Nenačítaní a komplikace s Mozilla Firefox

[Malandru]

Zdravím, mám problém s mým Firefoxem, konkrétně s načítáním stránek a nové, nemohu se nalogovat do
online her v prohlížeči přes Unity web Player.
Prosím vás o kontrolu a pomoc. Díky Malandru


Logfile of random's system information tool 1.10 (written by random/random)
Run by Malandru at 2015-08-25 18:28:05
Microsoft Windows 10 Home
System drive C: has 717 GB (75%) free of 954 GB
Total RAM: 4023 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:28:11, on 25.8.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Malandru.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Alienware Fusion Service (AlienFusionService) - Alienware - C:\Program Files\Alienware\Command Center\AlienFusionService.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9391 bytes

======Listing Processes======







C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork
dashost.exe {92329649-3565-4d4d-9f78b19f6e9de0b2}
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Alienware\Command Center\AlienFusionService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"


C:\WINDOWS\system32\svchost.exe -k SDRSVC

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
atieclxx
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Alienware\Command Center\AWCCServiceController.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"fontdrvhost.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
"C:\Program Files\Alienware\Command Center\ThermalController.exe" /auto
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe" 131578
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe" 131578
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files\MPC-HC\mpc-hc64.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.3.8040.0_x64__8wekyb3d8bbwe\Solitaire.exe" -ServerName:App.AppXx8xn0rs58sab7mvbtxgdhw97cpm1dzhb.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_2015.8.12.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe" -ServerName:App.AppXqagq4n4gvy0tjw576pgh6xr601s1h1mv.mca
C:\WINDOWS\System32\alg.exe
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.12391.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"Z:\Z - Stažené Soubory\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Malandru\AppData\Roaming\Mozilla\Firefox\Profiles\itx837ye.default-1440334316092

prefs.js - "browser.startup.homepage" - "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-23 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-23 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"Command Center Controllers"=C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [2012-06-18 12656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-08-04 402632]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Speech Recognition]
C:\Windows\Speech\Common\sapisvr.exe [2015-07-10 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Malandru\AppData\Roaming\uTorrent\uTorrent.exe [2015-08-01 1693024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Malandru^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2013-06-25 246472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-23 6109776]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files (x86)\Stardock\MyColors\fast64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-25 18:28:06 ----D---- C:\Program Files\trend micro
2015-08-25 18:28:05 ----D---- C:\rsit
2015-08-23 19:10:58 ----A---- C:\WINDOWS\SYSWOW64\subinacl.exe
2015-08-23 17:58:06 ----D---- C:\Program Files (x86)\Google
2015-08-23 15:25:48 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-08-23 15:25:44 ----A---- C:\WINDOWS\avastSS.scr
2015-08-22 16:23:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-08-22 16:23:21 ----D---- C:\ProgramData\Malwarebytes
2015-08-22 16:23:21 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2015-08-22 02:38:52 ----D---- C:\Program Files (x86)\ATI Technologies
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantle64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-08-22 02:32:45 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-08-22 02:32:44 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-08-22 02:32:35 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-08-22 02:32:30 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-08-22 02:32:28 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-08-22 02:32:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-08-22 02:32:21 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-08-22 02:32:18 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdmantle32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdmantle64.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-08-19 18:06:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-08-19 18:06:39 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-08-19 18:06:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 18:06:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-08-19 18:06:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-08-19 18:06:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\tquery.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\explorer.exe
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-08-19 18:06:26 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-08-19 18:06:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\InputService.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 18:06:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-08-18 17:44:40 ----A---- C:\WINDOWS\IsUninst.exe
2015-08-18 17:44:39 ----RA---- C:\WINDOWS\SYSWOW64\MafiaSetup.exe
2015-08-15 15:23:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-12 00:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:26 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-12 00:06:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-08-12 00:06:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 00:06:06 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-08-12 00:06:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\mf.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\notepad.exe
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\mfps.dll
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-08-12 00:05:58 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-08-12 00:05:58 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-09 22:37:50 ----D---- C:\Users\Malandru\AppData\Roaming\AMD
2015-08-06 17:47:12 ----D---- C:\WINDOWS\system32\SleepStudy
2015-08-06 02:38:43 ----A---- C:\WINDOWS\system32\twinui.dll
2015-08-06 02:38:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-06 02:38:35 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-08-06 02:38:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-06 02:38:27 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\winmde.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-08-06 02:38:22 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\provengine.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-08-04 01:42:21 ----SHD---- C:\Recovery
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\bcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winresume.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winload.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wer.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\usocore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hal.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\efscore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-08-04 01:35:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\msmq
2015-08-04 01:28:19 ----D---- C:\WINDOWS\system32\BestPractices
2015-08-04 01:28:19 ----D---- C:\Program Files\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\Program Files\MSBuild
2015-08-04 01:28:19 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\inetpub
2015-08-04 01:28:19 ----AD---- C:\Program Files (x86)\MSBuild
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:19:53 ----D---- C:\ProgramData\Microsoft OneDrive
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Šablony
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Plocha
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Dokumenty
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Data aplikací
2015-08-04 01:13:15 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-08-04 01:07:13 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-08-04 00:52:03 ----SD---- C:\Users\Malandru\AppData\Roaming\Microsoft
2015-08-04 00:50:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-04 00:50:44 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-08-04 00:49:03 ----AD---- C:\Program Files\ATI Technologies
2015-08-04 00:48:29 ----D---- C:\ProgramData\Package Cache
2015-08-04 00:48:07 ----D---- C:\Program Files\Realtek
2015-08-04 00:48:06 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-08-04 00:47:52 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-08-04 00:47:44 ----D---- C:\Program Files\AMD
2015-08-04 00:45:38 ----D---- C:\WINDOWS\Prefetch
2015-08-04 00:44:23 ----ASH---- C:\swapfile.sys

======List of files/folders modified in the last 1 month======

2015-08-25 18:28:06 ----RD---- C:\Program Files
2015-08-25 18:02:00 ----D---- C:\WINDOWS\system32\sru
2015-08-25 17:50:28 ----D---- C:\WINDOWS\Temp
2015-08-25 17:50:28 ----D---- C:\WINDOWS\System32
2015-08-25 17:49:24 ----D---- C:\WINDOWS\rescache
2015-08-25 17:29:56 ----D---- C:\WINDOWS\INF
2015-08-25 17:23:22 ----SHD---- C:\System Volume Information
2015-08-25 17:11:05 ----D---- C:\WINDOWS\Microsoft.NET
2015-08-25 16:05:07 ----D---- C:\WINDOWS\AppReadiness
2015-08-25 16:05:06 ----HD---- C:\Program Files\WindowsApps
2015-08-23 23:58:54 ----D---- C:\WINDOWS\SoftwareDistribution
2015-08-23 23:58:54 ----D---- C:\Windows
2015-08-23 19:36:12 ----RD---- C:\Program Files (x86)
2015-08-23 19:10:58 ----D---- C:\WINDOWS\SysWOW64
2015-08-23 18:03:01 ----SHD---- C:\WINDOWS\Installer
2015-08-23 17:58:08 ----D---- C:\WINDOWS\Tasks
2015-08-23 17:58:08 ----D---- C:\WINDOWS\system32\Tasks
2015-08-23 15:47:30 ----D---- C:\Users\Malandru\AppData\Roaming\vlc
2015-08-23 15:32:24 ----D---- C:\WINDOWS\system32\WDI
2015-08-23 15:27:43 ----D---- C:\WINDOWS\system32\drivers
2015-08-23 13:54:59 ----HD---- C:\ProgramData
2015-08-22 17:01:02 ----D---- C:\Users\Malandru\AppData\Roaming\uTorrent
2015-08-22 16:30:29 ----D---- C:\Users\Malandru\AppData\Roaming\Adobe
2015-08-22 16:22:04 ----D---- C:\ProgramData\Adobe
2015-08-22 16:21:46 ----D---- C:\Program Files\Common Files
2015-08-22 16:21:16 ----D---- C:\Program Files (x86)\Adobe
2015-08-22 15:32:05 ----D---- C:\WINDOWS\system32\config
2015-08-22 15:26:29 ----D---- C:\WINDOWS\WinSxS
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\appraiser
2015-08-22 15:22:27 ----RD---- C:\WINDOWS\DevicesFlow
2015-08-22 15:22:27 ----D---- C:\WINDOWS\AppPatch
2015-08-22 15:22:26 ----D---- C:\WINDOWS\system32\DriverStore
2015-08-22 02:36:14 ----D---- C:\AMD
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-08-22 02:32:45 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-08-21 18:40:30 ----D---- C:\Users\Malandru\AppData\Roaming\DAEMON Tools Lite
2015-08-21 18:39:50 ----D---- C:\WINDOWS\debug
2015-08-20 02:17:16 ----D---- C:\WINDOWS\CbsTemp
2015-08-20 02:17:12 ----RD---- C:\WINDOWS\assembly
2015-08-19 18:01:23 ----D---- C:\WINDOWS\system32\catroot2
2015-08-18 18:54:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\cs-CZ
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\oobe
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-08-18 18:52:17 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpwsockx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpmodemx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplayx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplaysvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-08-12 06:56:04 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2015-08-12 06:16:14 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 06:16:14 ----A---- C:\WINDOWS\win.ini
2015-08-12 06:15:28 ----D---- C:\WINDOWS\system32\MRT
2015-08-12 06:11:22 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-11 01:15:50 ----SHD---- C:\$Recycle.Bin
2015-08-09 22:32:26 ----RSD---- C:\WINDOWS\Fonts
2015-08-09 20:27:11 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-09 20:27:09 ----D---- C:\WINDOWS\Provisioning
2015-08-09 20:27:09 ----D---- C:\Program Files\Internet Explorer
2015-08-09 20:27:09 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-09 20:27:08 ----D---- C:\WINDOWS\OCR
2015-08-08 17:38:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-08-06 17:44:45 ----D---- C:\WINDOWS\Logs
2015-08-04 21:46:37 ----D---- C:\Users\Malandru\AppData\Roaming\Identities
2015-08-04 16:13:10 ----SD---- C:\ProgramData\Microsoft
2015-08-04 04:09:23 ----D---- C:\WINDOWS\appcompat
2015-08-04 03:30:04 ----D---- C:\WINDOWS\system32\restore
2015-08-04 02:12:55 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-08-04 01:45:35 ----D---- C:\Program Files (x86)\Common Files
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Boot
2015-08-04 01:35:22 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\system32\F12
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\en
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\winrm
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\WCN
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\slmgr
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\migwiz
2015-08-04 01:35:18 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-08-04 01:35:18 ----D---- C:\WINDOWS\system32\en
2015-08-04 01:35:18 ----D---- C:\WINDOWS\servicing
2015-08-04 01:35:18 ----D---- C:\WINDOWS\en-US
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Journal
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Defender
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\inetsrv
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-08-04 01:28:11 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-08-04 01:28:07 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-08-04 01:28:03 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-08-04 01:28:01 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-08-04 01:17:19 ----RD---- C:\WINDOWS\PurchaseDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\PrintDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\MiracastView
2015-08-04 01:16:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-08-04 01:14:51 ----D---- C:\Program Files\Windows NT
2015-08-04 01:13:49 ----D---- C:\WINDOWS\Registration
2015-08-04 01:13:13 ----D---- C:\WINDOWS\system32\drivers\etc
2015-08-04 01:13:07 ----D---- C:\WINDOWS\system32\LogFiles
2015-08-04 01:13:05 ----RSD---- C:\WINDOWS\Media
2015-08-04 01:12:06 ----D---- C:\WINDOWS\system32\spool
2015-08-04 01:11:18 ----D---- C:\WINDOWS\system32\wbem
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\sv-SE
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pt-BR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pl-PL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nl-NL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nb-NO
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\log
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\it-IT
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\fr-FR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\es-ES
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\el-GR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\de-DE
2015-08-04 01:02:45 ----D---- C:\WINDOWS\system32\da-DK
2015-08-04 01:02:44 ----D---- C:\WINDOWS\ShellNew
2015-08-04 01:02:43 ----D---- C:\WINDOWS\en
2015-08-04 01:02:43 ----D---- C:\WINDOWS\cs
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\OEM
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-TW
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-HK
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-CN
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\wfp
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\tr-TR
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\SPReview
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\ru-RU
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\pt-PT
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\OEM
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\NDF
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\migration
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ko-KR
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ja-JP
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\IME
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\hu-HU
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\fi-FI
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-08-04 00:57:21 ----D---- C:\WINDOWS\schemas
2015-08-04 00:57:21 ----D---- C:\WINDOWS\PolicyDefinitions
2015-08-04 00:57:12 ----D---- C:\WINDOWS\IME
2015-08-04 00:57:10 ----D---- C:\WINDOWS\ehome
2015-08-04 00:57:10 ----D---- C:\WINDOWS\DigitalLocker
2015-08-04 00:57:09 ----RD---- C:\Users
2015-08-04 00:57:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-08-04 00:57:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-04 00:57:01 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-04 00:57:00 ----D---- C:\Program Files (x86)\AMD AVT
2015-08-04 00:56:59 ----SHD---- C:\Program Files\Windows Sidebar
2015-08-04 00:56:59 ----D---- C:\Program Files\Windows Mail
2015-08-04 00:56:59 ----D---- C:\Program Files\Microsoft Games
2015-08-04 00:56:59 ----D---- C:\Program Files\DVD Maker
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\System
2015-08-04 00:56:59 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-08-04 00:54:14 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-08-04 00:53:26 ----D---- C:\WINDOWS\system32\Recovery
2015-08-04 00:50:24 ----D---- C:\WINDOWS\system32\Sysprep
2015-08-04 00:17:37 ----RASH---- C:\BOOTSECT.BAK
2015-08-04 00:17:31 ----SHD---- C:\Boot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-08-23 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-08-23 274808]
R0 iaStor;@oem1.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-03-03 540696]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-08-23 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-08-23 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-08-23 447944]
R1 dtsoftbus01;@oem0.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-21 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-08-23 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-08-23 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-08-23 150672]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-08-22 21632992]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-08-22 675296]
R3 AtiHDAudioService;@oem11.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-04 175104]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264]
R3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\System32\drivers\usb8023x.sys [2015-07-10 22016]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-04 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-04 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-04 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AlienFusionService;Alienware Fusion Service; C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-06-18 14704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-08-22 256992]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-23 146600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-04 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 OneSyncSvc_Session3;Hostitel synchronizace_Session3; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session3;Data kontaktů_Session3; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 UnistoreSvc_Session3;Úložiště uživatelských dat_Session3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 UserDataSvc_Session3;Přístup k uživatelským datům_Session3; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-15 149160]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-06-15 1997168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-04 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-04-14 836288]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]

-----------------EOF-----------------

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

[Malandru]

Zmačkl jsem Scan potom log z kopiroval to sem a ted?


# AdwCleaner v5.003 - Logfile created 25/08/2015 at 19:04:12
# Updated 20/08/2015 by Xplode
# Database : 2015-08-23.3 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Malandru - AURORA-PC
# Running from : Z:\Z - Stažené Soubory\adwcleaner_5.003.exe
# Option : Scan

***** [ Services ] *****


***** [ Folders ] *****

Folder Found : C:\Users\Malandru\AppData\Local\PackageAware

***** [ Files ] *****

File Found : C:\WINDOWS\Sysnative\log\iSafeKrnlCall.log

***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Mozilla\Extends
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}

***** [ Web browsers ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1170 bytes] ##########

[Rudy]

Dejte nový log RSIT.

[Malandru]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Malandru at 2015-08-25 19:36:31
Microsoft Windows 10 Home
System drive C: has 717 GB (75%) free of 954 GB
Total RAM: 4023 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:36:38, on 25.8.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Program Files\trend micro\Malandru.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Alienware Fusion Service (AlienFusionService) - Alienware - C:\Program Files\Alienware\Command Center\AlienFusionService.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9239 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
atieclxx
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork

"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
dashost.exe {a65c019e-f21a-47e2-9ff9c434515172e7}
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\alg.exe
taskeng.exe {624D8C6C-3567-4645-A639-5F66E9F86092}
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXmtcan0h2tfbfy7k9kn8hbxb6dmzz1zh0.mca

C:\WINDOWS\Explorer.EXE
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k AppReadiness
"C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 628 632 640 8192 636
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Alienware\Command Center\AWCCServiceController.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
"C:\Program Files\Alienware\Command Center\ThermalController.exe" /auto
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe" 196760
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe" 196760
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3430415612-4256178322-727819506-10012_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3430415612-4256178322-727819506-10012 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files\Alienware\Command Center\AlienFusionService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"

C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\system32\usoclient.exe StartScan
C:\WINDOWS\System32\wsqmcons.exe
C:\WINDOWS\system32\wermgr.exe -upload
\??\C:\WINDOWS\system32\conhost.exe 0x4
"Z:\Z - Stažené Soubory\RSITx64.exe"
C:\WINDOWS\system32\schtasks.exe /delete /f /TN "Microsoft\Windows\Customer Experience Improvement Program\Uploader"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Malandru\AppData\Roaming\Mozilla\Firefox\Profiles\itx837ye.default-1440334316092

prefs.js - "browser.startup.homepage" - "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-23 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-23 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"Command Center Controllers"=C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [2012-06-18 12656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-08-04 402632]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Speech Recognition]
C:\Windows\Speech\Common\sapisvr.exe [2015-07-10 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Malandru\AppData\Roaming\uTorrent\uTorrent.exe [2015-08-01 1693024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Malandru^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2013-06-25 246472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-23 6109776]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files (x86)\Stardock\MyColors\fast64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-25 19:04:08 ----D---- C:\AdwCleaner
2015-08-25 18:28:06 ----D---- C:\Program Files\trend micro
2015-08-25 18:28:05 ----D---- C:\rsit
2015-08-23 19:10:58 ----A---- C:\WINDOWS\SYSWOW64\subinacl.exe
2015-08-23 17:58:06 ----D---- C:\Program Files (x86)\Google
2015-08-23 15:25:48 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-08-23 15:25:44 ----A---- C:\WINDOWS\avastSS.scr
2015-08-22 16:23:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-08-22 16:23:21 ----D---- C:\ProgramData\Malwarebytes
2015-08-22 16:23:21 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2015-08-22 02:38:52 ----D---- C:\Program Files (x86)\ATI Technologies
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantle64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-08-22 02:32:45 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-08-22 02:32:44 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-08-22 02:32:35 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-08-22 02:32:30 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-08-22 02:32:28 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-08-22 02:32:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-08-22 02:32:21 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-08-22 02:32:18 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdmantle32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdmantle64.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-08-19 18:06:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-08-19 18:06:39 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-08-19 18:06:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 18:06:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-08-19 18:06:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-08-19 18:06:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\tquery.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\explorer.exe
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-08-19 18:06:26 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-08-19 18:06:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\InputService.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 18:06:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-08-18 17:44:40 ----A---- C:\WINDOWS\IsUninst.exe
2015-08-18 17:44:39 ----RA---- C:\WINDOWS\SYSWOW64\MafiaSetup.exe
2015-08-15 15:23:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-12 00:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:26 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-12 00:06:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-08-12 00:06:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 00:06:06 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-08-12 00:06:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\mf.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\notepad.exe
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\mfps.dll
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-08-12 00:05:58 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-08-12 00:05:58 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-09 22:37:50 ----D---- C:\Users\Malandru\AppData\Roaming\AMD
2015-08-06 17:47:12 ----D---- C:\WINDOWS\system32\SleepStudy
2015-08-06 02:38:43 ----A---- C:\WINDOWS\system32\twinui.dll
2015-08-06 02:38:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-06 02:38:35 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-08-06 02:38:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-06 02:38:27 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\winmde.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-08-06 02:38:22 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\provengine.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-08-04 01:42:21 ----SHD---- C:\Recovery
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\bcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winresume.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winload.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wer.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\usocore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hal.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\efscore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-08-04 01:35:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\msmq
2015-08-04 01:28:19 ----D---- C:\WINDOWS\system32\BestPractices
2015-08-04 01:28:19 ----D---- C:\Program Files\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\Program Files\MSBuild
2015-08-04 01:28:19 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\inetpub
2015-08-04 01:28:19 ----AD---- C:\Program Files (x86)\MSBuild
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:19:53 ----D---- C:\ProgramData\Microsoft OneDrive
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Šablony
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Plocha
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Dokumenty
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Data aplikací
2015-08-04 01:13:15 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-08-04 01:07:13 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-08-04 00:52:03 ----SD---- C:\Users\Malandru\AppData\Roaming\Microsoft
2015-08-04 00:50:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-04 00:50:44 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-08-04 00:49:03 ----AD---- C:\Program Files\ATI Technologies
2015-08-04 00:48:29 ----D---- C:\ProgramData\Package Cache
2015-08-04 00:48:07 ----D---- C:\Program Files\Realtek
2015-08-04 00:48:06 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-08-04 00:47:52 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-08-04 00:47:44 ----D---- C:\Program Files\AMD
2015-08-04 00:45:38 ----D---- C:\WINDOWS\Prefetch
2015-08-04 00:44:23 ----ASH---- C:\swapfile.sys

======List of files/folders modified in the last 1 month======

2015-08-25 19:36:11 ----D---- C:\WINDOWS\Temp
2015-08-25 19:34:28 ----D---- C:\WINDOWS\System32
2015-08-25 19:33:13 ----D---- C:\Windows
2015-08-25 19:32:37 ----D---- C:\WINDOWS\system32\sru
2015-08-25 19:32:00 ----D---- C:\WINDOWS\system32\log
2015-08-25 19:17:49 ----D---- C:\WINDOWS\INF
2015-08-25 18:28:06 ----RD---- C:\Program Files
2015-08-25 17:49:24 ----D---- C:\WINDOWS\rescache
2015-08-25 17:23:22 ----SHD---- C:\System Volume Information
2015-08-25 17:11:05 ----D---- C:\WINDOWS\Microsoft.NET
2015-08-25 16:05:07 ----D---- C:\WINDOWS\AppReadiness
2015-08-25 16:05:06 ----HD---- C:\Program Files\WindowsApps
2015-08-23 23:58:54 ----D---- C:\WINDOWS\SoftwareDistribution
2015-08-23 19:36:12 ----RD---- C:\Program Files (x86)
2015-08-23 19:10:58 ----D---- C:\WINDOWS\SysWOW64
2015-08-23 18:03:01 ----SHD---- C:\WINDOWS\Installer
2015-08-23 17:58:08 ----D---- C:\WINDOWS\Tasks
2015-08-23 17:58:08 ----D---- C:\WINDOWS\system32\Tasks
2015-08-23 15:47:30 ----D---- C:\Users\Malandru\AppData\Roaming\vlc
2015-08-23 15:32:24 ----D---- C:\WINDOWS\system32\WDI
2015-08-23 15:27:43 ----D---- C:\WINDOWS\system32\drivers
2015-08-23 13:54:59 ----HD---- C:\ProgramData
2015-08-22 17:01:02 ----D---- C:\Users\Malandru\AppData\Roaming\uTorrent
2015-08-22 16:30:29 ----D---- C:\Users\Malandru\AppData\Roaming\Adobe
2015-08-22 16:22:04 ----D---- C:\ProgramData\Adobe
2015-08-22 16:21:46 ----D---- C:\Program Files\Common Files
2015-08-22 16:21:16 ----D---- C:\Program Files (x86)\Adobe
2015-08-22 15:32:05 ----D---- C:\WINDOWS\system32\config
2015-08-22 15:26:29 ----D---- C:\WINDOWS\WinSxS
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\appraiser
2015-08-22 15:22:27 ----RD---- C:\WINDOWS\DevicesFlow
2015-08-22 15:22:27 ----D---- C:\WINDOWS\AppPatch
2015-08-22 15:22:26 ----D---- C:\WINDOWS\system32\DriverStore
2015-08-22 02:36:14 ----D---- C:\AMD
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-08-22 02:32:45 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-08-21 18:40:30 ----D---- C:\Users\Malandru\AppData\Roaming\DAEMON Tools Lite
2015-08-21 18:39:50 ----D---- C:\WINDOWS\debug
2015-08-20 02:17:16 ----D---- C:\WINDOWS\CbsTemp
2015-08-20 02:17:12 ----RD---- C:\WINDOWS\assembly
2015-08-19 18:01:23 ----D---- C:\WINDOWS\system32\catroot2
2015-08-18 18:54:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\cs-CZ
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\oobe
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-08-18 18:52:17 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpwsockx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpmodemx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplayx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplaysvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-08-12 06:56:04 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2015-08-12 06:16:14 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 06:16:14 ----A---- C:\WINDOWS\win.ini
2015-08-12 06:15:28 ----D---- C:\WINDOWS\system32\MRT
2015-08-12 06:11:22 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-11 01:15:50 ----SHD---- C:\$Recycle.Bin
2015-08-09 22:32:26 ----RSD---- C:\WINDOWS\Fonts
2015-08-09 20:27:11 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-09 20:27:09 ----D---- C:\WINDOWS\Provisioning
2015-08-09 20:27:09 ----D---- C:\Program Files\Internet Explorer
2015-08-09 20:27:09 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-09 20:27:08 ----D---- C:\WINDOWS\OCR
2015-08-08 17:38:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-08-06 17:44:45 ----D---- C:\WINDOWS\Logs
2015-08-04 21:46:37 ----D---- C:\Users\Malandru\AppData\Roaming\Identities
2015-08-04 16:13:10 ----SD---- C:\ProgramData\Microsoft
2015-08-04 04:09:23 ----D---- C:\WINDOWS\appcompat
2015-08-04 03:30:04 ----D---- C:\WINDOWS\system32\restore
2015-08-04 02:12:55 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-08-04 01:45:35 ----D---- C:\Program Files (x86)\Common Files
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Boot
2015-08-04 01:35:22 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\system32\F12
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\en
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\winrm
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\WCN
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\slmgr
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\migwiz
2015-08-04 01:35:18 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-08-04 01:35:18 ----D---- C:\WINDOWS\system32\en
2015-08-04 01:35:18 ----D---- C:\WINDOWS\servicing
2015-08-04 01:35:18 ----D---- C:\WINDOWS\en-US
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Journal
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Defender
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\inetsrv
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-08-04 01:28:11 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-08-04 01:28:07 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-08-04 01:28:03 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-08-04 01:28:01 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-08-04 01:17:19 ----RD---- C:\WINDOWS\PurchaseDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\PrintDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\MiracastView
2015-08-04 01:16:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-08-04 01:14:51 ----D---- C:\Program Files\Windows NT
2015-08-04 01:13:49 ----D---- C:\WINDOWS\Registration
2015-08-04 01:13:13 ----D---- C:\WINDOWS\system32\drivers\etc
2015-08-04 01:13:07 ----D---- C:\WINDOWS\system32\LogFiles
2015-08-04 01:13:05 ----RSD---- C:\WINDOWS\Media
2015-08-04 01:12:06 ----D---- C:\WINDOWS\system32\spool
2015-08-04 01:11:18 ----D---- C:\WINDOWS\system32\wbem
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\sv-SE
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pt-BR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pl-PL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nl-NL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nb-NO
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\it-IT
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\fr-FR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\es-ES
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\el-GR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\de-DE
2015-08-04 01:02:45 ----D---- C:\WINDOWS\system32\da-DK
2015-08-04 01:02:44 ----D---- C:\WINDOWS\ShellNew
2015-08-04 01:02:43 ----D---- C:\WINDOWS\en
2015-08-04 01:02:43 ----D---- C:\WINDOWS\cs
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\OEM
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-TW
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-HK
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-CN
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\wfp
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\tr-TR
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\SPReview
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\ru-RU
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\pt-PT
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\OEM
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\NDF
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\migration
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ko-KR
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ja-JP
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\IME
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\hu-HU
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\fi-FI
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-08-04 00:57:21 ----D---- C:\WINDOWS\schemas
2015-08-04 00:57:21 ----D---- C:\WINDOWS\PolicyDefinitions
2015-08-04 00:57:12 ----D---- C:\WINDOWS\IME
2015-08-04 00:57:10 ----D---- C:\WINDOWS\ehome
2015-08-04 00:57:10 ----D---- C:\WINDOWS\DigitalLocker
2015-08-04 00:57:09 ----RD---- C:\Users
2015-08-04 00:57:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-08-04 00:57:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-04 00:57:01 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-04 00:57:00 ----D---- C:\Program Files (x86)\AMD AVT
2015-08-04 00:56:59 ----SHD---- C:\Program Files\Windows Sidebar
2015-08-04 00:56:59 ----D---- C:\Program Files\Windows Mail
2015-08-04 00:56:59 ----D---- C:\Program Files\Microsoft Games
2015-08-04 00:56:59 ----D---- C:\Program Files\DVD Maker
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\System
2015-08-04 00:56:59 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-08-04 00:54:14 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-08-04 00:53:26 ----D---- C:\WINDOWS\system32\Recovery
2015-08-04 00:50:24 ----D---- C:\WINDOWS\system32\Sysprep
2015-08-04 00:17:37 ----RASH---- C:\BOOTSECT.BAK
2015-08-04 00:17:31 ----SHD---- C:\Boot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-08-23 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-08-23 274808]
R0 iaStor;@oem1.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-03-03 540696]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-08-23 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-08-23 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-08-23 447944]
R1 dtsoftbus01;@oem0.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-21 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-08-23 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-08-23 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-08-23 150672]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-08-22 21632992]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-08-22 675296]
R3 AtiHDAudioService;@oem11.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-04 175104]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-04 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-04 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\System32\drivers\usb8023x.sys [2015-07-10 22016]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-04 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AlienFusionService;Alienware Fusion Service; C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-06-18 14704]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-08-22 256992]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-23 146600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-04 26112]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-15 149160]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-06-15 1997168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-04 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-04-14 836288]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc_Session1;Přístup k uživatelským datům_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]

-----------------EOF-----------------

[Rudy]

Promiňte, přehlédl jsem, že ADW nemazal. Nekliknul jste na Clean. Celou akci, prosím, zopakujte.

[Malandru]

# AdwCleaner v5.003 - Logfile created 25/08/2015 at 20:35:13
# Updated 20/08/2015 by Xplode
# Database : 2015-08-23.3 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Malandru - AURORA-PC
# Running from : C:\Users\Malandru\Desktop\adwcleaner_5.003.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: Proxy settings cleared
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [601 bytes] ##########


---------------------------------------------------------------------------------------

Logfile of random's system information tool 1.10 (written by random/random)
Run by Malandru at 2015-08-25 20:37:51
Microsoft Windows 10 Home
System drive C: has 717 GB (75%) free of 954 GB
Total RAM: 4023 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:37:55, on 25.8.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Program Files\trend micro\Malandru.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Alienware Fusion Service (AlienFusionService) - Alienware - C:\Program Files\Alienware\Command Center\AlienFusionService.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9239 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx

C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
C:\WINDOWS\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
dashost.exe {f5324580-5df3-425b-ab298b8d98201de8}
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
taskeng.exe {301706EB-2CFA-4A59-B0F7-55F00DE84E9D}
C:\WINDOWS\Explorer.EXE

C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 620 624 632 8192 628
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\Alienware\Command Center\AWCCServiceController.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
"C:\Program Files\Alienware\Command Center\ThermalController.exe" /auto
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3430415612-4256178322-727819506-10012_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3430415612-4256178322-727819506-10012 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe" 131110
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe" 131110
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Users\Malandru\Desktop\RSITx64.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Malandru\AppData\Roaming\Mozilla\Firefox\Profiles\itx837ye.default-1440334316092

prefs.js - "browser.startup.homepage" - "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-23 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-23 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"Command Center Controllers"=C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [2012-06-18 12656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-08-04 402632]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Speech Recognition]
C:\Windows\Speech\Common\sapisvr.exe [2015-07-10 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Malandru\AppData\Roaming\uTorrent\uTorrent.exe [2015-08-01 1693024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Malandru^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2013-06-25 246472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-25 6111824]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files (x86)\Stardock\MyColors\fast64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-25 19:04:08 ----D---- C:\AdwCleaner
2015-08-25 18:28:06 ----D---- C:\Program Files\trend micro
2015-08-25 18:28:05 ----D---- C:\rsit
2015-08-23 19:10:58 ----A---- C:\WINDOWS\SYSWOW64\subinacl.exe
2015-08-23 17:58:06 ----D---- C:\Program Files (x86)\Google
2015-08-23 15:25:48 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-08-23 15:25:44 ----A---- C:\WINDOWS\avastSS.scr
2015-08-22 16:23:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-08-22 16:23:21 ----D---- C:\ProgramData\Malwarebytes
2015-08-22 16:23:21 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2015-08-22 02:38:52 ----D---- C:\Program Files (x86)\ATI Technologies
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantle64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-08-22 02:32:45 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-08-22 02:32:44 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-08-22 02:32:35 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-08-22 02:32:30 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-08-22 02:32:28 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-08-22 02:32:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-08-22 02:32:21 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-08-22 02:32:18 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdmantle32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdmantle64.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-08-19 18:06:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-08-19 18:06:39 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-08-19 18:06:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 18:06:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-08-19 18:06:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-08-19 18:06:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\tquery.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\explorer.exe
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-08-19 18:06:26 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-08-19 18:06:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\InputService.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 18:06:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-08-18 17:44:40 ----A---- C:\WINDOWS\IsUninst.exe
2015-08-18 17:44:39 ----RA---- C:\WINDOWS\SYSWOW64\MafiaSetup.exe
2015-08-15 15:23:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-12 00:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:26 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-12 00:06:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-08-12 00:06:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 00:06:06 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-08-12 00:06:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\mf.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\notepad.exe
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\mfps.dll
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-08-12 00:05:58 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-08-12 00:05:58 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-09 22:37:50 ----D---- C:\Users\Malandru\AppData\Roaming\AMD
2015-08-06 17:47:12 ----D---- C:\WINDOWS\system32\SleepStudy
2015-08-06 02:38:43 ----A---- C:\WINDOWS\system32\twinui.dll
2015-08-06 02:38:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-06 02:38:35 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-08-06 02:38:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-06 02:38:27 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\winmde.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-08-06 02:38:22 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\provengine.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-08-04 01:42:21 ----SHD---- C:\Recovery
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\bcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winresume.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winload.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wer.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\usocore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hal.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\efscore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-08-04 01:35:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\msmq
2015-08-04 01:28:19 ----D---- C:\WINDOWS\system32\BestPractices
2015-08-04 01:28:19 ----D---- C:\Program Files\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\Program Files\MSBuild
2015-08-04 01:28:19 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\inetpub
2015-08-04 01:28:19 ----AD---- C:\Program Files (x86)\MSBuild
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:19:53 ----D---- C:\ProgramData\Microsoft OneDrive
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Šablony
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Plocha
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Dokumenty
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Data aplikací
2015-08-04 01:13:15 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-08-04 01:07:13 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-08-04 00:52:03 ----SD---- C:\Users\Malandru\AppData\Roaming\Microsoft
2015-08-04 00:50:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-04 00:50:44 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-08-04 00:49:03 ----AD---- C:\Program Files\ATI Technologies
2015-08-04 00:48:29 ----D---- C:\ProgramData\Package Cache
2015-08-04 00:48:07 ----D---- C:\Program Files\Realtek
2015-08-04 00:48:06 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-08-04 00:47:52 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-08-04 00:47:44 ----D---- C:\Program Files\AMD
2015-08-04 00:45:38 ----D---- C:\WINDOWS\Prefetch
2015-08-04 00:44:23 ----ASH---- C:\swapfile.sys

======List of files/folders modified in the last 1 month======

2015-08-25 20:36:36 ----D---- C:\WINDOWS\Temp
2015-08-25 20:36:36 ----D---- C:\WINDOWS\System32
2015-08-25 20:35:25 ----D---- C:\WINDOWS\system32\sru
2015-08-25 19:38:01 ----D---- C:\WINDOWS\INF
2015-08-25 19:33:13 ----D---- C:\Windows
2015-08-25 19:32:00 ----D---- C:\WINDOWS\system32\log
2015-08-25 18:28:06 ----RD---- C:\Program Files
2015-08-25 17:49:24 ----D---- C:\WINDOWS\rescache
2015-08-25 17:23:22 ----SHD---- C:\System Volume Information
2015-08-25 17:11:05 ----D---- C:\WINDOWS\Microsoft.NET
2015-08-25 16:05:07 ----D---- C:\WINDOWS\AppReadiness
2015-08-25 16:05:06 ----HD---- C:\Program Files\WindowsApps
2015-08-23 23:58:54 ----D---- C:\WINDOWS\SoftwareDistribution
2015-08-23 19:36:12 ----RD---- C:\Program Files (x86)
2015-08-23 19:10:58 ----D---- C:\WINDOWS\SysWOW64
2015-08-23 18:03:01 ----SHD---- C:\WINDOWS\Installer
2015-08-23 17:58:08 ----D---- C:\WINDOWS\Tasks
2015-08-23 17:58:08 ----D---- C:\WINDOWS\system32\Tasks
2015-08-23 15:47:30 ----D---- C:\Users\Malandru\AppData\Roaming\vlc
2015-08-23 15:32:24 ----D---- C:\WINDOWS\system32\WDI
2015-08-23 15:27:43 ----D---- C:\WINDOWS\system32\drivers
2015-08-23 13:54:59 ----HD---- C:\ProgramData
2015-08-22 17:01:02 ----D---- C:\Users\Malandru\AppData\Roaming\uTorrent
2015-08-22 16:30:29 ----D---- C:\Users\Malandru\AppData\Roaming\Adobe
2015-08-22 16:22:04 ----D---- C:\ProgramData\Adobe
2015-08-22 16:21:46 ----D---- C:\Program Files\Common Files
2015-08-22 16:21:16 ----D---- C:\Program Files (x86)\Adobe
2015-08-22 15:32:05 ----D---- C:\WINDOWS\system32\config
2015-08-22 15:26:29 ----D---- C:\WINDOWS\WinSxS
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\appraiser
2015-08-22 15:22:27 ----RD---- C:\WINDOWS\DevicesFlow
2015-08-22 15:22:27 ----D---- C:\WINDOWS\AppPatch
2015-08-22 15:22:26 ----D---- C:\WINDOWS\system32\DriverStore
2015-08-22 02:36:14 ----D---- C:\AMD
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-08-22 02:32:45 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-08-21 18:40:30 ----D---- C:\Users\Malandru\AppData\Roaming\DAEMON Tools Lite
2015-08-21 18:39:50 ----D---- C:\WINDOWS\debug
2015-08-20 02:17:16 ----D---- C:\WINDOWS\CbsTemp
2015-08-20 02:17:12 ----RD---- C:\WINDOWS\assembly
2015-08-19 18:01:23 ----D---- C:\WINDOWS\system32\catroot2
2015-08-18 18:54:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\cs-CZ
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\oobe
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-08-18 18:52:17 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpwsockx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpmodemx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplayx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplaysvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-08-12 06:56:04 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2015-08-12 06:16:14 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 06:16:14 ----A---- C:\WINDOWS\win.ini
2015-08-12 06:15:28 ----D---- C:\WINDOWS\system32\MRT
2015-08-12 06:11:22 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-11 01:15:50 ----SHD---- C:\$Recycle.Bin
2015-08-09 22:32:26 ----RSD---- C:\WINDOWS\Fonts
2015-08-09 20:27:11 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-09 20:27:09 ----D---- C:\WINDOWS\Provisioning
2015-08-09 20:27:09 ----D---- C:\Program Files\Internet Explorer
2015-08-09 20:27:09 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-09 20:27:08 ----D---- C:\WINDOWS\OCR
2015-08-08 17:38:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-08-06 17:44:45 ----D---- C:\WINDOWS\Logs
2015-08-04 21:46:37 ----D---- C:\Users\Malandru\AppData\Roaming\Identities
2015-08-04 16:13:10 ----SD---- C:\ProgramData\Microsoft
2015-08-04 04:09:23 ----D---- C:\WINDOWS\appcompat
2015-08-04 03:30:04 ----D---- C:\WINDOWS\system32\restore
2015-08-04 02:12:55 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-08-04 01:45:35 ----D---- C:\Program Files (x86)\Common Files
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Boot
2015-08-04 01:35:22 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\system32\F12
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\en
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\winrm
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\WCN
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\slmgr
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\migwiz
2015-08-04 01:35:18 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-08-04 01:35:18 ----D---- C:\WINDOWS\system32\en
2015-08-04 01:35:18 ----D---- C:\WINDOWS\servicing
2015-08-04 01:35:18 ----D---- C:\WINDOWS\en-US
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Journal
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Defender
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\inetsrv
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-08-04 01:28:11 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-08-04 01:28:07 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-08-04 01:28:03 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-08-04 01:28:01 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-08-04 01:17:19 ----RD---- C:\WINDOWS\PurchaseDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\PrintDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\MiracastView
2015-08-04 01:16:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-08-04 01:14:51 ----D---- C:\Program Files\Windows NT
2015-08-04 01:13:49 ----D---- C:\WINDOWS\Registration
2015-08-04 01:13:13 ----D---- C:\WINDOWS\system32\drivers\etc
2015-08-04 01:13:07 ----D---- C:\WINDOWS\system32\LogFiles
2015-08-04 01:13:05 ----RSD---- C:\WINDOWS\Media
2015-08-04 01:12:06 ----D---- C:\WINDOWS\system32\spool
2015-08-04 01:11:18 ----D---- C:\WINDOWS\system32\wbem
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\sv-SE
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pt-BR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pl-PL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nl-NL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nb-NO
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\it-IT
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\fr-FR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\es-ES
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\el-GR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\de-DE
2015-08-04 01:02:45 ----D---- C:\WINDOWS\system32\da-DK
2015-08-04 01:02:44 ----D---- C:\WINDOWS\ShellNew
2015-08-04 01:02:43 ----D---- C:\WINDOWS\en
2015-08-04 01:02:43 ----D---- C:\WINDOWS\cs
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\OEM
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-TW
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-HK
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-CN
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\wfp
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\tr-TR
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\SPReview
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\ru-RU
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\pt-PT
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\OEM
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\NDF
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\migration
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ko-KR
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ja-JP
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\IME
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\hu-HU
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\fi-FI
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-08-04 00:57:21 ----D---- C:\WINDOWS\schemas
2015-08-04 00:57:21 ----D---- C:\WINDOWS\PolicyDefinitions
2015-08-04 00:57:12 ----D---- C:\WINDOWS\IME
2015-08-04 00:57:10 ----D---- C:\WINDOWS\ehome
2015-08-04 00:57:10 ----D---- C:\WINDOWS\DigitalLocker
2015-08-04 00:57:09 ----RD---- C:\Users
2015-08-04 00:57:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-08-04 00:57:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-04 00:57:01 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-04 00:57:00 ----D---- C:\Program Files (x86)\AMD AVT
2015-08-04 00:56:59 ----SHD---- C:\Program Files\Windows Sidebar
2015-08-04 00:56:59 ----D---- C:\Program Files\Windows Mail
2015-08-04 00:56:59 ----D---- C:\Program Files\Microsoft Games
2015-08-04 00:56:59 ----D---- C:\Program Files\DVD Maker
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\System
2015-08-04 00:56:59 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-08-04 00:54:14 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-08-04 00:53:26 ----D---- C:\WINDOWS\system32\Recovery
2015-08-04 00:50:24 ----D---- C:\WINDOWS\system32\Sysprep
2015-08-04 00:17:37 ----RASH---- C:\BOOTSECT.BAK
2015-08-04 00:17:31 ----SHD---- C:\Boot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-08-23 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-08-23 274808]
R0 iaStor;@oem1.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-03-03 540696]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-08-23 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-08-23 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-08-23 447944]
R1 dtsoftbus01;@oem0.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-21 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-08-23 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-08-23 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-08-23 150672]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-08-22 21632992]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-08-22 675296]
R3 AtiHDAudioService;@oem11.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-04 175104]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-04 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-04 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\System32\drivers\usb8023x.sys [2015-07-10 22016]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-04 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-08-22 256992]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-23 146600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-04 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 AlienFusionService;Alienware Fusion Service; C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-06-18 14704]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-15 149160]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-06-15 1997168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-04 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-04-14 836288]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc_Session1;Přístup k uživatelským datům_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]

-----------------EOF-----------------

[Rudy]

OK. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]/64
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]/64

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Před skenem vypněte antivir a po něm restartujte PC. Dejte nový log RSIT.

[Malandru]

All processes killed
========== FILES ==========
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== REGISTRY ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default.migrated

User: Malandru
->Temp folder emptied: 22951919 bytes
->Temporary Internet Files folder emptied: 7538078 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 64117343 bytes
->Google Chrome cache emptied: 12969078 bytes
->Flash cache emptied: 1681 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4870452 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 107,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Default.migrated

User: Malandru
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 08252015_211023

Files moved on Reboot...
C:\Users\Malandru\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...



-------------------------------------------------------------------------------------



Logfile of random's system information tool 1.10 (written by random/random)
Run by Malandru at 2015-08-25 21:13:50
Microsoft Windows 10 Home
System drive C: has 717 GB (75%) free of 954 GB
Total RAM: 4023 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:13:53, on 25.8.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
C:\Program Files\trend micro\Malandru.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Alienware Fusion Service (AlienFusionService) - Alienware - C:\Program Files\Alienware\Command Center\AlienFusionService.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Unknown owner - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9165 bytes

======Listing Processes======







winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k GPSvcGroup
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork

dashost.exe {f40b4681-0120-46db-b1559984e236d517}
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\svchost.exe -k apphost
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\svchost.exe -k iissvcs
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe" -NetMsmqActivator
C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
C:\WINDOWS\System32\alg.exe
sihost.exe
taskeng.exe {1B680F55-0DF9-4999-8F1B-FEA065A70E46}
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\WINDOWS\Explorer.EXE

C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe"
"C:\Program Files\Alienware\Command Center\AWCCServiceController.exe"
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe"
"C:\Program Files\Alienware\Command Center\ThermalController.exe" /auto
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe" 131452
"C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe" 131452
\??\C:\WINDOWS\system32\conhost.exe 0x4
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 624 628 636 8192 632
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Malandru\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Malandru\AppData\Roaming\Mozilla\Firefox\Profiles\itx837ye.default-1440334316092

prefs.js - "browser.startup.homepage" - "www.google.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-23 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-23 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"Command Center Controllers"=C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [2012-06-18 12656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-08-04 402632]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Malandru\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"=C:\WINDOWS\system32\cmd.exe [2015-07-10 232448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 108144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Speech Recognition]
C:\Windows\Speech\Common\sapisvr.exe [2015-07-10 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Malandru\AppData\Roaming\uTorrent\uTorrent.exe [2015-08-01 1693024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Malandru^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk]
C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2013-06-25 246472]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-03 767176]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-25 6111824]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-03-03 284696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WB]
C:\Program Files (x86)\Stardock\MyColors\fast64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-08-25 21:10:23 ----D---- C:\_OTM
2015-08-25 19:04:08 ----D---- C:\AdwCleaner
2015-08-25 18:28:06 ----D---- C:\Program Files\trend micro
2015-08-25 18:28:05 ----D---- C:\rsit
2015-08-23 19:10:58 ----A---- C:\WINDOWS\SYSWOW64\subinacl.exe
2015-08-23 17:58:06 ----D---- C:\Program Files (x86)\Google
2015-08-23 15:25:48 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-08-23 15:25:44 ----A---- C:\WINDOWS\avastSS.scr
2015-08-22 16:23:30 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-08-22 16:23:21 ----D---- C:\ProgramData\Malwarebytes
2015-08-22 16:23:21 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mwac.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2015-08-22 16:23:21 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2015-08-22 02:38:52 ----D---- C:\Program Files (x86)\ATI Technologies
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantleaxl32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\mantle32.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\hsa-thunk.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\SYSWOW64\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantleaxl64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\mantle64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\hsa-thunk64.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\detoured.dll
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\clinfo.exe
2015-08-22 02:32:45 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2015-08-22 02:32:44 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atitmm64.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODE.exe
2015-08-22 02:32:39 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2015-08-22 02:32:35 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atio6axx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimuixx.dll
2015-08-22 02:32:35 ----A---- C:\WINDOWS\system32\atimpc64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\SYSWOW64\atieah32.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6txx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieah64.exe
2015-08-22 02:32:30 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\atidemgy.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2015-08-22 02:32:29 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2015-08-22 02:32:28 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\SYSWOW64\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\OpenCL.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2015-08-22 02:32:26 ----A---- C:\WINDOWS\system32\amdxc64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdxc32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2015-08-22 02:32:25 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2015-08-22 02:32:22 ----A---- C:\WINDOWS\system32\amdocl64.dll
2015-08-22 02:32:21 ----A---- C:\WINDOWS\system32\amdocl12cl64.dll
2015-08-22 02:32:18 ----A---- C:\WINDOWS\SYSWOW64\amdocl12cl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\SYSWOW64\amdmmcl.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmmcl6.dll
2015-08-22 02:32:15 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdmantle32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdmantle64.dll
2015-08-22 02:32:14 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\SYSWOW64\amdgfxinfo32.dll
2015-08-22 02:32:13 ----A---- C:\WINDOWS\system32\amdgfxinfo64.dll
2015-08-19 18:06:41 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-08-19 18:06:39 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-08-19 18:06:38 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-19 18:06:35 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-08-19 18:06:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-08-19 18:06:32 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-19 18:06:30 ----A---- C:\WINDOWS\system32\tquery.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-08-19 18:06:29 ----A---- C:\WINDOWS\explorer.exe
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-19 18:06:28 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-08-19 18:06:27 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-08-19 18:06:26 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-08-19 18:06:26 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-08-19 18:06:25 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\InputService.dll
2015-08-19 18:06:24 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-08-19 18:06:23 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-19 18:06:22 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-08-19 18:06:21 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-08-19 18:06:20 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\directmanipulation.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-19 18:06:19 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\SYSWOW64\directmanipulation.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-08-19 18:06:18 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-08-19 18:06:17 ----A---- C:\WINDOWS\system32\LocationPermissions.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2015-08-19 18:06:16 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-19 18:06:15 ----A---- C:\WINDOWS\system32\MbaeParserTask.exe
2015-08-19 18:06:14 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\syncutil.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:14 ----A---- C:\WINDOWS\system32\LocationGeofences.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2015-08-19 18:06:13 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-08-19 18:06:12 ----A---- C:\WINDOWS\SYSWOW64\OneDriveSettingSyncProvider.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\wuautoappupdate.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\tetheringclient.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-08-19 18:06:12 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2015-08-19 18:06:11 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-08-19 18:06:10 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-08-18 17:44:40 ----A---- C:\WINDOWS\IsUninst.exe
2015-08-18 17:44:39 ----RA---- C:\WINDOWS\SYSWOW64\MafiaSetup.exe
2015-08-15 15:23:49 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-12 00:06:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:26 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-12 00:06:14 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-12 00:06:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-08-12 00:06:12 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-08-12 00:06:10 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-12 00:06:06 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-08-12 00:06:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-12 00:06:05 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\mf.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-08-12 00:06:04 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-08-12 00:06:03 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-08-12 00:06:02 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\notepad.exe
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-08-12 00:06:01 ----A---- C:\WINDOWS\notepad.exe
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-12 00:06:00 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\mfps.dll
2015-08-12 00:05:59 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-08-12 00:05:58 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-08-12 00:05:58 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-12 00:05:57 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-08-12 00:05:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-09 22:37:50 ----D---- C:\Users\Malandru\AppData\Roaming\AMD
2015-08-06 17:47:12 ----D---- C:\WINDOWS\system32\SleepStudy
2015-08-06 02:38:43 ----A---- C:\WINDOWS\system32\twinui.dll
2015-08-06 02:38:38 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-06 02:38:36 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-06 02:38:35 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-08-06 02:38:32 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-06 02:38:30 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-08-06 02:38:28 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-06 02:38:27 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\winmde.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-08-06 02:38:26 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-08-06 02:38:25 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-06 02:38:24 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-08-06 02:38:23 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-08-06 02:38:22 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-08-06 02:38:22 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-08-06 02:38:21 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-08-06 02:38:20 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-08-06 02:38:19 ----A---- C:\WINDOWS\system32\provengine.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-06 02:38:18 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-08-06 02:38:17 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-06 02:38:16 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-08-06 02:38:15 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-06 02:38:14 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-06 02:38:13 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-06 02:38:12 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-08-04 01:42:21 ----SHD---- C:\Recovery
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-04 01:39:07 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\wmp.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-04 01:39:06 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\stobject.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\calc.exe
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\bcd.dll
2015-08-04 01:39:05 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winresume.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winload.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wininet.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\wer.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\usocore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\mos.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\hal.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\efscore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-08-04 01:38:54 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-08-04 01:38:53 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-08-04 01:35:48 ----A---- C:\WINDOWS\SYSWOW64\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\SYSWOW64\NlsData0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\prm0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsLexicons0009.dll
2015-08-04 01:35:47 ----A---- C:\WINDOWS\system32\NlsData0009.dll
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\BestPractices
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\msmq
2015-08-04 01:28:19 ----D---- C:\WINDOWS\system32\BestPractices
2015-08-04 01:28:19 ----D---- C:\Program Files\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\Program Files\MSBuild
2015-08-04 01:28:19 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-08-04 01:28:19 ----D---- C:\inetpub
2015-08-04 01:28:19 ----AD---- C:\Program Files (x86)\MSBuild
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-08-04 01:27:35 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-04 01:27:32 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-04 01:19:53 ----D---- C:\ProgramData\Microsoft OneDrive
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Šablony
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Plocha
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Oblíbené položky
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Dokumenty
2015-08-04 01:14:51 ----SHD---- C:\ProgramData\Data aplikací
2015-08-04 01:13:15 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-08-04 01:07:13 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\SpeechEngines
2015-08-04 00:52:03 ----SD---- C:\Users\Malandru\AppData\Roaming\Microsoft
2015-08-04 00:50:51 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-04 00:50:44 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-08-04 00:49:03 ----AD---- C:\Program Files\ATI Technologies
2015-08-04 00:48:29 ----D---- C:\ProgramData\Package Cache
2015-08-04 00:48:07 ----D---- C:\Program Files\Realtek
2015-08-04 00:48:06 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2015-08-04 00:47:52 ----D---- C:\Program Files\Common Files\ATI Technologies
2015-08-04 00:47:44 ----D---- C:\Program Files\AMD
2015-08-04 00:45:38 ----D---- C:\WINDOWS\Prefetch
2015-08-04 00:44:23 ----ASH---- C:\swapfile.sys

======List of files/folders modified in the last 1 month======

2015-08-25 21:12:16 ----D---- C:\WINDOWS\Temp
2015-08-25 21:12:08 ----D---- C:\WINDOWS\System32
2015-08-25 21:11:07 ----D---- C:\WINDOWS\system32\sru
2015-08-25 21:10:49 ----D---- C:\Windows
2015-08-25 21:10:23 ----D---- C:\WINDOWS\Tasks
2015-08-25 20:40:34 ----D---- C:\WINDOWS\INF
2015-08-25 19:32:00 ----D---- C:\WINDOWS\system32\log
2015-08-25 18:28:06 ----RD---- C:\Program Files
2015-08-25 17:49:24 ----D---- C:\WINDOWS\rescache
2015-08-25 17:23:22 ----SHD---- C:\System Volume Information
2015-08-25 17:11:05 ----D---- C:\WINDOWS\Microsoft.NET
2015-08-25 16:05:07 ----D---- C:\WINDOWS\AppReadiness
2015-08-25 16:05:06 ----HD---- C:\Program Files\WindowsApps
2015-08-23 23:58:54 ----D---- C:\WINDOWS\SoftwareDistribution
2015-08-23 19:36:12 ----RD---- C:\Program Files (x86)
2015-08-23 19:10:58 ----D---- C:\WINDOWS\SysWOW64
2015-08-23 18:03:01 ----SHD---- C:\WINDOWS\Installer
2015-08-23 17:58:08 ----D---- C:\WINDOWS\system32\Tasks
2015-08-23 15:47:30 ----D---- C:\Users\Malandru\AppData\Roaming\vlc
2015-08-23 15:32:24 ----D---- C:\WINDOWS\system32\WDI
2015-08-23 15:27:43 ----D---- C:\WINDOWS\system32\drivers
2015-08-23 13:54:59 ----HD---- C:\ProgramData
2015-08-22 17:01:02 ----D---- C:\Users\Malandru\AppData\Roaming\uTorrent
2015-08-22 16:30:29 ----D---- C:\Users\Malandru\AppData\Roaming\Adobe
2015-08-22 16:22:04 ----D---- C:\ProgramData\Adobe
2015-08-22 16:21:46 ----D---- C:\Program Files\Common Files
2015-08-22 16:21:16 ----D---- C:\Program Files (x86)\Adobe
2015-08-22 15:32:05 ----D---- C:\WINDOWS\system32\config
2015-08-22 15:26:29 ----D---- C:\WINDOWS\WinSxS
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-22 15:22:28 ----D---- C:\WINDOWS\system32\appraiser
2015-08-22 15:22:27 ----RD---- C:\WINDOWS\DevicesFlow
2015-08-22 15:22:27 ----D---- C:\WINDOWS\AppPatch
2015-08-22 15:22:26 ----D---- C:\WINDOWS\system32\DriverStore
2015-08-22 02:36:14 ----D---- C:\AMD
2015-08-22 02:33:02 ----A---- C:\WINDOWS\system32\coinst_15.20.dll
2015-08-22 02:32:45 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2015-08-22 02:32:43 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiumd64.dll
2015-08-22 02:32:41 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atieclxx.exe
2015-08-22 02:32:32 ----A---- C:\WINDOWS\system32\atidxx64.dll
2015-08-22 02:32:30 ----A---- C:\WINDOWS\system32\aticfx64.dll
2015-08-21 18:40:30 ----D---- C:\Users\Malandru\AppData\Roaming\DAEMON Tools Lite
2015-08-21 18:39:50 ----D---- C:\WINDOWS\debug
2015-08-20 02:17:16 ----D---- C:\WINDOWS\CbsTemp
2015-08-20 02:17:12 ----RD---- C:\WINDOWS\assembly
2015-08-19 18:01:23 ----D---- C:\WINDOWS\system32\catroot2
2015-08-18 18:54:10 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\en-US
2015-08-18 18:52:20 ----D---- C:\WINDOWS\system32\cs-CZ
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\oobe
2015-08-18 18:52:18 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-08-18 18:52:17 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnsvr.exe
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnathlp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\SYSWOW64\dpnaddr.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnet.dll
2015-08-18 18:51:20 ----A---- C:\WINDOWS\system32\dpnathlp.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpwsockx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dpmodemx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplayx.dll
2015-08-18 18:51:19 ----A---- C:\WINDOWS\SYSWOW64\dplaysvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2015-08-18 18:51:19 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2015-08-12 06:56:04 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2015-08-12 06:16:14 ----D---- C:\ProgramData\Microsoft Help
2015-08-12 06:16:14 ----A---- C:\WINDOWS\win.ini
2015-08-12 06:15:28 ----D---- C:\WINDOWS\system32\MRT
2015-08-12 06:11:22 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-11 01:15:50 ----SHD---- C:\$Recycle.Bin
2015-08-09 22:32:26 ----RSD---- C:\WINDOWS\Fonts
2015-08-09 20:27:11 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-09 20:27:09 ----D---- C:\WINDOWS\Provisioning
2015-08-09 20:27:09 ----D---- C:\Program Files\Internet Explorer
2015-08-09 20:27:09 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-09 20:27:08 ----D---- C:\WINDOWS\OCR
2015-08-08 17:38:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-08-06 17:44:45 ----D---- C:\WINDOWS\Logs
2015-08-04 21:46:37 ----D---- C:\Users\Malandru\AppData\Roaming\Identities
2015-08-04 16:13:10 ----SD---- C:\ProgramData\Microsoft
2015-08-04 04:09:23 ----D---- C:\WINDOWS\appcompat
2015-08-04 03:30:04 ----D---- C:\WINDOWS\system32\restore
2015-08-04 02:12:55 ----D---- C:\WINDOWS\system32\WinBioDatabase
2015-08-04 01:45:35 ----D---- C:\Program Files (x86)\Common Files
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-08-04 01:40:05 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Dism
2015-08-04 01:40:05 ----D---- C:\WINDOWS\system32\Boot
2015-08-04 01:35:22 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-08-04 01:35:22 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-08-04 01:35:21 ----SD---- C:\WINDOWS\system32\F12
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\en
2015-08-04 01:35:21 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\winrm
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\WCN
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\slmgr
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-08-04 01:35:21 ----D---- C:\WINDOWS\system32\migwiz
2015-08-04 01:35:18 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-08-04 01:35:18 ----D---- C:\WINDOWS\system32\en
2015-08-04 01:35:18 ----D---- C:\WINDOWS\servicing
2015-08-04 01:35:18 ----D---- C:\WINDOWS\en-US
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Journal
2015-08-04 01:35:18 ----D---- C:\Program Files\Windows Defender
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-04 01:35:18 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\MUI
2015-08-04 01:28:20 ----D---- C:\WINDOWS\system32\inetsrv
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqsnap.dll
2015-08-04 01:28:13 ----A---- C:\WINDOWS\SYSWOW64\mqcertui.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\wamregps.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisRtl.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\iisreset.exe
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\ahadmin.dll
2015-08-04 01:28:12 ----A---- C:\WINDOWS\system32\admwprox.dll
2015-08-04 01:28:11 ----A---- C:\WINDOWS\system32\iisrstap.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\wamregps.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\iisRtl.dll
2015-08-04 01:28:09 ----A---- C:\WINDOWS\SYSWOW64\admwprox.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisrstap.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\iisreset.exe
2015-08-04 01:28:08 ----A---- C:\WINDOWS\SYSWOW64\ahadmin.dll
2015-08-04 01:28:08 ----A---- C:\WINDOWS\system32\mqrt.dll
2015-08-04 01:28:07 ----A---- C:\WINDOWS\SYSWOW64\mqoa.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqutil.dll
2015-08-04 01:28:06 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqsnap.dll
2015-08-04 01:28:04 ----A---- C:\WINDOWS\system32\mqcertui.dll
2015-08-04 01:28:03 ----A---- C:\WINDOWS\system32\mqoa.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\SYSWOW64\mqrt.dll
2015-08-04 01:28:02 ----A---- C:\WINDOWS\system32\mqqm.dll
2015-08-04 01:28:01 ----A---- C:\WINDOWS\SYSWOW64\mqutil.dll
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqsvc.exe
2015-08-04 01:28:00 ----A---- C:\WINDOWS\system32\mqbkup.exe
2015-08-04 01:17:19 ----RD---- C:\WINDOWS\PurchaseDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\PrintDialog
2015-08-04 01:17:18 ----RD---- C:\WINDOWS\MiracastView
2015-08-04 01:16:56 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-08-04 01:14:51 ----D---- C:\Program Files\Windows NT
2015-08-04 01:13:49 ----D---- C:\WINDOWS\Registration
2015-08-04 01:13:13 ----D---- C:\WINDOWS\system32\drivers\etc
2015-08-04 01:13:07 ----D---- C:\WINDOWS\system32\LogFiles
2015-08-04 01:13:05 ----RSD---- C:\WINDOWS\Media
2015-08-04 01:12:06 ----D---- C:\WINDOWS\system32\spool
2015-08-04 01:11:18 ----D---- C:\WINDOWS\system32\wbem
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2015-08-04 01:02:47 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\vbox
2015-08-04 01:02:47 ----D---- C:\WINDOWS\system32\sv-SE
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pt-BR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\pl-PL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nl-NL
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\nb-NO
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\it-IT
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\fr-FR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\es-ES
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\el-GR
2015-08-04 01:02:46 ----D---- C:\WINDOWS\system32\de-DE
2015-08-04 01:02:45 ----D---- C:\WINDOWS\system32\da-DK
2015-08-04 01:02:44 ----D---- C:\WINDOWS\ShellNew
2015-08-04 01:02:43 ----D---- C:\WINDOWS\en
2015-08-04 01:02:43 ----D---- C:\WINDOWS\cs
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2015-08-04 00:58:33 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\OEM
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\migration
2015-08-04 00:58:32 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\IME
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2015-08-04 00:58:31 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-TW
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-HK
2015-08-04 00:58:27 ----D---- C:\WINDOWS\system32\zh-CN
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\wfp
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\tr-TR
2015-08-04 00:58:26 ----D---- C:\WINDOWS\system32\SPReview
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\ru-RU
2015-08-04 00:58:24 ----D---- C:\WINDOWS\system32\pt-PT
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\OEM
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\NDF
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\migration
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ko-KR
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\ja-JP
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\IME
2015-08-04 00:58:23 ----D---- C:\WINDOWS\system32\hu-HU
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\fi-FI
2015-08-04 00:58:22 ----D---- C:\WINDOWS\system32\EventProviders
2015-08-04 00:57:21 ----D---- C:\WINDOWS\schemas
2015-08-04 00:57:21 ----D---- C:\WINDOWS\PolicyDefinitions
2015-08-04 00:57:12 ----D---- C:\WINDOWS\IME
2015-08-04 00:57:10 ----D---- C:\WINDOWS\ehome
2015-08-04 00:57:10 ----D---- C:\WINDOWS\DigitalLocker
2015-08-04 00:57:09 ----RD---- C:\Users
2015-08-04 00:57:02 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2015-08-04 00:57:02 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-04 00:57:01 ----D---- C:\Program Files (x86)\Microsoft.NET
2015-08-04 00:57:00 ----D---- C:\Program Files (x86)\AMD AVT
2015-08-04 00:56:59 ----SHD---- C:\Program Files\Windows Sidebar
2015-08-04 00:56:59 ----D---- C:\Program Files\Windows Mail
2015-08-04 00:56:59 ----D---- C:\Program Files\Microsoft Games
2015-08-04 00:56:59 ----D---- C:\Program Files\DVD Maker
2015-08-04 00:56:59 ----D---- C:\Program Files\Common Files\System
2015-08-04 00:56:59 ----AD---- C:\Program Files\Common Files\microsoft shared
2015-08-04 00:54:14 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-08-04 00:53:26 ----D---- C:\WINDOWS\system32\Recovery
2015-08-04 00:50:24 ----D---- C:\WINDOWS\system32\Sysprep
2015-08-04 00:17:37 ----RASH---- C:\BOOTSECT.BAK
2015-08-04 00:17:31 ----SHD---- C:\Boot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-08-23 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-08-23 274808]
R0 iaStor;@oem1.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2010-03-03 540696]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-08-23 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-08-23 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-08-23 447944]
R1 dtsoftbus01;@oem0.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-21 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-08-23 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-08-23 90968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-08-22 21632992]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-08-22 675296]
R3 AtiHDAudioService;@oem11.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2015-05-28 102912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2015-08-04 175104]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-07-10 587264]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-08-23 150672]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-04 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-04 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\WINDOWS\System32\drivers\usb8023x.sys [2015-07-10 22016]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-04 67072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-08-22 256992]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-23 146600]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2015-08-04 26112]
R2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 UserManager;@%systemroot%\system32\usermgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 AlienFusionService;Alienware Fusion Service; C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2012-06-18 14704]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-03 13336]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-07-10 135848]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12 269000]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-23 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 50942144]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-15 149160]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-06-15 1997168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-04 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-04-14 836288]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-14001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UserDataSvc_Session1;Přístup k uživatelským datům_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S4 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-07-10 50352]

-----------------EOF-----------------

[Rudy]

Smazáno. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC. Nastala nějaká změna?

[Malandru]

Ano změna, oznamovací oblast v pravo dole se zasekla. Hlasí mi to Windows Problem reporting. (WerFault.exe) ve správci uloh.
Jinak zkousel jsem online hru a nic porad to same. jinak internetove stranky se zatim nacitaji dobre,
taky mam aktivne: schvost 14x,nemohu se dostat do nabidky start

[Rudy]

Svchost může být spuštěn vícekrát, je to správa síť. služeb a na každou z nich musí být zvlášť spuštěn. Problém máte od upgradu na win10?

[Malandru]

Ne e, vše fungovalo jak ma ale od minuleho patku to hapruje nevím proc, mozna aktualizace windows 10 nebo nejaky virus
co udelame stim startem a tim Wer?

[Rudy]

OK. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

[Malandru]

Ok dostal jsem se na ty stranky , ale presmerovalo me to na https://www.malwarebytes.org/antimalware/premium/ co ted?