Dropbox
2015-01-18 17:12:01 ----D---- C:\Users\ThinkPad\AppData\Roaming\AVAST Software
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswStm.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswSP.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswmonflt.sys
2015-01-18 17:11:20 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2015-01-18 17:11:18 ----A---- C:\Windows\system32\drivers\aswsnx.sys
2015-01-18 17:11:18 ----A---- C:\Windows\system32\aswBoot.exe
2015-01-18 17:11:17 ----A---- C:\Windows\avastSS.scr
2015-01-18 17:08:31 ----D---- C:\Program Files\AVAST Software
2015-01-18 17:07:42 ----D---- C:\ProgramData\AVAST Software
2015-01-18 16:45:16 ----D---- C:\Windows\system32\appmgmt
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-01-18 16:43:01 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\tsgqec.dll
2015-01-18 16:43:01 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\rdvidcrl.dll
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2015-01-18 16:43:00 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\wksprtPS.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\wksprt.exe
2015-01-18 16:43:00 ----A---- C:\Windows\system32\rdvidcrl.dll
2015-01-18 16:43:00 ----A---- C:\Windows\system32\mstsc.exe
2015-01-18 16:43:00 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2015-01-18 16:42:40 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2015-01-18 16:42:40 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2015-01-18 16:42:38 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2015-01-18 16:42:38 ----A---- C:\Windows\system32\rdpudd.dll
2015-01-18 16:42:38 ----A---- C:\Windows\system32\rdpendp_winip.dll
2015-01-18 16:38:56 ----D---- C:\Windows\system32\MRT
2015-01-18 16:38:52 ----A---- C:\Windows\system32\MRT.exe
2015-01-15 20:51:44 ----D---- C:\ProgramData\janibfkliljmheimcjllcnpkncbipkaa
2015-01-15 18:33:37 ----D---- C:\Program Files (x86)\unisaales
2015-01-15 18:33:33 ----D---- C:\ProgramData\enmngljdhibbfhaedpdddpbkceomoode
2015-01-13 19:46:44 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2015-01-13 19:46:44 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\profsvc.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\nlasvc.dll
2015-01-13 19:46:44 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-01-13 19:46:42 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-01-13 19:46:42 ----A---- C:\Windows\system32\srcore.dll
2015-01-13 19:46:42 ----A---- C:\Windows\system32\srclient.dll
2015-01-13 19:46:42 ----A---- C:\Windows\system32\rstrui.exe
2015-01-13 19:46:42 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-01-13 07:15:59 ----D---- C:\Users\ThinkPad\AppData\Roaming\WebApp
2015-01-13 07:15:50 ----D---- C:\Users\ThinkPad\AppData\Roaming\CyberLink
2015-01-13 06:55:53 ----D---- C:\Program Files (x86)\uniusales
2015-01-13 06:55:44 ----D---- C:\Program Files (x86)\uuNiisales
2015-01-13 06:55:33 ----D---- C:\ProgramData\pcihmblonlbmlddgmcgegbhkkjepcdcg
2015-01-13 06:55:00 ----D---- C:\Users\ThinkPad\AppData\Roaming\OpenOffice
2015-01-13 06:54:08 ----D---- C:\Program Files (x86)\OpenOffice 4
2015-01-09 18:30:40 ----D---- C:\Users\ThinkPad\AppData\Roaming\Opera Software
2015-01-09 18:30:39 ----D---- C:\Users\ThinkPad\AppData\Roaming\Mozilla
2015-01-09 18:30:38 ----D---- C:\Users\ThinkPad\AppData\Roaming\Yandex
2015-01-09 18:29:56 ----D---- C:\Users\ThinkPad\AppData\Roaming\ImperiaOnline
2015-01-09 14:47:43 ----A---- C:\IFRToolLog.txt
2015-01-08 06:54:23 ----D---- C:\ProgramData\Sun
2015-01-08 06:54:20 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-01-08 06:54:12 ----D---- C:\ProgramData\Oracle
2015-01-08 06:54:11 ----D---- C:\Program Files (x86)\Java
2015-01-07 21:22:04 ----AH---- C:\Windows\system32\hamachi.sys
2015-01-07 21:22:02 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2015-01-07 21:21:57 ----D---- C:\ProgramData\LogMeIn
2015-01-02 14:17:27 ----D---- C:\Videa Camtasia 8
2015-01-02 13:12:07 ----D---- C:\Users\ThinkPad\AppData\Roaming\TechSmith
2015-01-02 13:10:57 ----D---- C:\ProgramData\regid.1995-08.com.techsmith
2015-01-02 13:10:56 ----D---- C:\Program Files (x86)\QuickTime
2015-01-02 13:10:47 ----D---- C:\ProgramData\TechSmith
2015-01-02 13:10:47 ----D---- C:\Program Files (x86)\TechSmith
2015-01-01 19:27:06 ----D---- C:\Windows\SYSWOW64\Adobe
2015-01-01 16:06:17 ----D---- C:\Program Files (x86)\Steam
2014-12-28 07:50:38 ----D---- C:\Windows\Minidump
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-12-26 21:25:39 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-12-26 21:25:38 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-12-26 21:25:37 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-12-26 21:25:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-12-26 21:25:37 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-12-26 21:25:37 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2014-12-26 21:25:36 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-12-26 21:25:36 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-12-26 21:25:36 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-12-26 21:25:36 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-12-26 21:25:35 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-12-26 21:25:35 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-12-26 21:25:34 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-12-26 21:25:34 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-12-26 21:25:33 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-12-26 21:25:32 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-12-26 21:25:31 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-12-26 21:25:30 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-12-26 21:25:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-12-26 21:25:30 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-12-26 21:25:30 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-12-26 21:25:29 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-12-26 21:25:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-12-26 21:25:29 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-12-26 21:25:29 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-12-26 21:25:28 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-12-26 21:25:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-12-26 21:25:28 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-12-26 21:25:28 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-12-26 21:25:27 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-12-26 21:25:26 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-12-26 21:25:25 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-12-26 21:25:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-12-26 21:25:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-12-26 21:25:23 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-12-26 21:25:21 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\xinput1_3.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-12-26 21:25:20 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-12-26 21:25:19 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-12-26 21:25:19 ----A---- C:\Windows\system32\d3dx10.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-12-26 21:25:18 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-12-26 21:25:18 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-12-26 21:25:17 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xinput1_2.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xinput1_1.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-12-26 21:25:17 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-12-26 21:25:16 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-12-26 21:25:16 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-12-26 21:25:14 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-12-26 21:25:14 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-12-26 21:25:13 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-12-26 21:25:13 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-12-26 21:25:12 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-12-26 21:25:12 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-12-26 21:23:31 ----D---- C:\Program Files (x86)\Ubisoft
2014-12-26 19:12:15 ----SHD---- C:\found.000
2014-12-25 17:05:22 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2014-12-25 17:05:21 ----D---- C:\Program Files\Garmin GPS Plugin
2014-12-25 17:05:03 ----D---- C:\Users\ThinkPad\AppData\Roaming\Garmin
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDRU.DLL
2014-12-25 16:10:27 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-12-25 16:10:26 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-12-25 16:10:26 ----A---- C:\Windows\system32\ieUnatt.exe
2014-12-24 21:48:59 ----D---- C:\Program Files\Google
2014-12-24 21:48:56 ----D---- C:\ProgramData\Google
2014-12-24 21:48:52 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-24 21:48:51 ----D---- C:\Windows\SYSWOW64\Macromed
2014-12-24 21:48:50 ----D---- C:\Windows\system32\Macromed
2014-12-24 21:36:20 ----D---- C:\Games
2014-12-24 20:38:47 ----SD---- C:\Windows\system32\CompatTel
2014-12-24 20:38:47 ----D---- C:\Windows\system32\appraiser
2014-12-24 20:38:37 ----D---- C:\Windows\SYSWOW64\Wat
2014-12-24 20:38:37 ----D---- C:\Windows\system32\Wat
2014-12-24 20:32:05 ----D---- C:\Windows\Migration
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\rrinstaller.exe
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mfps.dll
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mfpmp.exe
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mferror.dll
2014-12-24 20:07:40 ----A---- C:\Windows\SYSWOW64\mf.dll
2014-12-24 20:07:40 ----A---- C:\Windows\system32\rrinstaller.exe
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mfps.dll
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mfpmp.exe
2014-12-24 20:07:40 ----A---- C:\Windows\system32\mferror.dll
2014-12-24 20:07:39 ----A---- C:\Windows\system32\mf.dll
2014-12-24 20:01:15 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-12-24 20:01:15 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-12-24 19:58:11 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-12-24 19:58:11 ----A---- C:\Windows\system32\infocardapi.dll
2014-12-24 19:58:11 ----A---- C:\Windows\system32\icardres.dll
2014-12-24 19:58:11 ----A---- C:\Windows\system32\icardagt.exe
2014-12-24 19:58:06 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-12-24 19:58:06 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-12-24 18:32:22 ----D---- C:\Users\ThinkPad\AppData\Roaming\NVIDIA
2014-12-24 18:30:00 ----D---- C:\Users\ThinkPad\AppData\Roaming\java
2014-12-24 18:29:58 ----D---- C:\Users\ThinkPad\AppData\Roaming\.minecraft
2014-12-24 18:26:41 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-12-24 18:26:41 ----A---- C:\Windows\system32\poqexec.exe
2014-12-24 18:22:11 ----A---- C:\Windows\system32\invagent.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\generaltel.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\devinv.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\appraiser.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aitstatic.exe
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aepic.dll
2014-12-24 18:22:11 ----A---- C:\Windows\system32\aeinv.dll
2014-12-24 18:22:10 ----A---- C:\Windows\system32\aepdu.dll
2014-12-24 18:22:05 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-12-24 18:22:05 ----A---- C:\Windows\SYSWOW64\TSWorkspace.dll
2014-12-24 18:22:05 ----A---- C:\Windows\system32\webio.dll
2014-12-24 18:22:05 ----A---- C:\Windows\system32\TSWorkspace.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\mscories.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\mscorier.dll
2014-12-24 18:22:00 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\mscories.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\mscorier.dll
2014-12-24 18:22:00 ----A---- C:\Windows\system32\dfshim.dll
2014-12-24 18:21:52 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2014-12-24 18:21:52 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\termsrv.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\msaudite.dll
2014-12-24 18:21:52 ----A---- C:\Windows\system32\adtschema.dll
2014-12-24 18:21:50 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-12-24 18:21:50 ----A---- C:\Windows\system32\d3d10warp.dll
2014-12-24 18:21:48 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-12-24 18:21:48 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-12-24 18:21:47 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-12-24 18:21:47 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\msxml3r.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\msxml3.dll
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-12-24 18:21:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-12-24 18:21:45 ----A---- C:\Windows\system32\drivers\tdx.sys
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-12-24 18:21:44 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\iernonce.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-12-24 18:21:44 ----A---- C:\Windows\system32\ie4uinit.exe
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-12-24 18:21:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\urlmon.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-24 18:21:43 ----A---- C:\Windows\system32\msfeeds.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\iedkcs32.dll
2014-12-24 18:21:43 ----A---- C:\Windows\system32\dxtrans.dll
2014-12-24 18:21:42 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\iesetup.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\iertutil.dll
2014-12-24 18:21:42 ----A---- C:\Windows\system32\ieapfltr.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-12-24 18:21:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\jsproxy.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\ieui.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\ieframe.dll
2014-12-24 18:21:41 ----A---- C:\Windows\system32\dxtmsft.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\wininet.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\vbscript.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\mshtmled.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\jscript9diag.dll
2014-12-24 18:21:40 ----A---- C:\Windows\system32\jscript9.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\msrating.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-12-24 18:21:39 ----A---- C:\Windows\system32\mshtml.dll
2014-12-24 18:20:26 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-12-24 18:20:26 ----A---- C:\Windows\system32\d2d1.dll
2014-12-24 18:20:23 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-12-24 18:20:23 ----A---- C:\Windows\SYSWOW64\IMJP10K.DLL
2014-12-24 18:20:23 ----A---- C:\Windows\system32\qdvd.dll
2014-12-24 18:20:23 ----A---- C:\Windows\system32\IMJP10K.DLL
2014-12-24 18:20:23 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\pku2u.dll
2014-12-24 18:20:13 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\pku2u.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\lsasrv.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\kerberos.dll
2014-12-24 18:20:13 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-12-24 18:20:07 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2014-12-24 18:20:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-12-24 18:20:06 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2014-12-24 18:20:06 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\EncDump.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\audiosrv.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\AudioSes.dll
2014-12-24 18:20:06 ----A---- C:\Windows\system32\AudioEng.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmWmiPl.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmSvc.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WsmAuto.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WSManMigrationPlugin.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\WSManHTTPConfig.exe
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\rastls.dll
2014-12-24 18:20:05 ----A---- C:\Windows\SYSWOW64\charmap.exe
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmWmiPl.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmSvc.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WsmAuto.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2014-12-24 18:20:05 ----A---- C:\Windows\system32\shell32.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\rastls.dll
2014-12-24 18:20:05 ----A---- C:\Windows\system32\charmap.exe
2014-12-24 18:20:04 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-12-24 18:20:01 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-12-24 18:20:01 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-12-24 18:20:00 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-12-24 18:20:00 ----A---- C:\Windows\system32\tzres.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-12-24 18:19:58 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\wdigest.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\TSpkg.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\schannel.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\ncrypt.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\msv1_0.dll
2014-12-24 18:19:58 ----A---- C:\Windows\system32\credssp.dll
2014-12-24 18:19:56 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-12-24 18:19:56 ----A---- C:\Windows\system32\packager.dll
2014-12-24 18:19:55 ----A---- C:\Windows\SYSWOW64\winsta.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\winsta.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\winlogon.exe
2014-12-24 18:19:55 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-12-24 18:19:55 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-12-24 18:19:55 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-12-24 18:19:52 ----A---- C:\Windows\system32\win32k.sys
2014-12-24 18:19:51 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-12-24 18:19:51 ----A---- C:\Windows\system32\msi.dll
2014-12-24 18:19:51 ----A---- C:\Windows\system32\authui.dll
2014-12-24 18:19:50 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-12-24 18:19:50 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-12-24 18:19:50 ----A---- C:\Windows\system32\msihnd.dll
2014-12-24 18:19:50 ----A---- C:\Windows\system32\consent.exe
2014-12-24 18:18:54 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\oleaut32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\gdi32.dll
2014-12-24 18:18:54 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-12-24 18:18:47 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-12-24 18:18:47 ----A---- C:\Windows\system32\rpcrt4.dll
2014-12-24 18:11:14 ----D---- C:\Users\ThinkPad\AppData\Roaming\LSC
2014-12-24 18:10:34 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-12-24 18:10:34 ----A---- C:\Windows\system32\rdpcore.dll
2014-12-24 18:10:34 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wups2.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wucltux.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wuaueng.dll
2014-12-24 18:04:29 ----A---- C:\Windows\system32\wuauclt.exe
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-12-24 18:04:23 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wups.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wudriver.dll
2014-12-24 18:04:23 ----A---- C:\Windows\system32\wuapi.dll
2014-12-24 18:04:16 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-12-24 18:04:16 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-12-24 18:04:16 ----A---- C:\Windows\system32\wuwebv.dll
2014-12-24 18:04:16 ----A---- C:\Windows\system32\wuapp.exe
2014-12-24 18:01:13 ----D---- C:\Users\ThinkPad\AppData\Roaming\Skype

======List of files/folders modified in the last 1 month======

2015-01-20 20:45:11 ----D---- C:\Windows\Prefetch
2015-01-20 20:44:17 ----D---- C:\Windows\Temp
2015-01-20 20:44:17 ----D---- C:\Windows\system32\config
2015-01-20 20:44:06 ----D---- C:\ProgramData\Validity
2015-01-20 20:42:24 ----D---- C:\Windows\Tasks
2015-01-20 20:42:23 ----D---- C:\Program Files (x86)\Google
2015-01-20 19:24:43 ----D---- C:\Windows\System32
2015-01-20 19:24:43 ----D---- C:\Windows\inf
2015-01-20 19:24:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-01-20 19:05:58 ----RD---- C:\Program Files (x86)
2015-01-20 19:05:58 ----HD---- C:\ProgramData
2015-01-20 19:05:58 ----D---- C:\Windows
2015-01-20 19:00:47 ----D---- C:\Windows\SysWOW64
2015-01-20 06:59:05 ----D---- C:\Windows\system32\wdi
2015-01-19 19:50:19 ----D---- C:\Windows\Microsoft.NET
2015-01-19 18:59:36 ----SHD---- C:\Windows\Installer
2015-01-19 18:59:12 ----RD---- C:\Program Files
2015-01-19 18:48:20 ----D---- C:\Windows\system32\Tasks
2015-01-18 18:13:15 ----D---- C:\Windows\winsxs
2015-01-18 18:13:14 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-01-18 18:13:14 ----D---- C:\Windows\system32\cs-CZ
2015-01-18 18:12:53 ----SHD---- C:\System Volume Information
2015-01-18 18:01:57 ----D---- C:\Windows\system32\catroot2
2015-01-18 18:01:57 ----D---- C:\Windows\system32\catroot
2015-01-18 17:57:53 ----D---- C:\Windows\system32\drivers
2015-01-18 17:57:53 ----D---- C:\ProgramData\Norton
2015-01-18 17:03:20 ----D---- C:\Program Files\Lenovo
2015-01-18 16:48:44 ----D---- C:\Windows\SYSWOW64\wbem
2015-01-18 16:48:44 ----D---- C:\Windows\SYSWOW64\en-US
2015-01-18 16:48:44 ----D---- C:\Windows\system32\wbem
2015-01-18 16:48:44 ----D---- C:\Windows\system32\drivers\en-US
2015-01-18 16:48:43 ----D---- C:\Windows\system32\en-US
2015-01-18 16:48:43 ----D---- C:\Windows\system32\DriverStore
2015-01-18 16:48:43 ----D---- C:\Windows\PolicyDefinitions
2015-01-18 16:43:37 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2015-01-18 16:38:56 ----D---- C:\Windows\debug
2015-01-16 20:25:11 ----SD---- C:\Users\ThinkPad\AppData\Roaming\Microsoft
2015-01-13 07:15:54 ----D---- C:\ProgramData\CyberLink
2015-01-13 06:54:37 ----RSD---- C:\Windows\assembly
2015-01-13 06:54:13 ----RSD---- C:\Windows\Fonts
2015-01-12 14:28:46 ----D---- C:\Users\ThinkPad\AppData\Roaming\Adobe
2015-01-09 18:38:38 ----D---- C:\Program Files (x86)\Common Files
2015-01-08 09:55:52 ----N---- C:\Windows\system32\MpSigStub.exe
2015-01-03 09:09:33 ----D---- C:\Windows\system32\drivers\UMDF
2015-01-01 19:27:08 ----D---- C:\Windows\Downloaded Program Files
2014-12-27 16:18:39 ----D---- C:\Windows\LiveKernelReports
2014-12-27 07:33:06 ----D---- C:\ProgramData\Adobe
2014-12-26 21:23:36 ----D---- C:\Windows\Logs
2014-12-26 07:47:24 ----D---- C:\Windows\rescache
2014-12-25 22:20:02 ----D---- C:\Program Files\Windows Sidebar
2014-12-25 22:20:02 ----D---- C:\Program Files\Windows Mail
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Media Player
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Mail
2014-12-25 22:20:02 ----D---- C:\Program Files (x86)\Windows Defender
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\winrm
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\slmgr
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\migwiz
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\en
2014-12-25 22:20:01 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2014-12-25 22:20:01 ----D---- C:\Windows\servicing
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Photo Viewer
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Media Player
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Journal
2014-12-25 22:20:01 ----D---- C:\Program Files\Windows Defender
2014-12-25 22:20:01 ----D---- C:\Program Files\DVD Maker
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\WCN
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\DriverStore
2014-12-25 22:19:59 ----D---- C:\Windows\SYSWOW64\Dism
2014-12-25 22:19:59 ----D---- C:\Windows\en-US
2014-12-25 22:19:57 ----D---- C:\Windows\system32\winrm
2014-12-25 22:19:57 ----D---- C:\Windows\system32\slmgr
2014-12-25 22:19:57 ----D---- C:\Windows\system32\migwiz
2014-12-25 22:19:57 ----D---- C:\Windows\system32\en
2014-12-25 22:19:57 ----D---- C:\Windows\system32\Boot
2014-12-25 22:19:54 ----D---- C:\Windows\system32\WCN
2014-12-25 22:19:54 ----D---- C:\Windows\system32\Dism
2014-12-25 22:19:53 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2014-12-25 22:19:53 ----D---- C:\Windows\Speech
2014-12-25 11:24:13 ----D---- C:\Windows\system32\LogFiles
2014-12-24 20:38:47 ----SD---- C:\ProgramData\Microsoft
2014-12-24 20:38:47 ----D---- C:\Windows\ehome
2014-12-24 20:38:47 ----D---- C:\Windows\AppCompat
2014-12-24 20:38:47 ----D---- C:\Program Files\Common Files\System
2014-12-24 20:38:38 ----D---- C:\Program Files\Internet Explorer
2014-12-24 20:38:37 ----D---- C:\Program Files (x86)\Internet Explorer
2014-12-24 19:58:49 ----D---- C:\Windows\SoftwareDistribution
2014-12-24 18:46:06 ----D---- C:\ProgramData\Skype
2014-12-24 18:46:05 ----RD---- C:\Program Files (x86)\Skype
2014-12-24 18:44:22 ----D---- C:\Program Files (x86)\Lenovo
2014-12-24 18:43:10 ----D---- C:\Windows\Downloaded Installations
2014-12-24 18:06:25 ----D---- C:\ProgramData\Intel
2014-12-24 18:04:06 ----D---- C:\Windows\system32\restore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-18 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-18 267632]
R0 excsd;ExpressCache Storage Filter Driver; C:\Windows\system32\DRIVERS\excsd.sys [2013-11-18 117488]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-02 644968]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-02 28008]
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-10-21 20464]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-10-31 32544]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2014-01-29 152888]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2014-01-29 29496]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-01-18 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-18 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-18 436624]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 excfs;ExpressCache File System Filter Driver; C:\Windows\system32\DRIVERS\excfs.sys [2013-11-18 25840]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2014-03-06 20736]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-18 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-18 87912]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-01-18 116728]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2014-03-26 140600]
R3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2014-04-19 1423160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2013-11-19 1689304]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2014-11-14 60112]
R3 ibtusb;Intel(R) Wireless Bluetooth(R) 4.0 + HS Adapter; C:\Windows\system32\DRIVERS\ibtusb.sys [2014-05-30 192456]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2013-08-08 4448800]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-10-21 368624]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-10-21 790000]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2013-11-12 25528]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2013-05-16 64624]
R3 NETwNs64;___ Intel(R) Wireless Adapter Driver for Windows 7 - 64 Bit; C:\Windows\system32\DRIVERS\Netwsw02.sys [2014-04-16 3434976]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-26 40248]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-06-18 872152]
R3 RTSPER;Realtek PCIE Card Reader - PER; C:\Windows\system32\DRIVERS\RtsPer.sys [2013-06-24 418008]
R3 SmbDrvI;SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2014-04-07 31472]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2014-04-07 554224]
R3 usb3Hub;UoIP Hub; C:\Windows\system32\DRIVERS\usb3Hub.sys [2013-06-21 206744]
R3 vm331avs;Digital Camera 1; C:\Windows\System32\Drivers\vm331avs.sys [2013-09-11 1065344]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 Fastboot;Fastboot; C:\Windows\System32\DRIVERS\fastboot.sys [2013-08-15 54000]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2013-11-12 35256]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-08-08 452088]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-03 81088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-18 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2014-03-26 1206648]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2014-03-26 1706360]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2014-03-26 1165688]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DisplayLinkService;DisplayLinkManager; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [2014-04-01 9954096]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-18 632048]
R2 ExpressCache;ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [2013-11-18 828656]
R2 FastbootService;FastbootService; C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe [2013-08-15 140016]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2014-12-13 2530640]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2014-11-14 84208]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-02-13 731648]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2014-05-29 59224]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2014-05-29 73048]
R2 LENOVO.TVTVCAM;Lenovo Virtual Camera Controller; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2014-05-29 197464]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2012-08-11 136288]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-12-02 417552]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-10-29 920864]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-18 154864]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
R2 ValBioService;ValBioService; C:\Program Files\Lenovo Fingerprint Reader\ValBioService.exe [2014-07-21 22872]
R2 valWBFPolicyService;Synaptics FP WBF Policy Service; C:\Windows\system32\valWBFPolicyService.exe [2014-07-21 49040]
R3 QuickControlService;Lenovo QuickControl Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [2014-06-12 316400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-12 116648]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-05-16 169432]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-05-16 366552]
S2 lnvDiscoveryWinSvc;lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [2014-02-21 21552]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-10-31 1364256]
S2 QuickControlMasterSvc;Lenovo QuickControl Master Service; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [2014-06-12 61936]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-13 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2013-08-20 279024]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-12 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-12-24 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-11-22 114688]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-02-13 820184]
S3 intelsba;Intel(R) Small Business Advantage; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [2013-04-10 48832]
S3 iumsvc;Intel(R) Update Manager; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28 174368]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-06-03 533760]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-10-16 272776]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-18 284912]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Power Manager DBC Service;Power Manager Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2014-03-06 1669976]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2014-03-06 1664856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2014-06-03 24560]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2014-01-29 49976]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-12-24 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119679
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola logu z RSIT

#8 Příspěvek od Rudy »

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
o2t2
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 20 led 2015 06:58

Re: Kontrola logu z RSIT

#9 Příspěvek od o2t2 »

Velké díky za pomoc.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119679
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola logu z RSIT

#10 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“