Logfile of random's system information tool 1.10 (written by random/random)
Run by Kája at 2015-08-19 17:38:22
Microsoft Windows 10 Home
System drive C: has 739 GB (81%) free of 911 GB
Total RAM: 3988 MB (36% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:38:27, on 19. 8. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\Kája\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\Kája\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Kája.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [CLMLServer_For_P2G8] "C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
O4 - HKLM\..\Run: [CLVirtualDrive] "C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe" /R
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Kája\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Kája\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCSDK - Unknown owner - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: Dropbox Update Service (dbupdate) (dbupdate) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: Dropbox Update Service (dbupdatem) (dbupdatem) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel Bluetooth Service (iBtSiva) - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Maxthon Core Update Service (MaxthonUpdateSvc) - Maxthon - C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10263 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-55dd7b5b-50ad-441a-86cf-f1698a4c45f2 -SystemEventPortName:HostProcess-4a028a10-41a4-4697-9659-085835e480e3 -IoCancelEventPortName:HostProcess-cc41c4c1-b1c6-4107-8b78-fa21fbc9d014 -NonStateChangingEventPortName:HostProcess-9d50afe7-246d-4166-a6b6-a0539823c153 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:3bfd550b-050c-4d0a-84d7-eea3bdf9d67d -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k NetworkService
dashost.exe {b4e3fa8f-c8cb-472c-9ce355fbad0d50d3}
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
"C:\Program Files\Elantech\ETDService.exe"
C:\windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Elantech\ETDCtrl.exe"
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
sihost.exe
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\Explorer.EXE
igfxEM.exe
igfxHK.exe
igfxTray.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Windows\RTFTrack.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\lenovo\Onekey Theater\OnekeyStudio.exe" -start
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Users\Kája\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
"C:\Users\Kája\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe"
"C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5972.0.1006555790\1111807247" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,22,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0a16 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.15.4256 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"fontdrvhost.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/PermissionBubbleRollout/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.36.383670336\1131439767" --font-cache-shared-handle=5988 /prefetch:673131151
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-09606f81-0474-4fa5-98e4-d6e94353d0ea -SystemEventPortName:HostProcess-b2eec9e5-d680-49d4-892e-49cd99ca2a55 -IoCancelEventPortName:HostProcess-c7cda3b1-8278-4ac5-920f-28ab97b2bbf9 -NonStateChangingEventPortName:HostProcess-88fc8404-7d0a-4db2-99b2-bbbe7d4723bd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:7ef6b42e-f593-4f9b-8167-6b181e257f12 -DeviceGroupId:WpdFsGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.60.380888149\1384932187" --font-cache-shared-handle=3216 /prefetch:673131151
taskhostw.exe
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{A4B07E49-6567-4FB8-8D39-01920E3B2357}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.80.1911042090\1653250494" --font-cache-shared-handle=1412 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.94.24236585\204710446" --font-cache-shared-handle=5336 /prefetch:673131151
"C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe" -ServerName:SpeechRuntime
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.113.1381283580\788032473" --font-cache-shared-handle=7264 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5972.114.429012621\1955678862" --ppapi-flash-args=enable_hw_video_decode=1 --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.119.562019379\381098613" --font-cache-shared-handle=10228 /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.121.140272284\1481405772" --font-cache-shared-handle=8652 /prefetch:673131151
taskeng.exe {57ED9DD3-0DA0-4C5E-9275-790890E28E17}
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe29_ Global\UsGthrCtrlFltPipeMssGthrPipe29 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\msiexec.exe /V
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/*AutofillEnabled/Default/*AutofillFieldMetadata/Enabled/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*DomRel-Enable/enable/*EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/*NewProfileManagement/Enabled/*NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Unused_2/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PermissionBubbleRollout/Enabled/*PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledNoIdForLargePopulation/*RefreshTokenDeviceId/Enabled/*RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/*ReportCertificateErrorsOverHttp/UploadReportsOverHttp/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group6/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_99/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_01/*UMA-Uniformity-Trial-5-Percent/group_07/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/*VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-pinch-virtual-viewport --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --use-image-texture-target=3553 --channel="5972.124.1221538485\1764410783" --font-cache-shared-handle=9476 /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1932935211-4034308901-3366595270-100130_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1932935211-4034308901-3366595270-100130 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 592 596 604 8192 600
"C:\Users\Kája\Downloads\RSITx64 (1).exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\DropboxUpdateTaskMachineCore.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskMachineUA.job - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-06 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-06 559624]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-06 3233976]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2015-06-16 5060864]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-02-26 36352]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-09-05 907480]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"OnekeyStudio"=C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [2012-09-15 4196432]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2015-03-31 15813616]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2015-03-31 80880]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-07-28 53655680]
"uTorrent"=C:\Users\Kája\AppData\Roaming\uTorrent\uTorrent.exe [2015-08-03 1693024]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2015-07-10 465920]
"OneDrive"=C:\Users\Kája\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-08-06 402632]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2013-09-16 800280]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer_For_P2G8"=C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [2014-09-09 110344]
"CLVirtualDrive"=C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [2014-09-09 492808]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2015-08-06 39179912]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-06 6109776]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-08-19 17:35:57 ----D---- C:\Program Files\WinRAR
2015-08-19 17:18:01 ----SHD---- C:\Config.Msi
2015-08-19 17:12:39 ----D---- C:\Users\Kája\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
2015-08-19 17:12:37 ----D---- C:\ProgramData\Adobe
2015-08-19 12:18:01 ----SHD---- C:\$RECYCLE.BIN
2015-08-19 11:22:27 ----A---- C:\WINDOWS\zoek-delete.exe
2015-08-19 11:22:26 ----D---- C:\WINDOWS\Temp
2015-08-19 10:38:25 ----D---- C:\zoek_backup
2015-08-17 05:47:33 ----A---- C:\AdwCleaner[C2].txt
2015-08-17 05:29:32 ----A---- C:\AdwCleaner[S3].txt
2015-08-15 22:42:40 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-15 22:42:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-14 17:35:43 ----A---- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-08-14 17:35:07 ----D---- C:\ProgramData\Malwarebytes
2015-08-14 16:45:35 ----SD---- C:\WINDOWS\SYSWOW64\Microsoft
2015-08-11 21:28:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2015-08-11 21:28:27 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2015-08-11 21:28:19 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-08-11 21:28:16 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-08-11 21:28:13 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-08-11 21:28:08 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-08-11 21:28:05 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2015-08-11 21:28:03 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-08-11 21:27:58 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-11 21:27:56 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-08-11 21:27:54 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-11 21:27:52 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-08-11 21:27:50 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-08-11 21:27:47 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2015-08-11 21:27:45 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2015-08-11 21:27:45 ----A---- C:\WINDOWS\system32\mfcore.dll
2015-08-11 21:27:44 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2015-08-11 21:27:41 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-08-11 21:27:41 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2015-08-11 21:27:40 ----A---- C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-08-11 21:27:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Speech.dll
2015-08-11 21:27:39 ----A---- C:\WINDOWS\system32\DWrite.dll
2015-08-11 21:27:38 ----A---- C:\WINDOWS\SYSWOW64\RemoteNaturalLanguage.dll
2015-08-11 21:27:38 ----A---- C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-08-11 21:27:37 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-08-11 21:27:37 ----A---- C:\WINDOWS\system32\mf.dll
2015-08-11 21:27:37 ----A---- C:\WINDOWS\system32\LogonController.dll
2015-08-11 21:27:36 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2015-08-11 21:27:36 ----A---- C:\WINDOWS\system32\FntCache.dll
2015-08-11 21:27:35 ----A---- C:\WINDOWS\SYSWOW64\LogonController.dll
2015-08-11 21:27:35 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-11 21:27:34 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2015-08-11 21:27:34 ----A---- C:\WINDOWS\SYSWOW64\InputService.dll
2015-08-11 21:27:34 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-08-11 21:27:34 ----A---- C:\WINDOWS\system32\mfsvr.dll
2015-08-11 21:27:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2015-08-11 21:27:33 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-08-11 21:27:33 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-11 21:27:32 ----A---- C:\WINDOWS\system32\WWAHost.exe
2015-08-11 21:27:32 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-08-11 21:27:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2015-08-11 21:27:31 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2015-08-11 21:27:30 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2015-08-11 21:27:30 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-08-11 21:27:30 ----A---- C:\WINDOWS\system32\SubscriptionMgr.dll
2015-08-11 21:27:30 ----A---- C:\WINDOWS\system32\NetworkStatus.dll
2015-08-11 21:27:30 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-08-11 21:27:29 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2015-08-11 21:27:29 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2015-08-11 21:27:29 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2015-08-11 21:27:29 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2015-08-11 21:27:28 ----A---- C:\WINDOWS\system32\wifinetworkmanager.dll
2015-08-11 21:27:28 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2015-08-11 21:27:27 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2015-08-11 21:27:27 ----A---- C:\WINDOWS\SYSWOW64\NotificationObjFactory.dll
2015-08-11 21:27:27 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2015-08-11 21:27:27 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-08-11 21:27:27 ----A---- C:\WINDOWS\system32\NotificationObjFactory.dll
2015-08-11 21:27:27 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2015-08-11 21:27:27 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2015-08-11 21:27:26 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2015-08-11 21:27:26 ----A---- C:\WINDOWS\system32\VPNv2CSP.dll
2015-08-11 21:27:26 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2015-08-11 21:27:26 ----A---- C:\WINDOWS\system32\sysmain.dll
2015-08-11 21:27:26 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2015-08-11 21:27:26 ----A---- C:\WINDOWS\system32\configmanager2.dll
2015-08-11 21:27:26 ----A---- C:\WINDOWS\notepad.exe
2015-08-11 21:27:25 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2015-08-11 21:27:25 ----A---- C:\WINDOWS\SYSWOW64\notepad.exe
2015-08-11 21:27:25 ----A---- C:\WINDOWS\system32\ntdll.dll
2015-08-11 21:27:25 ----A---- C:\WINDOWS\system32\notepad.exe
2015-08-11 21:27:25 ----A---- C:\WINDOWS\system32\LockAppHost.exe
2015-08-11 21:27:24 ----A---- C:\WINDOWS\system32\coredpus.dll
2015-08-11 21:27:23 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2015-08-11 21:27:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2015-08-11 21:27:22 ----A---- C:\WINDOWS\system32\drivers\msgpiowin32.sys
2015-08-11 21:27:18 ----A---- C:\WINDOWS\system32\mfps.dll
2015-08-11 21:27:17 ----A---- C:\WINDOWS\system32\InputService.dll
2015-08-11 21:27:17 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2015-08-11 21:27:11 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-11 21:27:11 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-11 21:27:10 ----A---- C:\WINDOWS\system32\rdbui.dll
2015-08-11 21:27:10 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2015-08-11 21:27:09 ----A---- C:\WINDOWS\SYSWOW64\LockAppBroker.dll
2015-08-11 21:27:09 ----A---- C:\WINDOWS\system32\SharedStartModelShim.dll
2015-08-11 21:27:08 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-08-11 21:27:08 ----A---- C:\WINDOWS\system32\tileobjserver.dll
2015-08-11 21:27:08 ----A---- C:\WINDOWS\system32\SharedStartModel.dll
2015-08-11 21:27:08 ----A---- C:\WINDOWS\system32\RDXService.dll
2015-08-11 21:27:07 ----A---- C:\WINDOWS\SYSWOW64\VEEventDispatcher.dll
2015-08-11 21:27:07 ----A---- C:\WINDOWS\system32\VEEventDispatcher.dll
2015-08-11 21:27:07 ----A---- C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll
2015-08-11 21:27:06 ----A---- C:\WINDOWS\SYSWOW64\VEDataLayerHelpers.dll
2015-08-11 21:27:06 ----A---- C:\WINDOWS\system32\VEDataLayerHelpers.dll
2015-08-07 19:28:57 ----A---- C:\WINDOWS\system32\drivers\BrUsbSib.sys
2015-08-07 19:28:57 ----A---- C:\WINDOWS\system32\drivers\BrSerIb.sys
2015-08-07 19:28:30 ----A---- C:\WINDOWS\system32\BrWi209d.dll
2015-08-07 19:28:30 ----A---- C:\WINDOWS\system32\BrUsi09d.dll
2015-08-07 19:28:30 ----A---- C:\WINDOWS\system32\BrJDec.dll
2015-08-06 20:33:57 ----D---- C:\Users\Kája\AppData\Roaming\AVAST Software
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2015-08-06 20:31:36 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2015-08-06 20:31:33 ----A---- C:\WINDOWS\system32\aswBoot.exe
2015-08-06 20:31:18 ----A---- C:\WINDOWS\avastSS.scr
2015-08-06 20:24:34 ----D---- C:\Users\Kája\AppData\Roaming\WebApp
2015-08-06 20:23:55 ----D---- C:\Users\Kája\AppData\Roaming\Lenovo
2015-08-06 20:23:52 ----D---- C:\Users\Kája\AppData\Roaming\CyberLink
2015-08-06 20:19:49 ----D---- C:\Program Files\AVAST Software
2015-08-06 20:11:01 ----D---- C:\ProgramData\AVAST Software
2015-08-06 20:03:28 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2015-08-06 17:47:24 ----D---- C:\WINDOWS\system32\SleepStudy
2015-08-06 15:14:19 ----A---- C:\WINDOWS\system32\twinui.dll
2015-08-06 15:14:18 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-08-06 15:14:15 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2015-08-06 15:14:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Logon.dll
2015-08-06 15:14:13 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-06 15:14:12 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-08-06 15:14:12 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-06 15:14:09 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2015-08-06 15:14:09 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-08-06 15:14:09 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2015-08-06 15:14:08 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2015-08-06 15:14:08 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-06 15:14:08 ----A---- C:\WINDOWS\system32\d3d9.dll
2015-08-06 15:14:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2015-08-06 15:14:06 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-06 15:14:05 ----A---- C:\WINDOWS\system32\winmde.dll
2015-08-06 15:14:05 ----A---- C:\WINDOWS\system32\NotificationController.dll
2015-08-06 15:14:05 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-06 15:14:05 ----A---- C:\WINDOWS\system32\CredProvDataModel.dll
2015-08-06 15:14:04 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2015-08-06 15:14:04 ----A---- C:\WINDOWS\SYSWOW64\CredProvDataModel.dll
2015-08-06 15:14:04 ----A---- C:\WINDOWS\system32\wmpmde.dll
2015-08-06 15:14:04 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2015-08-06 15:14:04 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-08-06 15:14:03 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2015-08-06 15:14:03 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-08-06 15:14:02 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2015-08-06 15:14:02 ----A---- C:\WINDOWS\system32\wpncore.dll
2015-08-06 15:14:02 ----A---- C:\WINDOWS\system32\provhandlers.dll
2015-08-06 15:14:02 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2015-08-06 15:14:02 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2015-08-06 15:14:02 ----A---- C:\WINDOWS\system32\AudioEng.dll
2015-08-06 15:14:01 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2015-08-06 15:14:01 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2015-08-06 15:14:01 ----A---- C:\WINDOWS\system32\UserDataService.dll
2015-08-06 15:14:01 ----A---- C:\WINDOWS\system32\mfsrcsnk.dll
2015-08-06 15:14:00 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2015-08-06 15:14:00 ----A---- C:\WINDOWS\system32\SensorService.dll
2015-08-06 15:14:00 ----A---- C:\WINDOWS\system32\provengine.dll
2015-08-06 15:14:00 ----A---- C:\WINDOWS\system32\MFPlay.dll
2015-08-06 15:14:00 ----A---- C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2015-08-06 15:14:00 ----A---- C:\WINDOWS\system32\AudioSes.dll
2015-08-06 15:13:59 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2015-08-06 15:13:59 ----A---- C:\WINDOWS\SYSWOW64\MFPlay.dll
2015-08-06 15:13:59 ----A---- C:\WINDOWS\system32\wpnapps.dll
2015-08-06 15:13:59 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-08-06 15:13:59 ----A---- C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2015-08-06 15:13:58 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2015-08-06 15:13:58 ----A---- C:\WINDOWS\SYSWOW64\mfsrcsnk.dll
2015-08-06 15:13:58 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2015-08-06 15:13:58 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2015-08-06 15:13:58 ----A---- C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-08-06 15:13:58 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-06 15:13:57 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2015-08-06 15:13:57 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2015-08-06 15:13:57 ----A---- C:\WINDOWS\system32\StoreAgent.dll
2015-08-06 15:13:57 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2015-08-06 15:13:57 ----A---- C:\WINDOWS\system32\dxgi.dll
2015-08-06 15:13:57 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\SYSWOW64\SensorsNativeApi.V2.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\SYSWOW64\mfmkvsrcsnk.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-08-06 15:13:56 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2015-08-06 15:13:56 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys
2015-08-06 15:13:56 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2015-08-06 15:13:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-06 15:13:55 ----A---- C:\WINDOWS\SYSWOW64\VoiceActivationManager.dll
2015-08-06 15:13:55 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-08-06 15:13:55 ----A---- C:\WINDOWS\system32\VoiceActivationManager.dll
2015-08-06 15:13:55 ----A---- C:\WINDOWS\system32\drivers\bthhfenum.sys
2015-08-06 13:22:54 ----D---- C:\ProgramData\Microsoft OneDrive
2015-08-06 13:10:31 ----A---- C:\WINDOWS\system32\ETDCoInstaller01000.dll
2015-08-06 12:56:09 ----DC---- C:\WINDOWS\Panther
2015-08-06 12:52:53 ----D---- C:\Windows.old
2015-08-06 12:51:10 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2015-08-06 12:51:10 ----A---- C:\WINDOWS\SYSWOW64\bcastdvr.exe
2015-08-06 12:51:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Editing.dll
2015-08-06 12:51:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2015-08-06 12:51:09 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2015-08-06 12:51:09 ----A---- C:\WINDOWS\SYSWOW64\MCRecvSrc.dll
2015-08-06 12:51:09 ----A---- C:\WINDOWS\system32\MCRecvSrc.dll
2015-08-06 12:51:08 ----A---- C:\WINDOWS\system32\Windows.Media.Editing.dll
2015-08-06 12:51:08 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2015-08-06 12:51:08 ----A---- C:\WINDOWS\system32\mfplat.dll
2015-08-06 12:51:08 ----A---- C:\WINDOWS\system32\audiosrv.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\system32\wpccpl.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2015-08-06 12:51:07 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2015-08-06 12:51:05 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2015-08-06 12:51:05 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2015-08-06 12:51:05 ----A---- C:\WINDOWS\system32\wmp.dll
2015-08-06 12:51:05 ----A---- C:\WINDOWS\system32\ieproxy.dll
2015-08-06 12:50:58 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2015-08-06 12:50:58 ----A---- C:\WINDOWS\system32\Chakra.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Cred.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BlockedShutdown.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.BioFeedback.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\UIRibbon.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\systemcpl.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\srumsvc.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\sendmail.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\msiexec.exe
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\LockAppHost.exe
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\efscore.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\calc.exe
2015-08-06 12:50:56 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\Windows.UI.Cred.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\UIRibbon.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\systemcpl.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\stobject.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\SensorDataService.exe
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\sendmail.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\ntshrui.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\diagtrack_wininternal.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\ConhostV2.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\calc.exe
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\bcd.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-08-06 12:50:56 ----A---- C:\WINDOWS\explorer.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\SYSWOW64\ContactApis.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\wwansvc.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\wuuhext.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\winresume.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\winload.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\wininet.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\wimserv.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\wimgapi.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\wer.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\uxtheme.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\usocore.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\unenrollhook.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\TabSvc.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\spbcd.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\shutdownux.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\ReInfo.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\ReAgent.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\psmsrv.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\omadmprc.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\omadmclient.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\OmaDmAgent.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\ncsi.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\msiexec.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\msi.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\hal.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\GamePanel.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\efscore.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\drivers\dam.sys
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\dosvc.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\diagtrack_win.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\comdlg32.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\ClipUp.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\bcdedit.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\bcdboot.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\bcastdvr.exe
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2015-08-06 12:50:42 ----A---- C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\MessagingDataModel2.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\MbaeApi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\DisplayManager.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\AppContracts.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\wuapi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\wintrust.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\wininit.exe
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\winhttp.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\windows.storage.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\Unistore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\tetheringservice.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\storewuauth.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\srumsvc.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MusNotification.exe
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\mssprxy.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\mos.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MessagingDataModel2.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MBMediaManager.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MbaeApi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MapsStore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MapControlCore.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\lsasrv.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\LicenseManagerApi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\hmkd.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\gdi32.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\dwmapi.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\drivers\UcmUcsi.sys
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\DisplayManager.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\ContactApis.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\cloudAP.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\BingMaps.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\AppContracts.dll
2015-08-06 12:50:41 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-08-06 12:36:42 ----SHD---- C:\ProgramData\Šablony
2015-08-06 12:36:42 ----SHD---- C:\ProgramData\Plocha
2015-08-06 12:36:42 ----SHD---- C:\ProgramData\Nabídka Start
2015-08-06 12:36:42 ----SHD---- C:\ProgramData\Dokumenty
2015-08-06 12:36:42 ----SHD---- C:\ProgramData\Data aplikací
2015-08-06 12:36:09 ----SHD---- C:\Recovery
2015-08-06 12:33:00 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2015-08-06 12:32:59 ----D---- C:\Program Files\Reference Assemblies
2015-08-06 12:32:59 ----D---- C:\Program Files\MSBuild
2015-08-06 12:32:59 ----D---- C:\Program Files (x86)\Reference Assemblies
2015-08-06 12:32:59 ----D---- C:\Program Files (x86)\MSBuild
2015-08-06 12:32:29 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2015-08-06 12:32:16 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2015-08-06 12:32:16 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2015-08-06 12:32:16 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-06 12:32:13 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2015-08-06 12:32:13 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-08-06 12:32:13 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-06 12:21:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-06 12:16:06 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2015-08-06 12:05:40 ----SD---- C:\Users\Kája\AppData\Roaming\Microsoft
2015-08-06 12:02:46 ----D---- C:\WINDOWS\SYSWOW64\sda
2015-08-06 12:02:33 ----D---- C:\Program Files\Elantech
2015-08-06 12:02:32 ----A---- C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2015-08-06 12:02:32 ----A---- C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-08-06 12:02:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2015-08-06 12:02:30 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2015-08-06 12:01:52 ----D---- C:\Program Files\Intel
2015-08-06 12:01:22 ----D---- C:\ProgramData\Conexant
2015-08-06 12:01:15 ----D---- C:\Program Files\CONEXANT
2015-08-06 11:59:30 ----D---- C:\WINDOWS\Prefetch
2015-07-31 23:22:26 ----D---- C:\ProgramData\Brother
2015-07-31 23:22:26 ----A---- C:\WINDOWS\BRPARAM.INI
2015-07-30 17:20:23 ----D---- C:\AdwCleaner
2015-07-28 22:17:20 ----D---- C:\rsit
2015-07-28 22:17:20 ----D---- C:\Program Files\trend micro
2015-07-28 14:55:43 ----D---- C:\Users\Kája\AppData\Roaming\Mozilla
2015-07-28 14:55:35 ----D---- C:\ProgramData\Mozilla
2015-07-25 22:14:01 ----D---- C:\Users\Kája\AppData\Roaming\vlc
2015-07-25 22:13:02 ----D---- C:\Program Files (x86)\VideoLAN
2015-07-20 21:32:48 ----D---- C:\Users\Kája\AppData\Roaming\WinZip
======List of files/folders modified in the last 1 month======
2015-08-19 17:36:49 ----D---- C:\Users\Kája\AppData\Roaming\uTorrent
2015-08-19 17:35:57 ----RD---- C:\Program Files
2015-08-19 17:35:04 ----D---- C:\Users\Kája\AppData\Roaming\Skype
2015-08-19 17:34:59 ----SHD---- C:\WINDOWS\Installer
2015-08-19 17:34:59 ----D---- C:\Windows
2015-08-19 17:34:54 ----D---- C:\ProgramData\WinZip
2015-08-19 17:18:02 ----RD---- C:\Program Files (x86)
2015-08-19 17:18:02 ----D---- C:\Program Files (x86)\Common Files
2015-08-19 17:12:37 ----HD---- C:\ProgramData
2015-08-19 17:11:59 ----D---- C:\Users\Kája\AppData\Roaming\Adobe
2015-08-19 16:39:01 ----D---- C:\WINDOWS\system32\sru
2015-08-19 16:35:08 ----D---- C:\WINDOWS\System32
2015-08-19 16:28:08 ----D---- C:\WINDOWS\system32\config
2015-08-19 15:58:22 ----D---- C:\WINDOWS\system32\drivers
2015-08-19 15:57:35 ----D---- C:\WINDOWS\INF
2015-08-19 15:36:12 ----D---- C:\WINDOWS\AppReadiness
2015-08-19 15:36:10 ----HD---- C:\Program Files\WindowsApps
2015-08-19 15:10:33 ----D---- C:\WINDOWS\CbsTemp
2015-08-19 15:10:08 ----D---- C:\WINDOWS\WinSxS
2015-08-19 12:26:59 ----D---- C:\WINDOWS\system32\catroot2
2015-08-19 11:16:59 ----D---- C:\WINDOWS\system32\Tasks
2015-08-19 10:49:46 ----D---- C:\Program Files\Common Files
2015-08-19 10:47:03 ----D---- C:\WINDOWS\system32\drivers\etc
2015-08-19 10:38:29 ----D---- C:\WINDOWS\SysWOW64
2015-08-19 10:28:31 ----D---- C:\WINDOWS\Microsoft.NET
2015-08-19 10:27:21 ----D---- C:\WINDOWS\rescache
2015-08-19 10:14:09 ----SHD---- C:\System Volume Information
2015-08-19 09:22:59 ----D---- C:\WINDOWS\system32\DriverStore
2015-08-19 09:18:20 ----RD---- C:\WINDOWS\assembly
2015-08-17 15:57:36 ----D---- C:\ProgramData\McAfee
2015-08-17 15:56:18 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-08-17 15:56:18 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2015-08-17 15:56:17 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-17 15:56:17 ----D---- C:\WINDOWS\system32\oobe
2015-08-17 15:56:17 ----D---- C:\WINDOWS\system32\en-US
2015-08-17 15:56:17 ----D---- C:\WINDOWS\system32\drivers\en-US
2015-08-17 15:56:17 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2015-08-17 15:56:17 ----D---- C:\WINDOWS\system32\cs-CZ
2015-08-17 15:56:16 ----D---- C:\WINDOWS\system32\appraiser
2015-08-17 15:56:15 ----D---- C:\WINDOWS\AppPatch
2015-08-14 17:31:19 ----SD---- C:\ProgramData\Microsoft
2015-08-13 20:31:08 ----D---- C:\Program Files (x86)\Dropbox
2015-08-12 16:19:11 ----D---- C:\WINDOWS\system32\MRT
2015-08-12 16:07:02 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-10 16:36:17 ----D---- C:\ProgramData\Skype
2015-08-09 19:59:08 ----D---- C:\WINDOWS\appcompat
2015-08-08 17:38:46 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-08-07 14:27:52 ----D---- C:\WINDOWS\system32\WDI
2015-08-06 20:24:24 ----D---- C:\ProgramData\CyberLink
2015-08-06 20:23:52 ----D---- C:\ProgramData\Lenovo
2015-08-06 20:06:06 ----HD---- C:\WINDOWS\ELAMBKUP
2015-08-06 19:48:07 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-06 19:48:05 ----D---- C:\WINDOWS\Provisioning
2015-08-06 19:48:05 ----D---- C:\Program Files\Internet Explorer
2015-08-06 19:48:05 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-06 19:48:03 ----D---- C:\WINDOWS\OCR
2015-08-06 17:48:42 ----D---- C:\WINDOWS\Logs
2015-08-06 15:14:45 ----D---- C:\WINDOWS\system32\restore
2015-08-06 14:13:15 ----D---- C:\WINDOWS\debug
2015-08-06 13:24:39 ----RD---- C:\WINDOWS\DevicesFlow
2015-08-06 13:24:30 ----RD---- C:\WINDOWS\PurchaseDialog
2015-08-06 13:24:24 ----RD---- C:\WINDOWS\PrintDialog
2015-08-06 13:24:09 ----RD---- C:\WINDOWS\MiracastView
2015-08-06 13:20:58 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2015-08-06 13:06:24 ----HD---- C:\Intel
2015-08-06 12:52:16 ----D---- C:\WINDOWS\SYSWOW64\oobe
2015-08-06 12:52:16 ----D---- C:\WINDOWS\SYSWOW64\Dism
2015-08-06 12:52:16 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2015-08-06 12:52:16 ----D---- C:\WINDOWS\system32\Dism
2015-08-06 12:52:16 ----D---- C:\WINDOWS\system32\Boot
2015-08-06 12:44:51 ----SD---- C:\WINDOWS\SYSWOW64\F12
2015-08-06 12:44:51 ----D---- C:\WINDOWS\SYSWOW64\winrm
2015-08-06 12:44:51 ----D---- C:\WINDOWS\SYSWOW64\WCN
2015-08-06 12:44:51 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2015-08-06 12:44:51 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2015-08-06 12:44:50 ----SD---- C:\WINDOWS\SYSWOW64\DiagSvcs
2015-08-06 12:44:50 ----SD---- C:\WINDOWS\system32\F12
2015-08-06 12:44:50 ----D---- C:\WINDOWS\SYSWOW64\en
2015-08-06 12:44:50 ----D---- C:\WINDOWS\SYSWOW64\drivers\en-US
2015-08-06 12:44:50 ----D---- C:\WINDOWS\system32\winrm
2015-08-06 12:44:50 ----D---- C:\WINDOWS\system32\WCN
2015-08-06 12:44:50 ----D---- C:\WINDOWS\system32\slmgr
2015-08-06 12:44:50 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2015-08-06 12:44:50 ----D---- C:\WINDOWS\system32\migwiz
2015-08-06 12:44:43 ----SD---- C:\WINDOWS\system32\DiagSvcs
2015-08-06 12:44:43 ----D---- C:\WINDOWS\system32\en
2015-08-06 12:44:43 ----D---- C:\WINDOWS\servicing
2015-08-06 12:44:43 ----D---- C:\WINDOWS\en-US
2015-08-06 12:44:43 ----D---- C:\Program Files\Windows Photo Viewer
2015-08-06 12:44:43 ----D---- C:\Program Files\Windows Media Player
2015-08-06 12:44:43 ----D---- C:\Program Files\Windows Journal
2015-08-06 12:44:43 ----D---- C:\Program Files\Windows Defender
2015-08-06 12:44:43 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2015-08-06 12:44:43 ----D---- C:\Program Files (x86)\Windows Media Player
2015-08-06 12:44:43 ----D---- C:\Program Files (x86)\Windows Defender
2015-08-06 12:36:42 ----D---- C:\Program Files\Windows NT
2015-08-06 12:35:47 ----D---- C:\WINDOWS\SoftwareDistribution
2015-08-06 12:35:43 ----SD---- C:\WINDOWS\system32\Microsoft
2015-08-06 12:33:32 ----D---- C:\WINDOWS\Registration
2015-08-06 12:33:00 ----D---- C:\WINDOWS\SYSWOW64\MUI
2015-08-06 12:33:00 ----D---- C:\WINDOWS\system32\MUI
2015-08-06 12:21:48 ----D---- C:\WINDOWS\system32\LogFiles
2015-08-06 12:20:48 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2015-08-06 12:19:14 ----D---- C:\WINDOWS\system32\wbem
2015-08-06 12:12:39 ----D---- C:\WINDOWS\SYSWOW64\drivers
2015-08-06 12:12:35 ----D---- C:\WINDOWS\Tasks
2015-08-06 12:12:35 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2015-08-06 12:12:35 ----D---- C:\Program Files\Dolby Digital Plus
2015-08-06 12:09:05 ----D---- C:\WINDOWS\twain_32
2015-08-06 12:09:05 ----D---- C:\WINDOWS\SYSWOW64\zh-TW
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\zh-HK
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\zh-CN
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\uk-UA
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\tr-TR
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\th-TH
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\sv-SE
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\sr-Latn-RS
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\sl-SI
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\ru-RU
2015-08-06 12:09:04 ----D---- C:\WINDOWS\SYSWOW64\ro-RO
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\pt-PT
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\pt-BR
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\pl-PL
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\nb-NO
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\lv-LV
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\lt-LT
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\ko-KR
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2015-08-06 12:09:03 ----D---- C:\WINDOWS\SYSWOW64\it-IT
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\hu-HU
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\hr-HR
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\he-IL
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\fr-FR
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\fi-FI
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\et-EE
2015-08-06 12:09:02 ----D---- C:\WINDOWS\SYSWOW64\es-ES
2015-08-06 12:09:01 ----D---- C:\WINDOWS\SYSWOW64\en-GB
2015-08-06 12:09:01 ----D---- C:\WINDOWS\SYSWOW64\el-GR
2015-08-06 12:09:01 ----D---- C:\WINDOWS\SYSWOW64\de-DE
2015-08-06 12:09:01 ----D---- C:\WINDOWS\SYSWOW64\da-DK
2015-08-06 12:09:01 ----D---- C:\WINDOWS\SYSWOW64\bg-BG
2015-08-06 12:09:00 ----D---- C:\WINDOWS\SYSWOW64\ar-SA
2015-08-06 12:08:57 ----HD---- C:\WINDOWS\system32\WLANProfiles
2015-08-06 12:08:57 ----D---- C:\WINDOWS\system32\zh-TW
2015-08-06 12:08:57 ----D---- C:\WINDOWS\system32\zh-HK
2015-08-06 12:08:57 ----D---- C:\WINDOWS\system32\zh-CN
2015-08-06 12:08:56 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-08-06 12:08:56 ----D---- C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-08-06 12:08:55 ----D---- C:\WINDOWS\system32\uk-UA
2015-08-06 12:08:55 ----D---- C:\WINDOWS\system32\tr-TR
2015-08-06 12:08:55 ----D---- C:\WINDOWS\system32\th-TH
2015-08-06 12:08:55 ----D---- C:\WINDOWS\system32\sv-SE
2015-08-06 12:08:55 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2015-08-06 12:08:55 ----D---- C:\WINDOWS\system32\spool
2015-08-06 12:08:54 ----D---- C:\WINDOWS\system32\sl-SI
2015-08-06 12:08:54 ----D---- C:\WINDOWS\system32\sk-SK
2015-08-06 12:08:53 ----D---- C:\WINDOWS\system32\ru-RU
2015-08-06 12:08:53 ----D---- C:\WINDOWS\system32\ro-RO
2015-08-06 12:08:53 ----D---- C:\WINDOWS\system32\pt-PT
2015-08-06 12:08:53 ----D---- C:\WINDOWS\system32\pt-BR
2015-08-06 12:08:53 ----D---- C:\WINDOWS\system32\pl-PL
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\nl-NL
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\NDF
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\nb-NO
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\migration
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\lv-LV
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\lt-LT
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\ko-KR
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\ja-JP
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\it-IT
2015-08-06 12:08:52 ----D---- C:\WINDOWS\system32\InputMethod
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\hu-HU
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\hr-HR
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\he-IL
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\fr-FR
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\fi-FI
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\et-EE
2015-08-06 12:08:51 ----D---- C:\WINDOWS\system32\es-ES
2015-08-06 12:08:50 ----DC---- C:\WINDOWS\system32\DRVSTORE
2015-08-06 12:08:50 ----D---- C:\WINDOWS\system32\en-GB
2015-08-06 12:08:50 ----D---- C:\WINDOWS\system32\el-GR
2015-08-06 12:08:49 ----D---- C:\WINDOWS\system32\de-DE
2015-08-06 12:08:49 ----D---- C:\WINDOWS\system32\da-DK
2015-08-06 12:08:00 ----D---- C:\WINDOWS\system32\bg-BG
2015-08-06 12:08:00 ----D---- C:\WINDOWS\system32\ar-SA
2015-08-06 12:07:57 ----D---- C:\WINDOWS\MediaViewer
2015-08-06 12:07:55 ----D---- C:\WINDOWS\InputMethod
2015-08-06 12:07:52 ----RSD---- C:\WINDOWS\Fonts
2015-08-06 12:07:51 ----D---- C:\WINDOWS\ADFS
2015-08-06 12:07:38 ----D---- C:\WINDOWS\system32\CodeIntegrity
2015-08-06 12:07:10 ----RD---- C:\Users
2015-08-06 12:07:06 ----D---- C:\Program Files (x86)\Windows Mail
2015-08-06 12:07:05 ----D---- C:\Program Files (x86)\Lenovo
2015-08-06 12:07:04 ----D---- C:\Program Files (x86)\Intel
2015-08-06 12:07:00 ----D---- C:\Program Files\Windows Mail
2015-08-06 12:07:00 ----D---- C:\Program Files\lenovo
2015-08-06 12:06:57 ----D---- C:\Program Files\Common Files\microsoft shared
2015-08-06 12:06:44 ----D---- C:\WINDOWS\system32\Recovery
2015-08-06 12:04:26 ----D---- C:\WINDOWS\system32\Sysprep
2015-08-06 11:18:12 ----HD---- C:\$Windows.~BT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-08-06 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-08-06 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2014-02-26 645992]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-08-06 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-08-13 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-08-06 447944]
R1 CLVirtualDrive;CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [2013-11-12 91912]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-08-06 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-08-06 90968]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 ACPIVPC;@oem25.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2015-03-31 35600]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 CnxtHdAudService;@oem71.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2015-05-19 1543912]
R3 ETD;@oem74.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-06 428216]
R3 ibtusb;@oem66.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2015-03-20 253680]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-07-18 6389688]
R3 iwdbus;@oem51.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-08-01 27032]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2015-08-19 113880]
R3 MEIx64;@oem63.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\WINDOWS\System32\drivers\Netwbw02.sys [2015-07-10 3496216]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
R3 rt640x64;@oem67.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2015-06-18 895256]
R3 RTSUER;@oem70.inf,%RtsUER%;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2015-07-03 410880]
R3 rtsuvc;@oem69.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2015-06-16 3068160]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-08-06 150672]
S3 BrSerIb;@oem33.inf,%BrSerIb.SvcDesc%;Brother Serial Interface Driver(WDM); C:\WINDOWS\system32\DRIVERS\BrSerIb.sys [2015-08-07 87552]
S3 BrUsbSIb;@oem33.inf,%BrUsbSIb.SvcDesc%;Brother Serial USB Driver(WDM); C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys [2015-08-07 14592]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-07-10 928768]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 IntcDAud;@oem61.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2014-08-20 453872]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-08-06 934752]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-08-06 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]
S3 UfxChipidea;@ufxchipidea.inf,%UfxChipidea.ServiceName%;USB Chipidea Controller; C:\WINDOWS\System32\drivers\UfxChipidea.sys [2015-07-10 94048]
S3 ufxsynopsys;@ufxsynopsys.inf,%ufxsynopsys.ServiceName%;USB Synopsys Controller; C:\WINDOWS\System32\drivers\ufxsynopsys.sys [2015-07-10 127840]
S3 UrsCx01000;USB Role-Switch Support Library; C:\WINDOWS\system32\drivers\urscx01000.sys [2015-07-10 57696]
S3 UrsChipidea;@urschipidea.inf,%UrsChipidea.ServiceName%;Chipidea USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urschipidea.sys [2015-07-10 28512]
S3 UrsSynopsys;@urssynopsys.inf,%UrsSynopsys.ServiceName%;Synopsys USB Role-Switch Driver; C:\WINDOWS\System32\drivers\urssynopsys.sys [2015-07-10 27488]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2015-07-10 46080]
S3 usbser;@usbser.inf,%UsbSerial.DriverDesc%;Microsoft USB Serial Driver; C:\WINDOWS\System32\drivers\usbser.sys [2015-08-06 67072]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-06 146600]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2014-07-10 592880]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-06 135352]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-02-26 16232]
R2 iBtSiva;Intel Bluetooth Service; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [2014-08-07 121304]
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-07-18 351120]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-27 747520]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-03-06 584632]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2015-03-31 198192]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 MaxthonUpdateSvc;Maxthon Core Update Service; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2015-08-06 1872152]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 UnistoreSvc_Session1;Úložiště uživatelských dat_Session1; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 dbupdate;Dropbox Update Service (dbupdate); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-07 134512]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-06 107848]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-25 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-07-18 283024]
S3 dbupdatem;Dropbox Update Service (dbupdatem); C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-07 134512]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-06 107848]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-27 828376]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-09-23 561408]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-08-06 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 UnistoreSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
-----------------EOF-----------------
Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.) 
Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Drzim palce 
